assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/launch-a0e5cece2585.min.js
200 OK 154 kB URL GET HTTP/2 assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/launch-a0e5cece2585.min.js
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (32742)
Size 154 kB (154411 bytes)
Hash 9f22d37eff0340108e8e839a349263cc
0cabbc873195e92a33ed4694d49048ef05f52eee
47212462490d0b8fbf15a409fd8a79bd1a1f37c93790055517c1dc629bc9082f
GET /a281455e4dfe/86f9b29df5eb/launch-a0e5cece2585.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "9f22d37eff0340108e8e839a349263cc:1700230291.849047"
last-modified: Fri, 17 Nov 2023 14:11:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 154411
cache-control: max-age=3600
expires: Sun, 03 Dec 2023 01:06:33 GMT
date: Sun, 03 Dec 2023 00:06:33 GMT
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/web-animations/2.3.1/web-animations.min.js
14 kB URL cdnjs.cloudflare.com/ajax/libs/web-animations/2.3.1/web-animations.min.js
IP
File type ASCII text, with very long lines (47169)
Hash f689a668b5c6078984b93b9f59793c90
83042534752a6d9b0a4a086517e19230416feba4
cbb3c795fd44c83a1200149b18e0df050fe228df4b5b03891373029117d8bd6b
GET /ajax/libs/web-animations/2.3.1/web-animations.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 00:06:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 13763
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb0402f-bad6"
last-modified: Mon, 04 May 2020 16:17:51 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 588848
expires: Fri, 22 Nov 2024 00:06:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jaN1Yae%2FDaRxyh9TKYENTEtZLb491EkzwtCjQoU6CuMVH7ENoaFZEVE1Uy%2BS%2Fl1nboAaOwTF7RS%2FYTWulA0E95UlYCLOOm0IY3CUgVhNrrhCa6ZUXFJbK2lYSXsgIAyP4ZPaii%2BF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82f790793f797129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@4.5.3/dist/css/bootstrap.min.css
26 kB URL cdn.jsdelivr.net/npm/bootstrap@4.5.3/dist/css/bootstrap.min.css
IP
File type ASCII text, with very long lines (65326)
Hash 023b3876bb73aa541367fc40a193d2b7
8ed2d6350d23f857d92805737d0f97c675de666b
f77c0d1739b618edc4a01ca3f6b2990b01a3009030af49ee8cf68e83052df194
GET /npm/bootstrap@4.5.3/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.5.3
x-jsd-version-type: version
etag: W/"27288-jtLWNQ0j+FfZKAVzfQ+XxnXeZms"
content-encoding: br
accept-ranges: bytes
date: Sun, 03 Dec 2023 00:06:33 GMT
age: 21875704
x-served-by: cache-fra-eddf8230071-FRA, cache-bma1660-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26099
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/polyfills.efd19b87dc3c9f76.js
51 kB URL monroecounty.savings.workingadvantage.com/polyfills.efd19b87dc3c9f76.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2231fe87edd0abc28d7517072aeac06a
df8009ed57a5d1de1b9a03d0657f68bf7be51c2b
4767b15ec5f17f5573f2e58430544bff2be4c30cb3c166ed4428971feaae85c5
GET /polyfills.efd19b87dc3c9f76.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton&DLK=7eoe9dxtfppz1v1hz1mk3pxxx
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:33 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-234ab"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f79078f8c256af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
maps.googleapis.com/maps/api/js?client=gme-entertainmentbenefits&libraries=places
66 kB URL maps.googleapis.com/maps/api/js?client=gme-entertainmentbenefits&libraries=places
IP
File type ASCII text, with very long lines (2928)
Hash c49f578c3982fdc83a2b4a67483ed7b9
2c9fe32ba65f6eaff3a33f47dc38f8b74d5081d9
1effc55f539ddadabf5bb9f8c378f5b8938d848805c1c77ff4186f5207480922
GET /maps/api/js?client=gme-entertainmentbenefits&libraries=places HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=1800
vary: Accept-Language, Origin, X-Origin, Referer
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
date: Sun, 03 Dec 2023 00:06:33 GMT
server: scaffolding on HTTPServer2
content-length: 65931
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
12 kB URL assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (32768)
Hash d860c16ac938f7d839f0ec158d02d0f0
8710f81ed151233677f7e32b229cb35293dd6840
9219086b4f2c3bf77854b2e06ccd97ad32b9b7a140e65ff8b974a3bae6c7854c
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d860c16ac938f7d839f0ec158d02d0f0:1644856531.418573"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 12163
expires: Sun, 03 Dec 2023 01:06:33 GMT
date: Sun, 03 Dec 2023 00:06:33 GMT
cache-control: no-cache
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
1.6 kB URL assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (3155)
Hash 2d1382c349d480b6b41574ac0c1af066
53ddf017aa6b66b4d54ea0818dc5c04789b9e5ae
462a66acbf50e933685e7587e9f1441df8225b2bb4d6b7bc5e757eccf4ff6575
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "2d1382c349d480b6b41574ac0c1af066:1644856531.739514"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1597
expires: Sun, 03 Dec 2023 01:06:33 GMT
date: Sun, 03 Dec 2023 00:06:33 GMT
cache-control: no-cache
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-5QN8HWM
79 kB URL www.googletagmanager.com/gtm.js?id=GTM-5QN8HWM
IP
File type ASCII text, with very long lines (19808)
Hash bd10ae798c582997640f819a5d8e934b
40925480b7702470c529c47db7aac17724ca0679
fcc11eb06f22a9d7341549f704caa60e0deae4c51b274300cb860e175eda474f
GET /gtm.js?id=GTM-5QN8HWM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 00:06:33 GMT
expires: Sun, 03 Dec 2023 00:06:33 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79019
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RCea9d317d3a374e44b3f0f8711e38765e-source.min.js
752 B URL assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RCea9d317d3a374e44b3f0f8711e38765e-source.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (1539)
Hash 577157aef198d284c2607950ca5103d7
88794ccaa4bd1ebe47ef9c7bc8b8d29e8745d59e
79be51fc272496787a050c87a75d582d640039eb2a6f7e080f64f6e5ec2fc6ca
GET /a281455e4dfe/86f9b29df5eb/99058982850f/RCea9d317d3a374e44b3f0f8711e38765e-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "52b5e7d86e1980765da3e075758f5e02:1700230292.716631"
last-modified: Fri, 17 Nov 2023 14:11:32 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 752
cache-control: max-age=3600
expires: Sun, 03 Dec 2023 01:06:33 GMT
date: Sun, 03 Dec 2023 00:06:33 GMT
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXiWtFCc.woff2
200 OK 14 kB URL GET HTTP/3 fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXiWtFCc.woff2
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 13980, version 1.0\012- data
Hash b7d6b48d8d12946dc808ff39aed6c460
3f18028a04b3fb39bb1cc33dce401d04e9207970
d4ae5188a65370ecfe28f42293bbee8297cfd5712c6aadfdb270d48f2bcd88b0
GET /s/lato/v24/S6uyw4BMUTPHjx4wXiWtFCc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 01:27:40 GMT
expires: Fri, 29 Nov 2024 01:27:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:19 GMT
content-type: font/woff2
age: 254333
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
200 OK 23 B URL GET HTTP/3 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type JSON data\012- , ASCII text
Hash 8a80554c91d9fca8acb82f023de02f11
5f36b2ea290645ee34d943220a14b54ee5ea5be5
ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 03 Dec 2023 00:06:33 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtag/js?id=G-FD2X5ZMELR&l=dataLayer&cx=c
200 OK 93 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-FD2X5ZMELR&l=dataLayer&cx=c
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Hash d6295eee8d6d22730cf046f166e1a427
f14611db23be9f80f1e7bb9f3ed2c1d7e72e659a
a0efcf8fde3f9ab6e1ae1ae76a26dd34533648fa4bfdb9f97631fce3e1a56d1b
GET /gtag/js?id=G-FD2X5ZMELR&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 00:06:33 GMT
expires: Sun, 03 Dec 2023 00:06:33 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93079
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
live.rezync.com/sync?c=16b6410431b6374e780104abb0443ca8&p=5ef4f9c1e806678f2ab0275df01d5ff4&zmpID=ebg-wag3&cache_buster=1701561998799&k=ebg-wag3-pixel-0988
7.1 kB URL live.rezync.com/sync?c=16b6410431b6374e780104abb0443ca8&p=5ef4f9c1e806678f2ab0275df01d5ff4&zmpID=ebg-wag3&cache_buster=1701561998799&k=ebg-wag3-pixel-0988
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (2305)
Hash 065425d9526f4227d031d3ff4a0b2527
65b292d47b717b2059aa70409a25659f54b67f24
fe98b02bfde484d50fd64d1d4f1bf7be65d3065cb2b5a9f0fa4ca50c93ff4005
GET /sync?c=16b6410431b6374e780104abb0443ca8&p=5ef4f9c1e806678f2ab0275df01d5ff4&zmpID=ebg-wag3&cache_buster=1701561998799&k=ebg-wag3-pixel-0988 HTTP/1.1
Host: live.rezync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
content-length: 7091
date: Sun, 03 Dec 2023 00:06:33 GMT
set-cookie: zync-uuid=27df13c6-7b26-4e76-bee8-40f262e03252:1701561993.7598073; Domain=rezync.com; Expires=Fri, 31 May 2024 00:06:33 GMT; Path=/; SameSite=None; Secure
sd-session-id=eyJfcGVybWFuZW50Ijp0cnVlLCJzZXNzaW9uX2lkIjoiMjdkZjEzYzYtN2IyNi00ZTc2LWJlZTgtNDBmMjYyZTAzMjUyOjE3MDE1NjE5OTMuNzU5ODA3MyJ9.ZWvGiQ.X2BQtz1HJonyT11hQ8JMNYsEqcc; Expires=Fri, 27 Dec 2024 00:06:33 GMT; HttpOnly; Path=/; SameSite=None; Secure
vary: Cookie
accept-ranges: bytes
server: lighttpd/1.4.69
x-cache: Miss from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IK8wTzzirLp2h8PP3UkB6oBO4_8APvPgRaQZDHEJYB9dx4u3oih-sQ==
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=DC-12084042
70 kB URL www.googletagmanager.com/gtag/js?id=DC-12084042
IP
File type ASCII text, with very long lines (4179)
Hash 9300dd97038aaf8c8f433a0b1dc677e8
f8e0fa0720ea9be47ab20bc9fd1bf1f32983ddc8
d1c5d0c8cbc9d394c680a58a41563823d2ea4e3c79be752b711500be03885ff7
GET /gtag/js?id=DC-12084042 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 00:06:34 GMT
expires: Sun, 03 Dec 2023 00:06:34 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 70477
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtag/js?id=DC-12084042&l=dataLayer&cx=c
200 OK 71 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=DC-12084042&l=dataLayer&cx=c
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (4179)
Hash c6a68325b3f7bce6b79361039918f3bf
6baef6c704cfb87b6f6582494335da664a752e3a
b48cf655e77b5ba868c725579aa565f12dc692c570d6fd7f249a37607a55c896
GET /gtag/js?id=DC-12084042&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 00:06:34 GMT
expires: Sun, 03 Dec 2023 00:06:34 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 70551
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
smetrics.workingadvantage.com/id?d_visid_ver=5.4.0&d_fieldgroup=A&mcorgid=B5F9FF2554F608410A4C98C6%40AdobeOrg&mid=48789986143310212871838688022629711645&cl=157680000&d_coppa=true&ts=1701561998786
48 B URL smetrics.workingadvantage.com/id?d_visid_ver=5.4.0&d_fieldgroup=A&mcorgid=B5F9FF2554F608410A4C98C6%40AdobeOrg&mid=48789986143310212871838688022629711645&cl=157680000&d_coppa=true&ts=1701561998786
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d7409ee996861cb6d56cde95aa4d036a
d65ef96308f5c2f58c94166937f75a6638861fc7
69d609065529b8e4969bd73bd07fe795b3d8f3270d9d28136027ce4df78e6489
GET /id?d_visid_ver=5.4.0&d_fieldgroup=A&mcorgid=B5F9FF2554F608410A4C98C6%40AdobeOrg&mid=48789986143310212871838688022629711645&cl=157680000&d_coppa=true&ts=1701561998786 HTTP/1.1
Host: smetrics.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CvVersion%7C5.4.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
access-control-allow-credentials: true
date: Sun, 03 Dec 2023 00:06:34 GMT
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_ecid=MCMID%7C48789986143310212871838688022629711645; Path=/; Domain=workingadvantage.com; Max-Age=157680000; Expires=Fri, 01 Dec 2028 00:06:06 GMT; SameSite=Lax;
vary: Origin
content-type: application/x-javascript;charset=utf-8
content-length: 48
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/main.5139e63dcaa68cb8.js
1.1 MB URL monroecounty.savings.workingadvantage.com/main.5139e63dcaa68cb8.js
IP
File type Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Size 1.1 MB (1122304 bytes)
Hash 95bfd7911ea2afc23eda60fb065f7fa8
6b39d5dbb053484b6ffa3d36932fcd61744f8c75
e57f1978d4478f1baf0978eb135cbf7da6bc2fb5cef9e0c3b6ef7df8d25f2a26
GET /main.5139e63dcaa68cb8.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton&DLK=7eoe9dxtfppz1v1hz1mk3pxxx
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:33 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-5058de"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f7907908e056af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.r2m03.amazontrust.com/
471 B URL ocsp.r2m03.amazontrust.com/
IP
Hash 48815db4d1e22645ae6479e33fd18ca2
b740017c57da9b6dbfaa59b9596f29e5c1ba9ec6
0c8a909d0402c57686aa53f41a2da831954292d9cff8f50329047829fd655339
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sun, 03 Dec 2023 00:06:34 GMT
Last-Modified: Sat, 02 Dec 2023 22:19:45 GMT
Server: ECAcc (amb/6B66)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EmQ89X7L9apTc1od0yeSXhwN32UcoJVt843md71F22R9HutGVcq4Aw==
Age: 6409
people.api.boomtrain.com/identify/resolve?data=eyJjb29raWUiOnsiYnNpbiI6IiJ9LCJxdWVyeXN0cmluZyI6e30sImV4dGVybmFsX2lkcyI6eyJ6eW5jIjoiMjdkZjEzYzYtN2IyNi00ZTc2LWJlZTgtNDBmMjYyZTAzMjUyOjE3MDE1NjE5OTMuNzU5ODA3MyJ9fQ%3D%3D&site_id=ebg-wag3
142 B URL people.api.boomtrain.com/identify/resolve?data=eyJjb29raWUiOnsiYnNpbiI6IiJ9LCJxdWVyeXN0cmluZyI6e30sImV4dGVybmFsX2lkcyI6eyJ6eW5jIjoiMjdkZjEzYzYtN2IyNi00ZTc2LWJlZTgtNDBmMjYyZTAzMjUyOjE3MDE1NjE5OTMuNzU5ODA3MyJ9fQ%3D%3D&site_id=ebg-wag3
IP
File type JSON data\012- , ASCII text
Hash d1b76f464dfd5c3e0e2876440406fc70
0f7503d2dbe20df045554bc8babca06b6665cb91
ec52bdcd401a9e072074589adfeff62afddd6b43a24c5c75c91937ad678c7d7a
GET /identify/resolve?data=eyJjb29raWUiOnsiYnNpbiI6IiJ9LCJxdWVyeXN0cmluZyI6e30sImV4dGVybmFsX2lkcyI6eyJ6eW5jIjoiMjdkZjEzYzYtN2IyNi00ZTc2LWJlZTgtNDBmMjYyZTAzMjUyOjE3MDE1NjE5OTMuNzU5ODA3MyJ9fQ%3D%3D&site_id=ebg-wag3 HTTP/1.1
Host: people.api.boomtrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Headers: X-Requested-With,Content-Type,Authorization,x-app-id
Access-Control-Allow-Methods: GET,PUT,POST,DELETE
Access-Control-Allow-Origin: *
Content-Type: application/json
Date: Sun, 03 Dec 2023 00:06:34 GMT
Server: nginx
Content-Length: 142
Connection: keep-alive
assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RC6b40217ba8b34b5c95f7ac097beadf09-source.min.js
286 B URL assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RC6b40217ba8b34b5c95f7ac097beadf09-source.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (304)
Hash 9d329853a801c00019899598da50a762
fddbe70abdf0251ce3c72b34899bc1f93dee758c
177b9dbf2cb10e29041b0446aec0ac0d478d2cc420144dd745a4fe5a7c1fd360
GET /a281455e4dfe/86f9b29df5eb/99058982850f/RC6b40217ba8b34b5c95f7ac097beadf09-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "52b5e7d86e1980765da3e075758f5e02:1700230292.716631"
last-modified: Fri, 17 Nov 2023 14:11:32 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 286
cache-control: max-age=3600
expires: Sun, 03 Dec 2023 01:06:35 GMT
date: Sun, 03 Dec 2023 00:06:35 GMT
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RC0c16579d5c704bd0a214633d669d35f2-source.min.js
548 B URL assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RC0c16579d5c704bd0a214633d669d35f2-source.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (871)
Hash b6ab6600ee3ade29d2ceb7e4fbc49442
1de248e70f915eaa24fc5c887fd2fd0ec259529e
c86c5c33c4a4bcdad8cb8ab9208bd80f7c7d24d29bfe3c17621a3b8a7c4b273e
GET /a281455e4dfe/86f9b29df5eb/99058982850f/RC0c16579d5c704bd0a214633d669d35f2-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "52b5e7d86e1980765da3e075758f5e02:1700230292.716631"
last-modified: Fri, 17 Nov 2023 14:11:32 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 548
cache-control: max-age=3600
expires: Sun, 03 Dec 2023 01:06:35 GMT
date: Sun, 03 Dec 2023 00:06:35 GMT
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/api/monroecounty/colors.css?scope=:root,app-logged-in,ngb-modal-window
200 OK 439 B URL GET HTTP/3 monroecounty.savings.workingadvantage.com/api/monroecounty/colors.css?scope=:root,app-logged-in,ngb-modal-window
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
Hash d025741a25d26ec3060be375d8005767
e2eda95a7d6ee3770033258804d185dcf2b9b957
40efd7c39ce36408a7fb162f2c8782d366e5f6fc6e722cb30a9329928ccc5b81
GET /api/monroecounty/colors.css?scope=:root,app-logged-in,ngb-modal-window HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6IjhiNWFmYWY3NDc2MTM2YTUiLCJ0ciI6ImUzY2Q5OTUxMmE5Yzg2NmY1OGY5ZGJlNGQ1ODc1YjAwIiwidGkiOjE3MDE1NjE5OTk2NDQsInRrIjoiODg4MzEifX0=
traceparent: 00-e3cd99512a9c866f58f9dbe4d5875b00-8b5afaf7476136a5-01
tracestate: 88831@nr=0-1-2647367-1120218725-8b5afaf7476136a5----1701561999644
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton&DLK=7eoe9dxtfppz1v1hz1mk3pxxx
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.0.1701561999.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:34 GMT
content-type: text/css; charset=utf-8
x-powered-by:
access-control-allow-origin: http://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"a93-4u2pWn1u43cAMyWIBNGF3PK5uVc"
expires: Sun, 03 Dec 2023 00:06:33 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790817e8d56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RC668a267ca36c45b5acca38f3e4360a76-source.min.js
215 B URL assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RC668a267ca36c45b5acca38f3e4360a76-source.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hash 74f251b2226edb2c9e4e190ca2d1fccb
ff50ff57d401f31803f19ebb65c9307f9dda35da
aaa66fd99c79e6009a990dda2b89b5d2419f07344577f4c1609064b67d43bcf0
GET /a281455e4dfe/86f9b29df5eb/99058982850f/RC668a267ca36c45b5acca38f3e4360a76-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "52b5e7d86e1980765da3e075758f5e02:1700230292.716631"
last-modified: Fri, 17 Nov 2023 14:11:32 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 215
cache-control: max-age=3600
expires: Sun, 03 Dec 2023 01:06:35 GMT
date: Sun, 03 Dec 2023 00:06:35 GMT
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/api/known/dlk-compare?guid=7eoe9dxtfppz1v1hz1mk3pxxx
182 B URL monroecounty.savings.workingadvantage.com/api/known/dlk-compare?guid=7eoe9dxtfppz1v1hz1mk3pxxx
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d31f438ae4da135e79cb20d87893151d
946148505e7d6720180213a5fc82cdf4dd8ebc15
170287bbbfc14739c9b3aa6ce30abb0669d418f01118028f4b06c198fdbdde1d
GET /api/known/dlk-compare?guid=7eoe9dxtfppz1v1hz1mk3pxxx HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6IjUwNzU2ZDM0YWZhZTMwMTIiLCJ0ciI6ImY4NjRmODgxMjBmNjQxZTA3ODE4Yjg0NGIzYzQ3NjAwIiwidGkiOjE3MDE1NjIwMDEwMjUsInRrIjoiODg4MzEifX0=
traceparent: 00-f864f88120f641e07818b844b3c47600-50756d34afae3012-01
tracestate: 88831@nr=0-1-2647367-1120218725-50756d34afae3012----1701562001025
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton&DLK=7eoe9dxtfppz1v1hz1mk3pxxx
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569199s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.0.1701561999.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Sun, 03 Dec 2023 00:06:35 GMT
content-type: application/json; charset=utf-8
content-length: 182
x-powered-by:
access-control-allow-origin: http://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"b6-lGFIUF59ZyAYAhOl/ILN9N2OvBU"
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f7908a1c3b56af-OSL
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
3.0 kB URL monroecounty.savings.workingadvantage.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 4b915be013a6133fbaddc58391ad9324
04c7c6a42ba304ea797bb2b761d0f3e2149f6874
ab3418b963d2fffc722a9d288ba87b9782a31449e5064e990c56639d1e1d515d
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.0.1701561999.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sun, 03 Dec 2023 00:06:34 GMT
vary: accept-encoding
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js
access-control-allow-origin: *
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f79081aea856af-OSL
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/favicon.ico
200 OK 3.4 kB URL GET HTTP/3 monroecounty.savings.workingadvantage.com/favicon.ico
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2673)
Hash 24a552b5b6c178308daf7a050741593e
6ec1080805278525ecdf8b8ea25eb4f88c3e668e
3a55e8419cc8ab7e38bea69e5498963debe3c71075241deaee04eeddd3df4708
GET /favicon.ico HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton&DLK=7eoe9dxtfppz1v1hz1mk3pxxx
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569199s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.0.1701561999.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:35 GMT
content-type: text/html; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:56 GMT
vary: Accept-Encoding
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f79087da3556af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
auth.savings.workingadvantage.com/monroecounty/sign-in?response_type=code&client_id=9ezalirn45mF43imJTdf53&utm_source=email&utm_medium=November-30-2023-mme&utm_campaign=email-mme&utm_content=PreFooterButton&redirect_uri=https%3A%2F%2Fmonroecounty.savings.workingadvantage.com%2Fhome%3Fsource-id%3Demail%26utm_source%3Demail%26utm_campaign%3Demail-mme%26utm_medium%3DNovember-30-2023-mme%26utm_content%3DPreFooterButton%26DLK%3D7eoe9dxtfppz1v1hz1mk3pxxx
157 kB URL auth.savings.workingadvantage.com/monroecounty/sign-in?response_type=code&client_id=9ezalirn45mF43imJTdf53&utm_source=email&utm_medium=November-30-2023-mme&utm_campaign=email-mme&utm_content=PreFooterButton&redirect_uri=https%3A%2F%2Fmonroecounty.savings.workingadvantage.com%2Fhome%3Fsource-id%3Demail%26utm_source%3Demail%26utm_campaign%3Demail-mme%26utm_medium%3DNovember-30-2023-mme%26utm_content%3DPreFooterButton%26DLK%3D7eoe9dxtfppz1v1hz1mk3pxxx
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2673)
Size 157 kB (157110 bytes)
Hash 9dc741cceb3e6196fc51aaf393ba667d
4bc2d73332ea98260ff182810915604317328de8
71acbca9b831f8a47366482c0664f975f7a4bc3d9db4fe8cda3fb5036ac2f001
GET /monroecounty/sign-in?response_type=code&client_id=9ezalirn45mF43imJTdf53&utm_source=email&utm_medium=November-30-2023-mme&utm_campaign=email-mme&utm_content=PreFooterButton&redirect_uri=https%3A%2F%2Fmonroecounty.savings.workingadvantage.com%2Fhome%3Fsource-id%3Demail%26utm_source%3Demail%26utm_campaign%3Demail-mme%26utm_medium%3DNovember-30-2023-mme%26utm_content%3DPreFooterButton%26DLK%3D7eoe9dxtfppz1v1hz1mk3pxxx HTTP/1.1
Host: auth.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://monroecounty.savings.workingadvantage.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569199s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.0.1701561999.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:36 GMT
content-type: text/html; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:24:58 GMT
vary: Accept-Encoding
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f7908e7eb656af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.jsdelivr.net/npm/bootstrap@4.5.3/dist/css/bootstrap.min.css
26 kB URL cdn.jsdelivr.net/npm/bootstrap@4.5.3/dist/css/bootstrap.min.css
IP
File type ASCII text, with very long lines (65326)
Hash 023b3876bb73aa541367fc40a193d2b7
8ed2d6350d23f857d92805737d0f97c675de666b
f77c0d1739b618edc4a01ca3f6b2990b01a3009030af49ee8cf68e83052df194
GET /npm/bootstrap@4.5.3/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://auth.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.5.3
x-jsd-version-type: version
etag: W/"27288-jtLWNQ0j+FfZKAVzfQ+XxnXeZms"
content-encoding: br
accept-ranges: bytes
date: Sun, 03 Dec 2023 00:06:37 GMT
age: 21875708
x-served-by: cache-fra-eddf8230071-FRA, cache-bma1660-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26099
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/web-animations/2.3.1/web-animations.min.js
14 kB URL cdnjs.cloudflare.com/ajax/libs/web-animations/2.3.1/web-animations.min.js
IP
File type ASCII text, with very long lines (47169)
Hash f689a668b5c6078984b93b9f59793c90
83042534752a6d9b0a4a086517e19230416feba4
cbb3c795fd44c83a1200149b18e0df050fe228df4b5b03891373029117d8bd6b
GET /ajax/libs/web-animations/2.3.1/web-animations.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 13763
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb0402f-bad6"
last-modified: Mon, 04 May 2020 16:17:51 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 588852
expires: Fri, 22 Nov 2024 00:06:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cDuFHOsg%2BaRw9XLBzChc0EitW8fJa1MfU%2Bw56tOeQuA05MI4oyMjd7l%2B20g%2FeE5LBOIbVidi%2FYGlx9Q4wQmCkFVsU4MHBKd%2FLikf%2FyjJUQWqN1VCxHzGSwyqf8lTKOMfOVaErYxp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82f790921d0fb51b-OSL
alt-svc: h3=":443"; ma=86400
www.googletagmanager.com/gtm.js?id=GTM-5QN8HWM
79 kB URL www.googletagmanager.com/gtm.js?id=GTM-5QN8HWM
IP
File type ASCII text, with very long lines (19808)
Hash dc17c92a65f78627445c821062924fe8
64db6a2ea4b9618ce21c91a3b52e34ea59b3938a
ce6330f98ac5f8042ba63319dbb788b9837168b1831d10c3095adde77e6a1a54
GET /gtm.js?id=GTM-5QN8HWM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 00:06:37 GMT
expires: Sun, 03 Dec 2023 00:06:37 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79018
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps/api/js?client=gme-entertainmentbenefits&libraries=places
66 kB URL maps.googleapis.com/maps/api/js?client=gme-entertainmentbenefits&libraries=places
IP
File type ASCII text, with very long lines (2928)
Hash c49f578c3982fdc83a2b4a67483ed7b9
2c9fe32ba65f6eaff3a33f47dc38f8b74d5081d9
1effc55f539ddadabf5bb9f8c378f5b8938d848805c1c77ff4186f5207480922
GET /maps/api/js?client=gme-entertainmentbenefits&libraries=places HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=1800
vary: Accept-Language, Origin, X-Origin, Referer
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
date: Sun, 03 Dec 2023 00:06:37 GMT
server: scaffolding on HTTPServer2
content-length: 65931
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
12 kB URL assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (32768)
Hash d860c16ac938f7d839f0ec158d02d0f0
8710f81ed151233677f7e32b229cb35293dd6840
9219086b4f2c3bf77854b2e06ccd97ad32b9b7a140e65ff8b974a3bae6c7854c
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d860c16ac938f7d839f0ec158d02d0f0:1644856531.418573"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 12163
expires: Sun, 03 Dec 2023 01:06:37 GMT
date: Sun, 03 Dec 2023 00:06:37 GMT
cache-control: no-cache
access-control-allow-origin: https://auth.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
1.6 kB URL assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (3155)
Hash 2d1382c349d480b6b41574ac0c1af066
53ddf017aa6b66b4d54ea0818dc5c04789b9e5ae
462a66acbf50e933685e7587e9f1441df8225b2bb4d6b7bc5e757eccf4ff6575
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "2d1382c349d480b6b41574ac0c1af066:1644856531.739514"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1597
expires: Sun, 03 Dec 2023 01:06:37 GMT
date: Sun, 03 Dec 2023 00:06:37 GMT
cache-control: no-cache
access-control-allow-origin: https://auth.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXiWtFCc.woff2
200 OK 14 kB URL GET HTTP/3 fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXiWtFCc.woff2
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 13980, version 1.0\012- data
Hash b7d6b48d8d12946dc808ff39aed6c460
3f18028a04b3fb39bb1cc33dce401d04e9207970
d4ae5188a65370ecfe28f42293bbee8297cfd5712c6aadfdb270d48f2bcd88b0
GET /s/lato/v24/S6uyw4BMUTPHjx4wXiWtFCc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://auth.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 01:27:40 GMT
expires: Fri, 29 Nov 2024 01:27:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:19 GMT
content-type: font/woff2
age: 254337
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
200 OK 23 B URL GET HTTP/3 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type JSON data\012- , ASCII text
Hash 8a80554c91d9fca8acb82f023de02f11
5f36b2ea290645ee34d943220a14b54ee5ea5be5
ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://auth.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 03 Dec 2023 00:06:37 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://auth.savings.workingadvantage.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtag/js?id=G-FD2X5ZMELR&l=dataLayer&cx=c
200 OK 93 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-FD2X5ZMELR&l=dataLayer&cx=c
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Hash 0f2a91a6099d0fd503948c2878ac31ca
166dc82c3e8af17741a9d89c20bc1b8774a5bb58
5fda5d08d0e0217188120ffa18ac7a4ac914423180556cecc9c3a7145b45132f
GET /gtag/js?id=G-FD2X5ZMELR&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 00:06:37 GMT
expires: Sun, 03 Dec 2023 00:06:37 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93078
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
monroecounty.savings.beneplace.com/api/notifications/system-wide
2 B URL monroecounty.savings.beneplace.com/api/notifications/system-wide
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /api/notifications/system-wide HTTP/1.1
Host: monroecounty.savings.beneplace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://auth.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 00:06:38 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by:
access-control-allow-origin: https://auth.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"2-l9Fw4VUO7kr8CvBlt4zaMCqXZ0w"
expires: Sun, 03 Dec 2023 00:06:37 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=h.CmX705bRw5E0Jvt7OXvK0I_UXOA2VlcdpOPmZdjrQ-1701561998-0-AU6VVz9ZsS0VVpbTT9uCV+O//7DJgbcDNt6gFQI2dGx9mJ+7967S6SsRPpc2ClDFzCUS3YrAREKLG7fU0Kp8FdQ=; path=/; expires=Sun, 03-Dec-23 00:36:38 GMT; domain=.beneplace.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790970d73b4f4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RCfc27f81c245c44b78fbb03ff4af1a6be-source.min.js
214 B URL assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RCfc27f81c245c44b78fbb03ff4af1a6be-source.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hash 9de49b0d72b52bcff35a575dcbf3a505
67b61404e3f0bf10d1aa5a8895b5f0840a2b8f4d
c8ab5af61a41599d2375ab31a82cc778a38e29b25049ac57f1e6fcd60c004afe
GET /a281455e4dfe/86f9b29df5eb/99058982850f/RCfc27f81c245c44b78fbb03ff4af1a6be-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "52b5e7d86e1980765da3e075758f5e02:1700230292.716631"
last-modified: Fri, 17 Nov 2023 14:11:32 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
expires: Sun, 03 Dec 2023 01:06:39 GMT
date: Sun, 03 Dec 2023 00:06:39 GMT
content-length: 214
access-control-allow-origin: https://auth.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RC986b4d5825364bd4887033e40e20c549-source.min.js
429 B URL assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RC986b4d5825364bd4887033e40e20c549-source.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (610)
Hash 312cb3e912e23ae79d6f14e1f73679ac
a3303715a66d325886a96badf99dc1111dbffa2c
d56b6db4e16388149899dcea8f2bcbf6856bb84e7b9b866ddf3c388e5d12e8d6
Analyzer Verdict Alert Public Nextron YARA rules malware Webshells iisstart.aspx and Logout.aspx
GET /a281455e4dfe/86f9b29df5eb/99058982850f/RC986b4d5825364bd4887033e40e20c549-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "52b5e7d86e1980765da3e075758f5e02:1700230292.716631"
last-modified: Fri, 17 Nov 2023 14:11:32 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
expires: Sun, 03 Dec 2023 01:06:39 GMT
date: Sun, 03 Dec 2023 00:06:39 GMT
content-length: 429
access-control-allow-origin: https://auth.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
auth.savings.workingadvantage.com/socket.io/?subdomain=monroecounty&EIO=3&transport=websocket
0 B URL auth.savings.workingadvantage.com/socket.io/?subdomain=monroecounty&EIO=3&transport=websocket
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?subdomain=monroecounty&EIO=3&transport=websocket HTTP/1.1
Host: auth.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://auth.savings.workingadvantage.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: D8DW1uT1nxXDbKJdGan8zg==
DNT: 1
Connection: keep-alive, Upgrade
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569202s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562003.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 03 Dec 2023 00:06:39 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Nauld2VxHV014dMmseRlTwXQjTY=
Access-Control-Allow-Origin: https://auth.savings.workingadvantage.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
CF-Cache-Status: DYNAMIC
Strict-Transport-Security: max-age=5184000; includeSubDomains
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 82f7909e3bbc56ab-OSL
alt-svc: h3=":443"; ma=86400
assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/launch-a0e5cece2585.min.js
200 OK 154 kB URL GET HTTP/2 assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/launch-a0e5cece2585.min.js
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (32742)
Size 154 kB (154411 bytes)
Hash 9f22d37eff0340108e8e839a349263cc
0cabbc873195e92a33ed4694d49048ef05f52eee
47212462490d0b8fbf15a409fd8a79bd1a1f37c93790055517c1dc629bc9082f
GET /a281455e4dfe/86f9b29df5eb/launch-a0e5cece2585.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "9f22d37eff0340108e8e839a349263cc:1700230291.849047"
last-modified: Fri, 17 Nov 2023 14:11:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 154411
cache-control: max-age=3600
expires: Sun, 03 Dec 2023 01:06:39 GMT
date: Sun, 03 Dec 2023 00:06:39 GMT
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/api/info
18 kB URL monroecounty.savings.workingadvantage.com/api/info
IP
File type JSON data\012- , ASCII text, with very long lines (6739), with no line terminators
Hash c0fa0b981a3e5b501e33b6b4f54b0788
7a9b2c09f5ceac2db55041ee53ed1781b19400f2
5f54d639482ec45c279ae5d16a74c73fee3663505a13034b06cad27ae3d0eeab
GET /api/info HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6IjdmZjEwOTczMmM3Yzc4ZDAiLCJ0ciI6ImRjMzQ1YWQ0MWQyY2RmZmQ4ZmU5YWUyNDkxYjkyMjAwIiwidGkiOjE3MDE1NjE5OTk2MzcsInRrIjoiODg4MzEifX0=
traceparent: 00-dc345ad41d2cdffd8fe9ae2491b92200-7ff109732c7c78d0-01
tracestate: 88831@nr=0-1-2647367-1120218725-7ff109732c7c78d0----1701561999637
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton&DLK=7eoe9dxtfppz1v1hz1mk3pxxx
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.0.1701561999.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:35 GMT
content-type: application/json; charset=utf-8
x-powered-by:
access-control-allow-origin: http://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"1a53-epssCfXOrC21UEHuU+0XgbGUAPI"
expires: Sun, 03 Dec 2023 00:06:34 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790816e8156af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
monroecounty.savings.beneplace.com/api/monroecounty/marketplace-styles.css
32 kB URL monroecounty.savings.beneplace.com/api/monroecounty/marketplace-styles.css
IP
Hash 739e1c51df8978e6e7a7d93a258710bf
87b823a71cf8107eed5d0bd5b687756d7c82e13c
7375e91c8366bfc9421cc7c9026ecab7a3d9cbaec5fb604a89fbaf46d3e30515
GET /api/monroecounty/marketplace-styles.css HTTP/1.1
Host: monroecounty.savings.beneplace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://auth.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 00:06:38 GMT
content-type: text/css; charset=utf-8
x-powered-by:
access-control-allow-origin: https://auth.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"8089-h7gjpxz4EH7tXQvVtod1bXyC4Tw"
expires: Sun, 03 Dec 2023 00:06:37 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=gOEGtNQZ4j8ICYznLXxeFFXJXB93.uymCo5o6cVXH3U-1701561998-0-AVDmqyST9X/M7h4ECOwBPI1pHPEB0wggtbVxqaALhc9GTHyiJbIX7uDC2br8P0Ss5YrDKHpXNyNL2xY313dAyZc=; path=/; expires=Sun, 03-Dec-23 00:36:38 GMT; domain=.beneplace.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790971d7ab4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
monroecounty.savings.beneplace.com/api/controls/monroecounty
67 kB URL monroecounty.savings.beneplace.com/api/controls/monroecounty
IP
File type JSON data\012- , ASCII text, with very long lines (2050), with no line terminators
Hash 66a41fb5c208b7a7036321fcc1a1309a
976240b9b349f4cd7f3eb4473feb2a6698442dce
341083bce636014fe77945e54a94e8cce5c1a34cfe400bffe146af1e78e73cae
GET /api/controls/monroecounty HTTP/1.1
Host: monroecounty.savings.beneplace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://auth.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 00:06:38 GMT
content-type: application/json; charset=utf-8
x-powered-by:
access-control-allow-origin: https://auth.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"802-l2JAubNJ9M1/PrRHP+sqZphELc4"
expires: Sun, 03 Dec 2023 00:06:37 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=BQOcZb0xI2J6xr36QCIJdE4vnjtNpXPVRUBc8I635VQ-1701561998-0-Af/9hMMWbvdLTopSNC/XTKNN9YCAtAOzBoW4t2nup0nj7r5cWWIfaV1/xnVGulnPsGjP0iMExyDiEvhaPeu1zmY=; path=/; expires=Sun, 03-Dec-23 00:36:38 GMT; domain=.beneplace.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790971d77b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-5QN8HWM
79 kB URL www.googletagmanager.com/gtm.js?id=GTM-5QN8HWM
IP
File type ASCII text, with very long lines (19808)
Hash dc17c92a65f78627445c821062924fe8
64db6a2ea4b9618ce21c91a3b52e34ea59b3938a
ce6330f98ac5f8042ba63319dbb788b9837168b1831d10c3095adde77e6a1a54
GET /gtm.js?id=GTM-5QN8HWM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 00:06:39 GMT
expires: Sun, 03 Dec 2023 00:06:39 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79018
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
12 kB URL assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (32768)
Hash d860c16ac938f7d839f0ec158d02d0f0
8710f81ed151233677f7e32b229cb35293dd6840
9219086b4f2c3bf77854b2e06ccd97ad32b9b7a140e65ff8b974a3bae6c7854c
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d860c16ac938f7d839f0ec158d02d0f0:1644856531.418573"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 12163
expires: Sun, 03 Dec 2023 01:06:39 GMT
date: Sun, 03 Dec 2023 00:06:39 GMT
cache-control: no-cache
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
1.6 kB URL assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (3155)
Hash 2d1382c349d480b6b41574ac0c1af066
53ddf017aa6b66b4d54ea0818dc5c04789b9e5ae
462a66acbf50e933685e7587e9f1441df8225b2bb4d6b7bc5e757eccf4ff6575
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "2d1382c349d480b6b41574ac0c1af066:1644856531.739514"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1597
expires: Sun, 03 Dec 2023 01:06:39 GMT
date: Sun, 03 Dec 2023 00:06:39 GMT
cache-control: no-cache
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
200 OK 23 B URL GET HTTP/3 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type JSON data\012- , ASCII text
Hash 8a80554c91d9fca8acb82f023de02f11
5f36b2ea290645ee34d943220a14b54ee5ea5be5
ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 03 Dec 2023 00:06:39 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXiWtFCc.woff2
200 OK 14 kB URL GET HTTP/3 fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXiWtFCc.woff2
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 13980, version 1.0\012- data
Hash b7d6b48d8d12946dc808ff39aed6c460
3f18028a04b3fb39bb1cc33dce401d04e9207970
d4ae5188a65370ecfe28f42293bbee8297cfd5712c6aadfdb270d48f2bcd88b0
GET /s/lato/v24/S6uyw4BMUTPHjx4wXiWtFCc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 01:27:40 GMT
expires: Fri, 29 Nov 2024 01:27:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:19 GMT
content-type: font/woff2
age: 254339
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
monroecounty.savings.beneplace.com/api/info?authInfo=true
22 kB URL monroecounty.savings.beneplace.com/api/info?authInfo=true
IP
File type JSON data\012- , ASCII text, with very long lines (8219), with no line terminators
Hash 3fad4cb359e68c5e8fe5a869422ce37b
dfbf73164fb509b8a3b9059f8c740c80cc6f77b6
e4193396c6350c1773f744bd6b007302c71284018972fb7ff635731f8d90d4bf
GET /api/info?authInfo=true HTTP/1.1
Host: monroecounty.savings.beneplace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://auth.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 00:06:38 GMT
content-type: application/json; charset=utf-8
x-powered-by:
access-control-allow-origin: https://auth.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"201b-379zFk+1CbijuQWfjHQMgMxvd7Y"
expires: Sun, 03 Dec 2023 00:06:37 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=TNVGnD8JGeZbqQ9df8CKcdGwfd8WyCeWfcaNbW4g_oU-1701561998-0-AYlqTEp/rq/Ezy2lfuGptIbLPBjuwWMHHZAQCBXE4T7ubPODyBVMSvasefE3sqi5d4MJWLT2eXKlYu+jp27H/9s=; path=/; expires=Sun, 03-Dec-23 00:36:38 GMT; domain=.beneplace.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790970d6db4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/styles.470895e6035d0005.css
110 kB URL monroecounty.savings.workingadvantage.com/styles.470895e6035d0005.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 110 kB (110082 bytes)
Hash e5139ecca342c6c60da1c222d8b1c415
3327b2ed795950f5459d82952d7e9c73d59e6a95
7678fff11f92c598d89035e7f1e5ae839902925df05059daa23901b914765975
GET /styles.470895e6035d0005.css HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton&&known_email=ArmandoBenitez%40monroecounty.gov&known_user_type=known_set_confirmed&known_user=true&known_user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&known_email_contact=ArmandoBenitez%40monroecounty.gov
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569204s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562003.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:39 GMT
content-type: text/css
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-187ec"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790a31be856af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
auth.savings.workingadvantage.com/styles.55427553bed43367.css
14 kB URL auth.savings.workingadvantage.com/styles.55427553bed43367.css
IP
File type ASCII text, with very long lines (39754)
Hash 0c6c5798b2536d4058555720691fad02
d84162926d57b64efb6e4c06a5b932041f75f570
0d090bed5512aa42771132ca52b0a7820daafbb07375d85a19efad37508f4471
GET /styles.55427553bed43367.css HTTP/1.1
Host: auth.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/monroecounty/sign-in?response_type=code&client_id=9ezalirn45mF43imJTdf53&utm_source=email&utm_medium=November-30-2023-mme&utm_campaign=email-mme&utm_content=PreFooterButton&redirect_uri=https%3A%2F%2Fmonroecounty.savings.workingadvantage.com%2Fhome%3Fsource-id%3Demail%26utm_source%3Demail%26utm_campaign%3Demail-mme%26utm_medium%3DNovember-30-2023-mme%26utm_content%3DPreFooterButton%26DLK%3D7eoe9dxtfppz1v1hz1mk3pxxx
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569199s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562002.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:37 GMT
content-type: text/css
last-modified: Wed, 29 Nov 2023 02:24:53 GMT
vary: Accept-Encoding
etag: W/"6566a0f5-9b4b"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f79093ca2e56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.boomtrain.com/p13n/ebg-wag3/p13n.min.js
30 kB URL cdn.boomtrain.com/p13n/ebg-wag3/p13n.min.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7e025917ec081cb179b24e9b42269588
a6522f88185982ebde143a2b1e399034962c6eba
cd6c50080cda668d0e858886b870ff15124d16be997d5b0d43e97d4788a20879
GET /p13n/ebg-wag3/p13n.min.js HTTP/1.1
Host: cdn.boomtrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 18 Nov 2023 04:40:52 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: OIOu4UQ3GQOndZXr8ANDxdDowK_c5AEP
Server: AmazonS3
Content-Encoding: gzip
Date: Sun, 03 Dec 2023 00:06:35 GMT
Cache-Control: public, max-age=3600
ETag: W/"7e025917ec081cb179b24e9b42269588"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4P9bWC89mj-LXx82TBpbIykEckgrsXrqCqye0aJFIcVye6_a_AxWqg==
Age: 6
monroecounty.savings.beneplace.com/api/google-experiments/auth-v2
72 kB URL monroecounty.savings.beneplace.com/api/google-experiments/auth-v2
IP
File type JSON data\012- , ASCII text, with very long lines (4056), with no line terminators
Hash 1b8008d29de8cf1e4178b27c2ef2c120
c53ae45c4e7cd5fd5240ca141b031f080999bc98
a83eaf590f2c078872c01c0f332037dc8fef2a3a2f925d9d8ea5425d0172cf99
GET /api/google-experiments/auth-v2 HTTP/1.1
Host: monroecounty.savings.beneplace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://auth.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://auth.savings.workingadvantage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 03 Dec 2023 00:06:38 GMT
content-type: application/json; charset=utf-8
x-powered-by:
access-control-allow-origin: https://auth.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"fd8-xTrkXE581f1SQMoUGwMfCAmZvJg"
expires: Sun, 03 Dec 2023 00:06:37 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=FtzA.XeIZZaXaFzzGFQG5hU1z6C9KC.D5iRcg.UU2qc-1701561998-0-Aas+R/7+EJJqXRAQOauvPqIjMnqnBER6s3VPZkdXTuSUXkeu3WYbwGfmysaAMHNEqa25ItnNWojF4QOSoD112KM=; path=/; expires=Sun, 03-Dec-23 00:36:38 GMT; domain=.beneplace.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790970d6eb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=DC-12084042&l=dataLayer&cx=c
200 OK 71 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=DC-12084042&l=dataLayer&cx=c
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (4179)
Hash e9c7585866042fe3e6a6678ef9f42a82
373f259a10e47123fff9bb89f88d07ebbfb2742c
cd1704b8d5bece535dcae2c0c53a8b5cd04ad61eacc57e3b285cacc25aa9bb71
GET /gtag/js?id=DC-12084042&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 00:06:40 GMT
expires: Sun, 03 Dec 2023 00:06:40 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 70570
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RC6b40217ba8b34b5c95f7ac097beadf09-source.min.js
286 B URL assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RC6b40217ba8b34b5c95f7ac097beadf09-source.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (304)
Hash 9d329853a801c00019899598da50a762
fddbe70abdf0251ce3c72b34899bc1f93dee758c
177b9dbf2cb10e29041b0446aec0ac0d478d2cc420144dd745a4fe5a7c1fd360
GET /a281455e4dfe/86f9b29df5eb/99058982850f/RC6b40217ba8b34b5c95f7ac097beadf09-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "52b5e7d86e1980765da3e075758f5e02:1700230292.716631"
last-modified: Fri, 17 Nov 2023 14:11:32 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 286
cache-control: max-age=3600
expires: Sun, 03 Dec 2023 01:06:40 GMT
date: Sun, 03 Dec 2023 00:06:40 GMT
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RC668a267ca36c45b5acca38f3e4360a76-source.min.js
215 B URL assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RC668a267ca36c45b5acca38f3e4360a76-source.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hash 74f251b2226edb2c9e4e190ca2d1fccb
ff50ff57d401f31803f19ebb65c9307f9dda35da
aaa66fd99c79e6009a990dda2b89b5d2419f07344577f4c1609064b67d43bcf0
GET /a281455e4dfe/86f9b29df5eb/99058982850f/RC668a267ca36c45b5acca38f3e4360a76-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "52b5e7d86e1980765da3e075758f5e02:1700230292.716631"
last-modified: Fri, 17 Nov 2023 14:11:32 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 215
cache-control: max-age=3600
expires: Sun, 03 Dec 2023 01:06:40 GMT
date: Sun, 03 Dec 2023 00:06:40 GMT
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/scripts.b785e07ef29de485.js
55 kB URL monroecounty.savings.workingadvantage.com/scripts.b785e07ef29de485.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 46c966376ef0860c9f256d7701100634
7cf0609623ef764b6c28e3778565084628881241
ac3e5cf9dbf7e7d8afbde8193602e353a531e05ea3ed89990432248a8c73ee18
GET /scripts.b785e07ef29de485.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton&&known_email=ArmandoBenitez%40monroecounty.gov&known_user_type=known_set_confirmed&known_user=true&known_user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&known_email_contact=ArmandoBenitez%40monroecounty.gov
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569204s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562003.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; sat_domain=A; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:39 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-29710"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790a15adc56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/api/monroecounty/marketplace-styles.css
7.4 kB URL monroecounty.savings.workingadvantage.com/api/monroecounty/marketplace-styles.css
IP
Hash 739e1c51df8978e6e7a7d93a258710bf
87b823a71cf8107eed5d0bd5b687756d7c82e13c
7375e91c8366bfc9421cc7c9026ecab7a3d9cbaec5fb604a89fbaf46d3e30515
GET /api/monroecounty/marketplace-styles.css HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6IjRkY2M0MWI4NTM2MjhkN2IiLCJ0ciI6IjY0N2FlNzQxNTI5MmQxOTgwMzJjOTBlMmNkMjZlMjAwIiwidGkiOjE3MDE1NjIwMDU4OTksInRrIjoiODg4MzEifX0=
traceparent: 00-647ae7415292d198032c90e2cd26e200-4dcc41b853628d7b-01
tracestate: 88831@nr=0-1-2647367-1120218725-4dcc41b853628d7b----1701562005899
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton&&known_email=ArmandoBenitez%40monroecounty.gov&known_user_type=known_set_confirmed&known_user=true&known_user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&known_email_contact=ArmandoBenitez%40monroecounty.gov
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569205s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562005.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:40 GMT
content-type: text/css; charset=utf-8
x-powered-by:
access-control-allow-origin: http://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"8089-h7gjpxz4EH7tXQvVtod1bXyC4Tw"
expires: Sun, 03 Dec 2023 00:06:39 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790a89ed856af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/launch-a0e5cece2585.min.js
200 OK 154 kB URL GET HTTP/2 assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/launch-a0e5cece2585.min.js
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (32742)
Size 154 kB (154411 bytes)
Hash 9f22d37eff0340108e8e839a349263cc
0cabbc873195e92a33ed4694d49048ef05f52eee
47212462490d0b8fbf15a409fd8a79bd1a1f37c93790055517c1dc629bc9082f
GET /a281455e4dfe/86f9b29df5eb/launch-a0e5cece2585.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "9f22d37eff0340108e8e839a349263cc:1700230291.849047"
last-modified: Fri, 17 Nov 2023 14:11:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 154411
cache-control: max-age=3600
expires: Sun, 03 Dec 2023 01:06:41 GMT
date: Sun, 03 Dec 2023 00:06:41 GMT
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/api/info
29 kB URL monroecounty.savings.workingadvantage.com/api/info
IP
File type JSON data\012- , ASCII text, with very long lines (6739), with no line terminators
Hash c0fa0b981a3e5b501e33b6b4f54b0788
7a9b2c09f5ceac2db55041ee53ed1781b19400f2
5f54d639482ec45c279ae5d16a74c73fee3663505a13034b06cad27ae3d0eeab
GET /api/info HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6ImRmMmIyMDRmZWFlMGY0NjciLCJ0ciI6IjM1ZTIyOTM2ZWU1NjM0YWNkNGZmYTBkNTRlMzc0NzAwIiwidGkiOjE3MDE1NjIwMDU4OTUsInRrIjoiODg4MzEifX0=
traceparent: 00-35e22936ee5634acd4ffa0d54e374700-df2b204feae0f467-01
tracestate: 88831@nr=0-1-2647367-1120218725-df2b204feae0f467----1701562005895
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton&&known_email=ArmandoBenitez%40monroecounty.gov&known_user_type=known_set_confirmed&known_user=true&known_user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&known_email_contact=ArmandoBenitez%40monroecounty.gov
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569205s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562005.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:40 GMT
content-type: application/json; charset=utf-8
x-powered-by:
access-control-allow-origin: http://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"1a53-epssCfXOrC21UEHuU+0XgbGUAPI"
expires: Sun, 03 Dec 2023 00:06:39 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790a88ed256af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdnjs.cloudflare.com/ajax/libs/web-animations/2.3.1/web-animations.min.js
14 kB URL cdnjs.cloudflare.com/ajax/libs/web-animations/2.3.1/web-animations.min.js
IP
File type ASCII text, with very long lines (47169)
Hash f689a668b5c6078984b93b9f59793c90
83042534752a6d9b0a4a086517e19230416feba4
cbb3c795fd44c83a1200149b18e0df050fe228df4b5b03891373029117d8bd6b
GET /ajax/libs/web-animations/2.3.1/web-animations.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:41 GMT
content-type: application/javascript; charset=utf-8
content-length: 13763
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb0402f-bad6"
last-modified: Mon, 04 May 2020 16:17:51 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 588856
expires: Fri, 22 Nov 2024 00:06:41 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hq0nVr%2FPZdUXY1VHGiYmAes9swPFaH5duGvvaZG7R1EYCVfn%2B8YsrHGFSCNSNAKZzdwC%2BHi2YPD8mv%2BxkXrz0lWe9YvFjqRUAgc9kE79i%2BsBBHZYt8rcZM81VyD3L1rUAKOQtYte"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82f790b02cfdb51b-OSL
alt-svc: h3=":443"; ma=86400
maps.googleapis.com/maps/api/js?client=gme-entertainmentbenefits&libraries=places
66 kB URL maps.googleapis.com/maps/api/js?client=gme-entertainmentbenefits&libraries=places
IP
File type ASCII text, with very long lines (2928)
Hash c49f578c3982fdc83a2b4a67483ed7b9
2c9fe32ba65f6eaff3a33f47dc38f8b74d5081d9
1effc55f539ddadabf5bb9f8c378f5b8938d848805c1c77ff4186f5207480922
GET /maps/api/js?client=gme-entertainmentbenefits&libraries=places HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
timing-allow-origin: *
vary: Accept-Language, Origin, X-Origin, Referer
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
cache-control: public, max-age=1800
content-encoding: gzip
date: Sun, 03 Dec 2023 00:06:41 GMT
server: scaffolding on HTTPServer2
content-length: 65931
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtm.js?id=GTM-5QN8HWM
79 kB URL www.googletagmanager.com/gtm.js?id=GTM-5QN8HWM
IP
File type ASCII text, with very long lines (19808)
Hash bd10ae798c582997640f819a5d8e934b
40925480b7702470c529c47db7aac17724ca0679
fcc11eb06f22a9d7341549f704caa60e0deae4c51b274300cb860e175eda474f
GET /gtm.js?id=GTM-5QN8HWM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 00:06:42 GMT
expires: Sun, 03 Dec 2023 00:06:42 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79019
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
monroecounty.savings.workingadvantage.com/assets/new-relic/new-relic-integration.js
30 kB URL monroecounty.savings.workingadvantage.com/assets/new-relic/new-relic-integration.js
IP
File type ASCII text, with very long lines (51930)
Hash 0cd967d483680340e1c5d0f1c3b34662
4f6121c35c81f16302bdb45a3a00ee708896a72c
bc49c009b33e66a59f057cf4ada682b80d4401d919ddf0f8d3ef2bb0415f0b23
GET /assets/new-relic/new-relic-integration.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569205s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562005.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:42 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:55 GMT
vary: Accept-Encoding
etag: W/"65669f8f-ccde"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790b02b9c56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
1.6 kB URL assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (3155)
Hash 2d1382c349d480b6b41574ac0c1af066
53ddf017aa6b66b4d54ea0818dc5c04789b9e5ae
462a66acbf50e933685e7587e9f1441df8225b2bb4d6b7bc5e757eccf4ff6575
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "2d1382c349d480b6b41574ac0c1af066:1644856531.739514"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1597
expires: Sun, 03 Dec 2023 01:06:42 GMT
date: Sun, 03 Dec 2023 00:06:42 GMT
cache-control: no-cache
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/scripts.b785e07ef29de485.js
55 kB URL monroecounty.savings.workingadvantage.com/scripts.b785e07ef29de485.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 46c966376ef0860c9f256d7701100634
7cf0609623ef764b6c28e3778565084628881241
ac3e5cf9dbf7e7d8afbde8193602e353a531e05ea3ed89990432248a8c73ee18
GET /scripts.b785e07ef29de485.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569205s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562005.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:42 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-29710"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790b02b9f56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXiWtFCc.woff2
200 OK 14 kB URL GET HTTP/3 fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXiWtFCc.woff2
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 13980, version 1.0\012- data
Hash b7d6b48d8d12946dc808ff39aed6c460
3f18028a04b3fb39bb1cc33dce401d04e9207970
d4ae5188a65370ecfe28f42293bbee8297cfd5712c6aadfdb270d48f2bcd88b0
GET /s/lato/v24/S6uyw4BMUTPHjx4wXiWtFCc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 01:27:40 GMT
expires: Fri, 29 Nov 2024 01:27:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:19 GMT
content-type: font/woff2
age: 254342
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RCea9d317d3a374e44b3f0f8711e38765e-source.min.js
752 B URL assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RCea9d317d3a374e44b3f0f8711e38765e-source.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (1539)
Hash 577157aef198d284c2607950ca5103d7
88794ccaa4bd1ebe47ef9c7bc8b8d29e8745d59e
79be51fc272496787a050c87a75d582d640039eb2a6f7e080f64f6e5ec2fc6ca
GET /a281455e4dfe/86f9b29df5eb/99058982850f/RCea9d317d3a374e44b3f0f8711e38765e-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "52b5e7d86e1980765da3e075758f5e02:1700230292.716631"
last-modified: Fri, 17 Nov 2023 14:11:32 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 752
cache-control: max-age=3600
expires: Sun, 03 Dec 2023 01:06:42 GMT
date: Sun, 03 Dec 2023 00:06:42 GMT
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-FD2X5ZMELR&l=dataLayer&cx=c
200 OK 93 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-FD2X5ZMELR&l=dataLayer&cx=c
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Hash 6d1be5a07048cf3fc433b5ea9d5d566a
1070b8c9fac7fd73a5a00b5682e49839552a67b2
537d083507ac3c4c515eb65e693436b20928d1be072ae70baa8fcfa10d80307b
GET /gtag/js?id=G-FD2X5ZMELR&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 00:06:42 GMT
expires: Sun, 03 Dec 2023 00:06:42 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93081
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
live.rezync.com/sync?c=16b6410431b6374e780104abb0443ca8&p=5ef4f9c1e806678f2ab0275df01d5ff4&zmpID=ebg-wag3&cache_buster=1701562007709&k=ebg-wag3-pixel-0988
6.4 kB URL live.rezync.com/sync?c=16b6410431b6374e780104abb0443ca8&p=5ef4f9c1e806678f2ab0275df01d5ff4&zmpID=ebg-wag3&cache_buster=1701562007709&k=ebg-wag3-pixel-0988
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (2306)
Hash 352c187c491a35e23d47e26f169d6b12
ba73684744bd0f019d84559c54912c61397e29a4
097ac76a4cd80793792643ea78d6082aeaf23bf86ccaf8d6af0bc6ab2e827366
GET /sync?c=16b6410431b6374e780104abb0443ca8&p=5ef4f9c1e806678f2ab0275df01d5ff4&zmpID=ebg-wag3&cache_buster=1701562007709&k=ebg-wag3-pixel-0988 HTTP/1.1
Host: live.rezync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Cookie: zync-uuid=27df13c6-7b26-4e76-bee8-40f262e03252:1701561993.7598073; sd-session-id=eyJfcGVybWFuZW50Ijp0cnVlLCJzZXNzaW9uX2lkIjoiMjdkZjEzYzYtN2IyNi00ZTc2LWJlZTgtNDBmMjYyZTAzMjUyOjE3MDE1NjE5OTMuNzU5ODA3MyJ9.ZWvGkA.8pMs_7wezrWgDw3hszjnCwl09Jw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 6391
date: Sun, 03 Dec 2023 00:06:42 GMT
set-cookie: zync-uuid=27df13c6-7b26-4e76-bee8-40f262e03252:1701561993.7598073; Domain=rezync.com; Expires=Fri, 31 May 2024 00:06:42 GMT; Path=/; SameSite=None; Secure
sd-session-id=eyJfcGVybWFuZW50Ijp0cnVlLCJzZXNzaW9uX2lkIjoiMjdkZjEzYzYtN2IyNi00ZTc2LWJlZTgtNDBmMjYyZTAzMjUyOjE3MDE1NjE5OTMuNzU5ODA3MyJ9.ZWvGkg.TTgwugG-6SdttO1kFLbAO7jTZFU; Expires=Fri, 31 May 2024 00:06:42 GMT; HttpOnly; Path=/; SameSite=None; Secure
vary: Cookie
accept-ranges: bytes
server: lighttpd/1.4.69
x-cache: Miss from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nlQIg5L4qF47JkHvxRRygqIr9p1zG3MmIe0s7FlBmzO_Z5AVzZiOPA==
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/main.5139e63dcaa68cb8.js
1.1 MB URL monroecounty.savings.workingadvantage.com/main.5139e63dcaa68cb8.js
IP
File type Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Size 1.1 MB (1123711 bytes)
Hash 95bfd7911ea2afc23eda60fb065f7fa8
6b39d5dbb053484b6ffa3d36932fcd61744f8c75
e57f1978d4478f1baf0978eb135cbf7da6bc2fb5cef9e0c3b6ef7df8d25f2a26
GET /main.5139e63dcaa68cb8.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton&&known_email=ArmandoBenitez%40monroecounty.gov&known_user_type=known_set_confirmed&known_user=true&known_user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&known_email_contact=ArmandoBenitez%40monroecounty.gov
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569204s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562003.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; sat_domain=A; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:39 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-5058de"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790a16adf56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/runtime.363d342e12c4bc10.js
75 kB URL monroecounty.savings.workingadvantage.com/runtime.363d342e12c4bc10.js
IP
File type ASCII text, with very long lines (3273), with no line terminators
Hash 7f98db65f37be0d168141f86eee5f54e
981afa1fe43dff894e9a7739b3bff892887a8e85
b26df3a382b32d81beb34d3bb35e1fb30d2b6545ab8a92954818dd2a12f57833
GET /runtime.363d342e12c4bc10.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569205s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562005.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:42 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-cc9"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790b02b9d56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.googletagmanager.com/gtag/js?id=DC-12084042&l=dataLayer&cx=c
200 OK 71 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=DC-12084042&l=dataLayer&cx=c
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (4179)
Hash 39144f3746908d00606c8b24d931fb8e
12bd4a68cad900e474f16af88984d901581f8ed9
f23095e479241f678afe4151fe69aa9d766c4d30b2ed63b77c12c144259eeb42
GET /gtag/js?id=DC-12084042&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 00:06:43 GMT
expires: Sun, 03 Dec 2023 00:06:43 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 70554
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
monroecounty.savings.workingadvantage.com/polyfills.efd19b87dc3c9f76.js
50 kB URL monroecounty.savings.workingadvantage.com/polyfills.efd19b87dc3c9f76.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2231fe87edd0abc28d7517072aeac06a
df8009ed57a5d1de1b9a03d0657f68bf7be51c2b
4767b15ec5f17f5573f2e58430544bff2be4c30cb3c166ed4428971feaae85c5
GET /polyfills.efd19b87dc3c9f76.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton&&known_email=ArmandoBenitez%40monroecounty.gov&known_user_type=known_set_confirmed&known_user=true&known_user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&known_email_contact=ArmandoBenitez%40monroecounty.gov
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569204s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562003.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; sat_domain=A; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:39 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-234ab"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790a15adb56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/api/monroecounty/marketplace-styles.css
5.2 kB URL monroecounty.savings.workingadvantage.com/api/monroecounty/marketplace-styles.css
IP
Hash 739e1c51df8978e6e7a7d93a258710bf
87b823a71cf8107eed5d0bd5b687756d7c82e13c
7375e91c8366bfc9421cc7c9026ecab7a3d9cbaec5fb604a89fbaf46d3e30515
GET /api/monroecounty/marketplace-styles.css HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6Ijc2YzRmYTRjMmVjYjM5NmQiLCJ0ciI6ImQyNWE4N2NmNGZmMzdjNjA1YTRhY2E4OWIzY2M5YzAwIiwidGkiOjE3MDE1NjIwMDgyODcsInRrIjoiODg4MzEifX0=
traceparent: 00-d25a87cf4ff37c605a4aca89b3cc9c00-76c4fa4c2ecb396d-01
tracestate: 88831@nr=0-1-2647367-1120218725-76c4fa4c2ecb396d----1701562008287
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562005.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:43 GMT
content-type: text/css; charset=utf-8
x-powered-by:
access-control-allow-origin: http://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"8089-h7gjpxz4EH7tXQvVtod1bXyC4Tw"
expires: Sun, 03 Dec 2023 00:06:42 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790b78f9756af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/main.5139e63dcaa68cb8.js
1.1 MB URL monroecounty.savings.workingadvantage.com/main.5139e63dcaa68cb8.js
IP
File type Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Size 1.1 MB (1091835 bytes)
Hash 95bfd7911ea2afc23eda60fb065f7fa8
6b39d5dbb053484b6ffa3d36932fcd61744f8c75
e57f1978d4478f1baf0978eb135cbf7da6bc2fb5cef9e0c3b6ef7df8d25f2a26
GET /main.5139e63dcaa68cb8.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569205s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562005.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:42 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-5058de"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790b02ba056af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.googletagmanager.com/a?v=3&t=l&pid=1360457787&rv=3bt0&u=AAAAAAAAAAAAAIAg&h=Ag>m=45fe3bt0v9137961531&ccid=137961531&cid=DC-12084042&l=DC-12084042.L476.S4.Y20.B38.E61.I872.EC7.TC3.HTC0~gtm.init.S1.V0.TS5ogt1pdatav2.TI4.TE6.TS5ccdadd1pdata.TI6.TE1~gtm.js.S1.V0.TS5rep.TI1.TE0~gtm.dom.S1.V0.E47~*.S0.V0.E25~gtm.scrollDepth.S1.V0.E26~gtm.load.S1.V1.E13~gtm.init_consent.S1.V0.E49
200 OK 0 B URL GET HTTP/3 www.googletagmanager.com/a?v=3&t=l&pid=1360457787&rv=3bt0&u=AAAAAAAAAAAAAIAg&h=Ag>m=45fe3bt0v9137961531&ccid=137961531&cid=DC-12084042&l=DC-12084042.L476.S4.Y20.B38.E61.I872.EC7.TC3.HTC0~gtm.init.S1.V0.TS5ogt1pdatav2.TI4.TE6.TS5ccdadd1pdata.TI6.TE1~gtm.js.S1.V0.TS5rep.TI1.TE0~gtm.dom.S1.V0.E47~*.S0.V0.E25~gtm.scrollDepth.S1.V0.E26~gtm.load.S1.V1.E13~gtm.init_consent.S1.V0.E49
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /a?v=3&t=l&pid=1360457787&rv=3bt0&u=AAAAAAAAAAAAAIAg&h=Ag>m=45fe3bt0v9137961531&ccid=137961531&cid=DC-12084042&l=DC-12084042.L476.S4.Y20.B38.E61.I872.EC7.TC3.HTC0~gtm.init.S1.V0.TS5ogt1pdatav2.TI4.TE6.TS5ccdadd1pdata.TI6.TE1~gtm.js.S1.V0.TS5rep.TI1.TE0~gtm.dom.S1.V0.E47~*.S0.V0.E25~gtm.scrollDepth.S1.V0.E26~gtm.load.S1.V1.E13~gtm.init_consent.S1.V0.E49 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:43 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
monroecounty.savings.workingadvantage.com/common.6877f4cd99d70c34.js
200 OK 72 kB URL GET HTTP/3 monroecounty.savings.workingadvantage.com/common.6877f4cd99d70c34.js
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (8419), with no line terminators
Hash 9977fa05d72bf5b762a669ac699f8158
49a04c022d3ccdd5790e10aad26f4ceb540dc94e
3bfb80ec9f9f78c8dd42a755c9c1140ad27103945f94bfef49c57319eeadc650
GET /common.6877f4cd99d70c34.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:44 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-20e3"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790bddb3356af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/favicon.ico
200 OK 2.6 kB URL GET HTTP/3 monroecounty.savings.workingadvantage.com/favicon.ico
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2673)
Hash 24a552b5b6c178308daf7a050741593e
6ec1080805278525ecdf8b8ea25eb4f88c3e668e
3a55e8419cc8ab7e38bea69e5498963debe3c71075241deaee04eeddd3df4708
GET /favicon.ico HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:43 GMT
content-type: text/html; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:56 GMT
vary: Accept-Encoding
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790bc2a4256af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/api/notifications/system-wide
2 B URL monroecounty.savings.workingadvantage.com/api/notifications/system-wide
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /api/notifications/system-wide HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6IjcxOGFkMmJhMDdiMDJlMDAiLCJ0ciI6IjRlNzdkYWNlOWUxNjY2ODA2NmYwMDhhMmY3ZWIzNjAwIiwidGkiOjE3MDE1NjIwMDkzNTEsInRrIjoiODg4MzEifX0=
traceparent: 00-4e77dace9e16668066f008a2f7eb3600-718ad2ba07b02e00-01
tracestate: 88831@nr=0-1-2647367-1120218725-718ad2ba07b02e00----1701562009351
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6IjYxYjdiMWZjMGE3MGNmZDBjMzcwYjE4NiIsInJvbGVzIjpbIm1hcmtldHBsYWNlX2tub3duIl0sIm9yaWdpbmFsX3VzZXJfZ3VpZCI6Ijdlb2U5ZHh0ZnBwejF2MWh6MW1rM3B4eHgiLCJpYXQiOjE3MDE1NjIwMDEsImV4cCI6MTcwMTU2NTYwMX0.ijTGdTw-UQ4tDUEJ-8c6PkIwATGDbaj8radDkMAg9Ko
short-token: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJndWlkIjoiZG1rNmJjcXRramxta2F4cjBmdWlpYXY1ciIsImlhdCI6MTcwMTU2MjAwMywiZXhwIjoxNzAxNTY1NjAzfQ.XNpisMakb8gVvCq_hoEb8zPJlSvYbno8kdjp3yR6pbg
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:44 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by:
access-control-allow-origin: http://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"2-l9Fw4VUO7kr8CvBlt4zaMCqXZ0w"
expires: Sun, 03 Dec 2023 00:06:43 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790be6b8556af-OSL
alt-svc: h3=":443"; ma=86400
www.googletagmanager.com/gtm.js?id=GTM-5QN8HWM
79 kB URL www.googletagmanager.com/gtm.js?id=GTM-5QN8HWM
IP
File type ASCII text, with very long lines (19808)
Hash bd10ae798c582997640f819a5d8e934b
40925480b7702470c529c47db7aac17724ca0679
fcc11eb06f22a9d7341549f704caa60e0deae4c51b274300cb860e175eda474f
GET /gtm.js?id=GTM-5QN8HWM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 00:06:44 GMT
expires: Sun, 03 Dec 2023 00:06:44 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79019
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
monroecounty.savings.workingadvantage.com/polyfills.efd19b87dc3c9f76.js
55 kB URL monroecounty.savings.workingadvantage.com/polyfills.efd19b87dc3c9f76.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2231fe87edd0abc28d7517072aeac06a
df8009ed57a5d1de1b9a03d0657f68bf7be51c2b
4767b15ec5f17f5573f2e58430544bff2be4c30cb3c166ed4428971feaae85c5
GET /polyfills.efd19b87dc3c9f76.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569205s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562005.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:42 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-234ab"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790b02b9e56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
g3i.imgix.net/uploads/monroecounty_logo_wide_01.png?w=440&h=40&crop=entropy&fit=clip&trim=color&trim-color=FFFFFF
4.1 kB URL g3i.imgix.net/uploads/monroecounty_logo_wide_01.png?w=440&h=40&crop=entropy&fit=clip&trim=color&trim-color=FFFFFF
IP
File type PNG image data, 40 x 40, 8-bit/color RGB, non-interlaced\012- data
Hash db9256104e063be7df6070028fc4e372
b010d59388a3c7c07a2efe2c7ba198c185078234
d7e3cb67ff50225168e180cce4fe5c2f168c89f82dc3cca828afdb86ad98cd31
GET /uploads/monroecounty_logo_wide_01.png?w=440&h=40&crop=entropy&fit=clip&trim=color&trim-color=FFFFFF HTTP/1.1
Host: g3i.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Sun, 26 Nov 2023 15:36:35 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: e3b13191ced042dedc0128e28f56da07489b3e4a
x-imgix-render-farm: 01.140360
date: Sun, 03 Dec 2023 00:06:44 GMT
age: 549009
accept-ranges: bytes
content-type: image/png
access-control-allow-origin: *
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc1000130-SJC, cache-bma1632-BMA
x-cache: HIT, MISS
content-length: 4121
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-2K753Z6D0L&l=dataLayer&cx=c
200 OK 86 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-2K753Z6D0L&l=dataLayer&cx=c
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (13010)
Hash ab0da80ef4f23436f91b856a56f74221
096d000d78fed3567d4ee0bf4e38ae7b9444c7e2
c7968c595ba332e37c9a38f421f4eb8ab5532d5aee9d4c73d62395f59282b707
GET /gtag/js?id=G-2K753Z6D0L&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 00:06:44 GMT
expires: Sun, 03 Dec 2023 00:06:44 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 85757
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
monroecounty.savings.workingadvantage.com/api/profile?userGuid=7eoe9dxtfppz1v1hz1mk3pxxx&knownEmail=armandobenitez%40monroecounty.gov&knownEmailContact=armandobenitez%40monroecounty.gov
15 kB URL monroecounty.savings.workingadvantage.com/api/profile?userGuid=7eoe9dxtfppz1v1hz1mk3pxxx&knownEmail=armandobenitez%40monroecounty.gov&knownEmailContact=armandobenitez%40monroecounty.gov
IP
File type JSON data\012- , ASCII text, with very long lines (1277), with no line terminators
Hash 46db8d16622e5d197522f5846008800c
2390c53dc6043da4c58218e2c992aabf53a5ce6c
d3dfd5b0547662bdb5304a03efd9827a4ae41db9c007ee29c1b845f393108da8
GET /api/profile?userGuid=7eoe9dxtfppz1v1hz1mk3pxxx&knownEmail=armandobenitez%40monroecounty.gov&knownEmailContact=armandobenitez%40monroecounty.gov HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6IjQ1ZDE5NzJkZDIxMjc5N2UiLCJ0ciI6IjJjZmUwY2JlMzU4NGExNjIyYmUxOGM2NDFlYzE4ODAwIiwidGkiOjE3MDE1NjIwMDk2MzMsInRrIjoiODg4MzEifX0=
traceparent: 00-2cfe0cbe3584a1622be18c641ec18800-45d1972dd212797e-01
tracestate: 88831@nr=0-1-2647367-1120218725-45d1972dd212797e----1701562009633
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6IjYxYjdiMWZjMGE3MGNmZDBjMzcwYjE4NiIsInJvbGVzIjpbIm1hcmtldHBsYWNlX2tub3duIl0sIm9yaWdpbmFsX3VzZXJfZ3VpZCI6Ijdlb2U5ZHh0ZnBwejF2MWh6MW1rM3B4eHgiLCJpYXQiOjE3MDE1NjIwMDEsImV4cCI6MTcwMTU2NTYwMX0.ijTGdTw-UQ4tDUEJ-8c6PkIwATGDbaj8radDkMAg9Ko
short-token: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJndWlkIjoiZG1rNmJjcXRramxta2F4cjBmdWlpYXY1ciIsImlhdCI6MTcwMTU2MjAwMywiZXhwIjoxNzAxNTY1NjAzfQ.XNpisMakb8gVvCq_hoEb8zPJlSvYbno8kdjp3yR6pbg
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:45 GMT
content-type: application/json; charset=utf-8
x-powered-by:
access-control-allow-origin: http://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"4fd-I5DFPcYEPaTFghjiyZKqv1Olzmw"
expires: Sun, 03 Dec 2023 00:06:44 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790c00cbb56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_bpItZqUpA333RVI&Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web
34 kB URL siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_bpItZqUpA333RVI&Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web
IP
File type JSON data\012- , ASCII text, with very long lines (4651), with no line terminators
Hash 3f203a3174d3a697abbc9ab581614ca9
081e522a7a1c71c7dc130b60ddc6040cac35d4a1
61ce535695621b5bf6f8221f424e3966822bf8c669482e1eac977828109965be
POST /WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_bpItZqUpA333RVI&Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 268
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 03 Dec 2023 00:06:44 GMT
content-type: application/json
cf-ray: 82f790c248d056cc-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
cache-control: no-store, no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-credentials: true
content-security-policy-report-only: frame-ancestors 'self' *.qualtrics.com *.my.salesforce.com *.visualforce.com *.visual.force.com *.lightning.force.com; report-uri https://sjc1.qualtrics.com/csp-report
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
trace-id: 68e35b445eba60da
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/decisions/search
200 OK 12 B URL POST HTTP/3 monroecounty.savings.workingadvantage.com/decisions/search
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 52f30c97cbacaf796aed3ba46af9737b
17a83bb01c89bae39c6189204e7ce3f78ca0f991
eef46741adfc3a9f76294d3b78f37a45f113092ac9d44ee77c7a038a88ff09a1
POST /decisions/search HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6ImVlZmUyZThkOWRkZWIzZTUiLCJ0ciI6IjQ3NjAwYzhlYzY0MzVjOWRkN2IzOTNlNTkwNzQ4YTAwIiwidGkiOjE3MDE1NjIwMTA3MTMsInRrIjoiODg4MzEifX0=
traceparent: 00-47600c8ec6435c9dd7b393e590748a00-eefe2e8d9ddeb3e5-01
tracestate: 88831@nr=0-1-2647367-1120218725-eefe2e8d9ddeb3e5----1701562010713
Content-Type: application/json
Content-Length: 133
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true; split_test_groups={}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:45 GMT
content-type: application/json; charset=utf-8
content-length: 12
x-powered-by:
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"c-F6g7sByJuuOcYYkgTnzj94yg+ZE"
expires: Sun, 03 Dec 2023 00:06:44 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790c6b8f756af-OSL
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/488.e735596e6f81f2e3.js
18 kB URL monroecounty.savings.workingadvantage.com/488.e735596e6f81f2e3.js
IP
File type ASCII text, with very long lines (53382), with no line terminators
Hash 896d3995787987d5c17a332af1abe18e
9452d8d472ec7575fd7ec2668a5a76dfbf36e7a2
1b932afc5931c2cee3469eaea49342da88d558a3681779c112041dd43c03374f
GET /488.e735596e6f81f2e3.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:44 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-d086"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790be1b4856af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
siteintercept.qualtrics.com/WRQualtricsShared/Graphics/siteintercept/wr-dialog-close-btn-black.png
256 B URL siteintercept.qualtrics.com/WRQualtricsShared/Graphics/siteintercept/wr-dialog-close-btn-black.png
IP
File type PNG image data, 36 x 36, 8-bit gray+alpha, non-interlaced\012- data
Hash fd495ca24c74d95ea3d5566a7cb25112
24682c91808ce607ab93b59c3bf7f343eba37e73
2547640cd989b80083eb3ade2a4993c1776a1229cfffd41adeb0fef3e86eaf2b
GET /WRQualtricsShared/Graphics/siteintercept/wr-dialog-close-btn-black.png HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 03 Dec 2023 00:06:45 GMT
content-type: image/png
content-length: 256
cf-ray: 82f790c7cb1a56cc-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 423151
cache-control: max-age=315360000, public
expires: Sun, 06 Nov 2033 06:11:06 GMT
last-modified: Mon, 06 Nov 2023 19:06:31 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-polished: origSize=757
content-security-policy-report-only: frame-ancestors 'self' *.qualtrics.com *.my.salesforce.com *.visualforce.com *.visual.force.com *.lightning.force.com; report-uri https://sjc1.qualtrics.com/csp-report
p3p: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
servershortname:
trace-id: 50c2b12b1bf32bc8
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/497.b388b30904fb314a.js
21 kB URL monroecounty.savings.workingadvantage.com/497.b388b30904fb314a.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 568d23f140990a2c8e23ce4efc8a46d5
0b89e8c343bfd7c609513bb42c37e8b214d4b910
c7f01e5f7f8d9bdaff9775cf64a8cfc6f3d6d59825f4221d3eac4a1386c24db3
GET /497.b388b30904fb314a.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:44 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-131c2"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790bdfb3c56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RCfc27f81c245c44b78fbb03ff4af1a6be-source.min.js
214 B URL assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RCfc27f81c245c44b78fbb03ff4af1a6be-source.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hash 9de49b0d72b52bcff35a575dcbf3a505
67b61404e3f0bf10d1aa5a8895b5f0840a2b8f4d
c8ab5af61a41599d2375ab31a82cc778a38e29b25049ac57f1e6fcd60c004afe
GET /a281455e4dfe/86f9b29df5eb/99058982850f/RCfc27f81c245c44b78fbb03ff4af1a6be-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "52b5e7d86e1980765da3e075758f5e02:1700230292.716631"
last-modified: Fri, 17 Nov 2023 14:11:32 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
expires: Sun, 03 Dec 2023 01:06:46 GMT
date: Sun, 03 Dec 2023 00:06:46 GMT
content-length: 214
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RC986b4d5825364bd4887033e40e20c549-source.min.js
429 B URL assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RC986b4d5825364bd4887033e40e20c549-source.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (610)
Hash 312cb3e912e23ae79d6f14e1f73679ac
a3303715a66d325886a96badf99dc1111dbffa2c
d56b6db4e16388149899dcea8f2bcbf6856bb84e7b9b866ddf3c388e5d12e8d6
Analyzer Verdict Alert Public Nextron YARA rules malware Webshells iisstart.aspx and Logout.aspx
GET /a281455e4dfe/86f9b29df5eb/99058982850f/RC986b4d5825364bd4887033e40e20c549-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "52b5e7d86e1980765da3e075758f5e02:1700230292.716631"
last-modified: Fri, 17 Nov 2023 14:11:32 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
expires: Sun, 03 Dec 2023 01:06:46 GMT
date: Sun, 03 Dec 2023 00:06:46 GMT
content-length: 429
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RCeae189b6ffaa4d18a4348fba9835c4f9-source.min.js
231 B URL assets.adobedtm.com/a281455e4dfe/86f9b29df5eb/99058982850f/RCeae189b6ffaa4d18a4348fba9835c4f9-source.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint8E:2F:9F:94:55:93:C2:B5:58:37:E8:D3:02:3C:23:AF:BA:E7:1D:EA
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hash 557b8dd71ed75c8d8c77f763c5924861
62c454d7f6575db44d6123a8513164f2b079501f
36a580c0b6a8414df619303ee0e522f47d6695779a31a4fd2b55edc64afc8e36
GET /a281455e4dfe/86f9b29df5eb/99058982850f/RCeae189b6ffaa4d18a4348fba9835c4f9-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "52b5e7d86e1980765da3e075758f5e02:1700230292.716631"
last-modified: Fri, 17 Nov 2023 14:11:32 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 231
cache-control: max-age=3600
expires: Sun, 03 Dec 2023 01:06:46 GMT
date: Sun, 03 Dec 2023 00:06:46 GMT
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
timing-allow-origin: *
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/api/platform/options/onetrust
200 OK 52 kB URL GET HTTP/3 monroecounty.savings.workingadvantage.com/api/platform/options/onetrust
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (501), with no line terminators
Hash 323b183e15b47425a7830d61290d9dd4
ee9f6c9554c7ff236eebfc58d0697412477959db
05f687735d78286be14d4e10a1fb29138cddcf927835e5441b61406512db7c8e
GET /api/platform/options/onetrust HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6IjljNmJjYmQzOTJlYTJmMGEiLCJ0ciI6IjAzYmFjZTViM2RmYjY2ZWIyMGU3ODZlZmY1Njg4NTAwIiwidGkiOjE3MDE1NjIwMDY0MjYsInRrIjoiODg4MzEifX0=
traceparent: 00-03bace5b3dfb66eb20e786eff5688500-9c6bcbd392ea2f0a-01
tracestate: 88831@nr=0-1-2647367-1120218725-9c6bcbd392ea2f0a----1701562006426
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569205s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562005.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:41 GMT
content-type: application/json; charset=utf-8
x-powered-by:
access-control-allow-origin: http://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"1f5-7p9slVTH/yNu6/xY0Gl0Ekd5Wds"
expires: Sun, 03 Dec 2023 00:06:40 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790abe95456af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/decisions/search
200 OK 12 B URL POST HTTP/3 monroecounty.savings.workingadvantage.com/decisions/search
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 52f30c97cbacaf796aed3ba46af9737b
17a83bb01c89bae39c6189204e7ce3f78ca0f991
eef46741adfc3a9f76294d3b78f37a45f113092ac9d44ee77c7a038a88ff09a1
POST /decisions/search HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6IjcxMmQ4N2MwYmRiYjAyOTQiLCJ0ciI6IjdkNTc5YjhjZDdiOGMyN2M3YzYxNTQ1ZGRlZDM2MzAwIiwidGkiOjE3MDE1NjIwMTIyMTUsInRrIjoiODg4MzEifX0=
traceparent: 00-7d579b8cd7b8c27c7c61545dded36300-712d87c0bdbb0294-01
tracestate: 88831@nr=0-1-2647367-1120218725-712d87c0bdbb0294----1701562012215
Content-Type: application/json
Content-Length: 174
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569211s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563872; at_check=true; split_test_groups={}; tnt_guid=7eoe9dxtfppz1v1hz1mk3pxxx; g3refurl=https%253A%252F%252Fmonroecounty.savings.workingadvantage.com%252Fhome%253Fsource-id%253Demail%2526utm_source%253Demail%2526utm_campaign%253Demail-mme%2526utm_medium%253Dnovember-30-2023-mme%2526utm_content%253Dprefooterbutton; prev_url_v2=https%253A%252F%252Fmonroecounty.savings.workingadvantage.com%252Fhome%253Fsource-id%253Demail%2526utm_source%253Demail%2526utm_campaign%253Demail-mme%2526utm_medium%253Dnovember-30-2023-mme%2526utm_content%253Dprefooterbutton; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:47 GMT
content-type: application/json; charset=utf-8
content-length: 12
x-powered-by:
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"c-F6g7sByJuuOcYYkgTnzj94yg+ZE"
expires: Sun, 03 Dec 2023 00:06:46 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790d00ec456af-OSL
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/api/mreg/daily-entry
0 B URL monroecounty.savings.workingadvantage.com/api/mreg/daily-entry
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
PUT /api/mreg/daily-entry HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6IjE0OGQ2OTM1Mjg0MjkzZjkiLCJ0ciI6ImM0MDliYTM0NGJkMTEwODUwMTc1YmUwYmRmNzc5ZDAwIiwidGkiOjE3MDE1NjIwMTIyMzEsInRrIjoiODg4MzEifX0=
traceparent: 00-c409ba344bd110850175be0bdf779d00-148d6935284293f9-01
tracestate: 88831@nr=0-1-2647367-1120218725-148d6935284293f9----1701562012231
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6IjYxYjdiMWZjMGE3MGNmZDBjMzcwYjE4NiIsInJvbGVzIjpbIm1hcmtldHBsYWNlX2tub3duIl0sIm9yaWdpbmFsX3VzZXJfZ3VpZCI6Ijdlb2U5ZHh0ZnBwejF2MWh6MW1rM3B4eHgiLCJpYXQiOjE3MDE1NjIwMDEsImV4cCI6MTcwMTU2NTYwMX0.ijTGdTw-UQ4tDUEJ-8c6PkIwATGDbaj8radDkMAg9Ko
short-token: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJndWlkIjoiZG1rNmJjcXRramxta2F4cjBmdWlpYXY1ciIsImlhdCI6MTcwMTU2MjAwMywiZXhwIjoxNzAxNTY1NjAzfQ.XNpisMakb8gVvCq_hoEb8zPJlSvYbno8kdjp3yR6pbg
Content-Type: application/json
Content-Length: 64
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569211s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563872; at_check=true; split_test_groups={}; tnt_guid=7eoe9dxtfppz1v1hz1mk3pxxx; g3refurl=https%253A%252F%252Fmonroecounty.savings.workingadvantage.com%252Fhome%253Fsource-id%253Demail%2526utm_source%253Demail%2526utm_campaign%253Demail-mme%2526utm_medium%253Dnovember-30-2023-mme%2526utm_content%253Dprefooterbutton; prev_url_v2=https%253A%252F%252Fmonroecounty.savings.workingadvantage.com%252Fhome%253Fsource-id%253Demail%2526utm_source%253Demail%2526utm_campaign%253Demail-mme%2526utm_medium%253Dnovember-30-2023-mme%2526utm_content%253Dprefooterbutton; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Sun, 03 Dec 2023 00:06:47 GMT
x-powered-by:
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
expires: Sun, 03 Dec 2023 00:06:46 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790d02edb56af-OSL
alt-svc: h3=":443"; ma=86400
maps.googleapis.com/maps-api-v3/api/js/54/12a/common.js
57 kB URL maps.googleapis.com/maps-api-v3/api/js/54/12a/common.js
IP
File type ASCII text, with very long lines (4584)
Hash 62dd4694504b9493499887d729e7d456
31e1581fda82bcbe5971f202b686a7f2d16d3394
0b6fb8c2b9ee6b41540fd549a726e431eb8667074da38d94af8a647ae05e9da7
GET /maps-api-v3/api/js/54/12a/common.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 57367
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:48:44 GMT
expires: Thu, 28 Nov 2024 21:48:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 06 Nov 2023 21:27:26 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 267483
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
monroecounty.savings.workingadvantage.com/assets/header/shopping-cart.svg
51 kB URL monroecounty.savings.workingadvantage.com/assets/header/shopping-cart.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (496)
Hash 755ca0bcc8bf45d805ef64db504114e0
53c41db22e2a07df481e91d4805f612874431b74
8c846a8c3ba4fb719a679d929f2ef9a2c90f75d1400c5667d25fa70e4831aa7e
GET /assets/header/shopping-cart.svg HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:44 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 02:18:55 GMT
etag: W/"65669f8f-5d4"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790be6b8c56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/decisions/search
200 OK 12 B URL POST HTTP/3 monroecounty.savings.workingadvantage.com/decisions/search
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 52f30c97cbacaf796aed3ba46af9737b
17a83bb01c89bae39c6189204e7ce3f78ca0f991
eef46741adfc3a9f76294d3b78f37a45f113092ac9d44ee77c7a038a88ff09a1
POST /decisions/search HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6IjZiMjRmMWQ4OTVlOGY2OTYiLCJ0ciI6IjNjMmZjNjZkMGMzNmU1YjcwZjNhMGE2ODBkZjk1MTAwIiwidGkiOjE3MDE1NjIwMTIzOTIsInRrIjoiODg4MzEifX0=
traceparent: 00-3c2fc66d0c36e5b70f3a0a680df95100-6b24f1d895e8f696-01
tracestate: 88831@nr=0-1-2647367-1120218725-6b24f1d895e8f696----1701562012392
Content-Type: application/json
Content-Length: 174
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569211s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563872; at_check=true; split_test_groups={}; tnt_guid=7eoe9dxtfppz1v1hz1mk3pxxx; g3refurl=https%253A%252F%252Fmonroecounty.savings.workingadvantage.com%252Fhome%253Fsource-id%253Demail%2526utm_source%253Demail%2526utm_campaign%253Demail-mme%2526utm_medium%253Dnovember-30-2023-mme%2526utm_content%253Dprefooterbutton; prev_url_v2=https%253A%252F%252Fmonroecounty.savings.workingadvantage.com%252Fhome%253Fsource-id%253Demail%2526utm_source%253Demail%2526utm_campaign%253Demail-mme%2526utm_medium%253Dnovember-30-2023-mme%2526utm_content%253Dprefooterbutton; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:47 GMT
content-type: application/json; charset=utf-8
content-length: 12
x-powered-by:
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"c-F6g7sByJuuOcYYkgTnzj94yg+ZE"
expires: Sun, 03 Dec 2023 00:06:46 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790d12f6956af-OSL
alt-svc: h3=":443"; ma=86400
g3i.imgix.net/uploads/ic-near_me.svg?w=26&h=26&crop=entropy&fit=crop
1.6 kB URL g3i.imgix.net/uploads/ic-near_me.svg?w=26&h=26&crop=entropy&fit=crop
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1885)
Hash d2f152f78b8f785051b9ec42d8255e73
909cfe6989b9af06ad980d640f4b0239ede5ef0c
5e3aaa9f88a2f8d86b4ec4d1e1061911982dfef53cd77689b99980d39182452b
GET /uploads/ic-near_me.svg?w=26&h=26&crop=entropy&fit=crop HTTP/1.1
Host: g3i.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
last-modified: Thu, 19 Mar 2020 22:23:04 GMT
content-encoding: gzip
server: imgix
x-imgix-id: 65bb66b04953a311c7051ab97ae158551a23ad6e
x-imgix-render-farm: 01.140360
date: Sun, 03 Dec 2023 00:06:47 GMT
age: 2155588
accept-ranges: bytes
content-type: image/svg+xml
access-control-allow-origin: *
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10082-SJC, cache-bma1632-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
content-length: 1590
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/api/zones/search?page=homepage§ion=1&country_last=US&known_user_email=armandobenitez@monroecounty.gov
1.6 kB URL monroecounty.savings.workingadvantage.com/api/zones/search?page=homepage§ion=1&country_last=US&known_user_email=armandobenitez@monroecounty.gov
IP
File type JSON data\012- , ASCII text, with very long lines (3996), with no line terminators
Hash cfc94a86c38d1d7f130d0dc3042e53cb
4a304591a8b89c1bf27b32432e210efd1edc5449
b16f9d8043f7646c1922ca2682bd1fb48bc6728d9f4d57fe54a852603b78890b
GET /api/zones/search?page=homepage§ion=1&country_last=US&known_user_email=armandobenitez@monroecounty.gov HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6IjZhMmI3ZTkxNDlhYTNhZGIiLCJ0ciI6IjIxY2EyYjU4ZDFiNGUwNTVmOTU5NTkwMGUxODBjOTAwIiwidGkiOjE3MDE1NjIwMTE4NzcsInRrIjoiODg4MzEifX0=
traceparent: 00-21ca2b58d1b4e055f9595900e180c900-6a2b7e9149aa3adb-01
tracestate: 88831@nr=0-1-2647367-1120218725-6a2b7e9149aa3adb----1701562011877
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6IjYxYjdiMWZjMGE3MGNmZDBjMzcwYjE4NiIsInJvbGVzIjpbIm1hcmtldHBsYWNlX2tub3duIl0sIm9yaWdpbmFsX3VzZXJfZ3VpZCI6Ijdlb2U5ZHh0ZnBwejF2MWh6MW1rM3B4eHgiLCJpYXQiOjE3MDE1NjIwMDEsImV4cCI6MTcwMTU2NTYwMX0.ijTGdTw-UQ4tDUEJ-8c6PkIwATGDbaj8radDkMAg9Ko
short-token: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJndWlkIjoiZG1rNmJjcXRramxta2F4cjBmdWlpYXY1ciIsImlhdCI6MTcwMTU2MjAwMywiZXhwIjoxNzAxNTY1NjAzfQ.XNpisMakb8gVvCq_hoEb8zPJlSvYbno8kdjp3yR6pbg
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569211s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563872; at_check=true; split_test_groups={}; sat_domain=A; tnt_guid=7eoe9dxtfppz1v1hz1mk3pxxx; g3refurl=https%253A%252F%252Fmonroecounty.savings.workingadvantage.com%252Fhome%253Fsource-id%253Demail%2526utm_source%253Demail%2526utm_campaign%253Demail-mme%2526utm_medium%253Dnovember-30-2023-mme%2526utm_content%253Dprefooterbutton; prev_url_v2=https%253A%252F%252Fmonroecounty.savings.workingadvantage.com%252Fhome%253Fsource-id%253Demail%2526utm_source%253Demail%2526utm_campaign%253Demail-mme%2526utm_medium%253Dnovember-30-2023-mme%2526utm_content%253Dprefooterbutton; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:47 GMT
content-type: application/json; charset=utf-8
x-powered-by:
access-control-allow-origin: http://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"f9c-SjBFkai4nBvyezJDLiEO/R7cVEk"
expires: Sun, 03 Dec 2023 00:06:45 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790cdfd7156af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
siteintercept.qualtrics.com/dxjsmodule/FeedbackButtonModule.js?Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web&Q_BRANDID=ebg
27 kB URL siteintercept.qualtrics.com/dxjsmodule/FeedbackButtonModule.js?Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web&Q_BRANDID=ebg
IP
File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (62977), with no line terminators
Hash a8b841cfdd104d555567dfdeb958eee8
24944afff764a5e92b2ca2042e9d3cdf79065a93
1eaa61116a44b60d15c87e58db63270223e677db1d546e128906d77d11c8a572
GET /dxjsmodule/FeedbackButtonModule.js?Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web&Q_BRANDID=ebg HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 03 Dec 2023 00:06:45 GMT
content-type: application/javascript
cf-ray: 82f790c3b95e56cc-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 235667
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"fefe-18bacbdecd0"
last-modified: Wed, 08 Nov 2023 02:23:30 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=65278
content-security-policy-report-only: frame-ancestors 'self' *.qualtrics.com *.my.salesforce.com *.visualforce.com *.visual.force.com *.lightning.force.com; report-uri https://sjc1.qualtrics.com/csp-report
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/api/navigation/monroecounty/header/US/known?siteTag=WAG3
200 OK 5.7 kB URL GET HTTP/3 monroecounty.savings.workingadvantage.com/api/navigation/monroecounty/header/US/known?siteTag=WAG3
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (24437), with no line terminators
Hash 3a9fe2f47d21ef6b2299910aaa467213
d08d476b8eb43013bbf76a02948c605e9ee9e404
a0a7002d18243d73e33c544e0d0b261deeaaa28c26285edb5f9ce889c47ebd67
GET /api/navigation/monroecounty/header/US/known?siteTag=WAG3 HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6IjM2OThmNzNjNzA3NDdmZmUiLCJ0ciI6ImY0YzhhMDJmNTEwYzVmYWJkMjViOTZkMGU1ZDlhYjAwIiwidGkiOjE3MDE1NjIwMTA5NjMsInRrIjoiODg4MzEifX0=
traceparent: 00-f4c8a02f510c5fabd25b96d0e5d9ab00-3698f73c70747ffe-01
tracestate: 88831@nr=0-1-2647367-1120218725-3698f73c70747ffe----1701562010963
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6IjYxYjdiMWZjMGE3MGNmZDBjMzcwYjE4NiIsInJvbGVzIjpbIm1hcmtldHBsYWNlX2tub3duIl0sIm9yaWdpbmFsX3VzZXJfZ3VpZCI6Ijdlb2U5ZHh0ZnBwejF2MWh6MW1rM3B4eHgiLCJpYXQiOjE3MDE1NjIwMDEsImV4cCI6MTcwMTU2NTYwMX0.ijTGdTw-UQ4tDUEJ-8c6PkIwATGDbaj8radDkMAg9Ko
short-token: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJndWlkIjoiZG1rNmJjcXRramxta2F4cjBmdWlpYXY1ciIsImlhdCI6MTcwMTU2MjAwMywiZXhwIjoxNzAxNTY1NjAzfQ.XNpisMakb8gVvCq_hoEb8zPJlSvYbno8kdjp3yR6pbg
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true; split_test_groups={}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:47 GMT
content-type: application/json; charset=utf-8
x-powered-by:
access-control-allow-origin: http://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"5f75-0I1Ha460MBO792oClIxgXp7p5AQ"
expires: Sun, 03 Dec 2023 00:06:46 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790c839cc56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh50XSwiPGQ3q5d0.woff2
14 kB URL fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh50XSwiPGQ3q5d0.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 13724, version 1.0\012- data
Hash cf5ec3859b05de1b9351ab934b937417
97ffac24ea5fe5c47301f1be229699330ea93bf2
bd9a6192274f8f2f3ce31cd3d2cae5ebe32e2fa86fc7c4f60a3c28556e496d56
GET /s/lato/v24/S6u9w4BMUTPHh50XSwiPGQ3q5d0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:58:25 GMT
expires: Fri, 29 Nov 2024 04:58:25 GMT
cache-control: public, max-age=31536000
age: 241704
last-modified: Tue, 02 May 2023 15:20:27 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
monroecounty.savings.workingadvantage.com/decisions/impressions
2 B URL monroecounty.savings.workingadvantage.com/decisions/impressions
IP
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /decisions/impressions HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6IjljY2VkMTE0ZGE5MWUzNjUiLCJ0ciI6Ijc2M2U2MzZlZDE1NTUxMWE3NTUzMGVjOTBkMDAyMTAwIiwidGkiOjE3MDE1NjIwMTQzMjcsInRrIjoiODg4MzEifX0=
traceparent: 00-763e636ed155511a75530ec90d002100-9cced114da91e365-01
tracestate: 88831@nr=0-1-2647367-1120218725-9cced114da91e365----1701562014327
Content-Type: application/json
Content-Length: 58
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569211s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563872; at_check=true; split_test_groups={}; tnt_guid=7eoe9dxtfppz1v1hz1mk3pxxx; g3refurl=https%253A%252F%252Fmonroecounty.savings.workingadvantage.com%252Fhome%253Fsource-id%253Demail%2526utm_source%253Demail%2526utm_campaign%253Demail-mme%2526utm_medium%253Dnovember-30-2023-mme%2526utm_content%253Dprefooterbutton; prev_url_v2=https%253A%252F%252Fmonroecounty.savings.workingadvantage.com%252Fhome%253Fsource-id%253Demail%2526utm_source%253Demail%2526utm_campaign%253Demail-mme%2526utm_medium%253Dnovember-30-2023-mme%2526utm_content%253Dprefooterbutton; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:49 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by:
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
expires: Sun, 03 Dec 2023 00:06:48 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790ddbed756af-OSL
alt-svc: h3=":443"; ma=86400
g3i.imgix.net/uploads/discountmovies-regal-logo-square.png?w=188&h=188&crop=entropy&fit=crop
4.7 kB URL g3i.imgix.net/uploads/discountmovies-regal-logo-square.png?w=188&h=188&crop=entropy&fit=crop
IP
File type PNG image data, 188 x 188, 8-bit/color RGB, non-interlaced\012- data
Hash cbd93c5b61138e5ef6feaee310616c6f
80ff7ef4ed8fa4bf8e1d4075c421cc3d6154845f
d1913529d39ad1ae2cf41d53fb68ff72c89c2440663e5000f13d0bf74e4be6a4
GET /uploads/discountmovies-regal-logo-square.png?w=188&h=188&crop=entropy&fit=crop HTTP/1.1
Host: g3i.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 01 Dec 2023 00:00:00 GMT
cache-control: public, max-age=31536000
server: imgix
x-imgix-id: b8f90b01ea487d34f12f55e376fa7b08d799aa23
x-imgix-render-farm: 01.140360
date: Sun, 03 Dec 2023 00:06:49 GMT
age: 173209
accept-ranges: bytes
content-type: image/png
access-control-allow-origin: *
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc1000125-SJC, cache-bma1632-BMA
x-cache: HIT, MISS
content-length: 4655
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/api/offers/decisions/monroecounty/US?ids=7CkPm2W5BjrqLPPdR0B4wr,3U8frLzPmUXKbJDETx1RE9,36ZTxDbf56nIS2KUNSGrst,6ys7HOW8PJSXBKcmIUjeoJ,0Qb8tb3POctimk2ZTxbats,53BdyEnHHjmDuJH8ohN9dB,4l7ZzAsfJbuq91HhyYvg6L,0ljppHnyISuI1U9JwEXte5,3tb2kY4WTG82FcqR59i3x5,0wWuEKIIam9aM1hIbvFpQw,6CfZiaO3pH0kp6OFObeAsD,3LLmIy0w5TzgeKwtjq5ijb,1Z4ijUcERN9i3unkoqfUV0,6d4WeMYS2ktLrXamu1f9SR&siteTag=WAG3&onlyActive=true&isDynamicData=true&onlyAvailable=true
421 B URL monroecounty.savings.workingadvantage.com/api/offers/decisions/monroecounty/US?ids=7CkPm2W5BjrqLPPdR0B4wr,3U8frLzPmUXKbJDETx1RE9,36ZTxDbf56nIS2KUNSGrst,6ys7HOW8PJSXBKcmIUjeoJ,0Qb8tb3POctimk2ZTxbats,53BdyEnHHjmDuJH8ohN9dB,4l7ZzAsfJbuq91HhyYvg6L,0ljppHnyISuI1U9JwEXte5,3tb2kY4WTG82FcqR59i3x5,0wWuEKIIam9aM1hIbvFpQw,6CfZiaO3pH0kp6OFObeAsD,3LLmIy0w5TzgeKwtjq5ijb,1Z4ijUcERN9i3unkoqfUV0,6d4WeMYS2ktLrXamu1f9SR&siteTag=WAG3&onlyActive=true&isDynamicData=true&onlyAvailable=true
IP
File type JSON data\012- , ASCII text, with very long lines (1339), with no line terminators
Hash 91bb91e9f4192c9ad739a39efed8ced0
a2a715aab9f639d343a05a9f56e0b687e6e04bd4
3903b4b0d0812e47f8654d23d855bf749ece05ac5b15c0787128ad56bc128c74
GET /api/offers/decisions/monroecounty/US?ids=7CkPm2W5BjrqLPPdR0B4wr,3U8frLzPmUXKbJDETx1RE9,36ZTxDbf56nIS2KUNSGrst,6ys7HOW8PJSXBKcmIUjeoJ,0Qb8tb3POctimk2ZTxbats,53BdyEnHHjmDuJH8ohN9dB,4l7ZzAsfJbuq91HhyYvg6L,0ljppHnyISuI1U9JwEXte5,3tb2kY4WTG82FcqR59i3x5,0wWuEKIIam9aM1hIbvFpQw,6CfZiaO3pH0kp6OFObeAsD,3LLmIy0w5TzgeKwtjq5ijb,1Z4ijUcERN9i3unkoqfUV0,6d4WeMYS2ktLrXamu1f9SR&siteTag=WAG3&onlyActive=true&isDynamicData=true&onlyAvailable=true HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6IjAyMmJjYjdmYTU3ZDcyNDIiLCJ0ciI6IjJlMWRkY2Y1Yjg1MThiMTAyMjY3Zjg0YWMzZGM0YjAwIiwidGkiOjE3MDE1NjIwMTQ4MTksInRrIjoiODg4MzEifX0=
traceparent: 00-2e1ddcf5b8518b102267f84ac3dc4b00-022bcb7fa57d7242-01
tracestate: 88831@nr=0-1-2647367-1120218725-022bcb7fa57d7242----1701562014819
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6IjYxYjdiMWZjMGE3MGNmZDBjMzcwYjE4NiIsInJvbGVzIjpbIm1hcmtldHBsYWNlX2tub3duIl0sIm9yaWdpbmFsX3VzZXJfZ3VpZCI6Ijdlb2U5ZHh0ZnBwejF2MWh6MW1rM3B4eHgiLCJpYXQiOjE3MDE1NjIwMDEsImV4cCI6MTcwMTU2NTYwMX0.ijTGdTw-UQ4tDUEJ-8c6PkIwATGDbaj8radDkMAg9Ko
short-token: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJndWlkIjoiZG1rNmJjcXRramxta2F4cjBmdWlpYXY1ciIsImlhdCI6MTcwMTU2MjAwMywiZXhwIjoxNzAxNTY1NjAzfQ.XNpisMakb8gVvCq_hoEb8zPJlSvYbno8kdjp3yR6pbg
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569211s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563872; at_check=true; split_test_groups={}; tnt_guid=7eoe9dxtfppz1v1hz1mk3pxxx; g3refurl=https%253A%252F%252Fmonroecounty.savings.workingadvantage.com%252Fhome%253Fsource-id%253Demail%2526utm_source%253Demail%2526utm_campaign%253Demail-mme%2526utm_medium%253Dnovember-30-2023-mme%2526utm_content%253Dprefooterbutton; prev_url_v2=https%253A%252F%252Fmonroecounty.savings.workingadvantage.com%252Fhome%253Fsource-id%253Demail%2526utm_source%253Demail%2526utm_campaign%253Demail-mme%2526utm_medium%253Dnovember-30-2023-mme%2526utm_content%253Dprefooterbutton; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:50 GMT
content-type: application/json; charset=utf-8
x-powered-by:
access-control-allow-origin: http://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"53b-oqcVqrn2OdNDoFqfVuC2h+bgS9Q"
expires: Sun, 03 Dec 2023 00:06:48 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790e0589356af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/api/offers/decisions/monroecounty/US?ids=&siteTag=WAG3&onlyActive=true&isDynamicData=true&onlyAvailable=true
2 B URL monroecounty.savings.workingadvantage.com/api/offers/decisions/monroecounty/US?ids=&siteTag=WAG3&onlyActive=true&isDynamicData=true&onlyAvailable=true
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /api/offers/decisions/monroecounty/US?ids=&siteTag=WAG3&onlyActive=true&isDynamicData=true&onlyAvailable=true HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6ImNmN2VlMWFmODgzNmJiNzciLCJ0ciI6ImMwMzk3MGY3ZTg1ODZmNTlhYjA2MmU5ODk0Nzk1YzAwIiwidGkiOjE3MDE1NjIwMTY5NTIsInRrIjoiODg4MzEifX0=
traceparent: 00-c03970f7e8586f59ab062e9894795c00-cf7ee1af8836bb77-01
tracestate: 88831@nr=0-1-2647367-1120218725-cf7ee1af8836bb77----1701562016952
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6IjYxYjdiMWZjMGE3MGNmZDBjMzcwYjE4NiIsInJvbGVzIjpbIm1hcmtldHBsYWNlX2tub3duIl0sIm9yaWdpbmFsX3VzZXJfZ3VpZCI6Ijdlb2U5ZHh0ZnBwejF2MWh6MW1rM3B4eHgiLCJpYXQiOjE3MDE1NjIwMDEsImV4cCI6MTcwMTU2NTYwMX0.ijTGdTw-UQ4tDUEJ-8c6PkIwATGDbaj8radDkMAg9Ko
short-token: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJndWlkIjoiZG1rNmJjcXRramxta2F4cjBmdWlpYXY1ciIsImlhdCI6MTcwMTU2MjAwMywiZXhwIjoxNzAxNTY1NjAzfQ.XNpisMakb8gVvCq_hoEb8zPJlSvYbno8kdjp3yR6pbg
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569211s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563872; at_check=true; split_test_groups={}; tnt_guid=7eoe9dxtfppz1v1hz1mk3pxxx; g3refurl=https%253A%252F%252Fmonroecounty.savings.workingadvantage.com%252Fhome%253Fsource-id%253Demail%2526utm_source%253Demail%2526utm_campaign%253Demail-mme%2526utm_medium%253Dnovember-30-2023-mme%2526utm_content%253Dprefooterbutton; prev_url_v2=https%253A%252F%252Fmonroecounty.savings.workingadvantage.com%252Fhome%253Fsource-id%253Demail%2526utm_source%253Demail%2526utm_campaign%253Demail-mme%2526utm_medium%253Dnovember-30-2023-mme%2526utm_content%253Dprefooterbutton; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:51 GMT
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by:
access-control-allow-origin: http://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"2-l9Fw4VUO7kr8CvBlt4zaMCqXZ0w"
expires: Sun, 03 Dec 2023 00:06:50 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790eda8e056af-OSL
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/380.7316288900b5ca94.js
200 OK 28 kB URL GET HTTP/3 monroecounty.savings.workingadvantage.com/380.7316288900b5ca94.js
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (27661), with no line terminators
Hash 5f0faeba926e9c77f188703c2d9a3083
dc000218760ecf896ef06c6be29024498459f7fb
6f794e21cb3f8cc8996e9726f992425051c5c6d47411edd1c6f1a4400e218257
GET /380.7316288900b5ca94.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:44 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-6c0d"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790be0b4756af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
siteintercept.qualtrics.com/WRSiteInterceptEngine/Asset.php?Module=CR_51P1mCE4hMvzcjA&Version=1&Q_InterceptID=SI_a3DMTKPsH4osgZw&Q_ORIGIN=https://monroecounty.savings.workingadvantage.com&Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web
200 OK 1.5 kB URL GET HTTP/2 siteintercept.qualtrics.com/WRSiteInterceptEngine/Asset.php?Module=CR_51P1mCE4hMvzcjA&Version=1&Q_InterceptID=SI_a3DMTKPsH4osgZw&Q_ORIGIN=https://monroecounty.savings.workingadvantage.com&Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerDigiCert Inc
Subject*.qualtrics.com
FingerprintA4:D3:62:A8:70:23:28:65:1D:2F:7D:A1:13:FA:D7:58:89:EA:F3:12
ValidityMon, 27 Mar 2023 00:00:00 GMT - Tue, 26 Mar 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1735), with no line terminators
Hash 0325d89719cac25bbb8ec793a1e8ab22
a6e1716914558c9388f2065c5bb632372b6ddeb1
efd6fb2bb047a88a2fb8de3c389096cbb592c789604518f44b577bc5ccd9b56a
GET /WRSiteInterceptEngine/Asset.php?Module=CR_51P1mCE4hMvzcjA&Version=1&Q_InterceptID=SI_a3DMTKPsH4osgZw&Q_ORIGIN=https://monroecounty.savings.workingadvantage.com&Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 00:06:45 GMT
content-type: application/json
access-control-allow-credentials: false
access-control-allow-origin: *
cache-control: public, max-age=604800, s-maxage=604800, max-age=315360000
edge-control: max-age=604800
expires: Wed, 30 Nov 2033 00:06:45 GMT
p3p: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
servershortname:
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
permissions-policy: camera=(), geolocation=(), microphone=()
content-security-policy-report-only: frame-ancestors 'self' *.qualtrics.com *.my.salesforce.com *.visualforce.com *.visual.force.com *.lightning.force.com; report-uri https://sjc1.qualtrics.com/csp-report
last-modified: Sun, 03 Dec 2023 00:06:45 GMT
cf-cache-status: MISS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 82f790c3c96a56cc-OSL
content-encoding: br
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/645.d10b39b88c521ee0.js
200 OK 235 kB URL GET HTTP/3 monroecounty.savings.workingadvantage.com/645.d10b39b88c521ee0.js
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 235 kB (235217 bytes)
Hash 387b7e87338935e41170f0c7bb0d4e66
88f9f7944090db24bf26eed155a8eb92d88d0759
5df81daed9e7d20f2a08df661ec31679d481a223061b1daea21cc9a3b55a4e47
GET /645.d10b39b88c521ee0.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:44 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-396d1"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790be4b7a56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
siteintercept.qualtrics.com/dxjsmodule/12.20b1d36d36c1dfbe70fa.chunk.js?Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web&Q_BRANDID=monroecounty.savings.workingadvantage.com
200 OK 72 kB URL GET HTTP/2 siteintercept.qualtrics.com/dxjsmodule/12.20b1d36d36c1dfbe70fa.chunk.js?Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web&Q_BRANDID=monroecounty.savings.workingadvantage.com
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerDigiCert Inc
Subject*.qualtrics.com
FingerprintA4:D3:62:A8:70:23:28:65:1D:2F:7D:A1:13:FA:D7:58:89:EA:F3:12
ValidityMon, 27 Mar 2023 00:00:00 GMT - Tue, 26 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 276e605c2b955c7c60c8e862e3de6d0d
0ae90076a0e748a9dc50a86d7e38a67268b8eda4
c5b5c93f6affe076aa846f63596819be1a4b6ca73e58baf41f4b01db979fdb4f
GET /dxjsmodule/12.20b1d36d36c1dfbe70fa.chunk.js?Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web&Q_BRANDID=monroecounty.savings.workingadvantage.com HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 00:06:44 GMT
content-type: application/javascript
cf-ray: 82f790c1e8a256cc-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 253738
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"11ceb-18bacbdecd0"
last-modified: Wed, 08 Nov 2023 02:23:30 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=72939
content-security-policy-report-only: frame-ancestors 'self' *.qualtrics.com *.my.salesforce.com *.visualforce.com *.visual.force.com *.lightning.force.com; report-uri https://sjc1.qualtrics.com/csp-report
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/api/controls/monroecounty
200 OK 2.1 kB URL GET HTTP/3 monroecounty.savings.workingadvantage.com/api/controls/monroecounty
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (2306), with no line terminators
Hash 7227466b5c9d9e1a435e2d7b1ebf861e
7cec1d23d4086fa3ccc3fc2cfa90d512d2fa0c41
3e93a1335d528bb3435497ee03addd9f709d17372caa061706fa6216d1928adc
GET /api/controls/monroecounty HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6ImI4OWY1MGY3MDNlZjYxYTIiLCJ0ciI6IjE1NzMxNDJmMTI2NDA5NWUyNzlmN2E2YmZmNTRlYTAwIiwidGkiOjE3MDE1NjIwMDg2NDQsInRrIjoiODg4MzEifX0=
traceparent: 00-1573142f1264095e279f7a6bff54ea00-b89f50f703ef61a2-01
tracestate: 88831@nr=0-1-2647367-1120218725-b89f50f703ef61a2----1701562008644
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:43 GMT
content-type: application/json; charset=utf-8
x-powered-by:
access-control-allow-origin: http://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
etag: W/"802-l2JAubNJ9M1/PrRHP+sqZphELc4"
expires: Sun, 03 Dec 2023 00:06:42 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790b9e8f656af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/872.cb005446d8bd5f2d.js
200 OK 4.5 kB URL GET HTTP/3 monroecounty.savings.workingadvantage.com/872.cb005446d8bd5f2d.js
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (4713), with no line terminators
Hash da0290831c0eb893872114829a24d764
947219caf01540c6b65521188184aad66145e7ac
93fcf1d8c8c0ec8f27ecae8f58c5a732cdf1449b1ee19e8a546e9691180be067
GET /872.cb005446d8bd5f2d.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:44 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-11ab"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790be2b5256af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
siteintercept.qualtrics.com/dxjsmodule/1.b6ed8c4fe4b3f457815a.chunk.js?Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web&Q_BRANDID=ebg
200 OK 29 kB URL GET HTTP/2 siteintercept.qualtrics.com/dxjsmodule/1.b6ed8c4fe4b3f457815a.chunk.js?Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web&Q_BRANDID=ebg
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerDigiCert Inc
Subject*.qualtrics.com
FingerprintA4:D3:62:A8:70:23:28:65:1D:2F:7D:A1:13:FA:D7:58:89:EA:F3:12
ValidityMon, 27 Mar 2023 00:00:00 GMT - Tue, 26 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (28623), with no line terminators
Hash ca317fc3261fd97d7ae699ce03f153dd
a79c8a5e05b41f44a6a1176e93b6d321fcee34e9
d420011478b9237ee35799a2ad0c8ec8dd01cb9d5cfc7295fdb48556c240c7b0
GET /dxjsmodule/1.b6ed8c4fe4b3f457815a.chunk.js?Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web&Q_BRANDID=ebg HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 00:06:45 GMT
content-type: application/javascript
cf-ray: 82f790c3a94c56cc-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 239588
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"72da-18bacbdecd0"
last-modified: Wed, 08 Nov 2023 02:23:30 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=29402
content-security-policy-report-only: frame-ancestors 'self' *.qualtrics.com *.my.salesforce.com *.visualforce.com *.visual.force.com *.lightning.force.com; report-uri https://sjc1.qualtrics.com/csp-report
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
events.api.boomtrain.com/event/track
200 OK 2 B URL POST HTTP/2 events.api.boomtrain.com/event/track
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerAmazon
Subject*.api.boomtrain.com
FingerprintD7:8D:F7:27:E3:33:FE:CA:3F:51:2C:80:4D:61:A2:41:CA:9E:CA:9B
ValiditySat, 16 Sep 2023 00:00:00 GMT - Mon, 14 Oct 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /event/track HTTP/1.1
Host: events.api.boomtrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1409
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 00:06:43 GMT
content-type: text/plain
content-length: 2
server: nginx
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type, Authorization, x-app-id
access-control-allow-methods: GET, PUT, POST, DELETE
X-Firefox-Spdy: h2
monroecounty.savings.workingadvantage.com/socket.io/?EIO=3&transport=websocket
101 Switching Protocols 0 B URL GET HTTP/1.1 monroecounty.savings.workingadvantage.com/socket.io/?EIO=3&transport=websocket
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?EIO=3&transport=websocket HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://monroecounty.savings.workingadvantage.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Yk959ZQEIZFPA0Nco6p+Ag==
DNT: 1
Connection: keep-alive, Upgrade
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 03 Dec 2023 00:06:44 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dvyO9jDeXeVQtkXssq+l+fJDUGs=
Access-Control-Allow-Origin: https://monroecounty.savings.workingadvantage.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS
CF-Cache-Status: DYNAMIC
Strict-Transport-Security: max-age=5184000; includeSubDomains
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 82f790bd4e6f56a4-OSL
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/439.5b88b2ee09c96ff3.js
200 OK 1.9 kB URL GET HTTP/3 monroecounty.savings.workingadvantage.com/439.5b88b2ee09c96ff3.js
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1915), with no line terminators
Hash 479e0e71b77b980ebc136e3b1ac955d4
d862467b64345a5b2752470a7dfc6038d942c301
cc17f4facd5b9b22729747795849e22cc50892c41f25d23c144a5a0e2d95d05d
GET /439.5b88b2ee09c96ff3.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:44 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-73d"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790be0b4656af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/auth/token?grant_type=authorization_code&client_id=9ezalirn45mF43imJTdf53&code=1YMqxMprHSAgX544P8aUmZ&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx
200 OK 700 B URL GET HTTP/3 monroecounty.savings.workingadvantage.com/auth/token?grant_type=authorization_code&client_id=9ezalirn45mF43imJTdf53&code=1YMqxMprHSAgX544P8aUmZ&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (62977), with no line terminators, ASCII text, with very long lines (722), with no line terminators
Hash d7fdcf8066c73957b8b0d2c5aa94d862
7871c3513996f6cf8c18762c8f6ea645df4b498a
5a9914da6b0e47cc261df75511b17d959457ea5bf64a50d963ccb414aa0b7c97
GET /auth/token?grant_type=authorization_code&client_id=9ezalirn45mF43imJTdf53&code=1YMqxMprHSAgX544P8aUmZ&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI2NDczNjciLCJhcCI6IjExMjAyMTg3MjUiLCJpZCI6IjIzYTA4ZGRlZjYyYjU2NWMiLCJ0ciI6IjdhYzY0OTNkMWJjZjJiMjYzMWJiMTVjYzgxMjVkNjAwIiwidGkiOjE3MDE1NjIwMDg0NzEsInRrIjoiODg4MzEifX0=
traceparent: 00-7ac6493d1bcf2b2631bb15cc8125d600-23a08ddef62b565c-01
tracestate: 88831@nr=0-1-2647367-1120218725-23a08ddef62b565c----1701562008471
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:43 GMT
content-type: application/json; charset=utf-8
x-powered-by:
access-control-allow-origin: http://monroecounty.savings.workingadvantage.com
vary: Origin
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-allow-headers: Origin, Referer, X-Requested-With, Content-Type, Authorization
set-cookie: access_token=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
user_guid=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
etag: W/"2bc-pUO6Fp40G7C85pg8/LS80Y5slXc"
expires: Sun, 03 Dec 2023 00:06:42 GMT
cache-control: no-cache, no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=5184000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790b9e8f556af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/436.e0af5f3a6557c501.js
200 OK 190 kB URL GET HTTP/3 monroecounty.savings.workingadvantage.com/436.e0af5f3a6557c501.js
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 190 kB (189588 bytes)
Hash e0223a7fac75f08cc7120985411ff6ee
a49ee0d5f830da91057c5b4e6119e1e4823cbb71
9401526ea66001a3b64a5e1b2e4d44132065307b07ea2bd11ddc8bbeda6686d9
GET /436.e0af5f3a6557c501.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:44 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-2e494"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790be3b6a56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
monroecounty.savings.workingadvantage.com/341.8f448c9eda7a0f97.js
200 OK 8.7 kB URL GET HTTP/3 monroecounty.savings.workingadvantage.com/341.8f448c9eda7a0f97.js
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerCloudflare, Inc.
Subjectworkingadvantage.com
FingerprintE1:B3:50:87:CF:77:63:80:7F:9D:81:96:18:E2:FA:4F:AC:2D:A8:B6
ValidityThu, 06 Jul 2023 00:00:00 GMT - Thu, 04 Jul 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (8915), with no line terminators
Hash b02a1c3fd89979f3e596d92c5f04250d
f7af20d60a55067a64944f71a10e3a533b3c2683
57f7836e6adca547c58351333c523dcd80c359a7a406d2daeeab6d0ecaaf1e53
GET /341.8f448c9eda7a0f97.js HTTP/1.1
Host: monroecounty.savings.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569207s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563865; at_check=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 03 Dec 2023 00:06:44 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 29 Nov 2023 02:18:46 GMT
vary: Accept-Encoding
etag: W/"65669f86-2226"
strict-transport-security: max-age=5184000; includeSubDomains
x-frame-options: DENY
content-security-policy: frame-src *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com 'unsafe-inline' 'unsafe-eval', frame-ancestors 'self' *.beneplace.com:* *.workingadvantage.com:* *.ebgsolutions.com:* *.demdex.net:* *.everesttech.net:* *.adobedtm.com *.sc.omtrdc.net *.omtrdc.net *.qualtrics.com *.adobe.com *.keen.io *.youtube.com *.kaltura.com *.libertymutual.com
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82f790be4b7b56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
siteintercept.qualtrics.com/dxjsmodule/7.61eadfb61701cbba3995.chunk.js?Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web&Q_BRANDID=ebg
200 OK 2.1 kB URL GET HTTP/2 siteintercept.qualtrics.com/dxjsmodule/7.61eadfb61701cbba3995.chunk.js?Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web&Q_BRANDID=ebg
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerDigiCert Inc
Subject*.qualtrics.com
FingerprintA4:D3:62:A8:70:23:28:65:1D:2F:7D:A1:13:FA:D7:58:89:EA:F3:12
ValidityMon, 27 Mar 2023 00:00:00 GMT - Tue, 26 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (2163), with no line terminators
Hash ab399c92952f37d54f4bbf17cb70148c
ac429538986ecc865c16ff679cf1e1dce794050b
e53757d6b5f85b6218f8438f4e22a36921140f32dcd0714e9391178982316b68
GET /dxjsmodule/7.61eadfb61701cbba3995.chunk.js?Q_CLIENTVERSION=1.103.0&Q_CLIENTTYPE=web&Q_BRANDID=ebg HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 03 Dec 2023 00:06:45 GMT
content-type: application/javascript
cf-ray: 82f790c3a94b56cc-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 423157
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"b58-18bacbdecd0"
last-modified: Wed, 08 Nov 2023 02:23:30 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=2904
content-security-policy-report-only: frame-ancestors 'self' *.qualtrics.com *.my.salesforce.com *.visualforce.com *.visual.force.com *.lightning.force.com; report-uri https://sjc1.qualtrics.com/csp-report
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
smetrics.workingadvantage.com/b/ss/entbenwag3/1/JS-2.22.4-LDQM/s2462398171312
200 OK 43 B URL POST HTTP/2 smetrics.workingadvantage.com/b/ss/entbenwag3/1/JS-2.22.4-LDQM/s2462398171312
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerDigiCert Inc
Subjectsmetrics.workingadvantage.com
FingerprintBF:39:6F:26:01:A5:E2:6D:81:D9:EB:97:B2:50:D2:2D:2F:2D:48:43
ValiditySun, 09 Jul 2023 00:00:00 GMT - Thu, 08 Aug 2024 23:59:59 GMT
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
POST /b/ss/entbenwag3/1/JS-2.22.4-LDQM/s2462398171312 HTTP/1.1
Host: smetrics.workingadvantage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2571
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Cookie: __cf_bm=S3XW19v.unA1F9w_YpR_BT1DCAzrBBwUcFt5vYEpw4w-1701561992-0-AYpAvx7c6cfOYCIRrrzvF9LjDy9XwD06WYSQaUybOG1ouE14uWJXuQs2vEwxwq6eRoOEYhwD6TCGfisyflJrVRU=; AMCV_B5F9FF2554F608410A4C98C6%40AdobeOrg=1176715910%7CMCIDTS%7C19695%7CMCMID%7C48789986143310212871838688022629711645%7CMCAID%7CNONE%7CMCOPTOUT-1701569211s%7CNONE%7CvVersion%7C5.4.0; _ga_FD2X5ZMELR=GS1.1.1701561999.1.1.1701562008.0.0.0; _ga=GA1.1.2102949447.1701561999; s_ecid=MCMID%7C48789986143310212871838688022629711645; _gcl_au=1.1.538960288.1701562000; AMCVS_B5F9FF2554F608410A4C98C6%40AdobeOrg=1; btIdentify=4af58f75-6380-4d3c-f380-ee7699400670; _bti=%7B%22app_id%22%3A%22ebg-wag3%22%2C%22bsin%22%3A%22n2Bw%2BKkZ9F8CbszYmb3bJ%2FgpB9oA0VGVk5nWNud1Ko48IEKzaVr0A470BXTwGugudPuTmSc0s2yUl7QX%2B%2FLuhg%3D%3D%22%2C%22is_identified%22%3Afalse%7D; _bts=c298742c-69ec-411a-bd26-edd54299c0ee; cf_clearance=cTikQ1Tv3ykYPMFr4EoA2cT5P1gOJ6x9XLwD7qsTsjQ-1701561994-0-1-730ca2d2.73a07051.5b213570-0.2.1701561994; mbox=session#d8cda064653e481b8997e684c7034d2f#1701563872; at_check=true; sat_domain=A; tnt_guid=7eoe9dxtfppz1v1hz1mk3pxxx; g3refurl=https%253A%252F%252Fmonroecounty.savings.workingadvantage.com%252Fhome%253Fsource-id%253Demail%2526utm_source%253Demail%2526utm_campaign%253Demail-mme%2526utm_medium%253Dnovember-30-2023-mme%2526utm_content%253Dprefooterbutton; prev_url_v2=https%253A%252F%252Fmonroecounty.savings.workingadvantage.com%252Fhome%253Fsource-id%253Demail%2526utm_source%253Demail%2526utm_campaign%253Demail-mme%2526utm_medium%253Dnovember-30-2023-mme%2526utm_content%253Dprefooterbutton; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://monroecounty.savings.workingadvantage.com
access-control-allow-credentials: true
date: Sun, 03 Dec 2023 00:06:46 GMT
expires: Sat, 02 Dec 2023 00:06:46 GMT
last-modified: Mon, 04 Dec 2023 00:06:46 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_ecid=MCMID%7C48789986143310212871838688022629711645; Path=/; Domain=workingadvantage.com; Max-Age=157680000; Expires=Fri, 01 Dec 2028 00:06:06 GMT;
etag: 3654076584227405824-4617707922279587104
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
maps.googleapis.com/maps-api-v3/api/js/54/12a/util.js
159 kB URL GET maps.googleapis.com/maps-api-v3/api/js/54/12a/util.js
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (584)
Size 159 kB (158979 bytes)
Hash dd9a0890c6719e8bbaf67f14c6032e48
645a019ec207a0c321401b6d0d05da505f9917b7
206b430ad8e96d2f58a4c4cc6d2e5b97b40a1b62d9c1a7b027409b376da8c1de
GET /maps-api-v3/api/js/54/12a/util.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 50370
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 14:58:14 GMT
expires: Thu, 28 Nov 2024 14:58:14 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 06 Nov 2023 21:27:26 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 292113
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn-api-prod.beneplace.com/api/search-natural/monroecounty/US?c=25000,100968,400055&limit=14&orderBy=relevance&isContentRequired=true&dontSaveUserSearch=1&authStatus=known
0 B URL GET cdn-api-prod.beneplace.com/api/search-natural/monroecounty/US?c=25000,100968,400055&limit=14&orderBy=relevance&isContentRequired=true&dontSaveUserSearch=1&authStatus=known
IP
Requested by https://monroecounty.savings.workingadvantage.com/home?source-id=email&utm_source=email&utm_campaign=email-mme&utm_medium=November-30-2023-mme&utm_content=PreFooterButton#grant_type=authorization_code&code=1YMqxMprHSAgX544P8aUmZ&subdomain=monroecounty&client_id=9ezalirn45mF43imJTdf53&user_guid=7eoe9dxtfppz1v1hz1mk3pxxx&token_refreshed=true
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/search-natural/monroecounty/US?c=25000,100968,400055&limit=14&orderBy=relevance&isContentRequired=true&dontSaveUserSearch=1&authStatus=known HTTP/1.1
Host: cdn-api-prod.beneplace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://monroecounty.savings.workingadvantage.com
DNT: 1
Connection: keep-alive
Referer: https://monroecounty.savings.workingadvantage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
104.18.39.111
143.204.53.97
151.101.86.208
23.38.200.237
0.0.0.0