firefox.settings.services.mozilla.com/v1/
54.230.111.65200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 3f17af4e8a1739eda4a518039f4892f9
c3feba08ae7e8f57e0fe9bcd2ebedea6bda67cbb
c485b09cad08b5233fe8753682faf59219fe0d18fcc34d90dc88fb0971295f5f
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 08 Oct 2022 23:47:38 GMT
Expires: Sun, 09 Oct 2022 00:23:53 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Oq9vfLOWyjTrCjwxLpskZSHvCLUcLi75VSXzcqlGcFUfAnKiC8AZEQ==
Age: 91
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cf768e41672570b0a4a9fe86045915fc
2249064a86b2ba11e28208b9fba1c9f1db4f3e9e
a049499f78078df12f4d1c5180f1f36715a5c99db4f31c18ee06bcf0b6382b30
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A049499F78078DF12F4D1C5180F1F36715A5C99DB4F31C18EE06BCF0B6382B30"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8840
Expires: Sun, 09 Oct 2022 02:16:29 GMT
Date: Sat, 08 Oct 2022 23:49:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7cba6aada5c0a04c1c0644769c09f64e
ed02f174a9b718951911343af8ec181c6d205b1d
ba863e734d5d38ed160758ab0b09d1b0f44fc795dcbcee4199329b011fcd1bd1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BA863E734D5D38ED160758AB0B09D1B0F44FC795DCBCEE4199329B011FCD1BD1"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3439
Expires: Sun, 09 Oct 2022 00:46:29 GMT
Date: Sat, 08 Oct 2022 23:49:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cmENz1u8wMiINXJT1Pz4kzn6YYxBJ9yHcpqYP5eGbauH+k0EqSfQw6+UOYspeNpDM7qVlRuQ0/A=
x-amz-request-id: 43C03JK22G54Q4NA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 08 Oct 2022 22:59:47 GMT
age: 2963
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.realhopeoswego.org/
199.34.228.73301 Moved Permanently 370 B IP 199.34.228.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3168afd7f2e52d52c9b401688c845337
6f5bff725fa21cc9e90daa48dc7a54941a550bf9
155fb34847bde6401bc6eac53a03701be4ef19d2832fcbe9528053623fd47cf1
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 08 Oct 2022 23:49:09 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=www.realhopeoswego.org
Vary: X-W-SSL,User-Agent
Location: https://www.realhopeoswego.org/
X-Host: grn146.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 370
Keep-Alive: timeout=10, max=61
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 23:49:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.65200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 08 Oct 2022 23:29:41 GMT
Expires: Sun, 09 Oct 2022 00:24:08 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: U68led5B7zE6o_mP7x99qK8AUDPH6GyIepYzTCsKcm823ICEFCgX0A==
Age: 1169
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0f1d88864c47b7c1a46f26c1bdb4d9f7
79226bc76202898014f6ce60ff03a3389e81745f
ff9172fdfff7ed496d6b19e55c941a2213450134d03f8681608552b62020f7a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF9172FDFFF7ED496D6B19E55C941A2213450134D03F8681608552B62020F7A9"
Last-Modified: Sat, 08 Oct 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 09 Oct 2022 05:49:10 GMT
Date: Sat, 08 Oct 2022 23:49:10 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5479444ef227af03029fbb9d154f0107
0563678ec07ab3707b716ca4c638ece4c8ad7de4
4850d49786a140003b90ae108104ffbfe80a6e0d9f584656a09f0fff11dc9d0d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1762
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 23:49:10 GMT
Last-Modified: Sat, 08 Oct 2022 23:19:48 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
www.realhopeoswego.org/
199.34.228.73200 OK 9.7 kB IP 199.34.228.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1350), with CRLF, LF line terminators
Hash b00391d68371d5acd08b457e6e3c603d
ab16547d1cbc2d223adb22133b1eaf29041ae724
b08b469db715920720e310ef2fc534922be854a2eee1d72abc00bfe473670d77
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 23:49:10 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.realhopeoswego.org
language=en; expires=Sat, 22-Oct-2022 23:49:10 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"ba56efa59ab02ed61327f267c2c2975e-gzip"
Content-Encoding: gzip
X-Host: blu144.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 9684
Keep-Alive: timeout=10, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
cdn2.editmysite.com/css/social-icons.css?buildtime=1643323087
151.101.85.46200 OK 1.6 kB URL HTTP/2 cdn2.editmysite.com/css/social-icons.css?buildtime=1643323087
IP 151.101.85.46:0
File type ASCII text, with very long lines (13080)
Hash 67056f09eaf504258010881f5bc71cfa
80821819c858ab42c83bb79fd06b702b3f3cb8b5
082ba6b8437c213cd561bebf0a2b4af2fef7ff7a461098daaf628a86306ed13e
GET /css/social-icons.css?buildtime=1643323087 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 03 Oct 2022 17:47:23 GMT
etag: W/"633b202b-3319"
expires: Tue, 18 Oct 2022 08:49:04 GMT
cache-control: max-age=1209600
x-host: blu69.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 08 Oct 2022 23:49:10 GMT
age: 399607
x-served-by: cache-sjc10036-SJC, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 14, 1
x-timer: S1665272951.958717,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1640
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.189.157.130101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.189.157.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iVqEdRfpuVORFya9x/+jvQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hxzGekWQ2l/q11h0ni1u89mVbxU=
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1643323087&
151.101.85.46200 OK 33 kB URL HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1643323087&
IP 151.101.85.46:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (64997)
Hash b8736606557623d8a39fd26e43926dd3
039f940323d4f57ee45d8897d2ce550ed7334fe2
85ad367334d5df1a7d92c2fcc70eaf6a1876c3e132c07495db2a9dac01f04d1f
GET /js/lang/en/stl.js?buildTime=1643323087& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 03 Oct 2022 17:46:29 GMT
etag: "633b1ff5-2c6bb"
expires: Tue, 18 Oct 2022 08:10:04 GMT
cache-control: max-age=1209600
x-host: blu135.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 08 Oct 2022 23:49:10 GMT
age: 401947
x-served-by: cache-sjc10059-SJC, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 773, 1
x-timer: S1665272951.962968,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 32983
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/old/fancybox.css?1643323087
151.101.85.46200 OK 1.2 kB URL HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1643323087
IP 151.101.85.46:0
File type ASCII text, with very long lines (3910)
Hash b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
GET /css/old/fancybox.css?1643323087 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 30 Sep 2022 14:57:05 GMT
etag: "633703c1-f47"
expires: Mon, 17 Oct 2022 12:23:28 GMT
cache-control: max-age=1209600
x-host: blu111.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 08 Oct 2022 23:49:10 GMT
age: 473142
x-served-by: cache-sjc10028-SJC, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1665272951.969220,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1218
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ee96d771e1664e3afe56cf32bfe45eee
3ab9109d6f7a952cf2f7071ecb5ee186f9eebf6a
df7a23267a1a0bddc477d2b3f4c870b6a6ab7b4dca5fc38164d814ccae2b2fdd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 23:49:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn2.editmysite.com/js/site/main.js?buildTime=1643323087
151.101.85.46200 OK 146 kB URL HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1643323087
IP 151.101.85.46:0
File type ASCII text, with very long lines (32147)
Size 146 kB (146400 bytes)
Hash 81b8673c5d3aa3ab8c0574f2a8f0e3b4
2e0661bc7907d9e2703b3347c3fec579f0aef5d6
0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40
GET /js/site/main.js?buildTime=1643323087 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 23 Sep 2022 21:40:32 GMT
etag: "632e27d0-74804"
expires: Mon, 10 Oct 2022 12:03:05 GMT
cache-control: max-age=1209600
x-host: blu104.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 08 Oct 2022 23:49:10 GMT
age: 1079165
x-served-by: cache-sjc10045-SJC, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1665272951.965236,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 146400
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/sites.css?buildTime=1643323087
151.101.85.46200 OK 30 kB URL HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1643323087
IP 151.101.85.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d10158b22b553f723d99dc78eaee6390
80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
GET /css/sites.css?buildTime=1643323087 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 03 Oct 2022 17:47:23 GMT
etag: W/"633b202b-347ac"
expires: Tue, 18 Oct 2022 08:11:40 GMT
cache-control: max-age=1209600
x-host: grn116.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 08 Oct 2022 23:49:10 GMT
age: 401850
x-served-by: cache-sjc10069-SJC, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1665272951.968713,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 29746
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
142.250.74.170200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (65483)
Hash a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 08 Oct 2022 06:15:31 GMT
expires: Sun, 08 Oct 2023 06:15:31 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 63220
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.realhopeoswego.org/files/main_style.css?1643413329
199.34.228.73200 OK 7.4 kB URL HTTP/1.1 www.realhopeoswego.org/files/main_style.css?1643413329
IP 199.34.228.73:0
File type ASCII text, with very long lines (1061)
Hash e44c5649c47672f951bd55aff15d4a66
5b767699622dcd50179ffd13479af8f9a2c96d06
6e6f1be25300b8bbb200673d7c0ced256decbd61bce2718ba54a97756705c6aa
Analyzer Verdict Alert fortinet Malware
GET /files/main_style.css?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:10 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu34.sf2p.intern.weebly.net
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ee96d771e1664e3afe56cf32bfe45eee
3ab9109d6f7a952cf2f7071ecb5ee186f9eebf6a
df7a23267a1a0bddc477d2b3f4c870b6a6ab7b4dca5fc38164d814ccae2b2fdd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 23:49:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ee96d771e1664e3afe56cf32bfe45eee
3ab9109d6f7a952cf2f7071ecb5ee186f9eebf6a
df7a23267a1a0bddc477d2b3f4c870b6a6ab7b4dca5fc38164d814ccae2b2fdd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 23:49:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.realhopeoswego.org/files/theme/custom.js?1565969634
199.34.228.73200 OK 1.8 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/custom.js?1565969634
IP 199.34.228.73:0
Hash 1f7d51d1b0acc9268e8aa57af11ee258
df55901d31c5b1de0181820e1bf123d61b5ec6c6
44ecca81c81024cd199ad979fd0ca46a379978a73a1c9ce09b6dfc9393cceff0
GET /files/theme/custom.js?1565969634 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 19 Apr 2022 15:56:37 GMT
x-rgw-object-type: Normal
ETag: W/"48e887857aec23f184b0aa49c18d2445"
x-amz-request-id: tx000000000000001c03ef4-0062848423-b9fbc63-sfo1
X-Storage-Bucket: z0567
X-Storage-Object: 0567021bc3973d113c6b0b6e68d0e9a8b53f38a7f60716c83214a133cc00139a
X-Host: blu136.sf2p.intern.weebly.net
Content-Encoding: gzip
www.realhopeoswego.org/files/theme/plugins.js?1565969634
199.34.228.73200 OK 16 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/plugins.js?1565969634
IP 199.34.228.73:0
Hash 43e6b0bb6eb6524188831a282f7656d7
44e73fe367fc1fb8efee7eefac557b7d76ef0f44
9001fcfe93ceab40de4bb3535fc61335318c56d4440b53070cac27a26fef42bb
Analyzer Verdict Alert fortinet Malware
GET /files/theme/plugins.js?1565969634 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 24 Apr 2022 01:56:38 GMT
x-rgw-object-type: Normal
ETag: W/"2b8d85f1ea01d2c3e8b962eac8d76a5c"
x-amz-request-id: tx000000000000001b1056e-00628479aa-b9fbc7f-sfo1
X-Storage-Bucket: zb635
X-Storage-Object: b6353ca52760aba4e7547ae9861db68158dc2af0f4febece55e5c775ee4449f5
X-Host: blu33.sf2p.intern.weebly.net
Content-Encoding: gzip
www.realhopeoswego.org/files/templateArtifacts.js?1643413329
199.34.228.73200 OK 1.6 kB URL HTTP/1.1 www.realhopeoswego.org/files/templateArtifacts.js?1643413329
IP 199.34.228.73:0
File type exported SGML document, ASCII text, with very long lines (1630)
Hash e0836e8203c22b8e4086f27e91e86f5a
28235e77f5a895c8cd411aff4a6ef4e6f7d419c2
32dbc4a2eeca39a57d35670f00e2cf59e03c279521e47506c56c5c36d8b664b6
Analyzer Verdict Alert fortinet Malware
GET /files/templateArtifacts.js?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:11 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn148.sf2p.intern.weebly.net
Content-Encoding: gzip
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.85.46200 OK 26 kB URL HTTP/2 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (2512)
Hash 234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 28 Sep 2022 21:45:07 GMT
etag: "6334c063-124fe"
expires: Thu, 13 Oct 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: blu29.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 08 Oct 2022 23:49:11 GMT
age: 832230
x-served-by: cache-sjc10077-SJC, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 8157
x-timer: S1665272952.699288,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2
cdn2.editmysite.com/images/editor/theme-background/stock/Beach-Biking.jpg
151.101.85.46200 OK 216 kB URL HTTP/2 cdn2.editmysite.com/images/editor/theme-background/stock/Beach-Biking.jpg
IP 151.101.85.46:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, copyright=Mario Habenbacher], baseline, precision 8, 2280x1667, components 3\012- data
Size 216 kB (216371 bytes)
Hash ab428b11898a6a9aed8f181b68b8dbea
449eca1b1c661b247913ba62986c35879bb7c7b4
50063716eb602d31174eb7e3a4a5b2e1074d171cace9716b4b4e14c2190b89dd
GET /images/editor/theme-background/stock/Beach-Biking.jpg HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvHblIdBwYN7ydEVIysmN376iE77uarKm79AQ_XwaLXLU3iCI30-L55wnyzuhqOYSyrQXInBhdmNnlchKq6txubmLZYAOKq
cache-control: public, max-age=86400, s-maxage=259200
expires: Fri, 16 Sep 2022 05:01:00 GMT
last-modified: Thu, 25 May 2017 17:30:31 GMT
etag: "ab428b11898a6a9aed8f181b68b8dbea"
x-goog-generation: 1495733431772764
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 216371
content-type: image/jpeg
x-goog-hash: crc32c=dUMLKA==, md5=q0KLEYmKaprtjxgbaLjb6g==
x-goog-storage-class: STANDARD
server: UploadServer
accept-ranges: bytes
date: Sat, 08 Oct 2022 23:49:11 GMT
via: 1.1 varnish
age: 125821
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665272952.708335,VS0,VE2
access-control-allow-origin: *
content-length: 216371
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/wSocial/wsocial.woff?ts=1664819243789
151.101.85.46200 OK 2.6 kB URL HTTP/2 cdn2.editmysite.com/fonts/wSocial/wsocial.woff?ts=1664819243789
IP 151.101.85.46:0
File type Web Open Font Format, TrueType, length 2636, version 1.0\012- data
Hash 0e88795b66eeac48b209209aa0179411
983e16566390f9167c6c4fbbdb052623fc01a631
e8106b06fab14948098cae97983eafbe1a60643ac725b2a029e4da57d43854df
GET /fonts/wSocial/wsocial.woff?ts=1664819243789 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff
last-modified: Mon, 03 Oct 2022 17:44:06 GMT
etag: "633b1f66-a4c"
expires: Mon, 17 Oct 2022 18:02:26 GMT
cache-control: max-age=1209600
x-host: grn108.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 08 Oct 2022 23:49:11 GMT
age: 452805
x-served-by: cache-sjc10049-SJC, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 1
x-timer: S1665272952.730982,VS0,VE1
access-control-allow-origin: *
content-length: 2636
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8a2449aeb44e755b2e6897d30993dda0
16cd83b0e0975ebf09e7035c26bbda168af42ac8
fd80527f810be13b70107c447b6f6f226c6145fbcc3b5446f9c834bca2f1597b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 23:49:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8a2449aeb44e755b2e6897d30993dda0
16cd83b0e0975ebf09e7035c26bbda168af42ac8
fd80527f810be13b70107c447b6f6f226c6145fbcc3b5446f9c834bca2f1597b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 23:49:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 16:40:18 GMT
expires: Fri, 06 Oct 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 198533
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 89a17c02cdf926b852220408f32d6ad4
c22fb94c77a74cfc00d6b2cc88643afa0563abbe
2a4d9286d35271838cb99d265e2c8dbb851fa80ac2ca293571125188e684a7e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 23:49:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8a2449aeb44e755b2e6897d30993dda0
16cd83b0e0975ebf09e7035c26bbda168af42ac8
fd80527f810be13b70107c447b6f6f226c6145fbcc3b5446f9c834bca2f1597b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 23:49:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?_=1665272951740
142.250.74.164200 OK 555 B URL HTTP/2 www.google.com/recaptcha/api.js?_=1665272951740
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash e75e7b4c9bf71c4a14d5e1d1946b161a
36148f31ea702a23a3f0dafd907a9069234021e7
e43b40968f165ec7b121020103aa40529d891aa2d03ead26ed47adefc4d6ab6d
GET /recaptcha/api.js?_=1665272951740 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 08 Oct 2022 23:49:11 GMT
date: Sat, 08 Oct 2022 23:49:11 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/coins-912719-1920.jpg?1553259709
199.34.228.73200 OK 27 kB URL HTTP/1.1 www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/coins-912719-1920.jpg?1553259709
IP 199.34.228.73:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 384x256, components 3\012- data
Hash 8411fa9dbec3a40fd8f70bdd819d3102
5a2707cdf3b2d6a0017a22de13c8eebd0494e792
a8391ed95fc3358d1ff6263c2501dc396ec2b9451a7afefa9bb973b7a5c2e03c
GET /uploads/1/2/4/0/124018328/published/coins-912719-1920.jpg?1553259709 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:11 GMT
Content-Type: image/jpeg
Content-Length: 27421
Connection: keep-alive
Last-Modified: Fri, 22 Mar 2019 13:01:49 GMT
x-rgw-object-type: Normal
ETag: "8411fa9dbec3a40fd8f70bdd819d3102"
x-amz-request-id: tx00000000000000db06668-0062d504a1-bfe36ba-sfo1
X-Storage-Bucket: za839
X-Storage-Object: a8391ed95fc3358d1ff6263c2501dc396ec2b9451a7afefa9bb973b7a5c2e03c
X-Host: grn141.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a5bb2ca079b8c15c921933d39c57ae47
7ae6e38c3e12ef05164b04df7f2a65be3a3ec440
336607c0f56b4a97511339d2437520aa8c9d6cb07b5b5ddf535efe65561d2890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 23:49:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/29573050-10155679475053318-4597406936829406111-n.jpg?1552863936
199.34.228.73200 OK 46 kB URL HTTP/1.1 www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/29573050-10155679475053318-4597406936829406111-n.jpg?1552863936
IP 199.34.228.73:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 718x405, components 3\012- data
Hash eb53df0cfd9c2f20d63c92fcba3f8141
45526f4223b803162fb53ee265b8d4d0a28d0a60
4ae3478d139c40b24a3627f698e7c85ac4dda5fe9f40ecf8dba1834fda1d833e
Analyzer Verdict Alert fortinet Malware
GET /uploads/1/2/4/0/124018328/published/29573050-10155679475053318-4597406936829406111-n.jpg?1552863936 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:11 GMT
Content-Type: image/jpeg
Content-Length: 46392
Connection: keep-alive
Last-Modified: Sun, 17 Mar 2019 23:05:36 GMT
x-rgw-object-type: Normal
ETag: "eb53df0cfd9c2f20d63c92fcba3f8141"
x-amz-request-id: tx0000000000000196264a4-0062e91e6b-bfe27ea-sfo1
X-Storage-Bucket: z4ae3
X-Storage-Object: 4ae3478d139c40b24a3627f698e7c85ac4dda5fe9f40ecf8dba1834fda1d833e
X-Host: grn49.sf2p.intern.weebly.net
Accept-Ranges: bytes
static.zbcdn.net/__lnfmta/asset/bundle.js
104.26.13.36200 OK 85 kB URL HTTP/2 static.zbcdn.net/__lnfmta/asset/bundle.js
IP 104.26.13.36:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6a391a9fe34dd6af1cd1c95e293494b3
76f12201d7bd2613bb6ddd3c5927315b56e7352a
a9ec86b70d86eeac1c39fa9b04744d659f2116c0af87854cf93485c2b420191c
GET /__lnfmta/asset/bundle.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:11 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 07 Oct 2022 03:55:37 GMT
vary: Accept-Encoding
etag: W/"633fa339-421ce"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: mariadb
cache-control: max-age=691200
cf-cache-status: HIT
age: 3199
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B5OGhOjNzIfce9zJWSB3g4Q9hsmbVAJN9SapZmZ3W2LzKTT%2BEdOqS7%2BBAKanWhxCEN7hSNgeowfaxK5t5LAvdx5OKYhfuu0zDXBeFTnEvmuLqM2iLl7ZqkK1csuXDZIXwZk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7572c58db8f0b500-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8503
Expires: Sun, 09 Oct 2022 02:10:54 GMT
Date: Sat, 08 Oct 2022 23:49:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8503
Expires: Sun, 09 Oct 2022 02:10:54 GMT
Date: Sat, 08 Oct 2022 23:49:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53c62cd8-fd44-428d-99b7-ea270465637f.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53c62cd8-fd44-428d-99b7-ea270465637f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 40ee726eae6ceec891c6858ab3193143
e89416137ee4489a3ae8c585a01a85b8b956795f
b471ef9e610991eafbfe7a810671a42fadc18ba3b4a5d944d03c5ecc1e228f78
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53c62cd8-fd44-428d-99b7-ea270465637f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8402
x-amzn-requestid: 5f2678f9-31b3-4b3e-bca7-8952c70af540
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZtHakFQgIAMFgDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6341ec43-24d6aac264612ff818e0b3f0;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 21:31:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0T7pNUiW38OwwJL6pNTk65oiiAmHC4ij8SGjS7c0vGBe_1GFYwVbCg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:44:18 GMT
etag: "e89416137ee4489a3ae8c585a01a85b8b956795f"
content-type: image/jpeg
age: 7493
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6e3f651-bb7d-4dea-9351-b49a68de1bbc.webp
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6e3f651-bb7d-4dea-9351-b49a68de1bbc.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b020db4bfa5b227115ab8d151dd6ea33
90bda3a7632acaab42fc995b90bcf9172f838bcf
e5031215b788a47dad462c3344c0e4d35d501224e3896e2c691d338c4e80023b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6e3f651-bb7d-4dea-9351-b49a68de1bbc.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9286
x-amzn-requestid: 64e1076a-99be-4764-857c-4ffb73575ee4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZtaOPGUmoAMFwRw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63420a5a-55d109371e471e952ad7f73e;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 23:40:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: q4wLWfRD6VpAGdaYa9t6vSiutA8U59DXkgGrHzQHn3wVs6h6YvnQZg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 23:41:16 GMT
etag: "90bda3a7632acaab42fc995b90bcf9172f838bcf"
content-type: image/jpeg
age: 475
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b15495e3e13c06fd0d67523870405ed
3cb8b43735e86c93733affa10818c47693c80fce
f65edddef18295076f79a48e9a6c95d07ed244a2ae618cb4229b6c1bd434cd57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12187
x-amzn-requestid: 9768886f-0e17-4958-bdaf-e17385eb21d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjqJCHyNoAMFmDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e23d3-288e1d28057753a16893d6b5;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 00:39:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Sq19dwfau75VJsl8E2BNddasuiRnVxAuDjNEz0tC_scJSLZZkTayCw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 22:24:03 GMT
age: 5108
etag: "3cb8b43735e86c93733affa10818c47693c80fce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1599fbb-2511-4bc2-8ca8-c4005f192889.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1599fbb-2511-4bc2-8ca8-c4005f192889.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fa302105ffc3d3c3eb8c61fb9c74eb44
748429ef5ace5733a115fbff5d775825a6d7a406
4214b707ce6018e1f70d36515f270d3e5c7575b2f2c2c3affa670b5f48d6e195
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1599fbb-2511-4bc2-8ca8-c4005f192889.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7332
x-amzn-requestid: f1570fe8-21a8-4d77-87d5-cd186eff2987
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZtHgOH9boAMFRzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6341ec67-25e96c4777da7ced0b003869;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 21:32:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: R-xUSJxrEHLgDmS9e0vaVMeoG51jQTdugiGQeRwZlv0HqW_sM2EZBw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:51:56 GMT
etag: "748429ef5ace5733a115fbff5d775825a6d7a406"
content-type: image/jpeg
age: 7035
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49c879b8-77d0-4424-8724-c68b3bd47121.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49c879b8-77d0-4424-8724-c68b3bd47121.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fdcc106f8037576ca719c2395ddad198
adcffabc52d32d5750787a3465db489dc0d37d97
82acb9b9811427e3e93bdca774949502b12d21617476341409fa1a237a37aa5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49c879b8-77d0-4424-8724-c68b3bd47121.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13770
x-amzn-requestid: fe2d711e-e69d-4c7a-9aad-812a6487869f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf_WZHr5IAMFRBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633cac28-16481cdc13a977b32a898793;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:56:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HFgnZToHe8f5q2WNSSGEN-daSKh7mOE0aOQRma--gnFEkPQHfJuiug==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:44:29 GMT
age: 7482
etag: "adcffabc52d32d5750787a3465db489dc0d37d97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f1ce5b6-8998-4fc8-b1c4-d0c89c74fba6.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f1ce5b6-8998-4fc8-b1c4-d0c89c74fba6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 954195baaeb3faefcb26cb04f1767465
bdba70f84d0c8f61b0cc4e99345a964ed9f46b9c
efaafca7f8c638b1d92723745cbd02298afd4357e9bb7905e854921aaa51d271
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f1ce5b6-8998-4fc8-b1c4-d0c89c74fba6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8625
x-amzn-requestid: 0e74e6ca-2bfc-4b0e-8af4-630c2db9a6cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqhkHgIoAMFWDQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8ad6-157ce0a07e1d98552bfd2bc1;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:10:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5KfbGKLcjLes0CI2YMiiNLqfDOOpgq819kFrRECTsHHHR7DgY7wCgg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 12:43:09 GMT
age: 39962
etag: "bdba70f84d0c8f61b0cc4e99345a964ed9f46b9c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/25734117-10155425686983318-5089469130545338446-o.jpg?1552863824
199.34.228.73200 OK 83 kB URL HTTP/1.1 www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/25734117-10155425686983318-5089469130545338446-o.jpg?1552863824
IP 199.34.228.73:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1065x601, components 3\012- data
Hash 95b654c7fd06451c884e1a9eda521ae3
590155158783a917ccbd8520e627897200c12a65
321a9c42091a3f28cc99190be88d246f8acc38ae31d1fd9021ee2ffd639ec15e
Analyzer Verdict Alert fortinet Malware
GET /uploads/1/2/4/0/124018328/published/25734117-10155425686983318-5089469130545338446-o.jpg?1552863824 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:11 GMT
Content-Type: image/jpeg
Content-Length: 82857
Connection: keep-alive
Last-Modified: Sun, 17 Mar 2019 23:03:44 GMT
x-rgw-object-type: Normal
ETag: "95b654c7fd06451c884e1a9eda521ae3"
x-amz-request-id: tx000000000000005f3485b-0062c92618-c0351c8-sfo1
X-Storage-Bucket: z321a
X-Storage-Object: 321a9c42091a3f28cc99190be88d246f8acc38ae31d1fd9021ee2ffd639ec15e
X-Host: grn50.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/files/theme/fonts/2cd55546-ec00-4af9-aeca-4a3cd186da53.woff2?1643413329
199.34.228.73200 OK 17 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/2cd55546-ec00-4af9-aeca-4a3cd186da53.woff2?1643413329
IP 199.34.228.73:0
File type Web Open Font Format (Version 2), TrueType, length 16560, version 2.6553\012- data
Hash 27958408325380d903e67d87768563b8
d728e699c79072f1c7b9602c771e241b8c04c8a4
83f8b8932766826c1dd3a228b48f4072586ca09f781d64e2950d9f0e235c00a0
GET /files/theme/fonts/2cd55546-ec00-4af9-aeca-4a3cd186da53.woff2?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:12 GMT
Content-Type: font/woff2
Content-Length: 16561
Connection: keep-alive
Last-Modified: Fri, 30 Aug 2019 08:25:03 GMT
ETag: "27958408325380d903e67d87768563b8"
x-amz-request-id: tx0000000000000004c8072-005eaa6c22-1100fc6-las
X-Storage-Bucket: z83f8
X-Storage-Object: 83f8b8932766826c1dd3a228b48f4072586ca09f781d64e2950d9f0e235c00a0
X-Host: grn50.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/files/theme/fonts/7377dbe6-f11a-4a05-b33c-bc8ce1f60f84.woff2?1643413329
199.34.228.73200 OK 19 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/7377dbe6-f11a-4a05-b33c-bc8ce1f60f84.woff2?1643413329
IP 199.34.228.73:0
File type Web Open Font Format (Version 2), TrueType, length 18964, version 2.6553\012- data
Hash 03eed84923bfc319da88de04298fa495
9b4e82ce10dc1ae528d53e22045df8610e5f3dcc
0f7cae04d4ab4ba9c1bceb2a59ab9dcd925103f186c6c430cf5d9ab032c18128
GET /files/theme/fonts/7377dbe6-f11a-4a05-b33c-bc8ce1f60f84.woff2?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:11 GMT
Content-Type: font/woff2
Content-Length: 18965
Connection: keep-alive
Last-Modified: Fri, 30 Aug 2019 08:25:13 GMT
x-rgw-object-type: Normal
ETag: "03eed84923bfc319da88de04298fa495"
x-amz-request-id: tx000000000000001cc68b2-0062849200-b9fbc64-sfo1
X-Storage-Bucket: z0f7c
X-Storage-Object: 0f7cae04d4ab4ba9c1bceb2a59ab9dcd925103f186c6c430cf5d9ab032c18128
X-Host: blu99.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/10858566-10205580632342086-5385752792553485738-n.jpg?1552863841
199.34.228.73200 OK 99 kB URL HTTP/1.1 www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/10858566-10205580632342086-5385752792553485738-n.jpg?1552863841
IP 199.34.228.73:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 956x539, components 3\012- data
Hash dbdffe3d579eb4701cf8689796f59e61
722cfa822fd11e002b2f8119ca43440831142e96
5fda61389dfb65cab1202471bfe4d2f846d1af26e23736afeb0d5fd0f714e965
Analyzer Verdict Alert fortinet Malware
GET /uploads/1/2/4/0/124018328/published/10858566-10205580632342086-5385752792553485738-n.jpg?1552863841 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:11 GMT
Content-Type: image/jpeg
Content-Length: 99250
Connection: keep-alive
Last-Modified: Sun, 17 Mar 2019 23:04:01 GMT
x-rgw-object-type: Normal
ETag: "dbdffe3d579eb4701cf8689796f59e61"
x-amz-request-id: tx00000000000001884e090-0062a7990c-b9fbc20-sfo1
X-Storage-Bucket: z5fda
X-Storage-Object: 5fda61389dfb65cab1202471bfe4d2f846d1af26e23736afeb0d5fd0f714e965
X-Host: blu33.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 230f5990b6cd380668a5ce97f4b0a191
ee0a18e6627915df9dfb251c6c62e014f40c6073
d4a11e1b88a4f245962474438080e6f5d6f9c081c74bbea8718c59ac73953a55
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 08 Oct 2022 23:49:12 GMT
Last-Modified: Sat, 08 Oct 2022 22:39:46 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xkJM9NyfFbe_FsTuj0jFQnVcSVbMguesnkccVTcUDF8amZFCxM0jSQ==
Age: 4166
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 230f5990b6cd380668a5ce97f4b0a191
ee0a18e6627915df9dfb251c6c62e014f40c6073
d4a11e1b88a4f245962474438080e6f5d6f9c081c74bbea8718c59ac73953a55
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 08 Oct 2022 23:49:12 GMT
Last-Modified: Sat, 08 Oct 2022 22:18:19 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nB__IuL-IFG1lVLSR-8vkDYeBnkwYnFLcNU25QMZHejmg8QpcNLpWQ==
Age: 5454
www.realhopeoswego.org/files/theme/fonts/2e3f5cb9-101f-46cf-a7b3-dfaa58261e03.woff2?1643413329
199.34.228.73200 OK 19 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/2e3f5cb9-101f-46cf-a7b3-dfaa58261e03.woff2?1643413329
IP 199.34.228.73:0
File type Web Open Font Format (Version 2), TrueType, length 18636, version 2.6553\012- data
Hash b3aa7e2126c418e820b06924717c2ce9
35e12e34fb21fd08390027dbf0a9975c1444e863
cace42567eefa76edc8b069bb9cdf9fda7486243911fa88188efb2efca387a4a
GET /files/theme/fonts/2e3f5cb9-101f-46cf-a7b3-dfaa58261e03.woff2?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:12 GMT
Content-Type: font/woff2
Content-Length: 18637
Connection: keep-alive
Last-Modified: Fri, 30 Aug 2019 08:25:04 GMT
x-rgw-object-type: Normal
ETag: "b3aa7e2126c418e820b06924717c2ce9"
x-amz-request-id: tx000000000000001b552dc-0062847d8c-b9fbc7f-sfo1
X-Storage-Bucket: zcace
X-Storage-Object: cace42567eefa76edc8b069bb9cdf9fda7486243911fa88188efb2efca387a4a
X-Host: blu136.sf2p.intern.weebly.net
Accept-Ranges: bytes
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.235.202.207200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.235.202.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.realhopeoswego.org/
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:12 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.realhopeoswego.org
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2
www.realhopeoswego.org/files/theme/fonts/1e9892c0-6927-4412-9874-1b82801ba47a.woff?1643413329
199.34.228.73200 OK 21 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/1e9892c0-6927-4412-9874-1b82801ba47a.woff?1643413329
IP 199.34.228.73:0
File type Web Open Font Format, TrueType, length 20709, version 1.0\012- data
Hash 9df5efadcd24b83511f3c339178210d8
74f67081083ebd94979f50e681df20bfbdc4cd8d
0d887fc553f2b9a6488c8bbdeb38d0e70e2da58d5bb34161d32f683af096fdb8
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/1e9892c0-6927-4412-9874-1b82801ba47a.woff?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=b3e68c6e-b0b5-40d8-9d65-b42a2f187443.1665272952.1.1665272952.1665272952.c3c0501c-108a-4bd7-947c-b4aa25288e5e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:12 GMT
Content-Type: font/woff
Content-Length: 20710
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:43 GMT
x-rgw-object-type: Normal
ETag: "9df5efadcd24b83511f3c339178210d8"
x-amz-request-id: tx000000000000001b4051b-0062847a75-b9fbc64-sfo1
X-Storage-Bucket: z0d88
X-Storage-Object: 0d887fc553f2b9a6488c8bbdeb38d0e70e2da58d5bb34161d32f683af096fdb8
X-Host: blu136.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/files/theme/fonts/92b66dbd-4201-4ac2-a605-4d4ffc8705cc.woff?1643413329
199.34.228.73200 OK 25 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/92b66dbd-4201-4ac2-a605-4d4ffc8705cc.woff?1643413329
IP 199.34.228.73:0
File type Web Open Font Format, TrueType, length 25168, version 1.0\012- data
Hash 2f4c2c07910a4f4c70e95bbb7859f28e
1e95b73f1e87373b532928dd4a298a904ee440e9
f78c119c0807a2140e669a0e114ae2addcd782c948c91c25639e6eccfa6d08af
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/92b66dbd-4201-4ac2-a605-4d4ffc8705cc.woff?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=b3e68c6e-b0b5-40d8-9d65-b42a2f187443.1665272952.1.1665272952.1665272952.c3c0501c-108a-4bd7-947c-b4aa25288e5e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:12 GMT
Content-Type: font/woff
Content-Length: 25169
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:44 GMT
ETag: "2f4c2c07910a4f4c70e95bbb7859f28e"
x-amz-request-id: tx0000000000000091fe351-005eaa55ca-10e2649-las
X-Storage-Bucket: zf78c
X-Storage-Object: f78c119c0807a2140e669a0e114ae2addcd782c948c91c25639e6eccfa6d08af
X-Host: grn23.sf2p.intern.weebly.net
Accept-Ranges: bytes
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.235.202.207200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.235.202.207:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1793
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:12 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=be7e292f-3b0c-4b00-a4b8-c32b79c51b1a; Expires=Sun, 08 Oct 2023 23:49:12 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.realhopeoswego.org
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.realhopeoswego.org/files/theme/fonts/fa19948e-5e38-4909-b31e-41acd170d6f2.woff?1643413329
199.34.228.73200 OK 25 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/fa19948e-5e38-4909-b31e-41acd170d6f2.woff?1643413329
IP 199.34.228.73:0
File type Web Open Font Format, TrueType, length 24663, version 1.0\012- data
Hash 921592aa07f703ed55036aed49590184
c8eb56bca4fcb3a715b408f15ecd71df0f415e39
304fdd345e780b7dbb6c6e6bc39d24e906e40ac2a618bc78ff81abc769f9b4ae
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/fa19948e-5e38-4909-b31e-41acd170d6f2.woff?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=b3e68c6e-b0b5-40d8-9d65-b42a2f187443.1665272952.1.1665272952.1665272952.c3c0501c-108a-4bd7-947c-b4aa25288e5e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:12 GMT
Content-Type: font/woff
Content-Length: 24664
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:43 GMT
ETag: "921592aa07f703ed55036aed49590184"
x-amz-request-id: tx000000000000009255087-005eaa581b-10e2649-las
X-Storage-Bucket: z304f
X-Storage-Object: 304fdd345e780b7dbb6c6e6bc39d24e906e40ac2a618bc78ff81abc769f9b4ae
X-Host: blu29.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/files/theme/fonts/46cf1067-688d-4aab-b0f7-bd942af6efd8.ttf?1643413329
199.34.228.73200 OK 39 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/46cf1067-688d-4aab-b0f7-bd942af6efd8.ttf?1643413329
IP 199.34.228.73:0
File type TrueType Font data, 16 tables, 1st "GPOS", 26 names, Macintosh, Copyright \251 2004 - 2007 Linotype GmbH, www.linotype.com. All rights reserved. This font softw\012- data
Hash 98f6dacde86ebbaac7cc62b34a6e54cf
d232a9249b6f39e7d35ce6a555e070987357acc9
65032d5699bf3d4deb4313aa4d1bb8375053ac7e93dfb4bf631ce9261da20c2b
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/46cf1067-688d-4aab-b0f7-bd942af6efd8.ttf?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=b3e68c6e-b0b5-40d8-9d65-b42a2f187443.1665272952.1.1665272952.1665272952.c3c0501c-108a-4bd7-947c-b4aa25288e5e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:12 GMT
Content-Type: font/ttf
Content-Length: 39185
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:44 GMT
ETag: "98f6dacde86ebbaac7cc62b34a6e54cf"
x-amz-request-id: tx00000000000000923ac6d-005eaa5768-10e2649-las
X-Storage-Bucket: z6503
X-Storage-Object: 65032d5699bf3d4deb4313aa4d1bb8375053ac7e93dfb4bf631ce9261da20c2b
X-Host: grn42.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/files/theme/fonts/18839597-afa8-4f0b-9abb-4a30262d0da8.ttf?1643413329
199.34.228.73200 OK 52 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/18839597-afa8-4f0b-9abb-4a30262d0da8.ttf?1643413329
IP 199.34.228.73:0
File type TrueType Font data, 16 tables, 1st "GPOS", 30 names, Macintosh, Copyright \251 2004 - 2007 Linotype GmbH, www.linotype.com. All rights reserved. This font softw\012- data
Hash 0e7e6446b2256e0cab1eda85655b253e
db15e8b7df5ee737e4960e0190af1ceaed74d5ac
a4e7a777a8d0e1a06feffaff42f025b9d8d890ca1df6f46d84f5da810109f5c0
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/18839597-afa8-4f0b-9abb-4a30262d0da8.ttf?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=b3e68c6e-b0b5-40d8-9d65-b42a2f187443.1665272952.1.1665272952.1665272952.c3c0501c-108a-4bd7-947c-b4aa25288e5e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:12 GMT
Content-Type: font/ttf
Content-Length: 52433
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:43 GMT
ETag: "0e7e6446b2256e0cab1eda85655b253e"
x-amz-request-id: tx000000000000009218140-005eaa5677-10e2649-las
X-Storage-Bucket: za4e7
X-Storage-Object: a4e7a777a8d0e1a06feffaff42f025b9d8d890ca1df6f46d84f5da810109f5c0
X-Host: grn42.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b9f0247fb5bf6e6458f14094551436e1
0ac483f7caef89a55829041189790c8fc7eb8cd7
1b157a9bf613ddbf329225759780db82a249f8502b1b7cb6742907224b4c775e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 23:49:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.google-analytics.com/ga.js
142.250.74.136200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 142.250.74.136:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Sat, 08 Oct 2022 22:17:11 GMT
expires: Sun, 09 Oct 2022 00:17:11 GMT
cache-control: public, max-age=7200
age: 5522
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
142.250.74.163200 OK 159 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (711)
Size 159 kB (158844 bytes)
Hash b4ed95d4318e3b78b936c9c0f1ffa96e
b53c9376b1459afb07fb4b5c2e8d8dad776d3a02
3c21880cb7be6bec40f9d40c23ad39c9758999cf950cec07b86c83b21fde175f
GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:02:07 GMT
expires: Thu, 05 Oct 2023 21:02:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 269226
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b9f0247fb5bf6e6458f14094551436e1
0ac483f7caef89a55829041189790c8fc7eb8cd7
1b157a9bf613ddbf329225759780db82a249f8502b1b7cb6742907224b4c775e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 23:49:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.realhopeoswego.org/favicon.ico
199.34.228.73200 OK 4.3 kB URL HTTP/1.1 www.realhopeoswego.org/favicon.ico
IP 199.34.228.73:0
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 4d27526198ac873ccec96935198e0fb9
b98d8b73ad6a0f7477c3397561b4aab37bf262aa
40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
GET /favicon.ico HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=b3e68c6e-b0b5-40d8-9d65-b42a2f187443.1665272952.1.1665272952.1665272952.c3c0501c-108a-4bd7-947c-b4aa25288e5e; _ZB_STATIC_1196806_TS=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 08 Oct 2022 23:49:13 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000000c54fe5-0061a705c2-a9f1ce7-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: grn50.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
199.34.228.73200 OK 348 B URL HTTP/1.1 www.realhopeoswego.org/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP 199.34.228.73:0
File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Hash a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
Analyzer Verdict Alert fortinet Malware
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=b3e68c6e-b0b5-40d8-9d65-b42a2f187443.1665272952.1.1665272952.1665272952.c3c0501c-108a-4bd7-947c-b4aa25288e5e; _ZB_STATIC_1196806_TS=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 23:49:13 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn132.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=73
Connection: Keep-Alive
Content-Type: application/json
static.zbcdn.net/__lnfmta/asset/script/qrcode.js
104.26.13.36200 OK 33 kB URL HTTP/2 static.zbcdn.net/__lnfmta/asset/script/qrcode.js
IP 104.26.13.36:0
Hash 63e182df0883a4702e8db066451bdba0
993f0816fd2c8286c0f59df00e2697d6f7ad25cb
b9c375a13d4fa1e14ba88460ddb93ac9d380e77965cceb203145127f6ea82961
GET /__lnfmta/asset/script/qrcode.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 07 Oct 2022 03:55:37 GMT
vary: Accept-Encoding
etag: W/"633fa339-4cad"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 5170
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=osPeBntK0Ep7lfu1WjqI37mrBCg8drrFXqy2oDxY0AHwYNYU9vnK6EnHU23UGLpb32u4XzEwCFA3ALqk0zJ6NYn5689qy8NxwJBhV4fERXAyJ%2BD3jGGk6dd9ji61lr4eYcU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7572c5932d05b500-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash 27f9ad75162bca620ed20490de97138b
33b239f0fd3d2811775039927183f87ed2bceff6
d53ba38632470b719f5a0b0723122a9a717ef7ae30f8bf643323d6cdd8c13c97
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 23:49:13 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "B02E9500E7078C8AB0286845C855B2DE4D14385D"
Expires: Sun, 09 Oct 2022 10:00:00 GMT
Last-Modified: Sat, 08 Oct 2022 22:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2602
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7572c5996c491c02-OSL
static.zbcdn.net/__lnfmta/asset/font/Zotabox3/ztb3.woff
104.26.13.36200 OK 43 kB URL HTTP/2 static.zbcdn.net/__lnfmta/asset/font/Zotabox3/ztb3.woff
IP 104.26.13.36:0
File type Web Open Font Format, TrueType, length 42552, version 1.0\012- data
Hash 8fc96ab697fe06015e3e0ff21e17552f
8753f45c0152e4c72206a6b11e2c193539ec0091
a663045428dde255621d1cb17237dab68c89d45624bb0e6fa96a0b9a65921004
GET /__lnfmta/asset/font/Zotabox3/ztb3.woff HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:13 GMT
content-type: application/font-woff
content-length: 42552
last-modified: Fri, 07 Oct 2022 03:55:37 GMT
etag: "633fa339-a638"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X7eXyc44GNPRIZME0BD1jC5Q5HIgJrhbclBDA6CFHUPkOq%2FIFw8NcJ80wRTT66Isk7AZXkRqhNF9Ore6a2VqEcrmUtF8PZsFDCndAzoGuj4vuZSKgl7LZaISigeFaIC1xtM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7572c5958e7fb500-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=14579ba48d
104.18.22.52200 OK 54 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=14579ba48d
IP 104.18.22.52:0
File type ASCII text, with very long lines (65397)
Hash dc9270247a97f75913a5d8934c24de03
ed9b0fa01b552571f99d529ed355b2ba91cfc48d
847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8
GET /releases/v5.15.4/css/pro.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:14 GMT
content-type: text/css
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 10717034
accept-ranges: bytes
server: cloudflare
cf-ray: 7572c59bcc0db4e8-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d
104.18.22.52200 OK 2.6 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d
IP 104.18.22.52:0
File type ASCII text, with very long lines (27832)
Hash eaaabd3f60063923cd5333eb1d7a20a1
0da69706105e28896a1f6eeaa91d5bec1b82f7f1
f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:14 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 3009028
accept-ranges: bytes
server: cloudflare
cf-ray: 7572c59bdc12b4e8-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d
104.18.22.52200 OK 4.2 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d
IP 104.18.22.52:0
File type ASCII text, with very long lines (26366)
Hash 7fd743485fa194e25e2a207bff6c258a
97c999d752b95ee1ed6271a29aa58109dc17281e
dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc
GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:14 GMT
content-type: text/css
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 10719640
accept-ranges: bytes
server: cloudflare
cf-ray: 7572c59bdc13b4e8-OSL
X-Firefox-Spdy: h2
js-agent.newrelic.com/nr-1184.min.js
151.101.86.137200 OK 11 kB URL HTTP/2 js-agent.newrelic.com/nr-1184.min.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (27995), with no line terminators
Hash 43e0aec0456ae54841a52fe989abb1ec
d9e080d86beada72e9e42092bede868db3d4aee4
9d7ecd792af230cea192e0786491921415d809686321da7414b3df85d875de07
GET /nr-1184.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aOKLVFxehe299BchQZ1iqWYmG3f1UoB2kHc2XCz2yQy3U3WlwJQI4pRl4GtHGYjos3ZMLdEYhQQ=
x-amz-request-id: GB4468MZ82K6V9J6
last-modified: Mon, 28 Sep 2020 16:34:45 GMT
etag: "3d7f312be60d08a2568e311e4762f3af"
x-amz-version-id: null
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 08 Oct 2022 23:49:14 GMT
via: 1.1 varnish
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 18
x-timer: S1665272954.383908,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 10624
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css
104.21.19.164200 OK 47 kB URL HTTP/2 public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css
IP 104.21.19.164:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 662b890ea90981f4c8420b31723c0b9c
413094511a1da89f8017ad3b04e6dd658279e5b8
39b59f2735565936ef9c157340955d4fac2d503eebfc918dfc22412527eff598
GET /latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:13 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=97779
etag: W/"8569d08b93b65be6f73bca7e48e87a62"
last-modified: Fri, 30 Sep 2022 11:30:17 GMT
x-amz-id-2: 0m9N6WYJzGB7AhNt01Kh7sVbYnJyEhjwlt6fG0H2RcqgInbAsQt9AwDfWB+a3zpLUL1D5SaAp1Q=
x-amz-request-id: 7TTMPVAAHR960BQB
x-amz-version-id: aMn0mbR9kAdxc6hMKPX5wyraucYudakw
cache-control: max-age=2073600
cf-cache-status: HIT
age: 5957
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oJt257fUk3fNr7EkzA5jd8ij4uaARKJQ%2B9c6SsNqBnHIJ4Cq6X9Bke%2BiMCPJnRKJs7QE66LlSdiuL4lieL5Rwvv6l%2Ft7MBFn8IWveeLq1PCwkb2TumdMOf2DtAX8lM1DAuksLGI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7572c598f8f00b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bam.nr-data.net/1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1109&ck=1&ref=https://www.powr.io/plugins/social-feed/cached_view&be=565&fe=960&dc=945&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1665272953263,%22n%22:0,%22f%22:0,%22dn%22:0,%22dne%22:0,%22c%22:0,%22s%22:0,%22ce%22:0,%22rq%22:10,%22rp%22:397,%22rpe%22:519,%22dl%22:402,%22di%22:890,%22ds%22:913,%22de%22:946,%22dc%22:960,%22l%22:960,%22le%22:963%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken
162.247.241.14200 OK 73 B URL HTTP/1.1 bam.nr-data.net/1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1109&ck=1&ref=https://www.powr.io/plugins/social-feed/cached_view&be=565&fe=960&dc=945&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1665272953263,%22n%22:0,%22f%22:0,%22dn%22:0,%22dne%22:0,%22c%22:0,%22s%22:0,%22ce%22:0,%22rq%22:10,%22rp%22:397,%22rpe%22:519,%22dl%22:402,%22di%22:890,%22ds%22:913,%22de%22:946,%22dc%22:960,%22l%22:960,%22le%22:963%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash 516a128bb6000ca8154792678f4333fb
41d0257bea96afd36c6f3e40fcfdc9ca247f8e01
9fa62b52f24b87a40410fe842cb9be494abed114a2eac2eb406c8b4a4d372d10
GET /1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1109&ck=1&ref=https://www.powr.io/plugins/social-feed/cached_view&be=565&fe=960&dc=945&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1665272953263,%22n%22:0,%22f%22:0,%22dn%22:0,%22dne%22:0,%22c%22:0,%22s%22:0,%22ce%22:0,%22rq%22:10,%22rp%22:397,%22rpe%22:519,%22dl%22:402,%22di%22:890,%22ds%22:913,%22de%22:946,%22dc%22:960,%22l%22:960,%22le%22:963%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 08 Oct 2022 23:49:14 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 7572c59dbe59b523-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=66dc59f676e37e78; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
fonts.gstatic.com/s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2
216.58.207.195200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7664, version 1.0\012- data
Hash ddb86a7e867f626554dab8539dcc5a3f
063a49f80334a98eed3aa66c60700f83feae7e4f
96bf4d70d0fcf69ce33ed735e720a716dab9a1232995a24882ec242323db467b
GET /s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7664
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 22:49:40 GMT
expires: Tue, 03 Oct 2023 22:49:40 GMT
cache-control: public, max-age=31536000
age: 435574
last-modified: Mon, 09 May 2022 18:44:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
216.58.207.195200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 11016, version 1.0\012- data
Hash 15fa3062f8929bd3b05fdca5259db412
6ff06a34f68ad0324ddec1bbe4d453c959178b36
5d1bc9b443f3f81fa4b4ad4634c1bb9702194c1898e3a9de0ab5e2cdc0e9f479
GET /s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://public.powrcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11016
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 16:44:01 GMT
expires: Fri, 06 Oct 2023 16:44:01 GMT
cache-control: public, max-age=31536000
age: 198313
last-modified: Wed, 24 Jul 2019 01:18:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 274506
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 279b0f98ece196e82e1e5c5e1c2486d4
a254da0a109af2eba85a5de51a1cebeb1314cc6c
387911c49b3c6666b78d9ec02e9a4a700bcf8aae2d6c4782e8d8c136628f5035
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 08 Oct 2022 23:49:14 GMT
Last-Modified: Sat, 08 Oct 2022 22:06:55 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: htuIfM9SCqckEe0xzL4Ez-zg8CoamXAlnSY1YIcOkOr2JM-_AjTvjw==
Age: 6139
public.powrcdn.com/latest/assets/packs/apps/socialFeed-7044d878a258ac722426.js
104.21.19.164200 OK 374 kB URL HTTP/2 public.powrcdn.com/latest/assets/packs/apps/socialFeed-7044d878a258ac722426.js
IP 104.21.19.164:0
File type Unicode text, UTF-8 text, with very long lines (8790)
Size 374 kB (374280 bytes)
Hash a712a2ebc85266d92504f7766d27e369
278eb2c0cd9d3a328c49b97affd299a2ba82efe8
b9ca7608bc0a0dc732327bb45110a1d7d42ef5ab7e99fd9ce0d990d7a7d5af16
GET /latest/assets/packs/apps/socialFeed-7044d878a258ac722426.js HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2755444
etag: W/"d62853389e94452300cf7e34b06c8575"
last-modified: Fri, 30 Sep 2022 11:30:08 GMT
x-amz-id-2: 6pojYonMKcC8w1Rt4eNjAJRcfb/ygl2YLNc/mqXvVIl4EwbgxXqSu6cDeZsH2lumafN0ZdNtXk0=
x-amz-request-id: 7TTXB1P64PR8D77B
x-amz-version-id: PfGCeHPxoyiyLtZErQ0K2cdII_Hm7uJH
cache-control: max-age=2073600
cf-cache-status: HIT
age: 3557
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QroZ2O5n%2BAvdAc2%2BWsUaxfiTq3fICRyTqUOXy2xEWmkvSHR7b94cXcjkIGwcNnWgR5X%2BgQwHdumuOeO85xIMQfPAvhTRGCqcCpy8xH%2F1okSzzq5jNH0Neji44KYsfEb%2FxKB1zx8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7572c598f8f70b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400
23.22.144.165204 No Content 0 B URL HTTP/1.1 powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400
IP 23.22.144.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400 HTTP/1.1
Host: powr-outlet-v2.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-csrf-token
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: Cowboy
Content-Length: 0
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.powr.io
Vary: Origin, Access-Control-Request-Headers
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Headers: x-csrf-token
Date: Sat, 08 Oct 2022 23:49:15 GMT
Via: 1.1 vegur
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 7b330573c04b8a572243387c70dfdce8
ad982efc31e460f235ab59dc1e551636c2c978eb
301c699384604f27ba20247bc1346d8515991041d8ffdee1367a6e5a19603de1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 08 Oct 2022 23:49:15 GMT
Last-Modified: Sat, 08 Oct 2022 23:14:59 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JXxlPuMiihnMLwJvkIzyb_Rvk-9DP0kLA7UMwhZcKXcBwt9yRn3xtQ==
Age: 2056
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 7b330573c04b8a572243387c70dfdce8
ad982efc31e460f235ab59dc1e551636c2c978eb
301c699384604f27ba20247bc1346d8515991041d8ffdee1367a6e5a19603de1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 08 Oct 2022 23:49:15 GMT
Last-Modified: Sat, 08 Oct 2022 22:08:08 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BAP8XR_xUrVqEEUIXe0nAO_kPBegATacDiVjOzowKTlugelkqXZ7Rg==
Age: 6067
powr-counter.herokuapp.com/18118676
54.208.186.182200 OK 0 B URL HTTP/1.1 powr-counter.herokuapp.com/18118676
IP 54.208.186.182:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /18118676 HTTP/1.1
Host: powr-counter.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Date: Sat, 08 Oct 2022 23:49:15 GMT
Connection: keep-alive
Content-Type: text/plain
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Transfer-Encoding: chunked
Via: 1.1 vegur
powr-counter.herokuapp.com/18118676
54.208.186.182200 OK 1 B URL HTTP/1.1 powr-counter.herokuapp.com/18118676
IP 54.208.186.182:0
File type very short file (no magic)
Hash 7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
POST /18118676 HTTP/1.1
Host: powr-counter.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 606
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Date: Sat, 08 Oct 2022 23:49:15 GMT
Connection: keep-alive
Content-Type: text/plain; charset=utf-8
Etag: W/"36a9e7f1c95b82ffb99743e0c5c4ce95"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: 4789708a-9216-4deb-9cd8-32f0b737a867
X-Runtime: 0.034917
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Vary: Origin
Transfer-Encoding: chunked
Via: 1.1 vegur
powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400
23.22.144.165200 OK 118 kB URL HTTP/1.1 powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400
IP 23.22.144.165:0
File type Unicode text, UTF-8 text, with very long lines (65399), with no line terminators
Size 118 kB (118343 bytes)
Hash 7db024484c825df609d3c0bb0f93cc2b
6bcac388790dfc3c00a784affa6af4b2d7596e59
8e9c2f57183b1080bb4c57a0152d8c4231a5d7a756ac8b5eac5ec169d800c5e3
GET /social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400 HTTP/1.1
Host: powr-outlet-v2.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: 3iCHAC0KFvDYJjGmKBWDCEhV1zVFSslplgqwY6WRyTQM17jdXcrI0YkWwWeheY0sH54nYNawSUYxYXGLBODsSA
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.powr.io
Vary: Origin
Content-Type: application/json; charset=utf-8
Cache-Control: public, max-age=3600
Date: Sat, 08 Oct 2022 23:49:16 GMT
Content-Length: 118343
Via: 1.1 vegur
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3ba6d799884a2b1d655b0378f0393eb7
f7c53a1e7d85fb1853bd76132c6dc41603b5763f
d8232f7c46658bce8a78ac0447bcb2e6d7f33cacdb364b7d3f0fac1867ca4788
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6132
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 23:49:16 GMT
Last-Modified: Sat, 08 Oct 2022 22:07:04 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
external-iad3-2.xx.fbcdn.net/emg1/v/t13/5281101021983129878?url=https%3a%2f%2fgive.fmcusa.org%2fimage%2ffmc-images%2fimage6472022.png&fb_obo=1&utld=fbcdn.net&stp=dst-emg0_q75&ccb=13-1&oh=06_AaqSbMePAiJqRYau5_RXHAU9OhEYnHW4UpYDvNybJKzY0w&oe=63436AF2&_nc_sid=5f3a21
157.240.229.1200 OK 7.8 kB URL HTTP/2 external-iad3-2.xx.fbcdn.net/emg1/v/t13/5281101021983129878?url=https%3a%2f%2fgive.fmcusa.org%2fimage%2ffmc-images%2fimage6472022.png&fb_obo=1&utld=fbcdn.net&stp=dst-emg0_q75&ccb=13-1&oh=06_AaqSbMePAiJqRYau5_RXHAU9OhEYnHW4UpYDvNybJKzY0w&oe=63436AF2&_nc_sid=5f3a21
IP 157.240.229.1:0
File type PNG image data, 452 x 88, 8-bit/color RGBA, non-interlaced\012- data
Hash 2dbd9c01536e2e5c5bc33fede2d8a95e
b15156694505b0fd96483c2b7cf42dba7b1f96c7
6fc6025400bdcaf596504c66fcc54a95151e335a8578575cf0c9675867f02413
GET /emg1/v/t13/5281101021983129878?url=https%3a%2f%2fgive.fmcusa.org%2fimage%2ffmc-images%2fimage6472022.png&fb_obo=1&utld=fbcdn.net&stp=dst-emg0_q75&ccb=13-1&oh=06_AaqSbMePAiJqRYau5_RXHAU9OhEYnHW4UpYDvNybJKzY0w&oe=63436AF2&_nc_sid=5f3a21 HTTP/1.1
Host: external-iad3-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 09:39:06 GMT
content-type: image/png
content-digest: adler32=3847436728
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-length: 7796
x-fb-trip-id: 1814657579
date: Sat, 08 Oct 2022 23:49:16 GMT
cache-control: max-age=1209600, no-transform
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3ba6d799884a2b1d655b0378f0393eb7
f7c53a1e7d85fb1853bd76132c6dc41603b5763f
d8232f7c46658bce8a78ac0447bcb2e6d7f33cacdb364b7d3f0fac1867ca4788
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6132
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 23:49:16 GMT
Last-Modified: Sat, 08 Oct 2022 22:07:04 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
scontent-iad3-2.xx.fbcdn.net/v/t15.5256-10/310169938_3250582871845954_769396721721528683_n.jpg?_nc_cat=110&ccb=1-7&_nc_sid=ad6a45&_nc_ohc=-WHL-47-HHQAX9J5yg7&_nc_ht=scontent-iad3-2.xx&edm=AKIiGfEEAAAA&oh=00_AT8NJDE2-TdFi7ElPCuIMWV2IvE5mxrcW4num_i5aueKeA&oe=6346317F
157.240.229.1200 OK 78 kB URL HTTP/2 scontent-iad3-2.xx.fbcdn.net/v/t15.5256-10/310169938_3250582871845954_769396721721528683_n.jpg?_nc_cat=110&ccb=1-7&_nc_sid=ad6a45&_nc_ohc=-WHL-47-HHQAX9J5yg7&_nc_ht=scontent-iad3-2.xx&edm=AKIiGfEEAAAA&oh=00_AT8NJDE2-TdFi7ElPCuIMWV2IvE5mxrcW4num_i5aueKeA&oe=6346317F
IP 157.240.229.1:0
File type JPEG image data, baseline, precision 8, 1280x720, components 3\012- data
Hash e590bda321575a09eda64e12379c8313
b331d7d3c8d03ec3967a43d4de4eb7e3d1dc470c
818cbce7cc74a551e0c162ff8646108d602cdcdc31275651917d26d391ebd361
GET /v/t15.5256-10/310169938_3250582871845954_769396721721528683_n.jpg?_nc_cat=110&ccb=1-7&_nc_sid=ad6a45&_nc_ohc=-WHL-47-HHQAX9J5yg7&_nc_ht=scontent-iad3-2.xx&edm=AKIiGfEEAAAA&oh=00_AT8NJDE2-TdFi7ElPCuIMWV2IvE5mxrcW4num_i5aueKeA&oe=6346317F HTTP/1.1
Host: scontent-iad3-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sun, 02 Oct 2022 15:26:47 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 2068565838
x-needle-checksum: 3012338825
content-digest: adler32=3012338825
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 78019
x-fb-trip-id: 1814657579
date: Sat, 08 Oct 2022 23:49:16 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F146807d4-3f30-4caa-aa1f-2b7890bec7f5.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F146807d4-3f30-4caa-aa1f-2b7890bec7f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a3b74c93b6981236040ebf4134e04f55
c31c8db9e51872d0a28a3798ebd0f6f2abe993cb
8a48bd2b67104ad81b00a7882dbecd7d8b664056dd180483090d10a4c7c66960
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F146807d4-3f30-4caa-aa1f-2b7890bec7f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7250
x-amzn-requestid: 110ff68c-fd6f-4622-9296-2777b347eebf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZtIzZHgRoAMFXHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6341ee7b-78af153005b9885a56809272;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 21:41:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LFZIZbYAE7hJm5yhAL-H9r6bq7zcfKYLkUtYegioG0OSRQl_-Dddsw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 22:28:39 GMT
age: 4839
etag: "c31c8db9e51872d0a28a3798ebd0f6f2abe993cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1643323087
151.101.85.46200 OK 0 B URL HTTP/2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1643323087
IP 151.101.85.46:0
GET /js/site/main-customer-accounts-site.js?buildTime=1643323087 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 23:22:45 GMT
etag: "63323445-8250f"
expires: Tue, 11 Oct 2022 10:18:09 GMT
cache-control: max-age=1209600
x-host: grn27.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 08 Oct 2022 23:49:10 GMT
age: 999061
x-served-by: cache-sjc10040-SJC, cache-bma1645-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1665272951.969643,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 158930
X-Firefox-Spdy: h2
static.zbcdn.net/5/6/56f7a92aa06f86a27d18b57576df1d19/data.js?1665118874616
104.26.13.36200 OK 0 B URL HTTP/2 static.zbcdn.net/5/6/56f7a92aa06f86a27d18b57576df1d19/data.js?1665118874616
IP 104.26.13.36:0
GET /5/6/56f7a92aa06f86a27d18b57576df1d19/data.js?1665118874616 HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 07 Oct 2022 06:02:14 GMT
vary: Accept-Encoding
etag: W/"633fc0e6-46395"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=65jhcgCQpob5BEcKfrsvwwpbcu6upcD4ir8NEbHp74TEP0PTB3FJvqGimG5LSONDdt70dCfjboYq%2BVv%2FHJjklomf7N1wiFYzAMtninAxgqq9coQ5bBakYxwfWLqrYJWFLRA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7572c58db8ecb500-OSL
content-encoding: br
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css
104.21.19.164200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css
IP 104.21.19.164:0
GET /latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:13 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=460092
etag: W/"2cbef8bacb84cdf787933b228259ff66"
last-modified: Fri, 30 Sep 2022 11:30:17 GMT
x-amz-id-2: 5h/wU0YisiRrm0I2bMh9nJxRm8iJCL6CaUVD5CeQGaOy/HLddK02rSWPSSdf4RWP8vcAsQ8eCms=
x-amz-request-id: 7TTY9QWE822NGX3Q
x-amz-version-id: JX3lwhjNEiINNcmvkfabXotsK.jO_RKw
cache-control: max-age=2073600
cf-cache-status: HIT
age: 5899
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vgq6kbZMZvuPyyhqzq2d71tdvQ0vHu2PjS0efV4FyYhPzfmjUhPsKa6seQIIigVRKeuE1mRhKuN0UQXRhPzj1J6Kyt4gYEbKtX0H6anX8TLdVaxDp7bTRo6BaBMNJhWXRv8z%2Bw8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7572c598e8e00b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.zbcdn.net/__lnfmta/asset/script/jquery.js
104.26.13.36200 OK 0 B URL HTTP/2 static.zbcdn.net/__lnfmta/asset/script/jquery.js
IP 104.26.13.36:0
GET /__lnfmta/asset/script/jquery.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 07 Oct 2022 03:55:37 GMT
vary: Accept-Encoding
etag: W/"633fa339-15b48"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 2977
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2vRk2itgfxr4UgfvtBqYJjiZWQWXIyXBCXjTaF2Yi2S2dksUWwt0zLbUjqh0oYGR%2BvoTGe8rkMMrRPeyWnoaTbarRskvbUqJnqTtU1GRUpAbu0wYili4OGQDM2bHZkwKQ6A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7572c5932cfdb500-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zotabox.com/5/6/56f7a92aa06f86a27d18b57576df1d19/widgets.js
172.67.20.217200 OK 0 B URL HTTP/2 static.zotabox.com/5/6/56f7a92aa06f86a27d18b57576df1d19/widgets.js
IP 172.67.20.217:0
GET /5/6/56f7a92aa06f86a27d18b57576df1d19/widgets.js HTTP/1.1
Host: static.zotabox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:11 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 07 Oct 2022 05:01:14 GMT
vary: Accept-Encoding
etag: W/"633fb29a-13902"
expires: Sun, 09 Oct 2022 00:49:11 GMT
cache-control: max-age=3600, public, max-age=3600
access-control-allow-origin: *
access-control-allow-methods: GET, POST
content-encoding: gzip
z-server: mariadb
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7572c5876e160b65-OSL
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css
104.21.19.164200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css
IP 104.21.19.164:0
GET /latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:13 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=286497
etag: W/"adf889ed0314b585cb0181bf734134ba"
last-modified: Fri, 30 Sep 2022 11:30:10 GMT
x-amz-id-2: ZK+b9ttxHwRJFgBaXL3+o/cHh6xjzE5qw2bP3SL9cy1yuqIoJuY7gC8yjVdHgq+foIQvQhc23bU=
x-amz-request-id: 7TTQQ3AWTM30A24P
x-amz-version-id: OUjvel_Mbz.oEr9f0.LJKV05f7CtdHOD
cache-control: max-age=2073600
cf-cache-status: HIT
age: 3557
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PDpHKuMXkvm7j08x9nyO47786I4jAyq%2BZZP8jSn2D5EAV6Golb2xgV7E84S%2BdjfLyUnTqfZVRzsb3f2J0rKJP6xpl%2Bf8WUcamZe%2BEZqj8kPJgZHBLzglkHoJgyqcKUgCjr%2FZ%2BSY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7572c598f8ef0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.powr.io/plugins/social-feed/view.json?powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&external_type=weebly-integrated
104.22.51.245200 OK 0 B URL HTTP/2 www.powr.io/plugins/social-feed/view.json?powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&external_type=weebly-integrated
IP 104.22.51.245:0
GET /plugins/social-feed/view.json?powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&external_type=weebly-integrated HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: 3iCHAC0KFvDYJjGmKBWDCEhV1zVFSslplgqwY6WRyTQM17jdXcrI0YkWwWeheY0sH54nYNawSUYxYXGLBODsSA
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=https%3A%2F%2Fwww.realhopeoswego.org%2F
Cookie: src=https%3A%2F%2Fwww.realhopeoswego.org%2F; unique_id=60423a8c_1665272953; POWR_PRODUCTION=57%2F%2Bz9FAIR%2BOBxxb%2FCyVGG%2B2aq8UFwUH2JJee%2F0pXmuiUXcJIWAeUmTIPk%2FjBPwrpA2knP6QAm21LejGxFAvqRFxkZnmyblk2egq%2F15YoxBnwffclmyn19Qg6HIRTocIHNTDiuTTW1Ki6FaT%2BfEbBlhe5oNf6lgfBGJOx1TA0XeOjdAu8AmlfPCDFnwssxIMm9%2FP1v1ajXmA6EHB0mxvD6J68RsAFSCzsd9jSQlTqEJ1EzaMus%2FQUZ%2B1%2BWP9YdAN%2FTlWq5ebnem40UeyMiauHLJMJIrJm%2Bgir73LLjHpSKgiD9DxV6ZGd9BRZc3vGpTWhCZ%2B5h3e6%2BrIvQCm3m99y8Otk4FJ5NjU5MdKrCa4wufCsAJs9a40yyVjQR0hZt6%2FXOtinn4JVUrzv4ffuAqna1qvoNghuzPy39MoLS%2Bxbmeq7E826KR2kPH9hk%2FUlv%2F4QjafsDxkCnNCVwqB1q4djOCTe2HxG%2FSvEttteWfaiswWXKqhUazun5RXEB71JTeESgLTvUopw5Wd3q8AvJ7G6A%2FHxMUxN5kSbESMagv34uLM3rQ%2FgM5L7dYnr6mx76b5cEEfvGTFA8AVEZFtrwVoUNJcKO5BiRaZ2323p4HdYatNLeKN6x7i8XuMZL36v9YQzQmLl082%2F3mxX2mq71M2Q%2Fj8G8pwANoe8ErLh3sRT6ke1V%2B%2FhbEskZcdTWfUKkerZj0VGym4ZGgSlScqs45knC8La9HMFLmJPD27pEy6cA3kEnMxGtT3vKuOM76uFvUg1uswNK4AeDOsvbX9EiGl8TgsmvXi3irtAFhYsUdvLupDTkCGO7aDUAGBRP4vBxGM6Tu9ejFGLdBKYU6Q7vf5kSgnl5GNb3Hm7gDKHQ2Ec%2BVrImIUAvFuQDp4u0t1Y55gYV5cK8%2BtQ66ItEuqpotuiQHfWTvyyoQ8IBp1tcH8rXE2tTobPNJZfQo7BuaM%2FMvxz4jPpcIflZB7AFUd4ZeOGljgS2aw4BRaROFhau2Gig%3D%3D--mgEQztMutfluujn%2F--7HTtTCKMry2FNbOi%2Bk8gOw%3D%3D; __cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JhRfx1wVhqKMM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:14 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-credentials: true
vary: Accept-Encoding
etag: W/"a8a9951a92a1b616e06cd99dd0195eb7"
cache-control: max-age=0, private, must-revalidate
set-cookie: editables=; path=/; secure; SameSite=None
POWR_PRODUCTION=p36Z%2FYkP3oUZZo7HjQUTXYE%2Bv3v4geb775fZZ6ijcDnQl6NdGDzB%2BTDWB5Ar7%2BqzrwkeP8lk%2BeSnkaBkpFwf5uLBvXHIKq9VpC2lUMaxjXr0A8%2FdNDSdC4bjEUE8594j1332AodrI9lBzzZHsUSQYG82lKJf5k%2BSteJBqziDxKmHjaxkzKaK5R1DNtvr47nSfEQtjdGkuRghEGTzL2S%2BWivgf%2FmVF6EHzVfnCVaR8N%2FEF7dTDVdKca5oRhgrrIMBIPWPrDiD26p8uh9ZOXRtNjAtRYoVMn4I48A8AGQqMs2BIywouyMpQ6UFyI6ZtL%2Fc3KGf%2Bo4n4qOn9ck0vrgYDbuOIpy5iNNTE2dWCq6N9Z5z%2F5ncgdO0dXTxxMS%2FBR8nTzAzPtKfdMBkY2xMVbnQsLyWTjTDUCMcgUqogvO5Cc%2BhvLtjSuHN2EZO6%2B6msKdTM%2FdkYwuZuQdBRUEq2doOpkPjts%2BUGo3Dwh32rTcXu6Cn4NklVLDvKCk3HZMdH48T8JAacckm6xvKzVA1mlX5pknDm4%2BxvRnkJ0EvhSkkJmUNh9HZa9mEwE0fLJjG06cwPrFZXDrxepft9iVfY4KlTbPaMAueN97RPgYmNyfYP6flCpReii4pklkZaSKpBiaY0aUAvoxMHlckk5uHggML%2F8utqdymAqokIg7xQSwrMS0tX8UpGs0EPFbI%2FAUH%2By2sMaqyAz%2FZ6cP6dx4mduBoUgGsO1E2soYbV%2BpPFpD%2ByDi8s60dS3TfuRlGEORfiCfYjoT0xqvgB8VLrKG08wNqMxGZiQO%2BDojOgdf8U2I1pyHgj4tacuwreAdqMEiT4ym2oqgLLu0pEFi8IwP01UtGQvtdLeQ2PncaOq%2FZDvhbIO65ExXkaHls%2BCKvjGB90TTqVCfYmUe%2Bta0zd1E3F0al30jycd2dXOckl9jeAQsVQK687wQzxVDfnyX04pijwv0q75OhtkBQ%2BSs2wem4axqRUnaRICx0QJVhHJK13pa7Mw%3D%3D--9ZXXiNptq5y2k4Re--WSdLO9fPy7wKimGOTThTEw%3D%3D; path=/; secure; HttpOnly; SameSite=None
x-request-id: 5dcbd83c-57a3-43c9-a22c-dfb0ca2a3917
x-runtime: 0.193757
x-origin-instance: heroku
via: 1.1 vegur
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7572c59bfcb0b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zbcdn.net/__lnfmta/asset/script/jquery.scrollbar.js
104.26.13.36200 OK 0 B URL HTTP/2 static.zbcdn.net/__lnfmta/asset/script/jquery.scrollbar.js
IP 104.26.13.36:0
GET /__lnfmta/asset/script/jquery.scrollbar.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 07 Oct 2022 03:55:37 GMT
vary: Accept-Encoding
etag: W/"633fa339-2d3f"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 5864
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hBvkE21%2FHa8wZUqbPT3ZrfvIV%2FuqQ9JGQ6QIgcLOLJ47kXCrwLRp37Iz0QHvzhzMoE%2Fqgy6hiXrLrjscsamrrXIQyG%2FPBSHJhGoPHYvZEGs1pf1EKLpbV9P7cUsSHK359TE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7572c5932d03b500-OSL
content-encoding: br
X-Firefox-Spdy: h2
kit.fontawesome.com/14579ba48d.js
104.18.22.52200 OK 0 B URL HTTP/2 kit.fontawesome.com/14579ba48d.js
IP 104.18.22.52:0
GET /14579ba48d.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:13 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fuu_NKRKzsFcWtfaTAAi
cf-cache-status: HIT
age: 6
server: cloudflare
cf-ray: 7572c5991f16b509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.0.0/css/bootstrap.min.css
104.18.10.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.0.0/css/bootstrap.min.css
IP 104.18.10.207:0
GET /bootstrap/3.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:13 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:03:55 GMT
cdn-cachedat: 11/04/2021 22:40:16
cdn-edgestorageid: 755
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.0
cdn-requestid: a0669b23f8a3a4d2d54e12d18ef5c3e0
cdn-cache: HIT
cf-cache-status: HIT
age: 17490864
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7572c5992c84b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.zbcdn.net/__lnfmta/social_tab/temp2.js
104.26.13.36200 OK 0 B URL HTTP/2 static.zbcdn.net/__lnfmta/social_tab/temp2.js
IP 104.26.13.36:0
GET /__lnfmta/social_tab/temp2.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:11 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 06 Oct 2022 09:10:24 GMT
vary: Accept-Encoding
etag: W/"633e9b80-3a5e9"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 1492
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vzUS48s%2BXFuM15U05Bt7dc9MhrzvFJBc4i4ESmXTinVLoKzKlQiGHIVtExsCcO%2FreBQQ5fDGVsSwnohY0qnnx3qX8PFqJcduNSbW7kWcWbKDg1yiJeMbRqJaLbRPICqjnM0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7572c58db8edb500-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=https%3A%2F%2Fwww.realhopeoswego.org%2F
104.22.51.245200 OK 0 B URL HTTP/2 www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=https%3A%2F%2Fwww.realhopeoswego.org%2F
IP 104.22.51.245:0
GET /plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=https%3A%2F%2Fwww.realhopeoswego.org%2F HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:13 GMT
content-type: text/html; charset=utf-8
cache-control: max-age=300, public
link: <https://public.powrcdn.com/latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps-view-4e0ace276cd17077d87a.js>; rel=preload; as=script; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/socialFeed-7044d878a258ac722426.js>; rel=preload; as=script; nopush
vary: Accept-Encoding
x-request-id: 5322e87e-0b05-4964-84d0-e8f6a9467ebe
x-runtime: 0.016201
x-origin-instance: heroku
via: 1.1 vegur
cf-cache-status: DYNAMIC
set-cookie: src=https%3A%2F%2Fwww.realhopeoswego.org%2F; path=/; expires=Tue, 08 Nov 2022 23:49:13 GMT; secure; SameSite=None
unique_id=60423a8c_1665272953; path=/; secure; SameSite=None
POWR_PRODUCTION=57%2F%2Bz9FAIR%2BOBxxb%2FCyVGG%2B2aq8UFwUH2JJee%2F0pXmuiUXcJIWAeUmTIPk%2FjBPwrpA2knP6QAm21LejGxFAvqRFxkZnmyblk2egq%2F15YoxBnwffclmyn19Qg6HIRTocIHNTDiuTTW1Ki6FaT%2BfEbBlhe5oNf6lgfBGJOx1TA0XeOjdAu8AmlfPCDFnwssxIMm9%2FP1v1ajXmA6EHB0mxvD6J68RsAFSCzsd9jSQlTqEJ1EzaMus%2FQUZ%2B1%2BWP9YdAN%2FTlWq5ebnem40UeyMiauHLJMJIrJm%2Bgir73LLjHpSKgiD9DxV6ZGd9BRZc3vGpTWhCZ%2B5h3e6%2BrIvQCm3m99y8Otk4FJ5NjU5MdKrCa4wufCsAJs9a40yyVjQR0hZt6%2FXOtinn4JVUrzv4ffuAqna1qvoNghuzPy39MoLS%2Bxbmeq7E826KR2kPH9hk%2FUlv%2F4QjafsDxkCnNCVwqB1q4djOCTe2HxG%2FSvEttteWfaiswWXKqhUazun5RXEB71JTeESgLTvUopw5Wd3q8AvJ7G6A%2FHxMUxN5kSbESMagv34uLM3rQ%2FgM5L7dYnr6mx76b5cEEfvGTFA8AVEZFtrwVoUNJcKO5BiRaZ2323p4HdYatNLeKN6x7i8XuMZL36v9YQzQmLl082%2F3mxX2mq71M2Q%2Fj8G8pwANoe8ErLh3sRT6ke1V%2B%2FhbEskZcdTWfUKkerZj0VGym4ZGgSlScqs45knC8La9HMFLmJPD27pEy6cA3kEnMxGtT3vKuOM76uFvUg1uswNK4AeDOsvbX9EiGl8TgsmvXi3irtAFhYsUdvLupDTkCGO7aDUAGBRP4vBxGM6Tu9ejFGLdBKYU6Q7vf5kSgnl5GNb3Hm7gDKHQ2Ec%2BVrImIUAvFuQDp4u0t1Y55gYV5cK8%2BtQ66ItEuqpotuiQHfWTvyyoQ8IBp1tcH8rXE2tTobPNJZfQo7BuaM%2FMvxz4jPpcIflZB7AFUd4ZeOGljgS2aw4BRaROFhau2Gig%3D%3D--mgEQztMutfluujn%2F--7HTtTCKMry2FNbOi%2Bk8gOw%3D%3D; path=/; secure; HttpOnly; SameSite=None
__cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JhRfx1wVhqKMM; SameSite=None; Secure; path=/; expires=Sat, 15-Oct-22 23:49:13 GMT; HttpOnly
server: cloudflare
cf-ray: 7572c596287ab4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/apps-view-4e0ace276cd17077d87a.js
104.21.19.164200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/apps-view-4e0ace276cd17077d87a.js
IP 104.21.19.164:0
GET /latest/assets/packs/apps-view-4e0ace276cd17077d87a.js HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1444084
etag: W/"e45cb89a1a2a913ac8bdc5d899da2dd8"
last-modified: Fri, 30 Sep 2022 18:51:00 GMT
x-amz-id-2: SNrxpWKNTw/6/g+QwZsplsRa7faiqXd4i6ybWsTWTWjU3e3PSf+NfKA6g8XB2IM/AgyvtkhSSeM=
x-amz-request-id: 6SXW76T6QMR5T8A1
x-amz-version-id: 7JwCAVUBiloQPGCXsWGB3bR3yI8kBd9b
cache-control: max-age=2073600
cf-cache-status: HIT
age: 2242
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gMsZ1SblDkHcsEGyM2Nq8bDxIWJs%2FNJM03iWbdrBxWfqfeHJBHXzKDcooNNlQLyteors0tYqkubERCsZQ%2FLBJCe0Y%2Ftf75NFO4%2BKFI1EqP1KtrgiNyLi45WIjVwtD66D4dYP0qY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7572c598f8fa0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.powr.io/powr.js
104.22.51.245200 OK 0 B IP 104.22.51.245:0
GET /powr.js HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 23:49:11 GMT
content-type: application/javascript
cache-control: max-age=604800, public
cf-bgj: minify
expires: Sat, 07 Oct 2023 17:16:01 GMT
last-modified: Fri, 07 Oct 2022 17:15:53 GMT
vary: Accept-Encoding
via: 1.1 vegur
x-origin-instance: heroku
cf-cache-status: HIT
age: 109808
server: cloudflare
cf-ray: 7572c58d8b24b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2