Overview

URL ec2-54-189-84-127.us-west-2.compute.amazonaws.com/x/d?c=24993384&l=6c1c7db5-ae60-4032-94d3-45835c8c5be9&r=b8e7a9cc-63ce-4190-916d-3960ca6cafc5
IP54.189.84.127
ASNAMAZON-02
Location United States
Report completed2022-09-09 23:38:23 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-09 2 www.visiblecollege.education/unsubscribe-cx.html Phishing
2022-09-09 2 www.visiblecollege.education/files/theme/MutationObserver.js Phishing
2022-09-09 2 www.visiblecollege.education/files/main_style.css?1662086747 Phishing
2022-09-09 2 www.visiblecollege.education/files/theme/custom-1.js?1654106271 Phishing
2022-09-09 2 www.visiblecollege.education/files/templateArtifacts.js?1662086747 Phishing
2022-09-09 2 www.visiblecollege.education/files/theme/plugins.js?1654106271 Phishing
2022-09-09 2 www.visiblecollege.education/files/theme/jquery.pxuMenu.js?1654106271 Phishing
2022-09-09 2 www.visiblecollege.education/uploads/1/4/1/4/141422211/published/vm-semi-st (...) Phishing
2022-09-09 2 www.visiblecollege.education/uploads/1/4/1/4/141422211/published/vm-semi-st (...) Phishing
2022-09-09 2 www.visiblecollege.education/ajax/api/JsonRPC/CustomerAccounts/?CustomerAcc (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (47)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-09 04:39:53 UTC 142.250.74.72
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-08-29 13:43:22 UTC 2022-09-09 04:41:01 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS siteimproveanalytics.com (1) 3559 2020-04-09 01:15:05 UTC 2022-09-09 07:12:57 UTC 172.67.128.109
mnemonic passive DNS 66356305.global.siteimproveanalytics.io (1) 544271 2022-07-28 02:00:43 UTC 2022-09-09 23:38:15 UTC 3.74.103.247
mnemonic passive DNS mx.technolutions.net (2) 11218 2019-07-22 13:27:51 UTC 2022-09-09 23:38:15 UTC 143.204.55.14
mnemonic passive DNS cdn.datasteam.io (1) 18573 2019-07-22 11:28:49 UTC 2022-09-09 23:38:14 UTC 143.204.55.55
mnemonic passive DNS sc-static.net (1) 1183 2022-01-24 20:13:30 UTC 2022-09-09 19:38:11 UTC 54.230.82.240
mnemonic passive DNS tr.snapchat.com (4) 978 2017-04-26 06:25:03 UTC 2022-09-09 04:54:33 UTC 35.190.43.134
mnemonic passive DNS exploregrad.georgiasouthern.edu (1) 0 2019-11-26 06:02:47 UTC 2022-09-09 23:38:15 UTC 34.198.122.35 Domain (georgiasouthern.edu) ranked at: 127701
mnemonic passive DNS ocsp.pki.goog (19) 175 2017-06-14 07:23:31 UTC 2022-09-09 04:41:59 UTC 142.250.74.3
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-09 13:54:46 UTC 34.120.237.76
mnemonic passive DNS forms.zohopublic.com (1) 111187 2015-07-08 06:37:08 UTC 2022-09-09 19:25:06 UTC 136.143.190.97
mnemonic passive DNS connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2022-09-09 04:39:58 UTC 157.240.200.14
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-09 19:09:35 UTC 142.250.74.164
mnemonic passive DNS ec2-54-189-84-127.us-west-2.compute.amazonaws.com (1) 0 2021-09-08 06:48:39 UTC 2022-09-09 19:00:52 UTC 54.189.84.127 Unknown ranking
mnemonic passive DNS www.visiblecollege.education (14) 0 2022-05-11 23:05:19 UTC 2022-09-09 23:38:13 UTC 199.34.228.71 Unknown ranking
mnemonic passive DNS ajax.googleapis.com (1) 12905 2019-10-15 17:52:08 UTC 2022-09-09 17:34:12 UTC 142.250.74.10
mnemonic passive DNS 9188115.fls.doubleclick.net (1) 650747 2019-07-18 20:19:22 UTC 2022-09-09 23:38:14 UTC 142.250.74.70
mnemonic passive DNS collector-5081.tvsquared.com (2) 580153 2019-08-22 14:38:26 UTC 2022-09-09 23:38:14 UTC 3.136.148.72
mnemonic passive DNS api.datasteam.io (4) 9608 2018-03-19 10:54:55 UTC 2022-09-09 17:45:39 UTC 34.197.14.179
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-09 04:43:53 UTC 54.148.17.90
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-09 17:30:20 UTC 142.250.74.174
mnemonic passive DNS static.zohocdn.com (11) 25981 2019-11-06 12:49:13 UTC 2022-09-09 14:25:54 UTC 185.20.209.147
mnemonic passive DNS webfonts.zohowebstatic.com (3) 75944 2020-10-23 02:10:50 UTC 2022-09-09 23:38:15 UTC 143.204.55.34
mnemonic passive DNS ocsp.sectigo.com (5) 487 2018-12-17 11:31:55 UTC 2022-09-09 15:42:02 UTC 172.64.155.188
mnemonic passive DNS i6.liadm.com (2) 1446 2020-02-06 10:19:01 UTC 2022-09-09 18:46:50 UTC 52.71.90.16
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-09 18:07:06 UTC 143.204.55.115
mnemonic passive DNS cdn2.editmysite.com (7) 11564 2012-10-02 18:27:39 UTC 2022-09-09 10:28:59 UTC 151.101.85.46
mnemonic passive DNS ssl.google-analytics.com (1) 275 2012-10-03 00:55:57 UTC 2022-09-09 04:49:42 UTC 142.250.74.8
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-09 06:20:37 UTC 216.239.32.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS ocsp.sca1b.amazontrust.com (12) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.156
mnemonic passive DNS adservice.google.com (1) 76 2021-02-20 16:10:48 UTC 2022-09-09 19:37:42 UTC 216.58.211.2
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-09 04:47:11 UTC 143.204.55.110
mnemonic passive DNS ocsp.digicert.com (9) 86 2012-05-21 07:02:23 UTC 2022-09-09 18:03:58 UTC 93.184.220.29
mnemonic passive DNS adservice.google.no (1) 96969 2017-09-26 14:23:08 UTC 2022-09-09 04:45:07 UTC 142.250.74.98
mnemonic passive DNS ec.editmysite.com (2) 12806 2017-01-29 21:50:35 UTC 2022-09-09 07:45:20 UTC 35.82.13.103
mnemonic passive DNS api.dtstmio.com (1) 14101 2019-11-04 17:11:40 UTC 2022-09-09 18:46:50 UTC 54.85.0.71
mnemonic passive DNS i.liadm.com (4) 511 2016-05-04 14:21:08 UTC 2022-09-09 12:18:35 UTC 3.212.123.192
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-09 04:40:52 UTC 142.251.1.156
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-09-09 04:49:28 UTC 142.250.74.3
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-09 04:40:05 UTC 23.36.76.226
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-09 04:48:21 UTC 34.117.237.239
mnemonic passive DNS analytics.tiktok.com (5) 1182 2020-02-29 13:09:05 UTC 2022-09-09 04:54:52 UTC 104.84.152.234
mnemonic passive DNS discover.georgiasouthern.edu (1) 672236 2020-08-26 06:13:38 UTC 2022-09-09 23:38:15 UTC 34.198.122.35
mnemonic passive DNS www.facebook.com (1) 99 2017-01-30 05:00:00 UTC 2022-09-09 04:28:11 UTC 157.240.200.35
mnemonic passive DNS aa.agkn.com (2) 431 2017-01-30 05:01:07 UTC 2022-09-09 05:06:27 UTC 52.17.63.11
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-09 20:20:10 UTC 142.250.74.10


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 54.189.84.127

Date UQ / IDS / BL URL IP
2022-10-24 16:56:30 +0000
0 - 0 - 0 ec2-54-189-84-127.us-west-2.compute.amazonaws (...) 54.189.84.127
2022-10-24 16:55:04 +0000
0 - 0 - 0 ec2-54-189-84-127.us-west-2.compute.amazonaws (...) 54.189.84.127
2022-10-24 16:53:17 +0000
0 - 0 - 0 ec2-54-189-84-127.us-west-2.compute.amazonaws (...) 54.189.84.127
2022-10-24 16:45:23 +0000
0 - 0 - 0 ec2-54-189-84-127.us-west-2.compute.amazonaws (...) 54.189.84.127
2022-09-30 14:26:12 +0000
0 - 0 - 0 ec2-54-189-84-127.us-west-2.compute.amazonaws (...) 54.189.84.127

Last 5 reports on ASN: AMAZON-02

Date UQ / IDS / BL URL IP
2022-12-06 21:52:42 +0000
0 - 0 - 2 tr62gf3t.ngrok.io/files/AsyncClient.exe 3.22.30.40
2022-12-06 21:50:12 +0000
0 - 0 - 8 careerservices.org.ng/qiiu/index.php?QBOT.zip 54.75.164.157
2022-12-06 21:47:12 +0000
0 - 0 - 10 ppressplayy.com/Facebook.exe 99.83.175.80
2022-12-06 21:26:47 +0000
0 - 0 - 3 www.e-serviceparts.info/landingpages/85acd40f (...) 143.204.55.82
2022-12-06 21:25:41 +0000
0 - 0 - 1 52.194.210.106/267/vbc.exe 52.194.210.106

Last 5 reports on domain: ec2-54-189-84-127.us-west-2.compute.amazonaws.com

Date UQ / IDS / BL URL IP
2022-10-24 16:56:30 +0000
0 - 0 - 0 ec2-54-189-84-127.us-west-2.compute.amazonaws (...) 54.189.84.127
2022-10-24 16:55:04 +0000
0 - 0 - 0 ec2-54-189-84-127.us-west-2.compute.amazonaws (...) 54.189.84.127
2022-10-24 16:53:17 +0000
0 - 0 - 0 ec2-54-189-84-127.us-west-2.compute.amazonaws (...) 54.189.84.127
2022-10-24 16:45:23 +0000
0 - 0 - 0 ec2-54-189-84-127.us-west-2.compute.amazonaws (...) 54.189.84.127
2022-09-30 14:26:12 +0000
0 - 0 - 0 ec2-54-189-84-127.us-west-2.compute.amazonaws (...) 54.189.84.127

Last 3 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-10-25 16:55:22 +0000
0 - 0 - 10 www.visiblecollege.education/unsubscribe-cx.html 199.34.228.71
2022-09-20 20:38:27 +0000
0 - 0 - 11 www.visiblecollege.education/unsubscribe-cx.html 199.34.228.71
2022-08-31 20:32:27 +0000
0 - 0 - 12 www.visiblecollege.education/unsubscribe-wil.html 199.34.228.71


JavaScript

Executed Scripts (62)


Executed Evals (1)

#1 JavaScript::Eval (size: 328, repeated: 1) - SHA256: 9e4299fc2ad722f42c3cb5c6bee0e819a7a65b679593e5d5f2a82f5c19485bae

                                        (function() {
    function d(a) {
        a = a.src || "";
        if (-1 < a.indexOf("youtube.com/embed/") || -1 < a.indexOf("youtube.com/v/")) return !0
    }
    var b = document.getElementsByTagName("iframe"),
        e = document.getElementsByTagName("embed"),
        a;
    for (a = b.length - 1; - 1 < a; a--) {
        var c = b[a];
        if (c = d(c)) return !0
    }
    for (a = e.length - 1; - 1 < a; a--)
        if (b = e[a], c = d(b)) return !0;
    return !1
})();
                                    

Executed Writes (0)



HTTP Transactions (149)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4B09E1D2B887DED061E4EC5F82EC70CE699EEED428ACC6B4FD3EF10ED9233C89"
Last-Modified: Thu, 08 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14470
Expires: Sat, 10 Sep 2022 03:39:22 GMT
Date: Fri, 09 Sep 2022 23:38:12 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 09 Sep 2022 23:06:04 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YPL6YpBU93J9rtn3X-rMlRaKnfTkP0wjLhl9am_A8HTYf_315qdQxg==
Age: 1928


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 09 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aVWvaM_NGF2q9Iybzg-vnQdLGDTekQ2KbVj_TUEpgtEXHyN5ZXWoOA==
age: 71498
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /x/d?c=24993384&l=6c1c7db5-ae60-4032-94d3-45835c8c5be9&r=b8e7a9cc-63ce-4190-916d-3960ca6cafc5 HTTP/1.1 
Host: ec2-54-189-84-127.us-west-2.compute.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         54.189.84.127
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Location: https://www.visiblecollege.education/unsubscribe-cx.html
Server: Microsoft-IIS/8.5
X-AspNetMvc-Version: 5.2
Set-Cookie: GMassUniqueID=e4c854d6-d486-4361-895a-bcaece7a0cfb; expires=Sun, 21-Sep-2026 03:40:10 GMT; Domain=gmass.co; path=/; SameSite=None; Secure GMassAffiliateID=; expires=Sun, 21-Sep-2026 03:40:10 GMT; Domain=gmass.co; path=/; SameSite=None; Secure
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Credentials: true
Date: Fri, 09 Sep 2022 23:38:03 GMT
Content-Length: 173


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   173
Md5:    24f82f7c7ca126b6f95430ab028fec1d
Sha1:   8fcf96e997664824cf463d0094a8f7419eaa69ca
Sha256: e50d3b47a60534faa5546a1bea73370edc91f51fc6898d705946af30d3154aad
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 09 Sep 2022 23:38:12 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 09 Sep 2022 22:56:07 GMT
Cache-Control: max-age=3600
Expires: Fri, 09 Sep 2022 23:54:51 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: La16HU_TO4erpRgZRcNsloIxCgkJfMRvD46uJbuJ2R3UyO0g4eRAEQ==
Age: 2526


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "7F319B9020F0935397EA3362E2B31EF5FCA12B0A9C8709B537F139618C75DF35"
Last-Modified: Thu, 08 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21573
Expires: Sat, 10 Sep 2022 05:37:46 GMT
Date: Fri, 09 Sep 2022 23:38:13 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3705
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:13 GMT
Last-Modified: Fri, 09 Sep 2022 22:36:28 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /unsubscribe-cx.html HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 09 Sep 2022 23:38:13 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.visiblecollege.education language=en; expires=Fri, 23-Sep-2022 23:38:13 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"001b6c418d56d58cb4e26d2d663266c1-gzip"
Content-Encoding: gzip
X-Host: blu125.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 7134
Keep-Alive: timeout=10, max=61
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1663), with CRLF, LF line terminators
Size:   7134
Md5:    862939f559bc6a63f3522559ed459cb6
Sha1:   6f7af83926ca335a27ad9d5ac21a30528328eb2d
Sha256: ad78b80fc5969148b628a439ff8fa56014d3126105b990f79877501cae28079a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: i6OdUYh46uXuIGeyr5D9qQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.148.17.90
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lMHoUBjOzg3xtapo3SSm292Ydho=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css/social-icons.css?buildtime=1662042360 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
last-modified: Thu, 01 Sep 2022 13:53:10 GMT
etag: W/"6310b946-3319"
expires: Thu, 15 Sep 2022 14:30:24 GMT
cache-control: max-age=1209600
x-host: grn108.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 09 Sep 2022 23:38:13 GMT
age: 724069
x-served-by: cache-sjc10024-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 7, 1
x-timer: S1662766694.958518,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1639
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13080)
Size:   1639
Md5:    c1cb6a9e021ecaeb7148255f0c5f2542
Sha1:   897597fd91f63d13487e316c76ca2ebf25922bdc
Sha256: cece09aa83db5c63cf4d17b483ad2609b6a6f3a482095915e7aabb19659a1e93
                                        
                                            GET /css/old/fancybox.css?1662042360 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
last-modified: Thu, 01 Sep 2022 13:53:15 GMT
etag: "6310b94b-f47"
expires: Thu, 15 Sep 2022 14:30:28 GMT
cache-control: max-age=1209600
x-host: grn101.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 09 Sep 2022 23:38:13 GMT
age: 724065
x-served-by: cache-sjc10038-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 29, 1
x-timer: S1662766694.961468,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1218
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3910)
Size:   1218
Md5:    b644e92258f4c7c0b4270047652d1e60
Sha1:   93734d52ee9e86a768159e514076051813c39cd9
Sha256: 29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
                                        
                                            GET /js/site/main-customer-accounts-site.js?buildTime=1662042360 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Thu, 01 Sep 2022 13:53:34 GMT
etag: "6310b95e-82588"
expires: Thu, 15 Sep 2022 14:30:24 GMT
cache-control: max-age=1209600
x-host: blu62.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 09 Sep 2022 23:38:13 GMT
age: 724070
x-served-by: cache-sjc10034-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662766694.952954,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 158973
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32007)
Size:   158973
Md5:    89fb93f3b911a60f91bc7f4063777a8f
Sha1:   fed88e48664b4e6b90df231038a205abc11d30b1
Sha256: 966b66e4bf0e1aaac8947bc61bd432e5c194936ddebed90fabefb88286db8a12
                                        
                                            GET /css/sites.css?buildTime=1662042360 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
last-modified: Thu, 01 Sep 2022 13:53:10 GMT
etag: W/"6310b946-347ac"
expires: Thu, 15 Sep 2022 14:30:24 GMT
cache-control: max-age=1209600
x-host: blu84.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 09 Sep 2022 23:38:13 GMT
age: 724069
x-served-by: cache-sjc10077-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1662766694.960363,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 29746
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   29746
Md5:    d10158b22b553f723d99dc78eaee6390
Sha1:   80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
Sha256: 939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
                                        
                                            GET /js/lang/en/stl.js?buildTime=1662042360& HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Thu, 01 Sep 2022 13:52:15 GMT
etag: "6310b90f-2c44e"
expires: Thu, 15 Sep 2022 14:30:24 GMT
cache-control: max-age=1209600
x-host: grn38.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 09 Sep 2022 23:38:13 GMT
age: 724069
x-served-by: cache-sjc10060-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1662766694.956868,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 32802
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (64997)
Size:   32802
Md5:    40ee71f2f2de93b9561845efa9a0cbbc
Sha1:   13451e3fb165d1ad524d9863d8344eab4a2fe353
Sha256: 41a33daf28fc89ce06f3c6a6029d078c20a0f42f07d6ec3dc7127d206dcec5fe
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /files/theme/MutationObserver.js HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 09 Sep 2022 23:38:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 17 May 2022 14:16:26 GMT
x-rgw-object-type: Normal
ETag: W/"e52201e96af18dd02c85eb627c843491"
x-amz-request-id: tx000000000000001e8ea5c-006284b25c-b9fbc7f-sfo1
X-Storage-Bucket: z3974
X-Storage-Object: 397452d9f6a2ea6a2135b45c9e40139c68ac6661f3bab4413e7299586ccb408a
X-Host: grn72.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   6842
Md5:    a502a64ac17dab318a72b5c6f667e5d6
Sha1:   9b623c5cdc2c288649ff13504131ea2c382e700d
Sha256: b0d53c00940847c4638accf26f204ef4569affa4a686ebcc5d3cc87d1697aa9d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Sep 2022 09:37:50 GMT
expires: Sun, 03 Sep 2023 09:37:50 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 568824
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65483)
Size:   33593
Md5:    a54a444f20643b131117dc2112cca05f
Sha1:   074964746b12ff1d30f7656310d6154ae1cc98b5
Sha256: aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtm.js?id=GTM-P3L37W HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Sep 2022 23:38:14 GMT
expires: Fri, 09 Sep 2022 23:38:14 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Sep 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79346
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (61276)
Size:   79346
Md5:    8122db4e31e01cb1ca0d22760ca0d089
Sha1:   0f8fbf3a244b82e35d1bc28971dc6d0687f931c9
Sha256: 8673303b786d11410668180764db8524c8d7e30b27f631ca80df06fdbf4ed095
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /files/main_style.css?1662086747 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Fri, 09 Sep 2022 23:38:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu47.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  assembler source, ASCII text, with very long lines (815)
Size:   7575
Md5:    0269c1a169a6912b26156920de52933f
Sha1:   d37c52a480bae4ed223001607a6038d921077bb1
Sha256: cff5a4eec16faab673ec9167c00807d2449aa4daea8a252845afe087f35e468b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /files/theme/custom-1.js?1654106271 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 09 Sep 2022 23:38:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 03 Dec 2021 02:31:47 GMT
x-rgw-object-type: Normal
ETag: W/"beb222c03c3fdd6af710530b7df1c408"
x-amz-request-id: tx000000000000000044481-006258b62e-4d6022f-las
X-Storage-Bucket: z6fce
X-Storage-Object: 6fceda9df3549c1857609bca8bb9bd132aaef3ec76adeb82b0a62c698cae0011
X-Host: blu14.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   4096
Md5:    7960b13ef773e1c8965d668d5b212834
Sha1:   35f276ab77c975720b8cfa8eeb0ca8cc297725ed
Sha256: 1f897564d4aacb23ab3203c848e47b42417156d404d065c1e81d6c3bca0cccc4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /files/templateArtifacts.js?1662086747 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Fri, 09 Sep 2022 23:38:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn127.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (1630)
Size:   1632
Md5:    e0836e8203c22b8e4086f27e91e86f5a
Sha1:   28235e77f5a895c8cd411aff4a6ef4e6f7d419c2
Sha256: 32dbc4a2eeca39a57d35670f00e2cf59e03c279521e47506c56c5c36d8b664b6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /files/theme/plugins.js?1654106271 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 09 Sep 2022 23:38:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 24 Mar 2022 16:13:47 GMT
x-rgw-object-type: Normal
ETag: W/"d86674e2fb0fe652cbe72550ff705154"
x-amz-request-id: tx00000000000000222bf30-006284e40a-b9fbc29-sfo1
X-Storage-Bucket: z191b
X-Storage-Object: 191b89e359f86e713b98445e983013d20d8130d001444e0c99098d219a0853f5
X-Host: grn139.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   15931
Md5:    0f7b71024ebd304696e6b1f295e8793d
Sha1:   d4a273b8009009285b394cdc9f5b8baf6d1c8e1b
Sha256: e4c4bad96ca6be1f0ac691edab1fa9b51dc2f84fdc32cf1a665b4c71784c2cba

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /files/theme/jquery.pxuMenu.js?1654106271 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 09 Sep 2022 23:38:14 GMT
Content-Length: 3697
Connection: keep-alive
Last-Modified: Mon, 25 Apr 2022 13:50:18 GMT
x-rgw-object-type: Normal
ETag: "ac373d716afe4270df40f60417b0f418"
x-amz-request-id: tx000000000000001d78029-0062849c00-b9fbc63-sfo1
X-Storage-Bucket: zf755
X-Storage-Object: f75570c56743e8c705cb06f5f1f9b1f8f2cc13119f5e2acda2f3bb8d987de94a
X-Host: grn77.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   3697
Md5:    ac373d716afe4270df40f60417b0f418
Sha1:   aba148148c771bb66b0b4aeab6eac8eb40352745
Sha256: f75570c56743e8c705cb06f5f1f9b1f8f2cc13119f5e2acda2f3bb8d987de94a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /files/theme/jquery.revealer.js?1654106271 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 09 Sep 2022 23:38:14 GMT
Content-Length: 2828
Connection: keep-alive
Last-Modified: Tue, 26 Oct 2021 13:57:33 GMT
x-rgw-object-type: Normal
ETag: "c22ab67199a33d876512504cda4ff55b"
x-amz-request-id: tx000000000000000d11219-0061a71c4b-a9f4046-sfo1
X-Storage-Bucket: zc4cd
X-Storage-Object: c4cd233d3d6b0f184e99d5017e521b4c6f9106d3e546864a8ba516189b934311
X-Host: grn32.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   2828
Md5:    c22ab67199a33d876512504cda4ff55b
Sha1:   36e96eae4644b6028532974fe5186a072792cb37
Sha256: c4cd233d3d6b0f184e99d5017e521b4c6f9106d3e546864a8ba516189b934311
                                        
                                            GET /files/theme/jquery.trend.js?1654106271 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 09 Sep 2022 23:38:14 GMT
Content-Length: 3775
Connection: keep-alive
Last-Modified: Thu, 10 Feb 2022 08:22:06 GMT
x-rgw-object-type: Normal
ETag: "4beccebe0a060b2b2c43de5c2d4512ef"
x-amz-request-id: tx000000000000001ab0c70-0062847889-b9fbc77-sfo1
X-Storage-Bucket: z446f
X-Storage-Object: 446f48f512ecc0b771af3c21a3036de3a1c5740d1e6bdbb61448834326d0c738
X-Host: blu134.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   3775
Md5:    4beccebe0a060b2b2c43de5c2d4512ef
Sha1:   250a779dd017877b9f360b264cf072d9e87974ff
Sha256: 446f48f512ecc0b771af3c21a3036de3a1c5740d1e6bdbb61448834326d0c738
                                        
                                            GET /js/wsnbn/snowday262.js HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Tue, 30 Aug 2022 19:50:08 GMT
etag: "630e69f0-124fe"
expires: Thu, 15 Sep 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: grn123.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 09 Sep 2022 23:38:14 GMT
age: 745174
x-served-by: cache-sjc10034-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 7434
x-timer: S1662766695.682631,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2512)
Size:   25752
Md5:    234327230add9a5a5d61a48829ea4565
Sha1:   7966cc0e4bd76f88ff193c8a99a067de804b7129
Sha256: bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
                                        
                                            GET /uploads/1/4/1/4/141422211/editor/zschool-logo_3.png HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 09 Sep 2022 23:38:14 GMT
Content-Length: 2600
Connection: keep-alive
Last-Modified: Tue, 18 Jan 2022 19:27:37 GMT
x-rgw-object-type: Normal
ETag: "beeed01200a56489dbdb427baa446265"
x-amz-request-id: tx00000000000000204c078-006284cf8e-b9fbc7f-sfo1
X-Storage-Bucket: zc01f
X-Storage-Object: c01fd7d4ccca14aeef12e3fc93be4a48d5b060032907f4431869b2292656038b
X-Host: blu27.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 93 x 47, 8-bit/color RGBA, non-interlaced\012- data
Size:   2600
Md5:    beeed01200a56489dbdb427baa446265
Sha1:   9636c0f125aa00527b77c2861051a39768de3800
Sha256: c01fd7d4ccca14aeef12e3fc93be4a48d5b060032907f4431869b2292656038b
                                        
                                            GET /uploads/1/4/1/4/141422211/published/vm-semi-stacked-logo-2.png?1649639724 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 09 Sep 2022 23:38:14 GMT
Content-Length: 4137
Connection: keep-alive
Last-Modified: Mon, 11 Apr 2022 01:15:33 GMT
x-rgw-object-type: Normal
ETag: "66c352d49cce98a2eaeed0ab566c5d46"
x-amz-request-id: tx000000000000002c31ba4-0062c43821-bfe36ba-sfo1
X-Storage-Bucket: z37f9
X-Storage-Object: 37f9029e6eccd6bfc5a89b408930554ed5c20cc1b18a4dc55c4e6ac89c7e27aa
X-Host: blu24.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 202 x 51, 8-bit gray+alpha, non-interlaced\012- data
Size:   4137
Md5:    66c352d49cce98a2eaeed0ab566c5d46
Sha1:   d491ffee50e644643cd6938387c9fd742b7c9a68
Sha256: 37f9029e6eccd6bfc5a89b408930554ed5c20cc1b18a4dc55c4e6ac89c7e27aa

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /uploads/1/4/1/4/141422211/published/vm-semi-stacked-logo-2.png?1649639734 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 09 Sep 2022 23:38:14 GMT
Content-Length: 4137
Connection: keep-alive
Last-Modified: Mon, 11 Apr 2022 01:15:33 GMT
x-rgw-object-type: Normal
ETag: "66c352d49cce98a2eaeed0ab566c5d46"
x-amz-request-id: tx000000000000002bfc22f-0062c43ea4-c033918-sfo1
X-Storage-Bucket: z37f9
X-Storage-Object: 37f9029e6eccd6bfc5a89b408930554ed5c20cc1b18a4dc55c4e6ac89c7e27aa
X-Host: blu27.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 202 x 51, 8-bit gray+alpha, non-interlaced\012- data
Size:   4137
Md5:    66c352d49cce98a2eaeed0ab566c5d46
Sha1:   d491ffee50e644643cd6938387c9fd742b7c9a68
Sha256: 37f9029e6eccd6bfc5a89b408930554ed5c20cc1b18a4dc55c4e6ac89c7e27aa

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26100
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 18:22:38 GMT
expires: Thu, 07 Sep 2023 18:22:38 GMT
cache-control: public, max-age=31536000
age: 191736
last-modified: Fri, 24 Jun 2022 18:41:34 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 26100, version 1.0\012- data
Size:   26100
Md5:    312bcfa92b0b0a09c3f404b2c662a0b6
Sha1:   5398ff9ee3c10bffc54e3a9f7e5e7506a822b38a
Sha256: 979caf94add5b00ec59d8abde43d200523745c2f4b105c2906f4d9dda4afaeec
                                        
                                            GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 21:14:35 GMT
expires: Tue, 05 Sep 2023 21:14:35 GMT
cache-control: public, max-age=31536000
age: 354219
last-modified: Mon, 18 Jul 2022 19:24:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data
Size:   25372
Md5:    fe424f96cb627d8b835cb001af17f56e
Sha1:   c5b4368fed99812a99036fba86d01367b5549505
Sha256: 35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ga.js HTTP/1.1 
Host: ssl.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.8
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Fri, 09 Sep 2022 22:29:20 GMT
expires: Sat, 10 Sep 2022 00:29:20 GMT
cache-control: public, max-age=7200
age: 4134
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1305)
Size:   17168
Md5:    01d5892e6e243b52998310c2925b9f3a
Sha1:   58180151b6a6ee4af73583a214b68efb9e8844d4
Sha256: 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Fri, 09 Sep 2022 22:41:12 GMT
expires: Sat, 10 Sep 2022 00:41:12 GMT
cache-control: public, max-age=7200
age: 3422
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20006
Md5:    56f5d7f608e25d64207135f045f988cb
Sha1:   901eb59372ae330ae85e1384da93479b21ae1082
Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en; _gcl_au=1.1.1663927793.1662766685; _ga_VY2RPVKG9S=GS1.1.1662766685.1.0.1662766685.0.0.0; _ga=GA1.1.1789343205.1662766685; _snow_ses.e20b=*; _snow_id.e20b=f8798b07-edb0-4cac-85f0-d466700459e4.1662766686.1.1662766686.1662766686.9b1074f0-1447-4bb6-8c9f-0fd12b38cfb4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Fri, 09 Sep 2022 23:38:14 GMT
Content-Length: 4286
Connection: keep-alive
Last-Modified: Mon, 11 Apr 2022 01:14:55 GMT
x-rgw-object-type: Normal
ETag: "4846aa7e88346c58ca13b59bc135600f"
x-amz-request-id: tx000000000000014a4bb51-0062e0c6fb-c03521c-sfo1
X-Storage-Bucket: z5163
X-Storage-Object: 5163fb6e037aa0fb771cae695787e0cc9fb85a0bde33ce8114380c9158a7dd85
X-Host: blu71.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size:   4286
Md5:    4846aa7e88346c58ca13b59bc135600f
Sha1:   62c0a7a8efe41d33106e4d6f355da79624328eac
Sha256: 5163fb6e037aa0fb771cae695787e0cc9fb85a0bde33ce8114380c9158a7dd85
                                        
                                            GET /scevent.min.js HTTP/1.1 
Host: sc-static.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.82.240
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 7956
server: CloudFront
date: Fri, 09 Sep 2022 23:38:14 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Sat, 10 Sep 2022 22:06:21 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EKFnnBXipT9wGys2QXnmo5t5QAZS9WEogONnF6-1dEI7TueIo3HNqw==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (23028), with no line terminators
Size:   7956
Md5:    9b9794693096d32d7d21d2ed93a741a1
Sha1:   45dd52bee37dee4f153d4de4494284e2c1088960
Sha256: 69fc19f4d2948d34cdb674170c65a1d44cbc397b3b9c2d5853dd8507b8891f8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "46EA8738BDF4130ED734B24AB9519391DD6F47DAB161AAFEE1345F53398502DA"
Last-Modified: Fri, 09 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14363
Expires: Sat, 10 Sep 2022 03:37:37 GMT
Date: Fri, 09 Sep 2022 23:38:14 GMT
Connection: keep-alive

                                        
                                            GET /js/siteanalyze_66356305.js HTTP/1.1 
Host: siteimproveanalytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.128.109
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Fri, 09 Sep 2022 23:38:15 GMT
content-length: 9115
x-amz-id-2: ZlIgUgTYsRQz36h071ZmGBsIBhvUb/HjQE/aIKM6b4QOsXIvPRNErWjtZhQkyzTh3R1MVqLu2kQ=
x-amz-request-id: JSV36H0BGRMD6CCV
cache-control: max-age=86400, no-transform
content-encoding: gzip
last-modified: Thu, 08 Sep 2022 20:57:09 GMT
etag: "9d7357a59c895e27f06d5a3e11353e8c"
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E7E5FKT2A%2FZ1r2dhUhpIkLr2gNCyQiu%2BYI%2FpxQ1xkRv6KPnRV6soz6uvmyE%2FMT8hAea3QwM%2B%2BWyFZbgXcd%2BkJV8f0u4wygZiCkK7nnE1XwfYR2ftOqEmInOMh2IJRyfYdOvb7U36KuvyZt8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7483c1a33e080b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27658), with no line terminators
Size:   9115
Md5:    9d7357a59c895e27f06d5a3e11353e8c
Sha1:   a91d248059c7dbe0395387e16ed6c946fbc8fa77
Sha256: 91884e4c461ee0998d2f23cc84a625e2c5c53ecf89279d7e2425ba873a8d9848
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11047
Expires: Sat, 10 Sep 2022 02:42:22 GMT
Date: Fri, 09 Sep 2022 23:38:15 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d42aeb1-7286-47e7-80d0-9f935ff0e357.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6783
x-amzn-requestid: b5b3bc92-81fb-44c9-8779-75acdcfe3698
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNitVHV6oAMFtAw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb188-1fc0dbcb38916f80068ddd30;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:35:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: zWlncI8c_NNPfirYIVAXQMvjRStc1JDgTLqQiBx6WKa9_qgObTeKLg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:50:15 GMT
age: 6480
etag: "22af3681777fa8f4b2b2701b6908b964ae196ccf"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6783
Md5:    827a2babef4ab84362ee689aa17ad274
Sha1:   22af3681777fa8f4b2b2701b6908b964ae196ccf
Sha256: ac5b44ab4f884494a472970b4aa21602ca8d09c5db44016151fdb08a2afcd06f
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11047
Expires: Sat, 10 Sep 2022 02:42:22 GMT
Date: Fri, 09 Sep 2022 23:38:15 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff87d6b48-0caf-49d8-be21-3ec24e24374f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8706
x-amzn-requestid: 37d04670-7b5a-4cbb-ad4c-46615c604bc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNjzcG2moAMF30g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb349-5351f9c15ad587ae3c807d48;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:42:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: lcckuCebVvSAYgrOAQaGKSp9Bg7RMpdpgIr_3rlRjKgn6iuIQYDHVg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:13:43 GMT
age: 5072
etag: "90dd5e86857e7f6313bbb053baa8c1d4784d3089"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8706
Md5:    478caf1cbdbafefa1b73c4e1a21e027c
Sha1:   90dd5e86857e7f6313bbb053baa8c1d4784d3089
Sha256: 0c845efdea74e5b1245ca00ea33a0b8220551d156ca34620e3d90ccb4de345dc
                                        
                                            GET /activityi;src=9188115;type=invmedia;cat=georg0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=2679473358430.3086? HTTP/1.1 
Host: 9188115.fls.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.70
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Sep 2022 23:38:15 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 404
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 09-Sep-2022 23:53:15 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (534), with no line terminators
Size:   404
Md5:    60fbd540e7d0bc9ad09792f9c02bcdfe
Sha1:   5d769f4277e97b59b8a3db554b227fcf1d379a81
Sha256: 7083528c9505c987856e180db8443ee05012a388e1528a46796cc41784cbd6af
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11047
Expires: Sat, 10 Sep 2022 02:42:22 GMT
Date: Fri, 09 Sep 2022 23:38:15 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250c93aa-253b-4354-9955-25ab2a663bc0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8220
x-amzn-requestid: 163470c8-ddaf-447c-994d-36d058fc5d82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNkDJFMSIAMF1XA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb3ad-157b820053ff36286de2b6a2;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:44:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _6Njy49_HmnGfo_gczCXLsMseZKkCwRgIN2iOBO6dx6SXUvxsAn5oA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:01:26 GMT
etag: "d2bde7891908b44713e8ac81d39d2bfa27abf108"
age: 5809
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8220
Md5:    3e23b206e95320e5f944478f1c873d4c
Sha1:   d2bde7891908b44713e8ac81d39d2bfa27abf108
Sha256: fa1fdad0bc869977cccef69be469e4c6e7ad018c5424480d9ec3f2bd2a7c22fb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdde1c872-426a-4aec-b295-a2cac8b36edf.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4477
x-amzn-requestid: bbdca46e-5628-4faf-a0fe-ea1b5b39ac2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNjzaHrIoAMF-iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb348-567e946e7cf77f2e11c17c97;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:42:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: a0AyKhmYA7WPwciU2nTXwyChZV_riw1QsqI_giBIcdZhi3Nz4jM0Sw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:59:11 GMT
age: 5944
etag: "ccf471cd30f5aa96f4e5fdb9e0fbbcdbb475a0bf"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4477
Md5:    71bafbee3867c04c3712ff98a123d52c
Sha1:   ccf471cd30f5aa96f4e5fdb9e0fbbcdbb475a0bf
Sha256: 58ff1700e0b125caefb73719e2b3d734b2fbcc5ed1aabe5a11bb73b43edab831
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2870416f-af1f-4974-b2d6-6b422a759e47.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 2710
x-amzn-requestid: 413a3afc-fc8a-4758-87dd-75ef70d07060
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNjs3FO7IAMF1Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb31e-43b304f11c99f28e5b0b36a4;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: LpoTrkbuzYgbuTzwLcxBpF185UC6yylRmcXPe3pH2Zv6toYW2IotTQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d2575afea3774df33dcf5e5ff475025e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:13:45 GMT
etag: "c73bee4e6aa14a00d91ca04bfcdd6cdc0f9aa34d"
age: 5070
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   2710
Md5:    c2549cb0e74144549e3da7447e72ea08
Sha1:   c73bee4e6aa14a00d91ca04bfcdd6cdc0f9aa34d
Sha256: f90977f626b8daf1571a7004b9db78a2267f8a889572a1f5a41960732f85e574
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c7c5434-1873-4130-a7ce-78209ce54bf0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10950
x-amzn-requestid: 435fc2f4-fbcb-4eec-81d8-a23154dcec61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YFUwZEfvIAMFjCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63186802-2348a4000430702d4e9ea132;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 09:44:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ORlM8dFTc_iThvJghFakY86D3ToJ5TCmP8Ip2PcvXCCkSKKHpWQ0Zw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:12:29 GMT
age: 5146
etag: "f930fcb22325e28592bc39b0b1974f5197c19afd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10950
Md5:    15249f3dafdd1690bc87ebb4fa6d518d
Sha1:   f930fcb22325e28592bc39b0b1974f5197c19afd
Sha256: a0b9e88c78e85a037363e0b0e4e03478718f8715fe69e72bfd159922eca28301
                                        
                                            POST /g/collect?v=2&tid=G-VY2RPVKG9S&gtm=2oe970&_p=1701964222&cid=1789343205.1662766685&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662766685&sct=1&seg=0&dl=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-cx.html&dt=Unsubscribe%20-%20CX%20-%20Visible%20Music%20College&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.32.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://www.visiblecollege.education
date: Fri, 09 Sep 2022 23:38:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2890
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:15 GMT
Last-Modified: Fri, 09 Sep 2022 22:50:06 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2890
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:15 GMT
Last-Modified: Fri, 09 Sep 2022 22:50:06 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /p HTTP/1.1 
Host: tr.snapchat.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------53165107537481062021248883805
Content-Length: 1980
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         35.190.43.134
HTTP/2 200 OK
content-type: text/html
                                        
date: Fri, 09 Sep 2022 23:38:15 GMT
access-control-allow-origin: https://www.visiblecollege.education
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBgQ0AIAgDsItIEHHEc5zCFRxva3Xe9J2CFSp+M4VRlFnkUweJ7B6ABYC9Wj+61i/3MgAAAA==;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 1
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size:   68
Md5:    c4a2b870062c2bb98c500bc1526c0498
Sha1:   528666ccdb12997358077bc8fcdbfb6b825c7788
Sha256: 2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2890
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:15 GMT
Last-Modified: Fri, 09 Sep 2022 22:50:06 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /cm/i?pid=5574edef-da44-408c-96f2-796f6a84a753&u_scsid=e141ad4c-2d3e-43ad-a772-f751e9397c38&u_sclid=794a5099-ac1a-4a6d-a2e7-0f8e24531711 HTTP/1.1 
Host: tr.snapchat.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         35.190.43.134
HTTP/2 200 OK
content-type: text/html
                                        
date: Fri, 09 Sep 2022 23:38:15 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2890
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:15 GMT
Last-Modified: Fri, 09 Sep 2022 22:50:06 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:15 GMT
Last-Modified: Fri, 09 Sep 2022 22:12:18 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ct1aDQaczHiiX-Xs56-nylAOvBMnf8ObTTqv-YXvynz1kWbrywHW5w==
Age: 5158

                                        
                                            GET /ddm/fls/i/src=9188115;type=invmedia;cat=georg0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=2679473358430.3086;~oref=https://www.visiblecollege.education/ HTTP/1.1 
Host: adservice.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9188115.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.2
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Sep 2022 23:38:15 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 404
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (533), with no line terminators
Size:   404
Md5:    76e2c96d586c5c64af5542116564ccab
Sha1:   fdc6eb337607ba8099f9f3f2eeab24125971213b
Sha256: 744608b1a86d4b69735969470f09ea2938e0578a76ad507fda427a7e90a22163
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:15 GMT
Last-Modified: Fri, 09 Sep 2022 22:05:36 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sOaPOfChV-BcpaEkF8S-ji2BM1p2EhKWRYAwPHzggUnUq_h9XPLwSw==
Age: 5559

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /i18n/pixel/config.js?sdkid=C44PDBJR2IL96OOAVENG&hostname=www.visiblecollege.education HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 202209092338158A33973A9EFE0E80BC21
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61e3b5abc4166c8e729682c4aeb7a9b45fa195fb17f80eb5d7e707b5d0351a978d4a9c370c7694f905d32d3dffdb18abdade2c548d9ac93b4119553258f344f2d725edfd83b720d015eb7c9639e3e25609b
content-encoding: gzip
content-length: 373
x-origin-response-time: 27,23.220.107.18
x-akamai-request-id: 1b6bd27.4e4ecde2
expires: Fri, 09 Sep 2022 23:38:15 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Sep 2022 23:38:15 GMT
x-cache: TCP_MISS from a104-84-152-230.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
vary: Accept-Encoding
set-cookie: _ttp=2EYJgXHDF0BOOPahaUbtUAnv352; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-220-107-18.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=97, origin; dur=27, inner; dur=21
x-parent-response-time: 123,104.84.152.230
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (321)
Size:   373
Md5:    dbf8b8b528034d6f3f76563139979b80
Sha1:   8e804266bbd5141ecb3750a7a6e697566a137224
Sha256: e46115a1ec3cd38a5c284668d3a42e42cc3c2f3eef6c75724e7e0826ca02b0a8
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:15 GMT
Last-Modified: Fri, 09 Sep 2022 21:54:23 GMT
Server: ECS (nyb/1D1A)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0i2PLIdpt8YRq3mgR8BeyQJ-x9s3bkJd8XrUmHGpQ3l-qug61knnTg==
Age: 6232

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:15 GMT
Last-Modified: Fri, 09 Sep 2022 23:21:30 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BCrV3ikkFNixJjpHjuNrGx7jZ7Wy7MIhg5xQ9ReDNdTLsn_wAOE0Bw==
Age: 1006

                                        
                                            GET /ddm/fls/i/src=9188115;type=invmedia;cat=georg0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=2679473358430.3086;~oref=https://www.visiblecollege.education/ HTTP/1.1 
Host: adservice.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.98
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Sep 2022 23:38:15 GMT
expires: Fri, 09 Sep 2022 23:38:15 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Size:   177
Md5:    9393b28661a65a763699c108887882eb
Sha1:   c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
Sha256: 2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:15 GMT
Server: ECS (dcb/7F80)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: k5Sc1zmm1jXbJlIuA66cwLacKcwxpD5bk1euwwrEd-vBmAopCuS9aw==

                                        
                                            GET /ping HTTP/1.1 
Host: discover.georgiasouthern.edu
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.198.122.35
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Cache-Control: private
Content-Encoding: gzip
Expires: Sat, 10 Sep 2022 00:08:15 GMT
Set-Cookie: _hash=450c6e51-18ab-4ec4-b16b-aad3b28e72f0; path=/; secure; HttpOnly; SameSite=None _hash=450c6e51-18ab-4ec4-b16b-aad3b28e72f0; expires=Thu, 09-Sep-2027 04:00:00 GMT; path=/; secure; HttpOnly; SameSite=None _hashV=202209/1; path=/; secure; HttpOnly; SameSite=None _hashV=202209/1; expires=Thu, 09-Sep-2027 04:00:00 GMT; path=/; secure; HttpOnly; SameSite=None _node=570427914.47873.0000; path=/; Httponly; Secure TS01e84c7d=01370406fac78bd1ab189589c35b54d5a9a0234ab8bccbccd7a2fb7ef439c51f3bfd0d4d68690d3ae4ca0e01d0e0b049547eeec104; Path=/; HTTPOnly
Strict-Transport-Security: max-age=31536000
Referrer-Policy: origin-when-cross-origin
Date: Fri, 09 Sep 2022 23:38:14 GMT
Content-Length: 603


--- Additional Info ---
Magic:  ASCII text, with very long lines (998), with no line terminators
Size:   603
Md5:    223eeb41d78c787d0ae3680b87737374
Sha1:   d82518c5228e0f3b95650c6a5bfe12e92290591d
Sha256: 6f1583940d994860dc1f0feeb24e9f0fe564494ed9dc01674e70ef92433f3917
                                        
                                            GET /image.aspx?url=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-cx.html&title=Unsubscribe%20-%20CX%20-%20Visible%20Music%20College&res=1280x1024&accountid=66356305&rt=2452&prev=87d64b83-60ab-67ea-90f3-209ce2380ffd&luid=1fbfc2d2-9946-8792-22cf-b43376b3e9da&rnd=62664 HTTP/1.1 
Host: 66356305.global.siteimproveanalytics.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         3.74.103.247
HTTP/2 200 OK
content-type: image/gif
                                        
date: Fri, 09 Sep 2022 23:38:15 GMT
content-length: 34
set-cookie: AWSALB=3GmgfO8X0d65xTFDr31HJ368/eLbwWQtFTvi9GqM+FYHRztZkThdQHK/BRo5z/k2rracFq96avH12Yc6A3HnRwjEa8AMiHDmiYvVrLPE8OwI57P2/j6BzDg+rzrO; Expires=Fri, 16 Sep 2022 23:38:15 GMT; Path=/ AWSALBCORS=3GmgfO8X0d65xTFDr31HJ368/eLbwWQtFTvi9GqM+FYHRztZkThdQHK/BRo5z/k2rracFq96avH12Yc6A3HnRwjEa8AMiHDmiYvVrLPE8OwI57P2/j6BzDg+rzrO; Expires=Fri, 16 Sep 2022 23:38:15 GMT; Path=/; SameSite=None; Secure
cache-control: max-age=0
expires: Fri, 09 Sep 2022 23:38:15 UTC
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   34
Md5:    a82ba3a9d42148e9cf209df13d8c3f3d
Sha1:   dba80835d31175bdcf0bcad1abafefb06d86e304
Sha256: 1e85ec81b9800b4c443d39caca0d0926089a3ac201120db1ceb45b93789480b8
                                        
                                            GET /ping?id=bef102ba-14f4-ed87-e020-5c2c1773bae3&sid=qZsN758jV_3tvHAED79xLUulcXKoOwH5FmsJd4g8RIVGweD13oYqEzUCtPKrghrzOaijw5kwKBaETyBUwXWK8VM7eCnHrdC3XFHWyv71X8KbtDXZHzQ0bhV6mQEJlTQC&hid=554cb30b-bb33-041f-7f95-a9d462a1d362 HTTP/1.1 
Host: mx.technolutions.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.14
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 4469
server: CloudFront
date: Fri, 09 Sep 2022 23:38:15 GMT
cache-control: private, max-age=86400
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 1r2KNxsWeBbSbZz5u78oV7xZTE4E55yORhdZwGsp6eDYqnt-gk9n5A==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   4469
Md5:    1885aa11257b1cfb8a74b35981d72450
Sha1:   5008ff17742f893ee8016d4373bc66e5fb9198dc
Sha256: 7d6195b4844628926eb7e9b22e0646b5281452c094845e21ac02636eb5e26409
                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 702
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Cookie: _ttp=2EYJgXHDF0BOOPahaUbtUAnv352
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20220909233815F5043125F8CCB58E000D
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61e3b5abc4166c8e729682c4aeb7a9b45fa341666f49cff82aa98213ab9efee002a56686c9ad2bb3cd7c3683dbf7d564b5c71f56b52616b6bfc394d673e779ea230f17bd55d0e59c26f16aa59315b6a441c
x-origin-response-time: 17,23.220.107.25
x-akamai-request-id: f6a10433.4e4ece70
expires: Fri, 09 Sep 2022 23:38:15 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Sep 2022 23:38:15 GMT
x-cache: TCP_MISS from a104-84-152-230.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-cache-remote: TCP_MISS from a23-220-107-25.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=99, origin; dur=17, inner; dur=14
x-parent-response-time: 116,104.84.152.230
X-Firefox-Spdy: h2

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 704
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Cookie: _ttp=2EYJgXHDF0BOOPahaUbtUAnv352
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2022090923381568CBDB622BB31D8A08EC
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61e3b5abc4166c8e729682c4aeb7a9b45fa43af2c9bf956d6839fd5e92a883b841bb0d5f07c046adbc04d50889ceca5fe3c93fd31e1657446708a526a1401852c112f6847f6fae00f6b1ce58467abc019d2
x-origin-response-time: 23,23.222.16.54
x-akamai-request-id: 46c55939.4e4ece6c
expires: Fri, 09 Sep 2022 23:38:15 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Sep 2022 23:38:15 GMT
x-cache: TCP_MISS from a104-84-152-230.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-cache-remote: TCP_MISS from a23-222-16-54.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=98, origin; dur=23, inner; dur=15
x-parent-response-time: 120,104.84.152.230
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /tv2track.js HTTP/1.1 
Host: collector-5081.tvsquared.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.136.148.72
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=600
Content-Encoding: gzip
Date: Fri, 09 Sep 2022 23:38:15 GMT
ETag: "6305f9ab-2133"
Expires: Fri, 09 Sep 2022 23:48:15 GMT
Last-Modified: Wed, 24 Aug 2022 10:12:59 GMT
Server: nginx
X-Robots-Tag: noindex
Content-Length: 8499
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1162)
Size:   8499
Md5:    541a38b4f06e41464c0d654e841ac424
Sha1:   d8e6cdf23733cbe85120de52b58c2c7dbe746758
Sha256: 55df73bbedbdb87259af7ccc47efce4497781d0a3154e97a8e07ff059ace234d
                                        
                                            OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.visiblecollege.education/
Origin: https://www.visiblecollege.education
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         35.82.13.103
HTTP/2 200 OK
                                        
date: Fri, 09 Sep 2022 23:38:15 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.visiblecollege.education
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2

                                        
                                            GET /admissions44/form/Wearesorrytoseeyougo93/formperma/PoYFQDFO2Mn0UNgMkSCRTSFHJv7Rll6vps0kKm3ekdA HTTP/1.1 
Host: forms.zohopublic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         136.143.190.97
HTTP/1.1 200
Content-Type: text/html;charset=UTF-8
                                        
Server: ZGS
Date: Fri, 09 Sep 2022 23:38:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: 383aeadb58=9d9e7dfed5f5cfcfd4ca4c26db70a196; Path=/
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
vary: accept-encoding
Content-Encoding: gzip
Content-Language: en-US
Strict-Transport-Security: max-age=63072000


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (18662)
Size:   20693
Md5:    0c72cfc98ff122f630eb58d27d41a91c
Sha1:   4c5be1b7a4b844310d7bfd06581264f265cb7562
Sha256: daa147c9629bd71ad0c369d85faa6acbc855a1d84ef7e18ea7c8797fda39d990
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:15 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 09 Sep 2022 03:09:31 GMT
Expires: Fri, 16 Sep 2022 03:09:30 GMT
Etag: "4d5cb5df058e4c5245ecd5e3c33941fdf2419c78"
Cache-Control: max-age=530474,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7483c1a66f320afa-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:15 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 09 Sep 2022 03:09:31 GMT
Expires: Fri, 16 Sep 2022 03:09:30 GMT
Etag: "4d5cb5df058e4c5245ecd5e3c33941fdf2419c78"
Cache-Control: max-age=530474,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7483c1a67cbdb4ff-OSL

                                        
                                            GET /forms/css/themes/custom.188b5c3635ff5b5d96f7f360387fe751.css HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
                                        
server: ZGS
date: Fri, 09 Sep 2022 23:38:15 GMT
content-length: 12324
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "1314cc1a858f1948b93bef9027c9bb57"
content-language: en-US
last-modified: Mon, 16 May 2022 07:44:34 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 76ccb9e33b9b054f7bb581ec554561e8
z-origin-id: ex1-31b76d19476f4644873e03bb25d6923a
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (454)
Size:   12324
Md5:    1314cc1a858f1948b93bef9027c9bb57
Sha1:   c9842d9085084f326871be17bb974468641bc807
Sha256: 6a084dc59332e9b5afce1895118892bd55770de71f4e7b33e23067341cce8a6b
                                        
                                            GET /forms/js/formsthirdpartylivejs.fa80d21e90eb2a92193fc45ef5617573.js HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: application/javascript
                                        
server: ZGS
date: Fri, 09 Sep 2022 23:38:15 GMT
content-length: 37358
x-content-type-options: nosniff
x-xss-protection: 1
etag: "519d10234a6e863f26825a7305cb746c"
content-language: en-US
last-modified: Tue, 03 Mar 2020 10:10:51 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
cache-control: public, max-age=7776000, must-revalidate, proxy-revalidate
timing-allow-origin: *
x-cache: HIT
nb-request-id: 20c38f58fcce9b367457380522daa63f
z-origin-id: ex1-5f5aab8acf71e33f7287535a
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   37358
Md5:    519d10234a6e863f26825a7305cb746c
Sha1:   b1dbdc7b42c01f843ac8bb952aa41aedda86deda
Sha256: cc63dff891f38e2246bd46f551780ebcbefef78dc9deba4070dc48cff295fc5f
                                        
                                            GET /forms/js/formscommonlive.beb800b48e63e78822e1a597a73b11c7.js HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
                                        
server: ZGS
date: Fri, 09 Sep 2022 23:38:15 GMT
content-length: 25510
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "c44042810b621922d4b30a467f411e6f"
content-language: en-US
last-modified: Tue, 06 Sep 2022 05:14:48 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: c03278bc659bdf737375917fb96388db
z-origin-id: ex1-64a51b6a88e44042842ade45673119cc
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   25510
Md5:    c44042810b621922d4b30a467f411e6f
Sha1:   0a790d4187fc474276c8e32107b6b78b777eec83
Sha256: 5fa5c85e583355b4488a65e1f4752d347899f9845551eab6f5973730e0ffdd76
                                        
                                            GET /tv2track.php?action_name=Unsubscribe%20-%20CX%20-%20Visible%20Music%20College&idsite=TV-45901881-1&rec=1&r=805815&h=23&m=38&s=6&url=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-cx.html&_id=32e37409222e18f0&_idts=1662766686&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024&gt_ms=194 HTTP/1.1 
Host: collector-5081.tvsquared.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.136.148.72
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 09 Sep 2022 23:38:15 GMT
P3p: CP='OTI DSP COR NID STP UNI OTPa OUR'
Request-Id: 0de51458-e84e-45d3-b4f5-a02eab76a053
Server: nginx
Content-Length: 42
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    00657dd79637a8daf5e6196ca17f1887
Sha1:   3e064855d1fe7c6eac52981a646ec5840ba7efb5
Sha256: f0c71e3da5b3fcab3c66af1cf0cdbf262c97b9330b7b37116f1ae2ab18bdc660
                                        
                                            GET /forms/js/formslive.8e172a818c2d68326a28771638bda5e9.js HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
                                        
server: ZGS
date: Fri, 09 Sep 2022 23:38:15 GMT
content-length: 108076
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "17be817d8ef4b77308e03cbd1d769942"
content-language: en-US
last-modified: Tue, 06 Sep 2022 05:14:49 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 52f8ef9fa750ed4b7fdddd3e97353032
z-origin-id: ex1-3397297c4b4e470b8152b487a608001b
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65433)
Size:   108076
Md5:    17be817d8ef4b77308e03cbd1d769942
Sha1:   d72d852edfd6ceaea87698717c79726d1ff4c808
Sha256: 81130d6f7f0be3fb2672202a6af06234b8a7538d7e38f25d01b691cccb1ff0c5
                                        
                                            POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1864
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         35.82.13.103
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
date: Fri, 09 Sep 2022 23:38:15 GMT
content-length: 2
server: nginx
set-cookie: sp=18a1eb89-2abb-4794-976d-e75ab9970cb6; Expires=Sat, 09 Sep 2023 23:38:15 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.visiblecollege.education
access-control-allow-credentials: true
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    444bcb3a3fcf8389296c49467f27e1d6
Sha1:   7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
                                        
                                            GET /forms/js/formstplivejs.5598e1e583c1d09fc270b76b7bc87fed.js HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
                                        
server: ZGS
date: Fri, 09 Sep 2022 23:38:15 GMT
content-length: 30037
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "545c72fc1816fa5e467e58efd4d47adb"
content-language: en-US
last-modified: Wed, 19 May 2021 11:03:04 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: b4b804203ea37752d62c6b13c7588901
z-origin-id: ex1-f13adbb0c3974a70a6815225c130f215
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size:   30037
Md5:    545c72fc1816fa5e467e58efd4d47adb
Sha1:   de21bdceadd7365dd432fb5179a5b9f4ac853b92
Sha256: 1a2edd219fb3224cb0045ef280499f1e951f3a393c069efe88449807721735d6
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:15 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 09 Sep 2022 03:09:31 GMT
Expires: Fri, 16 Sep 2022 03:09:30 GMT
Etag: "4d5cb5df058e4c5245ecd5e3c33941fdf2419c78"
Cache-Control: max-age=530474,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7483c1a65d09b4f9-OSL

                                        
                                            GET /forms/images/warning-info.607d397302b1f344f8d8df1258004046.png HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: image/png
                                        
server: ZGS
date: Fri, 09 Sep 2022 23:38:15 GMT
content-length: 613
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "795e63fefb59c2bff5f31b157b6d01e9"
content-language: en-US
last-modified: Wed, 19 May 2021 11:02:20 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 3f78121d3e885b6af54f22d9c00f40db
z-origin-id: ex1-04f31b44b1084589b8e48c5a3771dd21
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 70 x 69, 8-bit colormap, non-interlaced\012- data
Size:   613
Md5:    795e63fefb59c2bff5f31b157b6d01e9
Sha1:   3ee71d25fe4f55464cd8a8444a5cb377b443bc4d
Sha256: 5e1c9c77a6d4cb7a4e0c844a0855b7372dfe6a835ad22015dd2429d035349993
                                        
                                            GET /forms/images/loader.79de1b954774690fff0e7345d82faa25.gif HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: image/gif
                                        
server: ZGS
date: Fri, 09 Sep 2022 23:38:15 GMT
content-length: 2558
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "8f3d3ae8228ea0894bbcba2f0dc68375"
content-language: en-US
last-modified: Wed, 19 May 2021 11:02:33 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 09def26e9be94e2e04afc0c919fa712f
z-origin-id: ex1-e806c5da4c79441ea24289fb574aca32
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 24 x 24\012- data
Size:   2558
Md5:    8f3d3ae8228ea0894bbcba2f0dc68375
Sha1:   807d493a6b66eaa5a2c32f5c1588f2a22b371276
Sha256: ae88234e6373f222a729d38c75dc250f4928e61cde23148267551d517cba42d5
                                        
                                            GET /forms/images/check-mark-outline.e44509047a0a79fb604be98bb10ec5bc.png HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: image/png
                                        
server: ZGS
date: Fri, 09 Sep 2022 23:38:15 GMT
content-length: 4599
x-content-type-options: nosniff
x-xss-protection: 1
etag: "dad0f95db26f4856b486ad2e685c98dd"
content-language: en-US
last-modified: Thu, 03 Dec 2020 06:50:19 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
cache-control: public, max-age=5184000, immutable
timing-allow-origin: *
x-cache: HIT
nb-request-id: f419e1bd75e3eea08a2cae6649d889bf
z-origin-id: ex1-5fc8c5b881b7c33c33aa4c58
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Size:   4599
Md5:    dad0f95db26f4856b486ad2e685c98dd
Sha1:   2cd05580ee6671c1d1658c6119ee675d7f6ec452
Sha256: 84fd3c918b8ed33805a1fc5df510ebb1ae10020b9bdfa88fab6c0e3d7476b0b1
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:15 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 09 Sep 2022 03:09:31 GMT
Expires: Fri, 16 Sep 2022 03:09:30 GMT
Etag: "4d5cb5df058e4c5245ecd5e3c33941fdf2419c78"
Cache-Control: max-age=530474,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7483c1a688e0b4ee-OSL

                                        
                                            GET /forms/css/themes/media.39339956c202c136a11c5e49e29b909e.css HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
                                        
server: ZGS
date: Fri, 09 Sep 2022 23:38:15 GMT
content-length: 5590
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "22ac534e0ef19e0059c5fb948d8c19b4"
content-language: en-US
last-modified: Thu, 09 Jun 2022 09:28:48 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: d15f3ec73a17b6647f05f9f87844d23c
z-origin-id: ex1-5bd386d26efc4a52be912cc4a11f2b3d
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   5590
Md5:    22ac534e0ef19e0059c5fb948d8c19b4
Sha1:   8c0707de1cd88cfbe53cbd076af841c739ab558a
Sha256: e25f8b6067e27b99568f9ff0b48bb6e52d9585d1ca299c1592e6cd6d71d64bb0
                                        
                                            GET /forms/css/formsthirdparty.2755260429cd02c98112dac6f4b5b8ce.css HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: text/css
                                        
server: ZGS
date: Fri, 09 Sep 2022 23:38:15 GMT
content-length: 11641
x-content-type-options: nosniff
x-xss-protection: 1
pragma: public, max-age=5184000, immutable
cache-control: public, max-age=5184000, immutable
expires: Sat, 19 Jun 2021 11:17:42 GMT
etag: "a338608fc2b539683c6cccb5717cf0aa"
content-language: en-US
last-modified: Fri, 16 Apr 2021 06:59:29 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: b80c5212ea09f794e8d65c7460b20d59
z-origin-id: ex1-8e085564830442f698aa1383c8aa24ec
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65440)
Size:   11641
Md5:    a338608fc2b539683c6cccb5717cf0aa
Sha1:   e9a5f68ee4fe0972da9cf6ce40df9e170e217b87
Sha256: 6a43f0b04d96257c7b01e2564e33b5e780582a1d1cceb31678d5e101b3a834bd
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:15 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 09 Sep 2022 03:09:31 GMT
Expires: Fri, 16 Sep 2022 03:09:30 GMT
Etag: "4d5cb5df058e4c5245ecd5e3c33941fdf2419c78"
Cache-Control: max-age=530474,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7483c1a6af830b51-OSL

                                        
                                            GET /forms/css/themes/media/customMedia.bdbbc9b6f964ee4f4c1d1debd83b0068.css HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
                                        
server: ZGS
date: Fri, 09 Sep 2022 23:38:15 GMT
content-length: 193
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "daa87951fc446e172d1546a8e9bc1f48"
content-language: en-US
last-modified: Wed, 19 May 2021 11:02:52 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 88d787ed8946c5d20d6349778475e879
z-origin-id: ex1-2f6e73ca32da42de9baba74685f94041
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   193
Md5:    daa87951fc446e172d1546a8e9bc1f48
Sha1:   9d2a19e2146513420966df2550d1dfe5e01a6c8b
Sha256: 56b021f87c4b7b7835a494ec63f8bd320d7bb9766989d01f7cc80f6aec32261c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2808
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:15 GMT
Last-Modified: Fri, 09 Sep 2022 22:51:27 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /ping HTTP/1.1 
Host: exploregrad.georgiasouthern.edu
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.198.122.35
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Cache-Control: private
Content-Encoding: gzip
Expires: Sat, 10 Sep 2022 00:08:15 GMT
Set-Cookie: _hash=f3ad6564-e881-44e1-b826-4a6edcea0945; path=/; secure; HttpOnly; SameSite=None _hash=f3ad6564-e881-44e1-b826-4a6edcea0945; expires=Thu, 09-Sep-2027 04:00:00 GMT; path=/; secure; HttpOnly; SameSite=None _hashV=202209/1; path=/; secure; HttpOnly; SameSite=None _hashV=202209/1; expires=Thu, 09-Sep-2027 04:00:00 GMT; path=/; secure; HttpOnly; SameSite=None _node=570493450.47873.0000; path=/; Httponly; Secure TS01e84c7d=01370406fa4ee8f888791bd39d79aa3de804947d4bb9abce82c9d2f55090783405d55b27766d4e1fa248efe37a61b88b226d709890; Path=/; HTTPOnly
Strict-Transport-Security: max-age=31536000
Referrer-Policy: origin-when-cross-origin
Date: Fri, 09 Sep 2022 23:38:14 GMT
Content-Length: 426


--- Additional Info ---
Magic:  ASCII text, with very long lines (644), with no line terminators
Size:   426
Md5:    a56605628af7577d2865b27599cf0d64
Sha1:   fab568896502f5d0bbeef427893fcce42fe8e824
Sha256: 4af8153a7807c08730fbf1b994252d4fbca6f652d0118c8aae30ff6abc4937cd
                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: LLCYEFdrBkmt+uJLETQ/dchHoyw03v5OAKacULQGpgxiTZZfBYGWNJwl1TeJEqVp98Qo7633r4RRskVEun4azA==
priority: u=3,i
content-length: 26737
x-fb-trip-id: 1679558926
date: Fri, 09 Sep 2022 23:38:15 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64348)
Size:   26737
Md5:    8e7e24fb3539746aa8b869558f589615
Sha1:   d8086d86bbd5cfacc3b6a5ef14aa917830e137dd
Sha256: 7304497ee417a664bdea67d7307ca36a36013556b927c3ea5bca6c04b66236ef
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2808
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:15 GMT
Last-Modified: Fri, 09 Sep 2022 22:51:27 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /js/D2A02686A39F7C.js HTTP/1.1 
Host: cdn.datasteam.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.55
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Fri, 09 Sep 2022 04:12:50 GMT
last-modified: Mon, 18 Jul 2022 20:18:05 GMT
etag: W/"9fc031330761f7e2da55de0eba6cd93d"
cache-control: max-age=600,s-maxage=86400
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IJNnVfajb2m3A8GEXwy1V8iatPOY-WGW8fZSM8G5CeW0LMp0_S6Z6A==
age: 69926
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   22115
Md5:    ffa4b5226837452b619bf03165808f28
Sha1:   73bf997b99022d4ddfbdc40f2b9c2589b047fda1
Sha256: a36e10249bae86691324d22e83c4cf47f8046cdd99789000393c1dac974c593d
                                        
                                            GET /ping?id=a7a825b7-e9df-c6a1-10f8-412bb007e4a6&sid=2X5jtmNiTtirEMcJpU6B_HFPGR-5uGxmma8WhBoZdlV_I7YG-100z-OMjYspOOkTHGHK3VawFmGbe6RtT2GvD_nb1K7F7A0v2kOcu4euCsV_eVRfvftP3m8rfVo7W-Yw&hid=5b77c8d2-ad62-8279-7ed9-7f0256f7d54f HTTP/1.1 
Host: mx.technolutions.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.14
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 4472
server: CloudFront
date: Fri, 09 Sep 2022 23:38:15 GMT
cache-control: private, max-age=86400
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: qFwr_sFYCedeO6vM1vltKeS_TkONHsVgZxnWdnelrc8lwRGnRtp5XA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   4472
Md5:    df4fb81078af7108102d05e642a0d997
Sha1:   915e1334e5bb0ef75fa9bfd6b33581588197e96a
Sha256: dc5f577c9999a342c13104c3017fd9f6a504e71127e8bc637800ae66af17848d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:15 GMT
Server: ECS (dcb/7F5D)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: J6pfaoD7Ojj3vuhjVudYqidmtw6WWsA73MOMH0qDYBTozteZeXSifg==

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:15 GMT
Last-Modified: Fri, 09 Sep 2022 23:07:19 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rO4q40O1mQ0mwa7ZRYJlRsZs9eJkH2Bdch_XfdxtNkDQuYOr-qXs-w==
Age: 1856

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:15 GMT
Last-Modified: Fri, 09 Sep 2022 22:45:21 GMT
Server: ECS (dcb/7F3A)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: z0KF4RBH-8yvt2LGBey8RLK4uHk1UX2EDiKCcQpNekIiLp0M4XZswA==
Age: 3174

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:15 GMT
Last-Modified: Fri, 09 Sep 2022 22:29:38 GMT
Server: ECS (dcb/7F38)
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: igZMcy5arFBNclwzwtlJhzxKUao3e2TOvW_xv1-Ph0OorWrQn0SSbA==
Age: 4117

                                        
                                            GET /opensansbold/font.woff HTTP/1.1 
Host: webfonts.zohowebstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forms.zohopublic.com
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.34
HTTP/2 200 OK
content-type: application/font-woff
                                        
content-length: 70128
server: ZGS
date: Thu, 11 Aug 2022 22:29:17 GMT
last-modified: Wed, 28 Jul 2021 13:35:26 GMT
etag: "61015d1e-111f0"
expires: Fri, 11 Aug 2023 22:29:17 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7Fze_zBjd7KsU3U68YW0AHcS0yHL94pFy9pa5hGRilg91ZDsx5T8Pg==
age: 2509738
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 70128, version 0.0\012- data
Size:   70128
Md5:    0369ece0ad8891e7aaf14abc4294e5ae
Sha1:   6fbc2965b490b558702ee6af2facaae41a5e13b5
Sha256: 77180141da496f33b3a6a909ae063e620a6bebd83d228c19d2064b261dfdb751
                                        
                                            GET /opensansitalic/font.woff HTTP/1.1 
Host: webfonts.zohowebstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forms.zohopublic.com
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.34
HTTP/2 200 OK
content-type: application/font-woff
                                        
content-length: 65140
server: ZGS
date: Fri, 02 Sep 2022 14:21:30 GMT
last-modified: Wed, 28 Jul 2021 13:35:35 GMT
etag: "61015d27-fe74"
expires: Sat, 02 Sep 2023 14:21:30 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ge8O8TwUqnXYcdsuxkmXJkh_1T5axZoU16Aogp058FJEvQJzDCCGbw==
age: 638204
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 65140, version 0.0\012- data
Size:   65140
Md5:    d03b5f6162242a2684e82f4817866d74
Sha1:   6a213ba96ecc80c0819a17a637c0f0227aa6e607
Sha256: 0563263549f5b1b03297da7100d9acf32a4df025f936c347181619e8fdaf72ea
                                        
                                            GET /opensans/font.woff2 HTTP/1.1 
Host: webfonts.zohowebstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forms.zohopublic.com
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
content-length: 51084
server: ZGS
date: Sun, 03 Jul 2022 05:02:18 GMT
last-modified: Wed, 28 Jul 2021 13:35:31 GMT
etag: "61015d23-c78c"
expires: Mon, 03 Jul 2023 05:02:18 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DoSnPkyMDjKKAyx4nr3f2NxxzVo76Cit9yOi1PR2GaVYF-N1mAS3MA==
age: 5942157
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 51084, version 1.6554\012- data
Size:   51084
Md5:    ed0d14764bbe7e7ae8cd093af6c12c5b
Sha1:   74ef71b6a0b867d772a639179ad55233659c4ee2
Sha256: 5ceec82f9678fbbb7630f682842efddfff95f8a1c4e913b3c236a22ef8cac959
                                        
                                            POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en; _gcl_au=1.1.1663927793.1662766685; _ga_VY2RPVKG9S=GS1.1.1662766685.1.0.1662766685.0.0.0; _ga=GA1.2.1789343205.1662766685; _snow_ses.e20b=*; _snow_id.e20b=f8798b07-edb0-4cac-85f0-d466700459e4.1662766686.1.1662766686.1662766686.9b1074f0-1447-4bb6-8c9f-0fd12b38cfb4; _gid=GA1.2.1886108561.1662766686; _scid=3d8569db-3730-45e9-8d0a-79689db6c860; nmstat=87d64b83-60ab-67ea-90f3-209ce2380ffd; MGX_UC=JTdCJTIyTUdYX1AlMjIlM0ElN0IlMjJ2JTIyJTNBJTIyYWQ4ZWI2ZjEtZTJiMi00MWZhLThiMDUtNGQ0YWNmMjM1ZGIyJTIyJTJDJTIyZSUyMiUzQTE2NjMyOTIyODYxNzYlN0QlMkMlMjJNR1hfUFglMjIlM0ElN0IlMjJ2JTIyJTNBJTIyZGQ5MWM4Y2MtZDdhNy00MzE4LWEzNjItMDQ0MmI1Nzg5NzM2JTIyJTJDJTIycyUyMiUzQXRydWUlMkMlMjJlJTIyJTNBMTY2Mjc2ODQ4NjE3OSU3RCUyQyUyMk1HWF9DSUQlMjIlM0ElN0IlMjJ2JTIyJTNBJTIyNWNiMTUxYzgtMjk2ZS00YTIyLWI3ZTQtOWFkMTcxZjc3YTBhJTIyJTJDJTIyZSUyMiUzQTE2NjMyOTIyODYxNzklN0QlN0Q=; _tq_id.TV-45901881-1.93e4=32e37409222e18f0.1662766686.0.1662766686..
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Date: Fri, 09 Sep 2022 23:38:15 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu108.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=12
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Size:   348
Md5:    a944dd688c99d2901d6719be713271c0
Sha1:   4f5454d5d434829baf46671638610791758725d9
Sha256: adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /tr/?id=442225499993182&ev=PageView&dl=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-cx.html&rl=&if=false&ts=1662766686848&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662766686847.1885314989&it=1662766686646&coo=false&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: image/gif
                                        
date: Fri, 09 Sep 2022 23:38:16 GMT
expires: Fri, 09 Sep 2022 23:38:16 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   44
Md5:    b798f4ce7359fd815df4bdf76503b295
Sha1:   f8cc6addf1707ad236ad9970b0a48f9733d07da5
Sha256: 10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:16 GMT
Last-Modified: Fri, 09 Sep 2022 22:31:10 GMT
Server: ECS (nyb/1D0D)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 54WoChUX1_Ur2_LeFzrLLk-6ffCI08laEgRcPlCqulBoKjMo37n1ew==
Age: 4026

                                        
                                            GET /v1/C/RawData/A02686A39F7C?v=ad8eb6f1-e2b2-41fa-8b05-4d4acf235db2&se=dd91c8cc-d7a7-4318-a362-0442b5789736&d=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%3D%3D&callback=cbab3c873c11d8a HTTP/1.1 
Host: api.datasteam.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.197.14.179
HTTP/1.1 200 OK
                                        
Date: Fri, 09 Sep 2022 23:38:16 GMT
Server: Kestrel
Set-Cookie: MGX_U=4c79d492-572e-4365-b962-4c50265207c5; expires=Sat, 09 Sep 2023 23:38:16 GMT; domain=.datasteam.io; path=/; secure; samesite=none MGX_A02686A39F7C=ad8eb6f1-e2b2-41fa-8b05-4d4acf235db2; expires=Sat, 09 Sep 2023 23:38:16 GMT; domain=.datasteam.io; path=/; secure; samesite=none MGX_PX_A02686A39F7C=dd91c8cc-d7a7-4318-a362-0442b5789736; expires=Sat, 10 Sep 2022 00:08:16 GMT; domain=.datasteam.io; path=/; secure; samesite=none
Content-Length: 208
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   208
Md5:    7c9608f44b766f02c0c93df745fbf815
Sha1:   aef4808762a741f7206f2ef5435b7f9d01762bd7
Sha256: 1fb955addc05c76d7f72458830ba44fa773605b2efb75dd851e27f01af3b52dc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6570
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:16 GMT
Last-Modified: Fri, 09 Sep 2022 21:48:46 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 727

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5976
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:16 GMT
Last-Modified: Fri, 09 Sep 2022 21:58:40 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 727

                                        
                                            GET /adscores/g.jsonp?sid=9202274878&userid=A39F7C-AD8EB6F1-E2B2-41FA-8B05-4D4ACF235DB2 HTTP/1.1 
Host: aa.agkn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.17.63.11
HTTP/2 200 OK
content-type: application/json
                                        
date: Fri, 09 Sep 2022 23:38:16 GMT
content-length: 82
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3AKVSYOeRP%2Bg9PjWXHlj6xiY0yLs949QZ%2F; Path=/; Domain=.agkn.com; Expires=Sat, 09-Sep-2023 23:38:16 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   82
Md5:    ae708136e46f5ab7a3be5d2a6ff558ac
Sha1:   cfddee7c8aaf2245d3a531efb187df16cf35c751
Sha256: 9e446e75dc20b6dc693b247aaf7704112e55ef434588368aa0761fc76b3a29a5
                                        
                                            GET /v1/C/RawData/A02686A39F7C?v=ad8eb6f1-e2b2-41fa-8b05-4d4acf235db2&se=dd91c8cc-d7a7-4318-a362-0442b5789736&d=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%3D%3D&callback=cb22b71b442e5db HTTP/1.1 
Host: api.datasteam.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Cookie: MGX_U=4c79d492-572e-4365-b962-4c50265207c5; MGX_A02686A39F7C=ad8eb6f1-e2b2-41fa-8b05-4d4acf235db2; MGX_PX_A02686A39F7C=dd91c8cc-d7a7-4318-a362-0442b5789736
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.197.14.179
HTTP/1.1 200 OK
                                        
Date: Fri, 09 Sep 2022 23:38:16 GMT
Server: Kestrel
Set-Cookie: MGX_U=4c79d492-572e-4365-b962-4c50265207c5; expires=Sat, 09 Sep 2023 23:38:16 GMT; domain=.datasteam.io; path=/; secure; samesite=none MGX_A02686A39F7C=ad8eb6f1-e2b2-41fa-8b05-4d4acf235db2; expires=Sat, 09 Sep 2023 23:38:16 GMT; domain=.datasteam.io; path=/; secure; samesite=none MGX_PX_A02686A39F7C=dd91c8cc-d7a7-4318-a362-0442b5789736; expires=Sat, 10 Sep 2022 00:08:16 GMT; domain=.datasteam.io; path=/; secure; samesite=none
Content-Length: 208
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   208
Md5:    168f39f18e7b3d93fba26cccd5101c40
Sha1:   d13260e91e4238d6a666c19d532b925fba902c7e
Sha256: cf0b16798340c507eef5d4aae23ee969fbc8f9911f94574b7b0f916901cc8777
                                        
                                            GET /v1/C/RawData/A02686A39F7C?v=ad8eb6f1-e2b2-41fa-8b05-4d4acf235db2&se=dd91c8cc-d7a7-4318-a362-0442b5789736&d=eyJ2IjoiYWQ4ZWI2ZjEtZTJiMi00MWZhLThiMDUtNGQ0YWNmMjM1ZGIyIiwibSI6IjIxMjMzMzVkLTdlMzAtNDZiZC1iNGRmLWM3NGRhYTRlZTY0YiIsImUiOiIxIiwiY3NpIjoiIiwic2UiOiJkZDkxYzhjYy1kN2E3LTQzMTgtYTM2Mi0wNDQyYjU3ODk3MzYiLCJwIjoiMTlhMjBmOTUtNTc2MS00MmZkLTljZjItNWE1YjMzMWUwMTE5IiwidSI6Imh0dHBzOi8vd3d3LnZpc2libGVjb2xsZWdlLmVkdWNhdGlvbi91bnN1YnNjcmliZS1jeC5odG1sIiwicG4iOiIvdW5zdWJzY3JpYmUtY3guaHRtbCIsInIiOiIiLCJ0IjoiVW5zdWJzY3JpYmUgLSBDWCAtIFZpc2libGUgTXVzaWMgQ29sbGVnZSIsImMiOiJodHRwczovL3d3dy52aXNpYmxlY29sbGVnZS5lZHVjYXRpb24vdW5zdWJzY3JpYmUtY3guaHRtbCIsInByIjoiQTM5RjdDIiwiZWlkIjoibnNfc2VnXzAwMCIsInMiOjMsInZzIjoxLCJsIjoiQWN0aW9uIiwiczAxIjoid3d3LnZpc2libGVjb2xsZWdlLmVkdWNhdGlvbiIsInYwMSI6IkVzMSJ9&callback=cb3a30f78e80d5a HTTP/1.1 
Host: api.datasteam.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Cookie: MGX_U=4c79d492-572e-4365-b962-4c50265207c5; MGX_A02686A39F7C=ad8eb6f1-e2b2-41fa-8b05-4d4acf235db2; MGX_PX_A02686A39F7C=dd91c8cc-d7a7-4318-a362-0442b5789736
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.197.14.179
HTTP/1.1 200 OK
                                        
Date: Fri, 09 Sep 2022 23:38:16 GMT
Server: Kestrel
Set-Cookie: MGX_U=4c79d492-572e-4365-b962-4c50265207c5; expires=Sat, 09 Sep 2023 23:38:16 GMT; domain=.datasteam.io; path=/; secure; samesite=none MGX_A02686A39F7C=ad8eb6f1-e2b2-41fa-8b05-4d4acf235db2; expires=Sat, 09 Sep 2023 23:38:16 GMT; domain=.datasteam.io; path=/; secure; samesite=none MGX_PX_A02686A39F7C=dd91c8cc-d7a7-4318-a362-0442b5789736; expires=Sat, 10 Sep 2022 00:08:16 GMT; domain=.datasteam.io; path=/; secure; samesite=none
Content-Length: 208
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   208
Md5:    42076afe80208539f4408e0fd01ed80f
Sha1:   bc998c0a2e7518fed6bf49e442f48050d8613835
Sha256: 537b2f1c02631bd74a4cb712d3426bb971b2d71cb9d0c78bfe821b65e40f18cf
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:16 GMT
Last-Modified: Fri, 09 Sep 2022 22:48:58 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ntr5VI5hiASojw0BhIh1d_SYc9KoKL-qcd4CQ4FBR4ajznbckV5u1w==
Age: 2958

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 23:38:16 GMT
Last-Modified: Fri, 09 Sep 2022 22:04:13 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wXOpE5zirnDNc211Zgc23iTzxvg_6OKlxvC9IOwHf4pnUZOS1MDkGg==
Age: 5644

                                        
                                            GET /v1/visitaction/nspx?segment=000&userID=A39F7C-AD8EB6F1-E2B2-41FA-8B05-4D4ACF235DB2&takID=A02686A39F7C&seg1= HTTP/1.1 
Host: api.dtstmio.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.85.0.71
HTTP/1.1 302 Found
                                        
Date: Fri, 09 Sep 2022 23:38:16 GMT
Location: https://api.datasteam.io/v1/visitaction/nspx?segment=000&userID=A39F7C-AD8EB6F1-E2B2-41FA-8B05-4D4ACF235DB2&takID=A02686A39F7C&seg1=
Server: Kestrel
Set-Cookie: MGX_EID_A02686A39F7C=ns_seg_000; expires=Sat, 10 Sep 2022 23:38:16 GMT; domain=api.dtstmio.com; path=/; secure; samesite=none
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-AD8EB6F1-E2B2-41FA-8B05-4D4ACF235DB2 HTTP/1.1 
Host: i.liadm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.212.123.192
HTTP/1.1 303 See Other
                                        
Date: Fri, 09 Sep 2022 23:38:17 GMT
Content-Length: 0
Connection: keep-alive
Location: /s/63537?bidder_id=242861&bidder_uuid=A39F7C-AD8EB6F1-E2B2-41FA-8B05-4D4ACF235DB2&_li_chk=true&previous_uuid=23cee6abbd65457985b423417fc4febd
Set-Cookie: lidid=23cee6ab-bd65-4579-85b4-23417fc4febd; Max-Age=63072000; Expires=Sun, 08 Sep 2024 23:38:17 GMT; SameSite=None; Path=/; Domain=liadm.com; Secure
Strict-Transport-Security: max-age=31536000; includeSubDomains

                                        
                                            GET /v1/visitaction/nspx?segment=000&userID=A39F7C-AD8EB6F1-E2B2-41FA-8B05-4D4ACF235DB2&takID=A02686A39F7C&seg1= HTTP/1.1 
Host: api.datasteam.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Cookie: MGX_U=4c79d492-572e-4365-b962-4c50265207c5; MGX_A02686A39F7C=ad8eb6f1-e2b2-41fa-8b05-4d4acf235db2; MGX_PX_A02686A39F7C=dd91c8cc-d7a7-4318-a362-0442b5789736
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.197.14.179
HTTP/1.1 302 Found
                                        
Date: Fri, 09 Sep 2022 23:38:17 GMT
Location: https://i.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-AD8EB6F1-E2B2-41FA-8B05-4D4ACF235DB2
Server: Kestrel
Set-Cookie: MGX_EID_A02686A39F7C=ns_seg_000; expires=Sat, 10 Sep 2022 23:38:17 GMT; domain=.datasteam.io; path=/; secure; samesite=none
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-AD8EB6F1-E2B2-41FA-8B05-4D4ACF235DB2&_li_chk=true&previous_uuid=23cee6abbd65457985b423417fc4febd HTTP/1.1 
Host: i.liadm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.212.123.192
HTTP/1.1 303 See Other
                                        
Date: Fri, 09 Sep 2022 23:38:17 GMT
Content-Length: 0
Connection: keep-alive
Location: https://i6.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-AD8EB6F1-E2B2-41FA-8B05-4D4ACF235DB2
Set-Cookie: _li_ss=MgkI_____wcQmhM; Max-Age=2592000; Expires=Sun, 09 Oct 2022 23:38:17 GMT; SameSite=None; Path=/s; Secure lidid=f09db8d1-f3ac-41e6-8b87-e727cef55085; Max-Age=63072000; Expires=Sun, 08 Sep 2024 23:38:17 GMT; SameSite=None; Path=/; Domain=liadm.com; Secure
Strict-Transport-Security: max-age=31536000; includeSubDomains

                                        
                                            GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-AD8EB6F1-E2B2-41FA-8B05-4D4ACF235DB2 HTTP/1.1 
Host: i.liadm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.212.123.192
HTTP/1.1 303 See Other
                                        
Date: Fri, 09 Sep 2022 23:38:17 GMT
Content-Length: 0
Connection: keep-alive
Location: /s/63537?bidder_id=242861&bidder_uuid=A39F7C-AD8EB6F1-E2B2-41FA-8B05-4D4ACF235DB2&_li_chk=true&previous_uuid=ab2a00337b314f5a83956a201302ef03
Set-Cookie: lidid=ab2a0033-7b31-4f5a-8395-6a201302ef03; Max-Age=63072000; Expires=Sun, 08 Sep 2024 23:38:17 GMT; SameSite=None; Path=/; Domain=liadm.com; Secure
Strict-Transport-Security: max-age=31536000; includeSubDomains

                                        
                                            GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-AD8EB6F1-E2B2-41FA-8B05-4D4ACF235DB2&_li_chk=true&previous_uuid=ab2a00337b314f5a83956a201302ef03 HTTP/1.1 
Host: i.liadm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.212.123.192
HTTP/1.1 303 See Other
                                        
Date: Fri, 09 Sep 2022 23:38:17 GMT
Content-Length: 0
Connection: keep-alive
Location: https://i6.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-AD8EB6F1-E2B2-41FA-8B05-4D4ACF235DB2
Set-Cookie: _li_ss=MgkI_____wcQmhM; Max-Age=2592000; Expires=Sun, 09 Oct 2022 23:38:17 GMT; SameSite=None; Path=/s; Secure lidid=0bf4ecf1-1b1d-4d6c-b73b-3d9858dc6e07; Max-Age=63072000; Expires=Sun, 08 Sep 2024 23:38:17 GMT; SameSite=None; Path=/; Domain=liadm.com; Secure
Strict-Transport-Security: max-age=31536000; includeSubDomains

                                        
                                            GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-AD8EB6F1-E2B2-41FA-8B05-4D4ACF235DB2 HTTP/1.1 
Host: i6.liadm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.71.90.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 09 Sep 2022 23:38:17 GMT
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store
Strict-Transport-Security: max-age=31536000; includeSubDomains


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    fb02f374b8f73825415db1bccd4bd76d
Sha1:   b103aa629cacdd90b39538a7561da7f8e49ad73f
Sha256: caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
                                        
                                            GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-AD8EB6F1-E2B2-41FA-8B05-4D4ACF235DB2 HTTP/1.1 
Host: i6.liadm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.71.90.16
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 09 Sep 2022 23:38:17 GMT
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store
Strict-Transport-Security: max-age=31536000; includeSubDomains


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    fb02f374b8f73825415db1bccd4bd76d
Sha1:   b103aa629cacdd90b39538a7561da7f8e49ad73f
Sha256: caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-44517167-1&cid=1789343205.1662766685&jid=835312911&gjid=1467548990&_gid=1886108561.1662766686&_u=aCDACEAiBAAAAC~&z=749622252 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.251.1.156
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.visiblecollege.education
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 09 Sep 2022 23:38:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 23:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-44517167-1&cid=1789343205.1662766685&jid=835312911&_u=aCDACEAiBAAAAC~&z=1982332316 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Sep 2022 23:38:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-44517167-1&cid=1789343205.1662766685&jid=835312911&_u=aCDACEAiBAAAAC~&z=1982332316 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Sep 2022 23:38:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /js/site/main.js?buildTime=1662042360 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Thu, 01 Sep 2022 13:53:34 GMT
etag: "6310b95e-74804"
expires: Thu, 15 Sep 2022 14:30:24 GMT
cache-control: max-age=1209600
x-host: blu11.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 09 Sep 2022 23:38:13 GMT
age: 724069
x-served-by: cache-sjc10033-SJC, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1662766694.954976,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 146400
X-Firefox-Spdy: h2


--- Additional Info ---