w1.msswol.com/prod/04afe878-c674-4a47-be76-349e373cca14/ab31266b-3b59-4fc3-9841-378f38d3fd58
302 Found 332 B URL HTTP/1.1 w1.msswol.com/prod/04afe878-c674-4a47-be76-349e373cca14/ab31266b-3b59-4fc3-9841-378f38d3fd58
IP
File type HTML document, ASCII text, with very long lines (332), with no line terminators
Hash 249b6604e4ac139b90f8d072a3c1c81a
c3588af96312b4f2d085d00bf0731d6bc7de8e86
ef3b647d7f437e4bc6e5614dd94d44f07c9575edfe270bce56829d16da3ee920
Analyzer Verdict Alert fortinet Phishing
GET /prod/04afe878-c674-4a47-be76-349e373cca14/ab31266b-3b59-4fc3-9841-378f38d3fd58 HTTP/1.1
Host: w1.msswol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sun, 11 Dec 2022 06:43:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 332
Connection: keep-alive
X-Powered-By: Express
Location: https://integrations.api.mailshake.com/beacon/click?emailID=04afe878-c674-4a47-be76-349e373cca14&linkID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Vary: Accept
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 430f1651125c14bfa4924aa1f1a392e9
304141c5fe7ac8b370a67912b2592f9622de9600
315d77a9956f34b1615e38f5f1971dd05146980f8a36b35a8108d47ebba7e8e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "315D77A9956F34B1615E38F5F1971DD05146980F8A36B35A8108D47EBBA7E8E5"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2586
Expires: Sun, 11 Dec 2022 07:26:08 GMT
Date: Sun, 11 Dec 2022 06:43:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 43ad67f241ee3692a9c9c1da080dae58
6a024f7d71eeee257edc91ba9273416f634aaae5
636635b57f9e6d2ad9b1b949298ee7d3b5b7e251a63516ff68bfb1eceded5688
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "636635B57F9E6D2AD9B1B949298EE7D3B5B7E251A63516FF68BFB1ECEDED5688"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11242
Expires: Sun, 11 Dec 2022 09:50:24 GMT
Date: Sun, 11 Dec 2022 06:43:02 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 11 Dec 2022 06:33:31 GMT
content-type: application/json
age: 571
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3798
Expires: Sun, 11 Dec 2022 07:46:20 GMT
Date: Sun, 11 Dec 2022 06:43:02 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: SvQnxjBUVyW9O5e6s+D32LIJT9d16JyBXzTje3Gkjx20x+JT+j7ISU5pGEygMwno2/DM9aWtm3w=
x-amz-request-id: G968B6V9BR4A4Z22
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 11 Dec 2022 05:50:58 GMT
age: 3124
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Dec 2022 06:43:02 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 11 Dec 2022 06:33:15 GMT
age: 588
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash f80185173e0a0ca4456558c1f0e9e0b1
09ba204859fe7f290c4a0b26da43957d30af5517
48950fc12fda3c95ad7b4adb70d2e065f1369d26059642b4f5687b63a1dada50
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=169583
Date: Sun, 11 Dec 2022 06:43:03 GMT
Etag: "63956f66-1d7"
Expires: Tue, 13 Dec 2022 05:49:26 GMT
Last-Modified: Sun, 11 Dec 2022 05:49:26 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _6WUUHBpvVkxkAhLglq_r-Cq50lrMGOzzxDXXttanS_gvU1dDAVubQ==
integrations.api.mailshake.com/beacon/click?emailID=04afe878-c674-4a47-be76-349e373cca14&linkID=ab31266b-3b59-4fc3-9841-378f38d3fd58
302 Found 170 B URL HTTP/2 integrations.api.mailshake.com/beacon/click?emailID=04afe878-c674-4a47-be76-349e373cca14&linkID=ab31266b-3b59-4fc3-9841-378f38d3fd58
IP
File type HTML document, ASCII text, with no line terminators
Hash f251426f4d5404f7bc0c83e4b219ed27
41cf81ec7c25aafedb3e4532c2336613d47d5d5b
5ec566ba2be573518c17ff08a886b3b3d1594d3bec5525e1cd5486b2b7d10fe2
GET /beacon/click?emailID=04afe878-c674-4a47-be76-349e373cca14&linkID=ab31266b-3b59-4fc3-9841-378f38d3fd58 HTTP/1.1
Host: integrations.api.mailshake.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sun, 11 Dec 2022 06:43:03 GMT
content-type: text/html; charset=utf-8
content-length: 170
location: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
x-powered-by: Express
vary: Origin, Accept, Accept-Encoding
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 44d4574b46375a2d215ae74bc5eae610
5257ed3edeb56231a9bee921671bb2e0c566000e
923454b28e4fa10085df809768a75c2d9f58f104afa016c06ccca7a26479073b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1835
Cache-Control: max-age=96862
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:03 GMT
Etag: "63944c2a-1d7"
Expires: Mon, 12 Dec 2022 09:37:25 GMT
Last-Modified: Sat, 10 Dec 2022 09:06:50 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UyPWiHh22SVc6FcxljPvXA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YIDdwDqP3WanB/5kLJfaFoNn5XE=
www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
200 OK 22 kB URL HTTP/1.1 www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (18798), with CRLF, LF line terminators
Hash 93d1deaba589ebdc67c345f10dbb12e0
b5bd8f01a821568c48e9e49257fd5f0c76ba2f11
0c61a6c6ab352efe877a3e7ed685668c116c4b64e27307f0989e27fe18182834
GET /?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58 HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:03 GMT
Server: Apache
WPO-Cache-Status: not cached
WPO-Cache-Message: In the settings, caching is disabled for matches for one of the current request's GET parameters
Link: <https://www.coro.net/wp-json/>; rel="https://api.w.org/", <https://www.coro.net/wp-json/wp/v2/pages/99>; rel="alternate"; type="application/json", <https://www.coro.net/>; rel=shortlink
X-TEC-API-VERSION: v1
X-TEC-API-ROOT: https://www.coro.net/wp-json/tribe/events/v1/
X-TEC-API-ORIGIN: https://www.coro.net
Content-Encoding: gzip
Vary: Accept-Encoding,User-Agent
Cache-Control: private, must-revalidate
Expires: Sun, 08 Jan 2023 06:43:03 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 74d82b5960e5e12af402b01fa10b0829
4b80baad99eaafa43a8a78dbcd8e0df4141b3dd7
328abed4a3d2ea1d745c64c5c40925ae5efca25846d2e1c8457a030347473b51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Noto+Serif:400,400i,700,700i%7CSource+Sans+Pro:600,400%7CLato:600&subset=latin,latin-ext&display=auto
200 OK 1.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Noto+Serif:400,400i,700,700i%7CSource+Sans+Pro:600,400%7CLato:600&subset=latin,latin-ext&display=auto
IP
Hash 62fcda8e2071d35150ea6fbdb2665d61
2a89e2df246f8c3447c5149c781ee83bc5395519
12c7bf22e446c090d78673c4a53c02c1b5c5ad3d57604c2a6e2f37701ea9e7e1
GET /css?family=Noto+Serif:400,400i,700,700i%7CSource+Sans+Pro:600,400%7CLato:600&subset=latin,latin-ext&display=auto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 11 Dec 2022 06:43:04 GMT
date: Sun, 11 Dec 2022 06:43:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-16dd1859.min.css
200 OK 78 kB URL HTTP/1.1 www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-16dd1859.min.css
IP
File type ASCII text, with very long lines (65501)
Hash de311bcd18fffd1b93349a9b4f3b1030
97a37add16aeceea1c42e228d572e67a18fe9c0f
3f7e3b01f356f7d6bd05586d6565dbfdd6f4d0a764353e8673422dc18f4c32a7
GET /wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-16dd1859.min.css HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:04 GMT
Server: Apache
Last-Modified: Thu, 08 Dec 2022 16:40:17 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Sun, 08 Jan 2023 06:43:04 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-f53a0c17.min.js
200 OK 34 kB URL HTTP/1.1 www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-f53a0c17.min.js
IP
File type ASCII text, with very long lines (65442)
Hash 4bf14da9a3b69bf03e7610f9c23372c3
78861cd215c90b379c8b07ccfa2766d1896869f2
acdb90e99988615fe783ce6abc2b803c10c0637164d7d6e7418c04834005fd2e
GET /wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-f53a0c17.min.js HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:04 GMT
Server: Apache
Last-Modified: Thu, 08 Dec 2022 16:39:42 GMT
Accept-Ranges: bytes
Cache-Control: private
Expires: Sun, 08 Jan 2023 06:43:04 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 34509
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-footer-058f11bd.min.js
200 OK 16 kB URL HTTP/1.1 www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-footer-058f11bd.min.js
IP
File type ASCII text, with very long lines (52546)
Hash 17b8303fa5881978dc4919638a158c26
323c9a65a600ae208a6821ae6bd774db6c7bb23a
85eec9d689fa5d951fb996df1112a6e149ff11aa586e442e9b76a0ea91653341
GET /wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-footer-058f11bd.min.js HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:04 GMT
Server: Apache
Last-Modified: Thu, 08 Dec 2022 16:40:47 GMT
Accept-Ranges: bytes
Cache-Control: private
Expires: Sun, 08 Jan 2023 06:43:04 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 16162
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.coro.net/wp-content/uploads/2021/10/twitter-icon.svg
200 OK 576 B URL HTTP/1.1 www.coro.net/wp-content/uploads/2021/10/twitter-icon.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (777)
Hash 04f0e85ab5c08f90d9b8f9b607adab42
d88f354c428ed780bf1a71de0bde4467ac9cbdd5
b52f359bcd7a746420b9f4e1a825b6ed8d7e883dd3be33b6d3f94bee29a2f268
GET /wp-content/uploads/2021/10/twitter-icon.svg HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:04 GMT
Server: Apache
Last-Modified: Wed, 27 Oct 2021 23:09:29 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 08 Jan 2023 06:43:04 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 576
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
www.coro.net/wp-content/uploads/2021/10/linked-in-icon.svg
200 OK 423 B URL HTTP/1.1 www.coro.net/wp-content/uploads/2021/10/linked-in-icon.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (471)
Hash f5954349d5d0d02ec296da196ed6dca1
656223d11b900760c254a578f14ab632ecf34c3b
b0b44e6df7e0008f13c93b915268aeaef2fb753fb58d72cde8fc03beee968f70
GET /wp-content/uploads/2021/10/linked-in-icon.svg HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:04 GMT
Server: Apache
Last-Modified: Wed, 27 Oct 2021 23:09:25 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 08 Jan 2023 06:43:04 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 423
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-footer-fe6f0d69.min.js
200 OK 46 kB URL HTTP/1.1 www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-footer-fe6f0d69.min.js
IP
File type ASCII text, with very long lines (64663)
Hash a09c7704c0e6e74d76139515ba6089d9
16c46d8b43ff54a874d596504110ac7245e6e4af
2fd4496bae5ab4a79fc7473cfd097be234007fd2e813a18b5ac69cdf248952e5
GET /wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-footer-fe6f0d69.min.js HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:04 GMT
Server: Apache
Last-Modified: Thu, 08 Dec 2022 16:39:42 GMT
Accept-Ranges: bytes
Cache-Control: private
Expires: Sun, 08 Jan 2023 06:43:04 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 45677
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.coro.net/wp-content/uploads/2021/10/facebook-icon.svg
200 OK 277 B URL HTTP/1.1 www.coro.net/wp-content/uploads/2021/10/facebook-icon.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash b2575177a047b85184876f4ccf15c6c3
26944d5335a89a927a8dd8c60ba9dcf4c385e3c4
de6e18910c4e7476e0991b36a11ffdf132cd3d213275c2c612a330a6cc114e2c
GET /wp-content/uploads/2021/10/facebook-icon.svg HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:04 GMT
Server: Apache
Last-Modified: Wed, 27 Oct 2021 23:09:20 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 08 Jan 2023 06:43:04 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 277
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
www.coro.net/wp-content/uploads/2021/10/coro-logo-header.svg
200 OK 1.7 kB URL HTTP/1.1 www.coro.net/wp-content/uploads/2021/10/coro-logo-header.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3275)
Hash e9c604e46fcdec1ba37140141ac6f90e
990644c240ef029bf85332c9d8f39261a3cf8ee0
d08029a5a9fac1e0179463152d738dc51592cbc1b56a10666abb83de0c00f925
GET /wp-content/uploads/2021/10/coro-logo-header.svg HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:04 GMT
Server: Apache
Last-Modified: Wed, 27 Oct 2021 23:12:55 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 08 Jan 2023 06:43:04 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1731
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2bbc2a332da069e062c141b6755efb07
e7cb19a32562264a6858b73f90caff1fe7887a29
5fad6e64460cced764a9d312bc67cf858e5b28e5b2e107dc790bc5973f1ecd1e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 784e0439ec6be7b4ca1312cd7cfae85b
18dad06db451855d3009aa3207d868895c577666
6369a3e27c976088b4dda95da9422fdb201979fedfcb4edf9db60089fd9ea53b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 784e0439ec6be7b4ca1312cd7cfae85b
18dad06db451855d3009aa3207d868895c577666
6369a3e27c976088b4dda95da9422fdb201979fedfcb4edf9db60089fd9ea53b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 784e0439ec6be7b4ca1312cd7cfae85b
18dad06db451855d3009aa3207d868895c577666
6369a3e27c976088b4dda95da9422fdb201979fedfcb4edf9db60089fd9ea53b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/notoserif/v21/ga6Iaw1J5X9T9RW6j9bNfFcWaA.woff2
200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/notoserif/v21/ga6Iaw1J5X9T9RW6j9bNfFcWaA.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23948, version 1.0\012- data
Hash aeb92e524ca62170347fa63974605767
1e10bfbd720481e42035a5469d7ce8fc51d34aab
25475d82cc976fb2c71b15b3e416c22bf636dd247bbb268d312e7c076ec5b6e4
GET /s/notoserif/v21/ga6Iaw1J5X9T9RW6j9bNfFcWaA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 21:35:32 GMT
expires: Tue, 05 Dec 2023 21:35:32 GMT
cache-control: public, max-age=31536000
age: 464852
last-modified: Mon, 09 May 2022 19:47:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu3cOWxw.woff2
200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu3cOWxw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Hash 4610010f425c140b99c88b6819ce1c02
a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu3cOWxw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:27:36 GMT
expires: Thu, 07 Dec 2023 19:27:36 GMT
cache-control: public, max-age=31536000
age: 299728
last-modified: Wed, 27 Apr 2022 16:50:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.coro.net/wp-content/uploads/2021/09/expand@3x.webp
200 OK 375 B URL HTTP/1.1 www.coro.net/wp-content/uploads/2021/09/expand@3x.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1ebf35fdead7557c73556cadfb0f626b
c2a8b38179234fd5b3099436accc11dd2ea7771a
3dd9bacb89b26a48c92454d0eaa9c4a88252a78ede8be33db2db034b18d3166a
GET /wp-content/uploads/2021/09/expand@3x.webp HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-16dd1859.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:04 GMT
Server: Apache
Last-Modified: Tue, 28 Sep 2021 21:50:02 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Sun, 08 Jan 2023 06:43:04 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 375
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/webp
js.hs-scripts.com/4165851.js?integration=WordPress
200 OK 88 kB URL HTTP/2 js.hs-scripts.com/4165851.js?integration=WordPress
IP
File type ASCII text, with very long lines (539)
Hash fb01a083ad9c1c082eb262dba6d0d105
5402786696582ee5e38111868fde13e299dcb7af
83b88f2815acc2889b8bca840ef77e0fb1f8234d66c817ede35eac905d663744
GET /4165851.js?integration=WordPress HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:04 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B16A5908B9133D952BB5358A2F8CB94FCE9F67D22000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: b91059f0-4fba-4852-ae9a-2027b10ef8b0
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.coro.net
last-modified: Sat, 10 Dec 2022 09:33:53 GMT
cf-cache-status: EXPIRED
expires: Sun, 11 Dec 2022 06:44:04 GMT
server: cloudflare
cf-ray: 777c3e70bc84b521-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 13052, version 1.0\012- data
Hash 7cf79fbd1df848510d7352274efc2401
5540b5a26cc7dfe25294c4eabe011e2c6cd60143
bc9a16cd945457ad9463cdaed95129b01c589466978dfee3d019d9c604b2171a
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:38:22 GMT
expires: Thu, 07 Dec 2023 19:38:22 GMT
cache-control: public, max-age=31536000
age: 299082
last-modified: Wed, 27 Apr 2022 16:09:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:28:49 GMT
expires: Thu, 07 Dec 2023 19:28:49 GMT
cache-control: public, max-age=31536000
age: 299655
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.coro.net/wp-content/themes/rr-coronet-v2/assets/images/login-button.svg
200 OK 487 B URL HTTP/1.1 www.coro.net/wp-content/themes/rr-coronet-v2/assets/images/login-button.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (739)
Hash 4422378902d4cc90c41c00fc6e7bd14f
080baa250ffdb14c356731c27d57b30cec8b2128
ffc164d24d9857bdf1f038c34eec9e47a85b03f865b031e8fea5f8987082b487
GET /wp-content/themes/rr-coronet-v2/assets/images/login-button.svg HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-16dd1859.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:04 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 15:22:39 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 08 Jan 2023 06:43:04 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 487
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
www.coro.net/wp-content/uploads/2021/09/quotes.png
200 OK 6.0 kB URL HTTP/1.1 www.coro.net/wp-content/uploads/2021/09/quotes.png
IP
File type PNG image data, 192 x 153, 8-bit/color RGBA, non-interlaced\012- data
Hash e017b0310c84f590a1f551836af9f562
1046968013dff8df1dadfb70fbb1decd868690d0
3e6663fb82fcd5c9f0068b822733d5e42637a7a5b1a78c796b92043b7c0fbbe7
GET /wp-content/uploads/2021/09/quotes.png HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-16dd1859.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:04 GMT
Server: Apache
Last-Modified: Mon, 27 Sep 2021 22:16:31 GMT
Accept-Ranges: bytes
Content-Length: 5961
Cache-Control: public
Expires: Sun, 08 Jan 2023 06:43:04 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2bbc2a332da069e062c141b6755efb07
e7cb19a32562264a6858b73f90caff1fe7887a29
5fad6e64460cced764a9d312bc67cf858e5b28e5b2e107dc790bc5973f1ecd1e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 279 B IP
Hash 72e2c0e9fed5712d7720da78bbcbedb7
2901aaa3045805c666732d34e35693dced72e24f
220cd6defa730f7c86071e66994f6a5ce3ddc0ce6002d6ddbd5647d65a6c9474
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 363
Cache-Control: max-age=86420
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:05 GMT
Etag: "63942922-117"
Expires: Mon, 12 Dec 2022 06:43:25 GMT
Last-Modified: Sat, 10 Dec 2022 06:37:22 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 784e0439ec6be7b4ca1312cd7cfae85b
18dad06db451855d3009aa3207d868895c577666
6369a3e27c976088b4dda95da9422fdb201979fedfcb4edf9db60089fd9ea53b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 279 B IP
Hash 98dbc01196aeedff43f4e46665a1e853
4c5cea0e0d55e20f454edb925f49ed9944004f01
5c069449701328476784a6cc79e9cba1e1dae18ba2f39345446a77bd0c8c2bda
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1768
Cache-Control: max-age=160537
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:05 GMT
Etag: "6395452a-117"
Expires: Tue, 13 Dec 2022 03:18:42 GMT
Last-Modified: Sun, 11 Dec 2022 02:49:14 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
player.vimeo.com/video/635494299?controls=false&autoplay=1&loop=1&autopause=0&muted=1&h=f2ac7ea09e
200 OK 5.8 kB URL HTTP/1.1 player.vimeo.com/video/635494299?controls=false&autoplay=1&loop=1&autopause=0&muted=1&h=f2ac7ea09e
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (19268), with no line terminators
Hash 75a6bba820a4647a6a02783a637abee3
886c3d02929b08393eed417e171f27b569623213
32b07af166f15ff1796ba6aaec534fca356ad08fc4f8bc7af348352eb8775bc7
GET /video/635494299?controls=false&autoplay=1&loop=1&autopause=0&muted=1&h=f2ac7ea09e HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*; report-uri /_csp
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Sun, 11 Dec 2022 06:45:49 GMT
x-host: player-959c5df45-m5w5d
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-0
x-backend-proxy: playproxy1
x-bapp-server: player-959c5df45-m5w5d
Age: 0
X-Served-By: cache-bma1659-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1670740985.915472,VS0,VE121
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=sHp5WcDJIfsfLuXOZdtIGT9I.2fAYJQkmsTYCqV4k1Y-1670740985-0-AQNSf9NF2vLo2U9ww6ETJPN+mB6fVjbPgTqb5/8XGpspaUMzxGexdNZCo++HG38/iEu/4npzP1G+xx9aYN6XR7c=; path=/; expires=Sun, 11-Dec-22 07:13:05 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 777c3e73ab45b4eb-OSL
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11535
Expires: Sun, 11 Dec 2022 09:55:20 GMT
Date: Sun, 11 Dec 2022 06:43:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11535
Expires: Sun, 11 Dec 2022 09:55:20 GMT
Date: Sun, 11 Dec 2022 06:43:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11535
Expires: Sun, 11 Dec 2022 09:55:20 GMT
Date: Sun, 11 Dec 2022 06:43:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11535
Expires: Sun, 11 Dec 2022 09:55:20 GMT
Date: Sun, 11 Dec 2022 06:43:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11535
Expires: Sun, 11 Dec 2022 09:55:20 GMT
Date: Sun, 11 Dec 2022 06:43:05 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b221401-6cb1-4300-a388-1a183cc94fc4.jpeg
200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b221401-6cb1-4300-a388-1a183cc94fc4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9089159256f8eb28d4c97a2adbec054a
f1f6703fc2b39f1b8fbd6fe53c7aa34d8b65505c
5651cd5b608aa3d87ecf7cfd78d15bc5a26213ea151c700eb700b10aa26b4ed7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b221401-6cb1-4300-a388-1a183cc94fc4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7657
x-amzn-requestid: e2e1a769-7fb5-482d-8f9e-6c0be0e01696
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUkoFR-IAMF1MQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e67b7-42e2ab9f04020014757e8f4d;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:50:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Yb_lZ6J9Y0kZP0-TOBy1Xl1CbvYCOxMQEYUWerB4JEy06Q0cfzObJw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 13:02:28 GMT
age: 63637
etag: "f1f6703fc2b39f1b8fbd6fe53c7aa34d8b65505c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6bca12a-103c-4b98-a218-27a61f8d6951.jpeg
200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6bca12a-103c-4b98-a218-27a61f8d6951.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2020df3404a4b7c3e142af4a1330b848
2fe69b52fe03128e86550bf08474ecac82682384
37a52c158d5cfdf3589e19163cf446c02ce1466f444656080b02da82d2bcefae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6bca12a-103c-4b98-a218-27a61f8d6951.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6311
x-amzn-requestid: 46ccaee0-bde8-4be6-9dc8-46e3ae356dc8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c8xUYH10oAMF8Ig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6394fc1b-2440251f06cb950a57489555;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SG-8rL_rUN3MpXHhkAaHmIqKf7mSHtv0kEAkBOAIPcqq755Qh-mc3Q==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 21:38:41 GMT
etag: "2fe69b52fe03128e86550bf08474ecac82682384"
content-type: image/jpeg
age: 32664
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d0c96af-c60d-4600-85fc-ee30b7a0c931.jpeg
200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d0c96af-c60d-4600-85fc-ee30b7a0c931.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f01260130a9ea66e994137a2ac221122
85e58c55619e2cc855ff9dc5861e70be682bb247
987e83bd21ee86ba8384e5b28ab4e5536fc17c290d2e34f31734358208b246c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d0c96af-c60d-4600-85fc-ee30b7a0c931.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4526
x-amzn-requestid: 2010b576-860e-4cd6-9cd4-ae6559c4ce86
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cnB9BECioAMFyBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c49ec-6af9db536d1bdc560ae38f2c;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 07:19:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WZQS_dNx0de3xaOdC0FUWfvANbxs5JWguWlr7A8uwoOKChonCJosNQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 13:40:20 GMT
age: 61365
etag: "85e58c55619e2cc855ff9dc5861e70be682bb247"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e773796-2162-4678-a8ea-5676f25b53b5.jpeg
200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e773796-2162-4678-a8ea-5676f25b53b5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 28dc3abb6e431d24dbcadd668b065b96
1585a0b53247103e4ef2a785f34980068e0576af
42d19784bba0276d47ff749dbb048bf4be9d4b37a0cc091bb8e7570cae5e933a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e773796-2162-4678-a8ea-5676f25b53b5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7387
x-amzn-requestid: 3fef1465-1a90-4925-82b2-4edbb089aec3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c8xUFHtzoAMFr2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6394fc19-448ecfe9514a656078eb9f76;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 21:37:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6I5kzR60cvAzHkw6afJ2gQgHWdZ4TyZgx247O74J3aFxXqVfnQo0Dw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 21:38:41 GMT
etag: "1585a0b53247103e4ef2a785f34980068e0576af"
content-type: image/jpeg
age: 32664
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ef6b75d-8f79-40b3-b1dd-ab0caa833119.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ef6b75d-8f79-40b3-b1dd-ab0caa833119.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b4cdf7ea5a907bcc30f80b24da0bfb1
4cd560ae03884699f3106a89964fa5f080032c27
bf99c79318c810799becd698b9b279ac32c8b5f613991d2522a6bc5bff3f80fa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ef6b75d-8f79-40b3-b1dd-ab0caa833119.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9176
x-amzn-requestid: 1349cc8e-7545-4708-89a8-ac4f661bbd0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cqFFsEYWoAMF2ZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d8224-1100a1350760a02b76b8b539;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 05:31:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -KvBpM4jxh4RC2FuOrir_Gv1MW9o55fX7goUBPXzowMy0JJAcV4dQw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 04:17:48 GMT
age: 8717
etag: "4cd560ae03884699f3106a89964fa5f080032c27"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45e0c1638ad919bde19731f7987ab064
1e492807c665e6e6b24ec6ce19035fdfc6f23b92
f0d3738ec8406958470c8fd152a02a123d7654c30f974c1df5c4977a380c2d62
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10205
x-amzn-requestid: c5704c7a-60c4-402b-8018-5885a8dae971
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F9BIAMF3ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-3e9573d900714e3250f43e17;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: eXMCIFCWGhtwytt5lPvm12fJIhGVLly2pK00WWhJoqGdE8-XN93A9w==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 18:08:19 GMT
age: 45286
etag: "1e492807c665e6e6b24ec6ce19035fdfc6f23b92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash e3f533a1bfef3e05912e1bae44b64353
941f0088562bfdf88fe0cabf713665df19348f08
bc61d737666e953d2d0e8dcd05114455895f33bcccf5510463eb90a1b40e33f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5490
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:05 GMT
Last-Modified: Sun, 11 Dec 2022 05:11:35 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 280 B IP
Hash e3f533a1bfef3e05912e1bae44b64353
941f0088562bfdf88fe0cabf713665df19348f08
bc61d737666e953d2d0e8dcd05114455895f33bcccf5510463eb90a1b40e33f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1475
Cache-Control: max-age=127854
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:05 GMT
Etag: "6394c6a5-118"
Expires: Mon, 12 Dec 2022 18:13:59 GMT
Last-Modified: Sat, 10 Dec 2022 17:49:25 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280
f.vimeocdn.com/p/4.15.3/css/player.css
200 OK 21 kB URL HTTP/2 f.vimeocdn.com/p/4.15.3/css/player.css
IP
File type ASCII text, with very long lines (65495)
Hash 968f2cdf88d9a0473ba7a9f06df273da
2816f582988f9de542ca6f12ac98ef5a22bf0572
8126ad5a87c033902741b40e92e955d4cbb5552040a597a261befcce705793af
GET /p/4.15.3/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 11 Dec 2022 06:43:05 GMT
age: 220366
x-served-by: cache-iad-kiad7000126-IAD, cache-hel1410025-HEL
x-cache: HIT, HIT
x-cache-hits: 37, 107933
x-timer: S1670740985.221443,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20725
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=GTM-PBC2FJW
200 OK 44 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=GTM-PBC2FJW
IP
File type ASCII text, with very long lines (1921)
Hash d5f3ac2b097391a3e607733b4ab7cee2
a1cd4f481acff45766e34684041f2ccd50fc6504
92dbc71848a9c979a6cce59873fc68bc8acafb92e8154294f5f1de7eb2e60906
GET /optimize.js?id=GTM-PBC2FJW HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 11 Dec 2022 06:43:05 GMT
expires: Sun, 11 Dec 2022 06:43:05 GMT
cache-control: private, max-age=900
last-modified: Sun, 11 Dec 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43887
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 6c88a2d5e9c78b083f217b404b66f2ff
e6a17ffc786c1692d3b2c4d8a520eeb6b0408a8d
fa65d4e5fcd6d8f07e4a355c88f8ec487a95fab33acb3db18273a1e5f3ca4eb7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5048
Cache-Control: max-age=105147
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:05 GMT
Etag: "63945ffc-116"
Expires: Mon, 12 Dec 2022 11:55:32 GMT
Last-Modified: Sat, 10 Dec 2022 10:31:24 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 278
api.hubspot.com/livechat-public/v1/message/public?portalId=4165851&conversations-embed=static-1.11519&mobile=false&messagesUtk=83eacbf8d3224bbf8065a9ef906f2a0e&traceId=83eacbf8d3224bbf8065a9ef906f2a0e
200 OK 18 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=4165851&conversations-embed=static-1.11519&mobile=false&messagesUtk=83eacbf8d3224bbf8065a9ef906f2a0e&traceId=83eacbf8d3224bbf8065a9ef906f2a0e
IP
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /livechat-public/v1/message/public?portalId=4165851&conversations-embed=static-1.11519&mobile=false&messagesUtk=83eacbf8d3224bbf8065a9ef906f2a0e&traceId=83eacbf8d3224bbf8065a9ef906f2a0e HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-hubspot-messages-uri
Referer: https://www.coro.net/
Origin: https://www.coro.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:05 GMT
content-type: text/plain; charset=utf-8
content-length: 18
cf-ray: 777c3e756ba6b505-OSL
access-control-allow-origin: https://www.coro.net
allow: HEAD,GET,OPTIONS
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 76f0c121-5581-470e-9e8e-dda98f844c62
x-trace: 2B01036F5A9D0D21198FA7C69CC73D15E141CC5916000000000000000000
set-cookie: __cf_bm=2mwZAeHLs4LceYYV01HJJ7uOCjPGVU6POiIY.K.fJqM-1670740985-0-AU9jSzEoOWPaPGEyTy6R2E1lfowzcR3RB5Ib/0X8c5LqyXgV3Cl/95X+6iEQFnenIHzPeBiqyvmhLi82F4QCIAc=; path=/; expires=Sun, 11-Dec-22 07:13:05 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VWn2Y3UHIxdgh4CAry4gYQwCe5Y77wdkvZT651oUw%2BHh%2BGv4irMVUqy02FKsGeFWhdlGOryNpDe6ZYZLog36nSSr0TgNmyhzrBELBwRAHvvyC843jNMIEsrcQQABu5suow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash e3f533a1bfef3e05912e1bae44b64353
941f0088562bfdf88fe0cabf713665df19348f08
bc61d737666e953d2d0e8dcd05114455895f33bcccf5510463eb90a1b40e33f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5490
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:05 GMT
Last-Modified: Sun, 11 Dec 2022 05:11:35 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
f.vimeocdn.com/p/4.15.3/js/player.module.js
200 OK 116 kB URL HTTP/2 f.vimeocdn.com/p/4.15.3/js/player.module.js
IP
File type Unicode text, UTF-8 text, with very long lines (65445)
Size 116 kB (116326 bytes)
Hash 8c9202bf6ee286b9ed355dedd5cf03ff
98af722e03b42e83e7f3a718a17fcd9fd583083d
d4cfc1c907835aeb287585e70a9f4ee773d91fc1ddfabf1e8881162bd5ea10f2
GET /p/4.15.3/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 11 Dec 2022 06:43:05 GMT
age: 220367
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410025-HEL
x-cache: HIT, HIT
x-cache-hits: 49, 80075
x-timer: S1670740985.310443,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 116326
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash ba25d5673e3b8c2a5c7bdfdded2aa0e3
8fae026d5bbba3b202b9bfd83c7e6a6550e835b7
79a865d9f0a822768964da8aa10399f47b4280f9284c95f24466f76fc3fe473e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:05 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 09 Dec 2022 10:24:05 GMT
Expires: Fri, 16 Dec 2022 10:24:04 GMT
Etag: "8fae026d5bbba3b202b9bfd83c7e6a6550e835b7"
Cache-Control: max-age=444658,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 777c3e765a81b518-OSL
api.hubspot.com/livechat-public/v1/message/public?portalId=4165851&conversations-embed=static-1.11519&mobile=false&messagesUtk=83eacbf8d3224bbf8065a9ef906f2a0e&traceId=83eacbf8d3224bbf8065a9ef906f2a0e
200 OK 242 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=4165851&conversations-embed=static-1.11519&mobile=false&messagesUtk=83eacbf8d3224bbf8065a9ef906f2a0e&traceId=83eacbf8d3224bbf8065a9ef906f2a0e
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 457989af479912660966856b5cbd0426
fe544de9fd628ee71be2ddf464be3801b03c7828
acaa75b0de5f2eafff023c9413e7967986e33703e312c31936e0fa49809f7386
GET /livechat-public/v1/message/public?portalId=4165851&conversations-embed=static-1.11519&mobile=false&messagesUtk=83eacbf8d3224bbf8065a9ef906f2a0e&traceId=83eacbf8d3224bbf8065a9ef906f2a0e HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-HubSpot-Messages-Uri: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:05 GMT
content-type: application/json;charset=utf-8
content-length: 242
cf-ray: 777c3e762c14b505-OSL
access-control-allow-origin: https://www.coro.net
cache-control: no-cache, no-store, no-transform, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: aaa552c3-dfb0-470f-a726-9694a1df8dbd
x-trace: 2B22B08D91FC64D0FA79572AB9FAFC69CFEB4530DF000000000000000000
set-cookie: __cf_bm=1ep4x5v8_Nxd6tfZlrSseIyyxg9fEYepvx02tNFwqdk-1670740985-0-AeW1XbO/1VzS3PTaST7JajX3It/zwlzN5tgXqv+QvzY7fW64DohaKwYfeqt5juSmYk0p8v537IYBjnsGgjfUkHE=; path=/; expires=Sun, 11-Dec-22 07:13:05 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AR1PrKwq%2B2ca%2BICBLN4xaYOWGKftcmcrS7cuasRVFchtGO6bIVje4mNUy4Py3Y3iy6P5yKFrpQThQJL2lmniag8tnQzXWonMsyCbRXRkZKBZM3AzZzTmNdM3rCv9FR4T6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.15.3/js/vendor.module.js
200 OK 116 kB URL HTTP/2 f.vimeocdn.com/p/4.15.3/js/vendor.module.js
IP
File type ASCII text, with very long lines (65457)
Size 116 kB (115831 bytes)
Hash b1d4e45be3bf63b76cd5365d3bbfec4c
4cbe3e6bd6f09e823d5c994c4304e4c5aed6fec1
84a4f9602b964b8d5f5e11a1081aa7f28edba888d24a138e17bc5f5cc0892b34
GET /p/4.15.3/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 11 Dec 2022 06:43:05 GMT
age: 220367
x-served-by: cache-iad-kjyo7100143-IAD, cache-hel1410025-HEL
x-cache: HIT, HIT
x-cache-hits: 33, 104821
x-timer: S1670740985.484795,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 115831
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 8f25179c098b4ec8a7969b67865af2fe
b64137b71759e965b2c05e0527d5d049a85e4600
8f78b026060fd86f485ec10f751250d80744a336f8a7a4bb5779731c536212a0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3303
Cache-Control: max-age=128551
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:05 GMT
Etag: "6394c239-117"
Expires: Mon, 12 Dec 2022 18:25:36 GMT
Last-Modified: Sat, 10 Dec 2022 17:30:33 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
js.usemessages.com/conversations-embed.js
200 OK 21 kB URL HTTP/2 js.usemessages.com/conversations-embed.js
IP
File type C source, ASCII text, with very long lines (65536), with no line terminators
Hash 3cdf55e223625c0ba84ba9d93684df6e
e9d3609ca50c33c899f0f5018bc6074e18c43671
e5c8913b8aa24555ff558c13aff8f3b5b4394f4c67cd7f4c23ef827b257d8e72
GET /conversations-embed.js HTTP/1.1
Host: js.usemessages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:05 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Fri, 09 Dec 2022 06:01:32 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: 76AcXrHM1.CdgwyluQJL2sQo.MAbFB2V
etag: W/"656fa9a50197c920df0a2d0ac18e9d1e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 68a3b1d5c75429221abc685a453afb60.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: 2MvynTiqusEFhfEaxkyrG3RfhDYpTASunkOaO35KGfdkPMocf_-6EQ==
age: 406
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=conversations-embed/static-1.11519/bundles/project.js&cfRay=7776fc8eab150b45-IAD
x-hs-target-asset: conversations-embed/static-1.11519/bundles/project.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
server: cloudflare
cf-ray: 777c3e74491cb523-OSL
content-encoding: br
X-Firefox-Spdy: h2
f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
200 OK 997 B URL HTTP/2 f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
IP
File type ASCII text, with very long lines (1839)
Hash b81408535edef4b73951fa7683a0ecb4
2be1041a686c8d5130ce96600bc7ec68538b4cd9
7b68a0f94a2376708329d7fabc0000c92eb45755267bde5dc8983184b77f3ec7
GET /js_opt/modules/utils/vuid.min.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
cache-control: public, max-age=2592000
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 11 Dec 2022 06:43:05 GMT
age: 1949147
x-served-by: cache-iad-kiad7000106-IAD, cache-hel1410025-HEL
x-cache: HIT, HIT
x-cache-hits: 33, 839095
x-timer: S1670740986.634595,VS0,VE0
vary: Accept-Encoding,x-http-method-override
content-length: 997
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 8f25179c098b4ec8a7969b67865af2fe
b64137b71759e965b2c05e0527d5d049a85e4600
8f78b026060fd86f485ec10f751250d80744a336f8a7a4bb5779731c536212a0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3303
Cache-Control: max-age=128551
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:05 GMT
Etag: "6394c239-117"
Expires: Mon, 12 Dec 2022 18:25:36 GMT
Last-Modified: Sat, 10 Dec 2022 17:30:33 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
i.vimeocdn.com/video/1277860281-b0168fe96d765de8b10665ba787d9abaa678d319cad814193?mw=1200&mh=500
200 OK 8.3 kB URL HTTP/2 i.vimeocdn.com/video/1277860281-b0168fe96d765de8b10665ba787d9abaa678d319cad814193?mw=1200&mh=500
IP
File type ISO Media, AVIF Image\012- data
Hash 6cf8316f5c93e3a6693e69a576812bc4
fbb40ba2381b839cf863e6cc2f30c2d0b8c81baa
7ab49dfed706e2beef43f357c1e7bcf2831913fcf4de576d5fe980c7e3600ec8
GET /video/1277860281-b0168fe96d765de8b10665ba787d9abaa678d319cad814193?mw=1200&mh=500 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: 6cf8316f5c93e3a6693e69a576812bc4
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-9kvr
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Sun, 11 Dec 2022 06:43:05 GMT
age: 1691880
x-served-by: cache-dfw-kdfw8210026-DFW, cache-hel1410025-HEL
x-cache: miss, HIT, MISS
x-cache-hits: 31, 0
x-timer: S1670740986.672729,VS0,VE126
vary: Accept
content-length: 8293
X-Firefox-Spdy: h2
scout-cdn.salesloft.com/sl.js
200 OK 2.4 kB URL HTTP/2 scout-cdn.salesloft.com/sl.js
IP
File type ASCII text, with very long lines (6105), with no line terminators
Hash ea9d5db69ad9e37fd6bbd34648e40266
431d64d5d4f4ec60d4ad62f85b0f678bbe3c844f
13a99bc6314f77b5c2897ed13bdda0d6220ea85f5baaac25cde6424b8540d34a
GET /sl.js HTTP/1.1
Host: scout-cdn.salesloft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:05 GMT
content-type: application/javascript
x-amz-id-2: qf3ClpuTPcJIcaf9lDMbAj/C7KTb6wrTNVZvpPTuMcDn6J5apuWPupZ7ygGsCuih8R4rYooBk/g=
x-amz-request-id: N67V786YKMD3QBGX
last-modified: Mon, 13 Dec 2021 16:28:37 GMT
etag: W/"d74cc4825c8e333b2116da3fcc649db1"
x-amz-version-id: 6anzvBQcvmaBDc8BSO9zI6Th.IIiwArc
cf-cache-status: HIT
age: 6642
expires: Sun, 11 Dec 2022 10:43:05 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-origin: *
server: cloudflare
cf-ray: 777c3e76aa00b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
80vod-adaptive.akamaized.net/exp=1670744884~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=6298c1dc355c8879e7e5c0f14441ab5884ff085db63d8bcf256b68c700bb865e/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/45cedb9f,57e4b4cb,bca3a208,907f4d91,ae644a18,ba343669/master.json?query_string_ranges=1&base64_init=1
200 OK 2.7 kB URL HTTP/1.1 80vod-adaptive.akamaized.net/exp=1670744884~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=6298c1dc355c8879e7e5c0f14441ab5884ff085db63d8bcf256b68c700bb865e/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/45cedb9f,57e4b4cb,bca3a208,907f4d91,ae644a18,ba343669/master.json?query_string_ranges=1&base64_init=1
IP
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with very long lines (12350)
Hash 9d0198b4e0b5d1b9bd8aae1fa8b9e2a6
b92affc9249861870813578744d75a95bdc4f4d4
302c145571cd976641443c68bfb6ff41921cef82ff30047745b9517fd3425dab
GET /exp=1670744884~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=6298c1dc355c8879e7e5c0f14441ab5884ff085db63d8bcf256b68c700bb865e/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/45cedb9f,57e4b4cb,bca3a208,907f4d91,ae644a18,ba343669/master.json?query_string_ranges=1&base64_init=1 HTTP/1.1
Host: 80vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
origin-retrieved-hour: 1657897200
Access-Control-Max-Age: 86400
timing-allow-origin: *
Content-Encoding: gzip
Content-Length: 2716
Aka-c-hit: cache-hit
Cache-Control: max-age=31536000
Date: Sun, 11 Dec 2022 06:43:05 GMT
Connection: keep-alive
Vary: Accept-Encoding
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.bd4c2417.1670740985.17438597
X-VIM-CACHEBC: EP:H11,E:m,TD0:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.193
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
region1.analytics.google.com/g/collect?v=2&tid=G-5MVGMPSG6P>m=2oebu0&_p=493541352&_gaz=1&cid=332704821.1670740984&ul=en-us&sr=1280x1024&_s=1&sid=1670740983&sct=1&seg=0&dl=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&dt=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-5MVGMPSG6P>m=2oebu0&_p=493541352&_gaz=1&cid=332704821.1670740984&ul=en-us&sr=1280x1024&_s=1&sid=1670740983&sct=1&seg=0&dl=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&dt=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-5MVGMPSG6P>m=2oebu0&_p=493541352&_gaz=1&cid=332704821.1670740984&ul=en-us&sr=1280x1024&_s=1&sid=1670740983&sct=1&seg=0&dl=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&dt=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.coro.net
date: Sun, 11 Dec 2022 06:43:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 633462c5bc4d631d0f28109676f1c4ef
5e971024687c599a40822616459355ab75a69aa6
464513db00c7735b28f8140ecd0a3a0641fce311481f736a946a1ed8e8e881d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
scout.salesloft.com/i
200 OK 48 B IP
File type JSON data\012- , ASCII text, with no line terminators
Hash b3b4c5d2b915e4fddd62d9d1adf331f0
e0e15ccabe41d49d0530d0b980574a7dc8900161
6bd00c489d0c68e8281467c6cd45f5433fa66a3f331abb834b6268a9740c218d
GET /i HTTP/1.1
Host: scout.salesloft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:06 GMT
content-type: application/json; charset=utf-8
content-length: 48
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.coro.net
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
x-request-id: 608bf74276ab1be165f3c6b3415566e3
set-cookie: site_identity=0aa9fa2b-7029-4c12-b298-1d8579f62247; path=/; expires=Mon, 11 Dec 2023 06:43:06 GMT; max-age=31536000; HttpOnly
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-5MVGMPSG6P&cid=332704821.1670740984>m=2oebu0&aip=1
204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-5MVGMPSG6P&cid=332704821.1670740984>m=2oebu0&aip=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-5MVGMPSG6P&cid=332704821.1670740984>m=2oebu0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.coro.net
date: Sun, 11 Dec 2022 06:43:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 3f31770041a60b825e57b4cd03a534f0
370a3f46ed91c7bd2d9fcd0a95653e9f280f3132
e8876aecc1a1c9210a638e0c4dc852fd31baf9f6ce52bf70b397e9a46ee49a1b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=112154
Date: Sun, 11 Dec 2022 06:43:06 GMT
Etag: "63948a28-1d7"
Expires: Mon, 12 Dec 2022 13:52:20 GMT
Last-Modified: Sat, 10 Dec 2022 13:31:20 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WmkwRyqofv8KRC2wGlpmJgS3VNf04pr71NuMkdIx4XYYu_xskD8Zdg==
Age: 1260
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 3f31770041a60b825e57b4cd03a534f0
370a3f46ed91c7bd2d9fcd0a95653e9f280f3132
e8876aecc1a1c9210a638e0c4dc852fd31baf9f6ce52bf70b397e9a46ee49a1b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=112009
Date: Sun, 11 Dec 2022 06:43:06 GMT
Etag: "63948a28-1d7"
Expires: Mon, 12 Dec 2022 13:49:55 GMT
Last-Modified: Sat, 10 Dec 2022 13:31:20 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7Wgum9qyBnZmU0F9KKvjOQ-3kOElo5_y1ehF7dG4g9jZZSTNTZ-CRQ==
Age: 1115
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 3f31770041a60b825e57b4cd03a534f0
370a3f46ed91c7bd2d9fcd0a95653e9f280f3132
e8876aecc1a1c9210a638e0c4dc852fd31baf9f6ce52bf70b397e9a46ee49a1b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=112009
Date: Sun, 11 Dec 2022 06:43:06 GMT
Etag: "63948a28-1d7"
Expires: Mon, 12 Dec 2022 13:49:55 GMT
Last-Modified: Sat, 10 Dec 2022 13:31:20 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5C8ZG-DBOLxLYirx4tdvhGcvKH-lWtKNJxBpQo_70m61jnAdd3A7bw==
Age: 1115
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 633462c5bc4d631d0f28109676f1c4ef
5e971024687c599a40822616459355ab75a69aa6
464513db00c7735b28f8140ecd0a3a0641fce311481f736a946a1ed8e8e881d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aorta.clickagy.com/data
200 OK 82 B IP
File type JSON data\012- , ASCII text, with no line terminators
Hash ba8d65c00c8917a6d8c0e5dd36e003f5
ffe9aeec3e34e77e989215172280fc2df29d2107
964609aad8a4e79bc70e6d6d6f3bc7d1071b5845cc18a4a6381c83590a79130b
POST /data HTTP/1.1
Host: aorta.clickagy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 283
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:06 GMT
content-type: application/json
content-length: 82
server: Aorta/20221205.a0953a8c4
x-aorta-host: e9df2ceac14d
x-aorta-region: us-east-1
access-control-allow-credentials: true
access-control-allow-headers: Origin,cache-control,content-type,man,messagetype,soapaction
access-control-expose-headers: Set-Cookie
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: https://www.coro.net
access-control-max-age: 31536000
cache-control: no-cache, no-store, must-revalidate
expect: 0
content-encoding: gzip
X-Firefox-Spdy: h2
aorta.clickagy.com/liveramp_redir
302 Found 0 B URL HTTP/2 aorta.clickagy.com/liveramp_redir
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /liveramp_redir HTTP/1.1
Host: aorta.clickagy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 11 Dec 2022 06:43:06 GMT
content-type: application/json
content-length: 0
location: https://id.rlcdn.com/711861.gif
server: Aorta/20221205.a0953a8c4
x-aorta-host: 35a722a62d5b
x-aorta-region: us-east-1
access-control-allow-credentials: true
access-control-allow-headers: Origin,cache-control,content-type,man,messagetype,soapaction
access-control-expose-headers: Set-Cookie
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin:
access-control-max-age: 31536000
cache-control: no-cache, no-store, must-revalidate
expect: 0
X-Firefox-Spdy: h2
aorta.clickagy.com/pixel.gif?clkgypv=jstag
302 Found 0 B URL HTTP/2 aorta.clickagy.com/pixel.gif?clkgypv=jstag
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?clkgypv=jstag HTTP/1.1
Host: aorta.clickagy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 11 Dec 2022 06:43:06 GMT
content-type: application/json
content-length: 0
location: https://aa.agkn.com/adscores/g.pixel?sid=9212289188&_puid=c:3b49683b68be861543aeee01713fa50c&_redir=https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D128%26cm%3D
server: Aorta/20221205.a0953a8c4
x-aorta-host: c813310ee703
x-aorta-region: us-east-1
access-control-allow-credentials: true
access-control-allow-headers: Origin,cache-control,content-type,man,messagetype,soapaction
access-control-expose-headers: Set-Cookie
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin:
access-control-max-age: 31536000
cache-control: no-cache, no-store, must-revalidate
expect: 0
X-Firefox-Spdy: h2
80vod-adaptive.akamaized.net/exp=1670744884~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=6298c1dc355c8879e7e5c0f14441ab5884ff085db63d8bcf256b68c700bb865e/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/parcel/video/45cedb9f.mp4?r=dXM%3D&range=950-76773
200 OK 76 kB URL HTTP/1.1 80vod-adaptive.akamaized.net/exp=1670744884~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=6298c1dc355c8879e7e5c0f14441ab5884ff085db63d8bcf256b68c700bb865e/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/parcel/video/45cedb9f.mp4?r=dXM%3D&range=950-76773
IP
ASN #20940 Akamai International B.V.
Hash 0741c0f053f0a3b971cdeb83a500e5ec
b5646df9ff9adb8c06e5ee41ac3ae0a6453bea1b
9465c2d362c083a2bf8cb882040fda59a68ffc3f59c0fb39920f88f8c3769fed
GET /exp=1670744884~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=6298c1dc355c8879e7e5c0f14441ab5884ff085db63d8bcf256b68c700bb865e/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/parcel/video/45cedb9f.mp4?r=dXM%3D&range=950-76773 HTTP/1.1
Host: 80vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 75824
Last-Modified: Mon, 18 Oct 2021 17:35:18 GMT
Server: parcel
origin-retrieved-hour: 1651428000
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: private, max-age=31205028
Expires: Thu, 07 Dec 2023 10:46:54 GMT
Date: Sun, 11 Dec 2022 06:43:06 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.bd4c2417.1670740986.1743859e
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,PE:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.193
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
Set-Cookie: aka_debug=cpcode:877678~clientip:91.90.42.154~ghostip:23.36.76.193~requestid:1743859e~time:1670740986~ghostforwardip:23.62.99.32~edgecache:cache-miss~rtt:2~region:NO-; path=/; domain=.akamaized.net;
80vod-adaptive.akamaized.net/exp=1670744884~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=6298c1dc355c8879e7e5c0f14441ab5884ff085db63d8bcf256b68c700bb865e/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-1.m4s?r=dXM%3D
200 OK 346 kB URL HTTP/1.1 80vod-adaptive.akamaized.net/exp=1670744884~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=6298c1dc355c8879e7e5c0f14441ab5884ff085db63d8bcf256b68c700bb865e/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-1.m4s?r=dXM%3D
IP
ASN #20940 Akamai International B.V.
Size 346 kB (346435 bytes)
Hash 88f7287a4a5ff01e8d152d0b483ab64e
1b760c15010966dabcd8cba24768edfda5967196
aac11dd47c32740fd5b82327830995ba937ad19065cfaecde9bff855ddea5412
GET /exp=1670744884~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=6298c1dc355c8879e7e5c0f14441ab5884ff085db63d8bcf256b68c700bb865e/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-1.m4s?r=dXM%3D HTTP/1.1
Host: 80vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 346435
using-starlord: true
origin-retrieved-hour: 1657944000
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=31035996
Date: Sun, 11 Dec 2022 06:43:06 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.bd4c2417.1670740986.174385a9
X-VIM-CACHEBC: EP:H11,E:m,TD0:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.193
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
hemsync.clickagy.com/external/hasHashes?clkgypv=jstag&cb=null
200 OK 28 B URL HTTP/2 hemsync.clickagy.com/external/hasHashes?clkgypv=jstag&cb=null
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 830cb026fae1a13104725d2b3100ec10
40188da405f4a93c90f0b5e060e0ccca8e483eba
4d32822dd4fd4e7b58950d7c693e301eaa19b29305077afaebc12852df7f4ee0
GET /external/hasHashes?clkgypv=jstag&cb=null HTTP/1.1
Host: hemsync.clickagy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:06 GMT
content-type: text/plain; charset=utf-8
content-length: 28
access-control-allow-origin: https://www.coro.net
vary: origin
access-control-allow-credentials: true
access-control-expose-headers: content-length, last-modified, expires, content-type
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/E4colUoO91Q
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/E4colUoO91Q
IP
Hash 0197f2cfba5a4ae5023b67f6ccef07df
1881c795ebb6951648e4bd27e4263bdb5d765cf1
bee4a1f90edc3b031ed93ec72605e3d6f1d019de80a6d0b18603b7392064e987
POST /s/gts1d4/E4colUoO91Q HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:06 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/E4colUoO91Q
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/E4colUoO91Q
IP
Hash 0197f2cfba5a4ae5023b67f6ccef07df
1881c795ebb6951648e4bd27e4263bdb5d765cf1
bee4a1f90edc3b031ed93ec72605e3d6f1d019de80a6d0b18603b7392064e987
POST /s/gts1d4/E4colUoO91Q HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:06 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.adroll.com/j/QIYHMMZOTVBZLLJEM7VC4X/roundtrip.js
200 OK 18 kB URL HTTP/1.1 s.adroll.com/j/QIYHMMZOTVBZLLJEM7VC4X/roundtrip.js
IP
File type ASCII text, with very long lines (1326)
Hash 35ee3c22253b172de626f2ed23c95a01
cbffac65d01005b9345d4c40d9ba97e9e595ae81
417106140c9ef8ddb32194155b9d159d47163bf9d8f6f1fea2dfde05a3334c6e
GET /j/QIYHMMZOTVBZLLJEM7VC4X/roundtrip.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 09 Dec 2022 06:43:21 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: jJIzZ1aTacqU6MW0pwD6MTWJtNjHvwjg
Server: AmazonS3
Content-Encoding: gzip
Date: Sun, 11 Dec 2022 06:22:34 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: W/"56a4f816e5b1ed2e398b9112e6050176"
Vary: Accept-Encoding
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
Age: 1233
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qtkGwLhV2XL5ZHtQdr9hR5cRUv27zPiGNhvsYeJNDiEFtJgoaWcAnA==
snap.licdn.com/li.lms-analytics/insight.min.js
200 OK 4.6 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (12961)
Hash c1a25b303b61b25e995516f5559bcdea
3c16a6fa3a2a6dc59d57a9ea1588c4f259884688
2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 18:52:45 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=64458
date: Sun, 11 Dec 2022 06:43:06 GMT
content-length: 4581
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash efc7e8079c19dcf673d5979f53de5578
2659e582ee35c4d623f74ff5ed4a3a4038c1bff8
d5e97a56878417cbc1922f7fcf788a7360ceb8e181bc231aa3ad3cfd803d2286
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5775
Cache-Control: max-age=150152
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:06 GMT
Etag: "63950cf3-117"
Expires: Tue, 13 Dec 2022 00:25:38 GMT
Last-Modified: Sat, 10 Dec 2022 22:49:23 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=e0f86d8c610453a94f87bf41adc799f5c322e1321670740984
200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=e0f86d8c610453a94f87bf41adc799f5c322e1321670740984
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=e0f86d8c610453a94f87bf41adc799f5c322e1321670740984 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1417
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Sun, 11 Dec 2022 06:43:06 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 11 Dec 2022 06:41:08 GMT
expires: Sun, 11 Dec 2022 08:41:08 GMT
cache-control: public, max-age=7200
age: 118
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/bat.js
200 OK 12 kB IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Hash d925a898de26295fdebfc90203ef46fa
77dd3f5893b76530e08058d50e8f9aef017e80c7
8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11460
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=1A278ABB32C06A043AEE98CC33356B4B; domain=.bing.com; expires=Fri, 05-Jan-2024 06:43:06 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 708E269A6A874F39AFC2A773EA95C5AF Ref B: OSL30EDGE0115 Ref C: 2022-12-11T06:43:06Z
date: Sun, 11 Dec 2022 06:43:05 GMT
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Sun, 11 Dec 2022 06:43:06 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
api.hubapi.com/hs-script-loader-public/v1/config/pixel/json?portalId=4165851
200 OK 590 B URL HTTP/2 api.hubapi.com/hs-script-loader-public/v1/config/pixel/json?portalId=4165851
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash f28a4485fa6c4c161130e674d21c56b0
eaffddc931f9f22bbd9f79f653eefa848dcf1363
2805c5f2d653e7fec19f99bc80bd3d8194ef756ca749db6269f9eb1fbae42fc3
GET /hs-script-loader-public/v1/config/pixel/json?portalId=4165851 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:06 GMT
content-type: application/json;charset=utf-8
cf-ray: 777c3e79dd53b518-OSL
access-control-allow-origin: https://www.coro.net
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-hubspot-correlation-id: 6ca5d29c-6d46-44a6-949f-87cc69f897aa
x-trace: 2B2EFA5F2FB5F882A0EC8BB2DEEE19F59CCAD13BF6000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l6XFY4w70Ws%2Bgj7hVjXIZpUABnRvpUTANRl15AtAReHrUSrstUhPaapQLS5ve3BjPNGdlIdrDMW2rEHnxPc%2B0POIkgml7j%2FtbFABcZgPAAOx%2B3PN9x2bZIkN6m60PpxS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s.adroll.com/j/exp/QIYHMMZOTVBZLLJEM7VC4X/index.js
302 Moved Temporarily 0 B URL HTTP/1.1 s.adroll.com/j/exp/QIYHMMZOTVBZLLJEM7VC4X/index.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/exp/QIYHMMZOTVBZLLJEM7VC4X/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Sat, 10 Dec 2022 08:58:41 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/exp/index.js
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
Age: 78264
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 44JkIMy-S9AOKeKb-MDLSko_xrLk4rkJ2Yew78PDwj5BP2kqgAgPlA==
fresnel.vimeocdn.com/add/player-test-impression?beacon=1
200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-test-impression?beacon=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-test-impression?beacon=1 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Sun, 11 Dec 2022 06:43:06 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.coro.net/wp-content/uploads/2021/09/cropped-coro-logo-header@3x-32x32.png
200 OK 895 B URL HTTP/1.1 www.coro.net/wp-content/uploads/2021/09/cropped-coro-logo-header@3x-32x32.png
IP
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 2c4dc960893e3e521e10fe57428221e2
cbe7cccaac72469b8e60d56932096fbe4e61ae1c
e51e247242d73810716ef1bfa44566e8ecb0967c7ffad5647ed87f166882e2b8
GET /wp-content/uploads/2021/09/cropped-coro-logo-header@3x-32x32.png HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Cookie: _gcl_au=1.1.869711227.1670740984; _ga_5MVGMPSG6P=GS1.1.1670740983.1.0.1670740983.60.0.0; _ga=GA1.1.332704821.1670740984; slireg=https://scout.us4.salesloft.com; sliguid=0aa9fa2b-7029-4c12-b298-1d8579f62247; slirequested=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:06 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 18:35:35 GMT
Accept-Ranges: bytes
Content-Length: 895
Cache-Control: public
Expires: Sun, 08 Jan 2023 06:43:06 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
www.coro.net/wp-content/uploads/2021/09/cropped-coro-logo-header@3x-192x192.png
200 OK 7.4 kB URL HTTP/1.1 www.coro.net/wp-content/uploads/2021/09/cropped-coro-logo-header@3x-192x192.png
IP
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash e1d9581d5cef7c2126966c193fde2cc0
f87d5e1f09cbf5ea9a257308529ffa816ec3fc32
86a60d4f9861f44b97a6103a8134012168a25994af03328c22fd8c6f115a2935
GET /wp-content/uploads/2021/09/cropped-coro-logo-header@3x-192x192.png HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Cookie: _gcl_au=1.1.869711227.1670740984; _ga_5MVGMPSG6P=GS1.1.1670740983.1.0.1670740983.60.0.0; _ga=GA1.1.332704821.1670740984; slireg=https://scout.us4.salesloft.com; sliguid=0aa9fa2b-7029-4c12-b298-1d8579f62247; slirequested=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:06 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 18:35:35 GMT
Accept-Ranges: bytes
Content-Length: 7411
Cache-Control: public
Expires: Sun, 08 Jan 2023 06:43:06 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
googleads.g.doubleclick.net/pagead/viewthroughconversion/872945354/?random=1670740983761&cv=11&fst=1670740983761&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&auid=869711227.1670740984&rfmt=3&fmt=4
200 OK 929 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/872945354/?random=1670740983761&cv=11&fst=1670740983761&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&auid=869711227.1670740984&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2019), with no line terminators
Hash fe53dcbd2c70a921a9421e443867ac7b
ca17b2fef932702dbfafe235016ba9952e324559
c3250a114993f1a71e66c18017f08dd9b8524a7e27465cf2da76dd5a016b273f
GET /pagead/viewthroughconversion/872945354/?random=1670740983761&cv=11&fst=1670740983761&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&auid=869711227.1670740984&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Dec 2022 06:43:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 929
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 11-Dec-2022 06:58:06 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
player-telemetry.vimeo.com/player-events/log/play
200 OK 0 B URL HTTP/2 player-telemetry.vimeo.com/player-events/log/play
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /player-events/log/play HTTP/1.1
Host: player-telemetry.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 648
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
content-type: text/html; charset=UTF-8
date: Sun, 11 Dec 2022 06:43:06 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/710755244/?random=1670740984909&cv=11&fst=1670740984909&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&did=dZTQ1Zm&gdid=dZTQ1Zm&auid=869711227.1670740984&data=event%3Dgtag.config&rfmt=3&fmt=4
200 OK 951 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/710755244/?random=1670740984909&cv=11&fst=1670740984909&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&did=dZTQ1Zm&gdid=dZTQ1Zm&auid=869711227.1670740984&data=event%3Dgtag.config&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2079), with no line terminators
Hash f212ee1aa7aecac6138d509d7656cbc5
88512c88d87031a994d9c12742ca1cdd9ba60fb4
c71dd6163a4814f32abd0dbd012bd6861f030c30ccc2ad5fadb08d25348ce7c2
GET /pagead/viewthroughconversion/710755244/?random=1670740984909&cv=11&fst=1670740984909&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&did=dZTQ1Zm&gdid=dZTQ1Zm&auid=869711227.1670740984&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Dec 2022 06:43:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 951
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 11-Dec-2022 06:58:06 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f69c32ac7b9825b1255fed72f425fe77
58e0fb4b9d5c835bb222a73b5fd939af76991485
7e61ce2f34c53d0730f5e88d26fb87651af80f1356ccb9ccc5a6efa2b255195c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash c65ac62e7410252ded8bbaeea3fbf53d
368e5abfcbc3728085effc9f2f9e49b180196e87
5ac0baa36fd1132f037b9800deb6aa7af763a1e114490cb5d39aaa7c9c6a86fe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 787
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:06 GMT
Last-Modified: Sun, 11 Dec 2022 06:29:59 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash ef019950fc6b50e9529e8b155a12106c
6afb749a3540fc752cf127ca7e517510098a4391
0b602212719a764b2b81f0253f2cec7e8470aae35eb22e95b5e9069b9e6706e8
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: o8t5+K7aPrXjlMCNSH79q3nLAhp42vk+b7K53TYAIa+okkgqckN97Lsvy4t1fhuZOHVaMkneSvGFo86Yyqe2ZQ==
content-length: 27317
x-fb-trip-id: 1904183273
date: Sun, 11 Dec 2022 06:43:06 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 727 B IP
Hash fd742eecf2662a7ed920d7d203eb22cc
5fd343a1be5064e7a67dc1b8a071aa9f47264dc0
e81a0d5a2e07408db1910fd07e1575dddf03797a30c95874836440dafedb1590
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6041
Cache-Control: max-age=91705
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:06 GMT
Etag: "6394279a-2d7"
Expires: Mon, 12 Dec 2022 08:11:31 GMT
Last-Modified: Sat, 10 Dec 2022 06:30:50 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 727
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=e0f86d8c610453a94f87bf41adc799f5c322e1321670740984
200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=e0f86d8c610453a94f87bf41adc799f5c322e1321670740984
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=e0f86d8c610453a94f87bf41adc799f5c322e1321670740984 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1722
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Sun, 11 Dec 2022 06:43:06 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=493541352&t=pageview&_s=1&dl=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&ul=en-us&de=UTF-8&dt=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABQAAAACAAI~&jid=1221798412&gjid=259099544&cid=332704821.1670740984&tid=UA-65895294-5&_gid=163339933.1670740985&_r=1>m=2wgbu0NNB458V&z=1222788016
200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=493541352&t=pageview&_s=1&dl=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&ul=en-us&de=UTF-8&dt=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABQAAAACAAI~&jid=1221798412&gjid=259099544&cid=332704821.1670740984&tid=UA-65895294-5&_gid=163339933.1670740985&_r=1>m=2wgbu0NNB458V&z=1222788016
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j98&a=493541352&t=pageview&_s=1&dl=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&ul=en-us&de=UTF-8&dt=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAEABQAAAACAAI~&jid=1221798412&gjid=259099544&cid=332704821.1670740984&tid=UA-65895294-5&_gid=163339933.1670740985&_r=1>m=2wgbu0NNB458V&z=1222788016 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.coro.net
date: Sun, 11 Dec 2022 06:43:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/E4colUoO91Q
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/E4colUoO91Q
IP
Hash 0197f2cfba5a4ae5023b67f6ccef07df
1881c795ebb6951648e4bd27e4263bdb5d765cf1
bee4a1f90edc3b031ed93ec72605e3d6f1d019de80a6d0b18603b7392064e987
POST /s/gts1d4/E4colUoO91Q HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:06 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-5MVGMPSG6P&cid=332704821.1670740984>m=2oebu0&aip=1&z=776995257
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-5MVGMPSG6P&cid=332704821.1670740984>m=2oebu0&aip=1&z=776995257
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-5MVGMPSG6P&cid=332704821.1670740984>m=2oebu0&aip=1&z=776995257 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Dec 2022 06:43:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/872945354/?random=1670740983761&cv=11&fst=1670738400000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&fmt=3&is_vtc=1&random=1968599998&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/872945354/?random=1670740983761&cv=11&fst=1670738400000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&fmt=3&is_vtc=1&random=1968599998&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/872945354/?random=1670740983761&cv=11&fst=1670738400000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&fmt=3&is_vtc=1&random=1968599998&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Dec 2022 06:43:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash b10da7c40fd218e052cac5276be21d93
723dfdd1320ae0949196715d2d073320c4e4753d
ad3a489d2aa632e337fda00c7851dda9ecfb04798f432b6d5656f976c7ab3f2e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4338
Cache-Control: max-age=147616
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:06 GMT
Etag: "639508a8-1d7"
Expires: Mon, 12 Dec 2022 23:43:22 GMT
Last-Modified: Sat, 10 Dec 2022 22:31:04 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/368130,490106/domain/coro.net/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.coro.net/
Origin: https://www.coro.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Sun, 11 Dec 2022 02:33:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -22OB4gSSQ5UE_2dETGz9R_d73ECHddTgkQCDByRTU8ja-h4BHoqFw==
age: 14985
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/368130,490106/domain/coro.net/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.coro.net/
Origin: https://www.coro.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Sun, 11 Dec 2022 02:33:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oBb1vhzkTCDwuIO1w7NEH6oe6xEqHg0o04-KXAPBRYH72-GRLsor-Q==
age: 14985
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/368130,490106/domain/coro.net/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.coro.net/
Origin: https://www.coro.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Sun, 11 Dec 2022 02:33:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Lm7p1_v9gXw8i2ccz8rcQlxfz1-lDytzCt__p0T7nCxPCL-OMo8bTg==
age: 14985
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/368130,490106/domain/coro.net/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.coro.net/
Origin: https://www.coro.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Sun, 11 Dec 2022 02:33:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YsphPzfnwgNEI1YfzLRCaeAgNAiNi2d8vqd2BAql9ik3LdDwAe6jVg==
age: 14985
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a15de23015872f999e7b4fe1ff3aa1d2
10a51a76a6f0fb1c146077abb1f70b7e208a1751
26ddae77e27f7c29f921edc208816c5f5d2b10621d31bebd7c3fa3bd80e23a5a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f69c32ac7b9825b1255fed72f425fe77
58e0fb4b9d5c835bb222a73b5fd939af76991485
7e61ce2f34c53d0730f5e88d26fb87651af80f1356ccb9ccc5a6efa2b255195c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/872945354/?random=1670740983761&cv=11&fst=1670738400000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&fmt=3&is_vtc=1&random=1968599998&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/872945354/?random=1670740983761&cv=11&fst=1670738400000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&fmt=3&is_vtc=1&random=1968599998&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/872945354/?random=1670740983761&cv=11&fst=1670738400000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&fmt=3&is_vtc=1&random=1968599998&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Dec 2022 06:43:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 216a1b0887023b97bb9cda2c8b2261e2
2da4ce21bdaefc5163bbeb204592b8cbdd18f7c6
03c95af13f3f1a64559eb24daaed345c42ac6f2408404cd4e8afe6aa8c965d73
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 11 Dec 2022 01:44:17 GMT
Expires: Sun, 18 Dec 2022 01:44:16 GMT
Etag: "2da4ce21bdaefc5163bbeb204592b8cbdd18f7c6"
Cache-Control: max-age=586269,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 777c3e7e1834b518-OSL
ocsp.digicert.com/
200 OK 313 B IP
Hash 66e7ad76e3fdc021fe27020957faa466
d21ba82dcc34d74c892145da4393b79ce882cd84
52e739bf565aeda5c9f893317cc77d3099dd2a2f4b6a49f6b187e3d374a94acd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3894
Cache-Control: max-age=108987
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:06 GMT
Etag: "6394737f-139"
Expires: Mon, 12 Dec 2022 12:59:33 GMT
Last-Modified: Sat, 10 Dec 2022 11:54:39 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313
80vod-adaptive.akamaized.net/exp=1670744884~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=6298c1dc355c8879e7e5c0f14441ab5884ff085db63d8bcf256b68c700bb865e/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-2.m4s?r=dXM%3D
200 OK 284 kB URL HTTP/1.1 80vod-adaptive.akamaized.net/exp=1670744884~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=6298c1dc355c8879e7e5c0f14441ab5884ff085db63d8bcf256b68c700bb865e/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-2.m4s?r=dXM%3D
IP
ASN #20940 Akamai International B.V.
Size 284 kB (284464 bytes)
Hash 6c6ea70471f29ee062d90db63b79ba48
3c857f4eac5024c94c88ca186c12792450848cf8
9185e8722acf2100579bae582dcd9e7a0e49a95b6098fc3aa9ca03bdab275344
GET /exp=1670744884~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=6298c1dc355c8879e7e5c0f14441ab5884ff085db63d8bcf256b68c700bb865e/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-2.m4s?r=dXM%3D HTTP/1.1
Host: 80vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 284464
using-starlord: true
origin-retrieved-hour: 1657105200
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=31036029
Date: Sun, 11 Dec 2022 06:43:06 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.bd4c2417.1670740986.174385c1
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,PE:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.193
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
id.rlcdn.com/711861.gif
451 Unavailable For Legal Reasons 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /711861.gif HTTP/1.1
Host: id.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coro.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Sun, 11 Dec 2022 06:43:06 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s.adroll.com/j/exp/index.js
200 OK 28 B URL HTTP/1.1 s.adroll.com/j/exp/index.js
IP
File type ASCII text, with no line terminators
Hash 5816cced8568d223aa09d889f300692b
95cab5e474d7391762c3da5c7dc50fcf05df529f
f59e5f34a941183aacaed25322ac0856628493c2cfd936ded3fddc0a49510e52
GET /j/exp/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coro.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 28
Connection: keep-alive
Last-Modified: Fri, 14 Oct 2022 18:57:24 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: 3TnMO1iw0qw17MhnYw4sprJhuU7ahGp7
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Dec 2022 01:02:06 GMT
Etag: "5816cced8568d223aa09d889f300692b"
Vary: Accept-Encoding
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
Age: 20463
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OremIYvBh-OxkuGC_dwoeclV-K5uVhPtpAsoyePEDOE92CYPiD_rUQ==
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7064f6619ec94ac742915441ddf9be63
07864ef6316dfb3bfd38d602d2c38d237da8e61e
501f0b2261360de41668fde33f0518321c9335d5e1eab0f4a1014f75e061cca1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/710755244/?random=1670740984909&cv=11&fst=1670738400000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=224111739&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/710755244/?random=1670740984909&cv=11&fst=1670738400000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=224111739&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/710755244/?random=1670740984909&cv=11&fst=1670738400000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=224111739&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Dec 2022 06:43:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
80vod-adaptive.akamaized.net/exp=1670744884~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=6298c1dc355c8879e7e5c0f14441ab5884ff085db63d8bcf256b68c700bb865e/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-3.m4s?r=dXM%3D
200 OK 387 kB URL HTTP/1.1 80vod-adaptive.akamaized.net/exp=1670744884~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=6298c1dc355c8879e7e5c0f14441ab5884ff085db63d8bcf256b68c700bb865e/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-3.m4s?r=dXM%3D
IP
ASN #20940 Akamai International B.V.
Size 387 kB (386992 bytes)
Hash 9dfc92e6bd1761342c566421da9d7231
1f14137abff028b1d21f8ffc35926f42c5a9c4f9
4ef1eb18154bf41e0cf7ab1872ab0e65d212a316ad4a48050eca97f5ff04d3b8
GET /exp=1670744884~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=6298c1dc355c8879e7e5c0f14441ab5884ff085db63d8bcf256b68c700bb865e/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-3.m4s?r=dXM%3D HTTP/1.1
Host: 80vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 386992
using-starlord: true
origin-retrieved-hour: 1656770400
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=30452041
Date: Sun, 11 Dec 2022 06:43:06 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.bd4c2417.1670740986.174385cd
X-VIM-CACHEBC: EP:H11,E:m,TD0:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.193
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
secure.quantserve.com/quant.js
200 OK 10 kB URL HTTP/2 secure.quantserve.com/quant.js
IP
File type ASCII text, with very long lines (25888)
Hash 4175444f2ad7ce7b391a212ea15ada23
c90dbca3d2fcdf738616c672f273947182c30592
210324d943dc3889214be6534bdaa54d1f4e787f52592278a964b13dcdaaa7c8
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:06 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "KvGSi9leJgKNKEGESzHjYw=="
expires: Sun, 18 Dec 2022 06:43:06 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
aa.agkn.com/adscores/g.pixel?sid=9212289188&_puid=c:3b49683b68be861543aeee01713fa50c&_redir=https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D128%26cm%3D
302 Found 160 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9212289188&_puid=c:3b49683b68be861543aeee01713fa50c&_redir=https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D128%26cm%3D
IP
Hash 58adde740b5d2e0f653ab44f1c9fa943
abe7bb45b42a9f39b8a400d060a022587d6f6dba
010c56a300b0d8e8dd463a75225d1b49e38de03cc0b421038075c9f4dedcdacd
GET /adscores/g.pixel?sid=9212289188&_puid=c:3b49683b68be861543aeee01713fa50c&_redir=https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D128%26cm%3D HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coro.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 11 Dec 2022 06:43:06 GMT
location: https://d.agkn.com/pixel/10751/?che=1670740986661&ip=91.90.42.154&l1=https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D128%26cm%3D219113204362000378633
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3Ar462s8wEeveWcC9MBDl9SG0l50YBdD9s; Path=/; Domain=.agkn.com; Expires=Mon, 11-Dec-2023 06:43:06 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 312 B IP
Hash 20b4648384a0490dd6070847f3ce1098
13a0fe7e9cda2dfaeee68fc8e9d5d9d9c66b7db2
fe41950f674e4de7cde5a497a0dbb01222f80d8ceadcc14774df28ea85175515
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3323
Cache-Control: max-age=149449
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:06 GMT
Etag: "639513c8-138"
Expires: Tue, 13 Dec 2022 00:13:55 GMT
Last-Modified: Sat, 10 Dec 2022 23:18:32 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 312
ocsp.sectigo.com/
200 OK 471 B IP
Hash 216a1b0887023b97bb9cda2c8b2261e2
2da4ce21bdaefc5163bbeb204592b8cbdd18f7c6
03c95af13f3f1a64559eb24daaed345c42ac6f2408404cd4e8afe6aa8c965d73
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 06:43:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 11 Dec 2022 01:44:17 GMT
Expires: Sun, 18 Dec 2022 01:44:16 GMT
Etag: "2da4ce21bdaefc5163bbeb204592b8cbdd18f7c6"
Cache-Control: max-age=586269,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 777c3e7fd922b518-OSL
js.hs-banner.com/v2/4165851/banner.js
200 OK 63 kB URL HTTP/2 js.hs-banner.com/v2/4165851/banner.js
IP
File type ASCII text, with very long lines (65047)
Hash cbfbe5493f64dab0e07b12551f68135f
210e8b05f2df64fe80cf9c035662bd64af22671f
e701f5d86a604fa7761c9e74c190883ab7f7d31e972b3fea184f76080624a686
GET /v2/4165851/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:05 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: DTYpSs/Bmv8b5qxuRpPtHVRRslAAMEQBnmRTqBCkS1DzHUmdgPSyo9nth8e0LDlpiD09Ufe3Csw=
x-amz-request-id: QJ5ECC9E884GTPXV
last-modified: Thu, 08 Dec 2022 21:00:11 GMT
etag: W/"0cbcf2567b049449e540b39f11f3cff1"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: .oikc192ZXFGLWwwbfks_RIMjBkSmDfH
access-control-allow-origin: https://www.coro.net
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Sun, 11 Dec 2022 06:48:05 GMT
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 777c3e74590db509-OSL
content-encoding: br
X-Firefox-Spdy: h2
t.co/i/adsct?bci=3&eci=2&event_id=49cc5b08-d3aa-4a02-a773-708296b29165&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=035a9392-0579-4d53-a73d-3de8a1977cbe&tw_document_href=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0got&type=javascript&version=2.3.29
200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=49cc5b08-d3aa-4a02-a773-708296b29165&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=035a9392-0579-4d53-a73d-3de8a1977cbe&tw_document_href=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0got&type=javascript&version=2.3.29
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=49cc5b08-d3aa-4a02-a773-708296b29165&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=035a9392-0579-4d53-a73d-3de8a1977cbe&tw_document_href=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0got&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:06 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=f4102369-f49e-4af2-a657-2215f4f14bf7; Max-Age=63072000; Expires=Tue, 10 Dec 2024 06:43:06 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 659f055d2210b5af
strict-transport-security: max-age=0
x-response-time: 103
x-connection-hash: 3e41613d93330aa936ab55ed9717efd928183578737c1a5c738ff7bad9674934
X-Firefox-Spdy: h2
pixel.quantserve.com/pixel;r=434334809;source=gtm;rf=0;a=p-RHLs51mDdNxKx;url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58;uht=2;fpan=1;fpa=P0-1831709537-1670740985254;pbc=;ns=0;ce=1;qjs=1;qv=b2bd41b7-20221206125257;cm=;gdpr=0;ref=;d=coro.net;dst=0;et=1670740985434;tzo=0;ogl=locale.en_US%2Ctype.website%2Ctitle.All%20in%20one%20Cyber%20Protection%2Cdescription.Coro%20is%20an%20AI%20based%20cyber%20security%20software%20solution%20for%20businesses%252E%20Coro%20provid%2Curl.https%3A%2F%2Fwww%252Ecoro%252Enet%2F%2Csite_name.Coro%2Cimage.https%3A%2F%2Fwww%252Ecoro%252Enet%2Fwp-content%2Fuploads%2F2021%2F11%2Fdefault-social%252Epng%2Cimage%3Awidth.1640%2Cimage%3Aheight.624%2Cimage%3Atype.image%2Fpng;ses=e74d3645-dacd-4e4d-9cf6-ae4ee2f1809c
200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=434334809;source=gtm;rf=0;a=p-RHLs51mDdNxKx;url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58;uht=2;fpan=1;fpa=P0-1831709537-1670740985254;pbc=;ns=0;ce=1;qjs=1;qv=b2bd41b7-20221206125257;cm=;gdpr=0;ref=;d=coro.net;dst=0;et=1670740985434;tzo=0;ogl=locale.en_US%2Ctype.website%2Ctitle.All%20in%20one%20Cyber%20Protection%2Cdescription.Coro%20is%20an%20AI%20based%20cyber%20security%20software%20solution%20for%20businesses%252E%20Coro%20provid%2Curl.https%3A%2F%2Fwww%252Ecoro%252Enet%2F%2Csite_name.Coro%2Cimage.https%3A%2F%2Fwww%252Ecoro%252Enet%2Fwp-content%2Fuploads%2F2021%2F11%2Fdefault-social%252Epng%2Cimage%3Awidth.1640%2Cimage%3Aheight.624%2Cimage%3Atype.image%2Fpng;ses=e74d3645-dacd-4e4d-9cf6-ae4ee2f1809c
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=434334809;source=gtm;rf=0;a=p-RHLs51mDdNxKx;url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58;uht=2;fpan=1;fpa=P0-1831709537-1670740985254;pbc=;ns=0;ce=1;qjs=1;qv=b2bd41b7-20221206125257;cm=;gdpr=0;ref=;d=coro.net;dst=0;et=1670740985434;tzo=0;ogl=locale.en_US%2Ctype.website%2Ctitle.All%20in%20one%20Cyber%20Protection%2Cdescription.Coro%20is%20an%20AI%20based%20cyber%20security%20software%20solution%20for%20businesses%252E%20Coro%20provid%2Curl.https%3A%2F%2Fwww%252Ecoro%252Enet%2F%2Csite_name.Coro%2Cimage.https%3A%2F%2Fwww%252Ecoro%252Enet%2Fwp-content%2Fuploads%2F2021%2F11%2Fdefault-social%252Epng%2Cimage%3Awidth.1640%2Cimage%3Aheight.624%2Cimage%3Atype.image%2Fpng;ses=e74d3645-dacd-4e4d-9cf6-ae4ee2f1809c HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:06 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=63957bfa-e51f8-0e552-cb503; expires=Thu, 11-Jan-2024 06:43:06 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=49cc5b08-d3aa-4a02-a773-708296b29165&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=035a9392-0579-4d53-a73d-3de8a1977cbe&tw_document_href=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0got&type=javascript&version=2.3.29
200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=49cc5b08-d3aa-4a02-a773-708296b29165&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=035a9392-0579-4d53-a73d-3de8a1977cbe&tw_document_href=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0got&type=javascript&version=2.3.29
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=49cc5b08-d3aa-4a02-a773-708296b29165&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=035a9392-0579-4d53-a73d-3de8a1977cbe&tw_document_href=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0got&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:06 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_2gculMwAoPOtfh1nHX4gNg=="; Max-Age=63072000; Expires=Tue, 10 Dec 2024 06:43:06 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 1fe997fa9e445416
strict-transport-security: max-age=631138519
x-response-time: 109
x-connection-hash: cab235b1caf3f2a127c0e358e6be4ceb2551920796ebe61147f123fb1d630096
X-Firefox-Spdy: h2
d.agkn.com/pixel/10751/?che=1670740986661&ip=91.90.42.154&l1=https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D128%26cm%3D219113204362000378633
302 Found 0 B URL HTTP/1.1 d.agkn.com/pixel/10751/?che=1670740986661&ip=91.90.42.154&l1=https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D128%26cm%3D219113204362000378633
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/10751/?che=1670740986661&ip=91.90.42.154&l1=https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D128%26cm%3D219113204362000378633 HTTP/1.1
Host: d.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coro.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache, must-revalidate
Date: Sun, 11 Dec 2022 06:43:06 GMT
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Location: https://aorta.clickagy.com/pixel.gif?clkgypv=pxl&ch=128&cm=219113204362000378633
P3P: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Server: Apache-Coyote/1.1
Set-Cookie: ab=0001%3Az6X22tNyqmauPln7e17wtRV6Y3ms56Db;Path=/;Domain=agkn.com;Max-Age=31536000;SameSite=None;Secure
u=C|0AAArKDh7Kyg4ewAAAAAA;Path=/;Domain=agkn.com;Max-Age=31536000;SameSite=None;Secure
Content-Length: 0
Connection: keep-alive
www.facebook.com/tr/?id=401120693762451&ev=PageView&dl=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&rl=&if=false&ts=1670740985547&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1670740985547.768924974&it=1670740985205&coo=false&exp=a0&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=401120693762451&ev=PageView&dl=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&rl=&if=false&ts=1670740985547&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1670740985547.768924974&it=1670740985205&coo=false&exp=a0&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=401120693762451&ev=PageView&dl=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&rl=&if=false&ts=1670740985547&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1670740985547.768924974&it=1670740985205&coo=false&exp=a0&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 11 Dec 2022 06:43:07 GMT
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 1fe5c40e17042b6471c80cbfda35f6bf
8ba1a479d59cdba22bb1e2683134e5836bc0d78e
948ad7cab96f37f240f8ebd4e20cc47762c9981c52d75d3fc34ef192ca035159
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=147252
Date: Sun, 11 Dec 2022 06:43:07 GMT
Etag: "6395089a-1d7"
Expires: Mon, 12 Dec 2022 23:37:19 GMT
Last-Modified: Sat, 10 Dec 2022 22:30:50 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Xi62cY4_aHc4dk6iQ_G11pyEy1ztB-nos_H_iaYrbxHGIz0iGryvLg==
Age: 3989
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D368130%252C490106%26time%3D1670740985031%26url%3Dhttps%253A%252F%252Fwww.coro.net%252F%253FmsID%253Dab31266b-3b59-4fc3-9841-378f38d3fd58%26liSync%3Dtrue
302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D368130%252C490106%26time%3D1670740985031%26url%3Dhttps%253A%252F%252Fwww.coro.net%252F%253FmsID%253Dab31266b-3b59-4fc3-9841-378f38d3fd58%26liSync%3Dtrue
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D368130%252C490106%26time%3D1670740985031%26url%3Dhttps%253A%252F%252Fwww.coro.net%252F%253FmsID%253Dab31266b-3b59-4fc3-9841-378f38d3fd58%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coro.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=368130%2C490106&time=1670740985031&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&016897cf-38d0-41ec-8a8e-8a620c33a2c6"; Domain=.linkedin.com; Expires=Mon, 11-Dec-2023 06:43:07 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2022121106430644941da7-eaf7-456b-85f6-20c56683fe24AQH_iOynFps9GGW1PwUjfsm0mO38Bupz"; Domain=.www.linkedin.com; Expires=Mon, 11-Dec-2023 06:43:07 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzA3NDA5ODY7MjswMjFhe7h+BHgf6lctiWkDjqRDz1grZASKCdVmxwW4Pp0IkA==; Domain=.linkedin.com; Expires=Fri, 09 Jun 2023 06:43:07 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2433:u=1:x=1:i=1670740987:t=1670827387:v=2:sig=AQG_K1abIpmPBXSjjuRmMd91m3UJ1X9y"; Expires=Mon, 12 Dec 2022 06:43:07 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com onyx.www.linkedin.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXvh7MKywfiX10/OHKPbw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: E75B3D0506AA48A58F99456EC8AA086A Ref B: OSL30EDGE0408 Ref C: 2022-12-11T06:43:06Z
date: Sun, 11 Dec 2022 06:43:06 GMT
content-length: 0
X-Firefox-Spdy: h2
d.adroll.com/consent/check/QIYHMMZOTVBZLLJEM7VC4X?pv=55864040168.78404&arrfrr=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&_s=720935d29100ff1614fbb4611090fcf0&_b=2
200 OK 462 B URL HTTP/2 d.adroll.com/consent/check/QIYHMMZOTVBZLLJEM7VC4X?pv=55864040168.78404&arrfrr=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&_s=720935d29100ff1614fbb4611090fcf0&_b=2
IP
File type ASCII text, with very long lines (462), with no line terminators
Hash 0e809153d05b6f7a9fb1c1963b9d5ebc
e14f9a84cf24aadff4d93fc8d2a0d9092837bd87
2396eb5921776e4ba06d663d4df5279cc751b35fdc9619a52553e37cb15d54c6
GET /consent/check/QIYHMMZOTVBZLLJEM7VC4X?pv=55864040168.78404&arrfrr=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&_s=720935d29100ff1614fbb4611090fcf0&_b=2 HTTP/1.1
Host: d.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:07 GMT
content-type: application/javascript
content-length: 462
server: nginx/1.22.0
X-Firefox-Spdy: h2
aorta.clickagy.com/pixel.gif?clkgypv=pxl&ch=128&cm=219113204362000378633
302 Found 0 B URL HTTP/2 aorta.clickagy.com/pixel.gif?clkgypv=pxl&ch=128&cm=219113204362000378633
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?clkgypv=pxl&ch=128&cm=219113204362000378633 HTTP/1.1
Host: aorta.clickagy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coro.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 11 Dec 2022 06:43:07 GMT
content-type: application/json
content-length: 0
location: https://dpm.demdex.net/ibs:dpid=79908&dpuuid=c:3b49683b68be861543aeee01713fa50c&redir=https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D124%26cm%3D%24%7BDD_UUID%7D
server: Aorta/20221205.a0953a8c4
x-aorta-host: 339073d5fe1e
x-aorta-region: us-east-1
access-control-allow-credentials: true
access-control-allow-headers: Origin,cache-control,content-type,man,messagetype,soapaction
access-control-expose-headers: Set-Cookie
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin:
access-control-max-age: 31536000
cache-control: no-cache, no-store, must-revalidate
expect: 0
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=368130%2C490106&time=1670740985031&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&liSync=true
200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=368130%2C490106&time=1670740985031&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&liSync=true
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=368130%2C490106&time=1670740985031&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coro.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&4d427c80-56f6-48a4-8ce6-797cacf1cfdf"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 11-Dec-2023 06:43:07 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2433:u=1:x=1:i=1670740987:t=1670827387:v=2:sig=AQG_K1abIpmPBXSjjuRmMd91m3UJ1X9y"; Expires=Mon, 12 Dec 2022 06:43:07 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXvh7MNc/lU627KJPXmCw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: D0978994D34849E18374D7AD72B46AE7 Ref B: OSL30EDGE0408 Ref C: 2022-12-11T06:43:07Z
date: Sun, 11 Dec 2022 06:43:06 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 785ad2c405dd42c5db1a5b1d8c2c1fd9
3f68826d4086a84fc12d9312aeaed07d75f92d51
07eedafced374c8f478f74b6d8ea24c0320e8566d57030c01eb982d06e84d05a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1134
Cache-Control: max-age=171762
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 06:43:07 GMT
Etag: "63957380-1d7"
Expires: Tue, 13 Dec 2022 06:25:49 GMT
Last-Modified: Sun, 11 Dec 2022 06:06:56 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/ibs:dpid=79908&dpuuid=c:3b49683b68be861543aeee01713fa50c&redir=https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D124%26cm%3D%24%7BDD_UUID%7D
302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=79908&dpuuid=c:3b49683b68be861543aeee01713fa50c&redir=https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D124%26cm%3D%24%7BDD_UUID%7D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=79908&dpuuid=c:3b49683b68be861543aeee01713fa50c&redir=https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D124%26cm%3D%24%7BDD_UUID%7D HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coro.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v045-0bb46f593.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=79908&dpuuid=c:3b49683b68be861543aeee01713fa50c&redir=https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D124%26cm%3D%24%7BDD_UUID%7D
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=79896813013201255250443557649290062018; Max-Age=15552000; Expires=Fri, 09 Jun 2023 06:43:07 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: DVBiBnCPQ6g=
Content-Length: 0
Connection: keep-alive
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=79908&dpuuid=c:3b49683b68be861543aeee01713fa50c&redir=https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D124%26cm%3D%24%7BDD_UUID%7D
200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=79908&dpuuid=c:3b49683b68be861543aeee01713fa50c&redir=https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D124%26cm%3D%24%7BDD_UUID%7D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=79908&dpuuid=c:3b49683b68be861543aeee01713fa50c&redir=https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D124%26cm%3D%24%7BDD_UUID%7D HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coro.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v045-0a4852727.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: 7OB5WjCWRyk=
Content-Length: 59
Connection: keep-alive
js.hsadspixel.net/fb.js
200 OK 0 B IP
GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:05 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Dec 2022 03:25:35 UTC
etag: W/"cac538694d8cb071669002abe101c1fa"
x-amz-server-side-encryption: AES256
x-amz-version-id: uc7chkM909y9_fdLpHcf_jlYEUuyZ4oj
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f01dafb3bec9893b47152910d47900a4.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: NdC-n7tLIJCSy8u3NXMFAteKxKdIz2_NF6DGPpw5Adgs4zBc-toSqg==
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=adsscriptloaderstatic/static-1.303/bundles/pixels-release.js&cfRay=775e55407a51d953-IAD
x-hs-target-asset: adsscriptloaderstatic/static-1.303/bundles/pixels-release.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 467
server: cloudflare
cf-ray: 777c3e746c8eb4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
tags.clickagy.com/data.js?rnd=62fe5c0e6ad95
200 OK 0 B URL HTTP/2 tags.clickagy.com/data.js?rnd=62fe5c0e6ad95
IP
GET /data.js?rnd=62fe5c0e6ad95 HTTP/1.1
Host: tags.clickagy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:05 GMT
content-type: application/javascript
last-modified: Fri, 07 Oct 2022 12:51:20 GMT
x-amz-version-id: eiH8z613.BRzukjofzW7pfMQ5QqyyUJw
content-encoding: gzip
etag: W/"39cbfce65efed785f567d3a64646eed5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NgUkf19rb3RmHKmoWI4Q_DTwGDRqM_gwkIWQbCb1jQxZ05pw81cnuA==
age: 46090
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 777c3e782e51fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
IP
GET /partner/368130,490106/domain/coro.net/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Sun, 11 Dec 2022 01:05:18 GMT
access-control-allow-origin: *
cache-control: public, max-age=25428
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: x_smzWTxCbKGl8gVmT5i35wYeVR2qW3M1ymuTIvk0ZFquVTv1fjcdg==
age: 20268
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1670741100000/4165851.js
200 OK 0 B URL HTTP/2 js.hs-analytics.net/analytics/1670741100000/4165851.js
IP
GET /analytics/1670741100000/4165851.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:07 GMT
content-type: text/javascript
x-amz-id-2: G4iOMU2g+PoUaZhz7Z06O99RaRhM6OBu/uKN+MmIzmSp22uXU+6vcUOTDaTzaiRYLN/DrLL5lOY=
x-amz-request-id: MHDSJMS33WWHP4FQ
last-modified: Thu, 01 Dec 2022 14:12:15 GMT
etag: W/"f5b7a0aa77242a1cee3f7731c1f316bb"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Sun, 11 Dec 2022 06:48:07 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 777c3e7dd95b0b69-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
IP
GET /partner/368130,490106/domain/coro.net/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Sun, 11 Dec 2022 01:05:18 GMT
access-control-allow-origin: *
cache-control: public, max-age=25428
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SDB6P42MP_TYx1Ze0syN40NuEY3la7mxKB8hEMNNjkwOPGYa2nMxPQ==
age: 20268
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
IP
GET /partner/368130,490106/domain/coro.net/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Sun, 11 Dec 2022 01:05:18 GMT
access-control-allow-origin: *
cache-control: public, max-age=25428
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PJqTD5L78kQWHxv2ytamo9KQsIc4l4RmTXvbpJvj6SYTEONsnpGmDw==
age: 20268
X-Firefox-Spdy: h2
js.hscollectedforms.net/collectedforms.js
200 OK 0 B URL HTTP/2 js.hscollectedforms.net/collectedforms.js
IP
GET /collectedforms.js HTTP/1.1
Host: js.hscollectedforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:05 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Dec 2022 02:49:13 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: SN4HXBautbT5xHa4DdPckLpyluwLE8QR
etag: W/"349cabd549e2249f8fb6ac3ac6f08e00"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcfffcf7e0fc8cd9cfe4125369a9f036.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: cbVW9BXM9o2TWVpLnAvUXNasQrGgWhaLj3PfhqSCU5g6M7nly6PKAw==
cache-control: s-maxage=600, max-age=300
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=collected-forms-embed-js/static-1.312/bundles/project.js&cfRay=7767e86a0cfbb4f3-ARN
x-hs-target-asset: collected-forms-embed-js/static-1.312/bundles/project.js
access-control-allow-origin: *
x-hs-cache-status: HIT
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 777c3e744901b523-OSL
content-encoding: br
X-Firefox-Spdy: h2
forms.hubspot.com/collected-forms/v1/config/json?portalId=4165851&utk=
200 OK 0 B URL HTTP/2 forms.hubspot.com/collected-forms/v1/config/json?portalId=4165851&utk=
IP
GET /collected-forms/v1/config/json?portalId=4165851&utk= HTTP/1.1
Host: forms.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:05 GMT
content-type: application/json;charset=utf-8
vary: origin
x-hubspot-correlation-id: 012b0010-d350-4f24-ada8-ca32f0ad0d1c
access-control-allow-credentials: false
access-control-allow-origin: https://www.coro.net
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=zeenQgOk9lFF_m._5laqO4cPYJNOOjWy8ICNTEuuHAU-1670740985-0-AQWfyVEfZ9toc0GbCjHoJvKhLTlxZsrisSLldVSVButlaKce0L9TPZOUhQqk/IlccxUofOoJ19XvD6fgI7+qFBQ=; path=/; expires=Sun, 11-Dec-22 07:13:05 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4wDsM1PtwIqgrourTHmcvTGuP1KQIlg81eDU0yN0ZAdr0sm%2BodVklSNImXPoRakqUfghA6mS38bHx%2BqQ7Kq8fImHWSYbWtNeLyiXHG7j46188nD40ULUK%2FWSWQtTBFm8vkJ2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 777c3e771c80b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
IP
GET /partner/368130,490106/domain/coro.net/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Sun, 11 Dec 2022 01:05:18 GMT
access-control-allow-origin: *
cache-control: public, max-age=25428
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Udi4tfBWkcTG1upQJn4Dk6EZowLe2uUSMFPw6yKKqbzgjt_vNfd3UA==
age: 20268
X-Firefox-Spdy: h2
js.hs-scripts.com/4165851.js
200 OK 0 B URL HTTP/2 js.hs-scripts.com/4165851.js
IP
GET /4165851.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 06:43:04 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B71ED019A5FCC93D2A975E731B76E717629E7E99C000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: 5c14b79e-44c0-4518-a5de-cea917d13007
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.coro.net
last-modified: Sun, 11 Dec 2022 06:43:04 GMT
cf-cache-status: MISS
expires: Sun, 11 Dec 2022 06:44:04 GMT
server: cloudflare
cf-ray: 777c3e70bc83b521-OSL
content-encoding: br
X-Firefox-Spdy: h2
35.169.203.233
104.17.211.204
34.252.119.253
31.13.72.12
23.36.76.226
93.184.220.29
151.101.246.109