everfi.com/courses/k-12/financial-literacy-middle-school/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https://everfi.com/courses/k-12/financial-literacy-middle-school/
141.193.213.21301 Moved Permanently 162 B URL HTTP/1.1 everfi.com/courses/k-12/financial-literacy-middle-school/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https://everfi.com/courses/k-12/financial-literacy-middle-school/
IP 141.193.213.21:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /courses/k-12/financial-literacy-middle-school/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https://everfi.com/courses/k-12/financial-literacy-middle-school/ HTTP/1.1
Host: everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 08 Feb 2023 20:36:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://everfi.com/courses/k-12/financial-literacy-middle-school/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https://everfi.com/courses/k-12/financial-literacy-middle-school/
Permissions-Policy: midi=(), camera=(), microphone=(), payment=()
Referrer-Policy: origin
X-Content-Type-Options: nosniff
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 796727aeeaa01c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b7407cc102d62a5acd5e61f8a79bed36
c2f4890a62454e514962b55b7fc14228339c8e90
be282de92da261128a7c8471f3067466aa9930fd0ab2a2cdda8cd2d6ce2bbd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE282DE92DA261128A7C8471F3067466AA9930FD0AB2A2CDDA8CD2D6CE2BBD74"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4880
Expires: Wed, 08 Feb 2023 21:57:20 GMT
Date: Wed, 08 Feb 2023 20:36:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12313
Expires: Thu, 09 Feb 2023 00:01:13 GMT
Date: Wed, 08 Feb 2023 20:36:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 20:34:13 GMT
content-type: application/json
age: 107
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14022
Expires: Thu, 09 Feb 2023 00:29:42 GMT
Date: Wed, 08 Feb 2023 20:36:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: yaeuARnrA+kSyBijEVttA+4SLprfV/Ajt3Tu3xRb/yWnaQNyZtLLuXclbuSkmu5vsR0b+oBLe5s=
x-amz-request-id: 5JGNXDB5KEDR73QZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 19:46:05 GMT
age: 2995
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9d30d52c8cca7e516ee1cfe0f650a711
f84af2a5da0fabc74a7cc0fcc0053312c2356072
39a94bce3b0d0a7561e6b403847c0f770a092017ec84813a93212a6d7574b803
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39A94BCE3B0D0A7561E6B403847C0F770A092017EC84813A93212A6D7574B803"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21544
Expires: Thu, 09 Feb 2023 02:35:04 GMT
Date: Wed, 08 Feb 2023 20:36:00 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 20:36:00 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 20:14:52 GMT
age: 1269
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3002
Expires: Wed, 08 Feb 2023 21:26:03 GMT
Date: Wed, 08 Feb 2023 20:36:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9d30d52c8cca7e516ee1cfe0f650a711
f84af2a5da0fabc74a7cc0fcc0053312c2356072
39a94bce3b0d0a7561e6b403847c0f770a092017ec84813a93212a6d7574b803
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39A94BCE3B0D0A7561E6B403847C0F770A092017EC84813A93212A6D7574B803"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21543
Expires: Thu, 09 Feb 2023 02:35:04 GMT
Date: Wed, 08 Feb 2023 20:36:01 GMT
Connection: keep-alive
tags.tiqcdn.com/utag/blackbaud/main/prod/utag.sync.js
2.18.173.203200 OK 639 B URL HTTP/2 tags.tiqcdn.com/utag/blackbaud/main/prod/utag.sync.js
IP 2.18.173.203:0
Hash 736ac18f73779e02b9ae5943e1887acf
39f640e41813e1b8a41afcd40241d727efdefe17
211a7c7a2e778075e2bb00943250ec4cd648021fef90cf59d0c231338b7800e7
GET /utag/blackbaud/main/prod/utag.sync.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "736ac18f73779e02b9ae5943e1887acf:1675800878.971343"
last-modified: Tue, 07 Feb 2023 20:14:38 GMT
server: AkamaiNetStorage
content-length: 639
cache-control: max-age=300
expires: Wed, 08 Feb 2023 20:41:01 GMT
date: Wed, 08 Feb 2023 20:36:01 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 4a2793786b1ce1206b70d285bea47b94
11747c77f2ef56d889b5148834faa184be7cfc07
af406b334b4df19c87a6911d78bbab5bc5628dc7ccac9d7d60050908c770fb52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4354
Cache-Control: max-age=90099
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:01 GMT
Etag: "63e2b3a2-118"
Expires: Thu, 09 Feb 2023 21:37:40 GMT
Last-Modified: Tue, 07 Feb 2023 20:25:06 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 05add0ef4b365a993018ba69d005451b
3baa55a75a1552fcb02b5df265339404fae81871
33edb82c0b2cb0760caaff0a827635f3c602700a4a6d40d2cdbace97d1a8f971
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5554
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:01 GMT
Last-Modified: Wed, 08 Feb 2023 19:03:27 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
client-registry.mutinycdn.com/personalize/client/16919262ebbbde25.js
151.101.129.91200 OK 25 kB URL HTTP/2 client-registry.mutinycdn.com/personalize/client/16919262ebbbde25.js
IP 151.101.129.91:0
File type Unicode text, UTF-8 text, with very long lines (62663)
Hash 049316510e163d6b88900f9815e562be
251514dafc23a8da8953fb29b3beea6179e529b6
cd6b9197721cd7f06771757267e8a0b950d7b7dc84663fe867ce78aa0f2ae6e4
GET /personalize/client/16919262ebbbde25.js HTTP/1.1
Host: client-registry.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: dfTcD5v4GVnt5meukoVWH8+L/o9lp1/uMKe3ndcktMaZDfqOYxifUjY5H9GOeuXoCgbgUQ/YH2Y=
x-amz-request-id: RCVMFYZ8SZ6GC005
last-modified: Fri, 03 Feb 2023 15:36:29 GMT
etag: "25fd2e5eb2496801aefaf20df2d51354"
cache-control: s-maxage=3600, max-age=0
x-amz-version-id: ir1vfqIYFv44S2HxygQRFNk7MjNFu2Zd
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
x-continent-code: EU
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:36:01 GMT
via: 1.1 varnish
age: 1782
x-served-by: cache-bma1634-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675888562.707674,VS0,VE1
vary: X-Continent-Code
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24827
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/v1638206917/k12-red/k12-red.svg?_i=AA
151.101.129.137200 OK 207 B URL HTTP/2 res.cloudinary.com/everfi/images/v1638206917/k12-red/k12-red.svg?_i=AA
IP 151.101.129.137:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (368), with no line terminators
Hash 90af22a6ab173205f6ddaf380b91bf84
cb5e41f97bc9291e36485c55f1200025a343766a
46e8fe814ee052b28b4db7c652a22fdd19e8001dc4db62fe5b721691aaab963e
GET /everfi/images/v1638206917/k12-red/k12-red.svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: attachment; filename="k12-red.svg"
content-encoding: br
content-type: image/svg+xml
etag: W/"4dc972573e7fd439d9545991eb3350cf"
last-modified: Tue, 14 Dec 2021 14:26:39 GMT
date: Wed, 08 Feb 2023 20:36:01 GMT
vary: Accept-Encoding
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;start=2023-02-08T20:36:01.710Z;desc=hit,rtt;dur=21
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 207
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.162.110.205101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.110.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HT/ADOdc0VW038wsBLcvgw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ztoUEmiMf13elWNLEOToWGm/QN8=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0333fa3e34f17f01e9829bd8ee662c23
be4c7a8599038facc49c73d6d14451023bc919e7
8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
res.cloudinary.com/everfi/images/c_scale,q_auto,f_auto/v1628246649/fortune-fastcompany-lockup/fortune-fastcompany-lockup.jpg?_i=AA
151.101.129.137200 OK 46 kB URL HTTP/2 res.cloudinary.com/everfi/images/c_scale,q_auto,f_auto/v1628246649/fortune-fastcompany-lockup/fortune-fastcompany-lockup.jpg?_i=AA
IP 151.101.129.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 883x566, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a09ee7433450450e6dce7d24002d0953
50f0eba61b837497344c6813dec9c513db2faa9a
ff5429b8fbbf6aeb1a6256a7eb46648abbb8ea5b50aeb42517a972e10738f3d4
GET /everfi/images/c_scale,q_auto,f_auto/v1628246649/fortune-fastcompany-lockup/fortune-fastcompany-lockup.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="fortune-fastcompany-lockup.webp"
content-type: image/webp
etag: "a09ee7433450450e6dce7d24002d0953"
last-modified: Tue, 28 Sep 2021 13:34:01 GMT
date: Wed, 08 Feb 2023 20:36:01 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=3;cpu=2;start=2023-02-08T20:36:01.710Z;desc=hit,rtt;dur=21
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 46376
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206915/k12-yellow/k12-yellow-svg?_i=AA
151.101.129.137200 OK 15 kB URL HTTP/2 res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206915/k12-yellow/k12-yellow-svg?_i=AA
IP 151.101.129.137:0
Hash 1a7b20308b75a6a1d384ccb06e501884
4a08c508afd315937ed01b84fda71dbcec17854e
c2d2e363f6696ce4996e8dcdb992e6fcedc499efd37e33b95e96ed2f4fde9882
GET /everfi/images/f_auto,q_auto/v1638206915/k12-yellow/k12-yellow-svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="k12-yellow.webp"
content-type: image/webp
etag: "4cd1a8411bd10a551103b6fc1c607fab"
last-modified: Thu, 16 Dec 2021 21:48:33 GMT
date: Wed, 08 Feb 2023 20:36:01 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=3;cpu=2;start=2023-02-08T20:36:01.710Z;desc=hit,rtt;dur=21
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 2586
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery-visible/1.2.0/jquery.visible.min.js?ver=6.1.1
104.17.25.14200 OK 382 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-visible/1.2.0/jquery.visible.min.js?ver=6.1.1
IP 104.17.25.14:0
File type ASCII text, with very long lines (802)
Hash f2095dd733ec7385989c812e1f476de9
84df5212d2e505e8804d4f658d7ae54ec510bf50
a71c9ced606de75b437126955a4b047518c4575c9d45d7a222c9eada08fd5d0c
GET /ajax/libs/jquery-visible/1.2.0/jquery.visible.min.js?ver=6.1.1 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:01 GMT
content-type: application/javascript; charset=utf-8
content-length: 382
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-323"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 13233935
expires: Mon, 29 Jan 2024 20:36:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yO%2FW6Z%2F9o2pqnIhnHvdQI370QFVtZiZlMR4GP7WdaK7QrXabg0mzLrq8R5DF%2BaqwzMj3JphXb3h%2B5AisTdI9kW4%2BenHJZPK0T0wpBF8yVjaD7Az%2FHJoyzEAUROa3bXhFBgC2%2BT%2Fg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 796727b71c78b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_fill,g_auto,w_700,h_447/f_auto,q_auto/v1638555867/TurboTax-screenshot.jpg?_i=AA
151.101.129.137200 OK 31 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_fill,g_auto,w_700,h_447/f_auto,q_auto/v1638555867/TurboTax-screenshot.jpg?_i=AA
IP 151.101.129.137:0
Hash 60e518f84e47ee928e98801f3c421951
9d50942181b6063791053fd65dd065c46f4fda50
4ac6f5fa80535c166fe74ed0bfb6ba13fc3f4e262ad66c0c5c5e323e3ab3b3fd
GET /everfi/image/upload/c_fill,g_auto,w_700,h_447/f_auto,q_auto/v1638555867/TurboTax-screenshot.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="TurboTax-screenshot.webp"
content-type: image/webp
etag: "c97a5e615c7deafe8c6e55fe9c10258f"
last-modified: Tue, 14 Dec 2021 14:26:38 GMT
date: Wed, 08 Feb 2023 20:36:01 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=3;cpu=2;start=2023-02-08T20:36:01.710Z;desc=hit,rtt;dur=21
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 31100
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 9.5 kB IP 142.250.74.131:0
Hash 7feed12b48ee2a5efc1ed55d2a508f99
4c11a6837b4b1be8c2933f4d1a5e2c04c0e4fcf7
b444d7872a7ff054444e9a2cd3604d4242c62d8c1cceaa6bc8374244ae0e7989
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
res.cloudinary.com/everfi/images/v1638206913/k12-teal/k12-teal.svg?_i=AA
151.101.129.137200 OK 270 B URL HTTP/2 res.cloudinary.com/everfi/images/v1638206913/k12-teal/k12-teal.svg?_i=AA
IP 151.101.129.137:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (427), with no line terminators
Hash 67df486dbafc056c3585a286c8a5d346
74ec64f9a560e5762cf384377db8936dd218a343
92372af69a92065da1ef81174cbc1a4b6dfdcd277c4bd6ab7e779f477fd7e708
GET /everfi/images/v1638206913/k12-teal/k12-teal.svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: attachment; filename="k12-teal.svg"
content-encoding: br
content-type: image/svg+xml
etag: W/"508005c38ce6fa6b4a9368e6a27dd5ff"
last-modified: Tue, 14 Dec 2021 14:26:39 GMT
date: Wed, 08 Feb 2023 20:36:01 GMT
vary: Accept-Encoding
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=24;cpu=0;start=2023-02-08T20:36:01.715Z;desc=hit,rtt;dur=21
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 270
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 18 kB IP 93.184.220.29:0
Hash 021fe7bf78448a5456701aab0ad21b0a
e39d08f3722e6a6bb9fb6b37dc721694797b22e5
0b609aedd36657cb8507349aebacdbc8bb188ec6cce64a9df1ca483def716cfc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3256
Cache-Control: max-age=89001
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:01 GMT
Etag: "63e2b3a2-118"
Expires: Thu, 09 Feb 2023 21:19:22 GMT
Last-Modified: Tue, 07 Feb 2023 20:25:06 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 280
res.cloudinary.com/everfi/images/v1638215348/pathways_71327522dde/pathways_71327522dde.png?_i=AA
151.101.129.137200 OK 163 kB URL HTTP/2 res.cloudinary.com/everfi/images/v1638215348/pathways_71327522dde/pathways_71327522dde.png?_i=AA
IP 151.101.129.137:0
File type PNG image data, 638 x 422, 8-bit/color RGBA, non-interlaced\012- data
Size 163 kB (163063 bytes)
Hash b390b802c06f9ebbad2e279c7d419fe5
8f69dd4163abcb0f7355b5bd79c8fcacdf6b915e
01de412f6fffcac3829768ef975074239114527122439ac8f37299659f4ed34b
GET /everfi/images/v1638215348/pathways_71327522dde/pathways_71327522dde.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "b390b802c06f9ebbad2e279c7d419fe5"
last-modified: Mon, 29 Nov 2021 19:49:11 GMT
date: Wed, 08 Feb 2023 20:36:01 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2023-02-08T20:36:01.713Z;desc=hit,rtt;dur=21
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 163063
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP 104.18.20.226:0
Hash 49009939f352c92a38dcad910314ce2f
9d581725f1f01bd7b569857ec4bb836bf91687bd
77ce638d28b63f21e04a5dde476194f9f5f7536b3c175fcf5bc7446212aa2958
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:36:01 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "F07657058DF17683383862ECD0918E939DAAF948"
Expires: Thu, 09 Feb 2023 07:00:00 GMT
Last-Modified: Wed, 08 Feb 2023 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3038
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 796727b76c89b4f7-OSL
res.cloudinary.com/everfi/images/v1642102637/prescription-drug-safety-screenshot_81207837db0/prescription-drug-safety-screenshot_81207837db0-png?_i=AA
151.101.129.137200 OK 296 kB URL HTTP/2 res.cloudinary.com/everfi/images/v1642102637/prescription-drug-safety-screenshot_81207837db0/prescription-drug-safety-screenshot_81207837db0-png?_i=AA
IP 151.101.129.137:0
File type PNG image data, 700 x 486, 8-bit/color RGB, non-interlaced\012- data
Size 296 kB (295542 bytes)
Hash 45febeb90953d7848134db4a89c86db1
9607a08ff1238fde0573c812d118fbd66b0fb00a
e1c18428c0116b54ade818ac309ecb6ea022734f9245817d68b4f6f62082fd14
GET /everfi/images/v1642102637/prescription-drug-safety-screenshot_81207837db0/prescription-drug-safety-screenshot_81207837db0-png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "45febeb90953d7848134db4a89c86db1"
last-modified: Thu, 13 Jan 2022 19:37:20 GMT
date: Wed, 08 Feb 2023 20:36:01 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2023-02-08T20:36:01.711Z;desc=hit,rtt;dur=21
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 295542
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1fc9f8bd2d35f62d49a86c909de873af
2e06de8d92aed8a326fa63123d1eb22c5191ad68
dab6b96c1da9a8f711ae6c8b265e87ec2a082b171ae0f0fcd7bfbd72c7793a2e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=140461
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:01 GMT
Etag: "63e3895e-117"
Expires: Fri, 10 Feb 2023 11:37:02 GMT
Last-Modified: Wed, 08 Feb 2023 11:37:02 GMT
Server: nginx
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0333fa3e34f17f01e9829bd8ee662c23
be4c7a8599038facc49c73d6d14451023bc919e7
8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
client.mutinycdn.com/mutiny-client/6.4.1.66.js
151.101.129.91200 OK 29 kB URL HTTP/2 client.mutinycdn.com/mutiny-client/6.4.1.66.js
IP 151.101.129.91:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ccbb2aec992e6594f48b52c43f042987
f94c382d9eb3426c55837807e71662a018ebc1ca
3cb5ad0932d18132f9a4a23e4a1eff322e905c8dbdb6bcf233360eb11b6ed9ee
GET /mutiny-client/6.4.1.66.js HTTP/1.1
Host: client.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: M+H7pgkUgC3xHT7xrQPH6mevTCD3GwulBhy7xOhQEPitozfH+Vda3G2wjGNYJZ4kflQeSlBd2qc=
x-amz-request-id: FBP3VXNQ03XHSZDP
last-modified: Thu, 02 Feb 2023 17:49:10 GMT
etag: "2856b49355f1e0be01e8b2a9fee73d87"
cache-control: max-age=31536000
x-amz-version-id: gfTw0O4srRCV9_kRbvr78_K.qRJD9Y.E
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:36:01 GMT
via: 1.1 varnish
age: 77138
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 380
x-timer: S1675888562.899621,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 28921
X-Firefox-Spdy: h2
client-registry.mutinycdn.com/personalize/client_data/16919262ebbbde25.json
151.101.129.91200 OK 13 kB URL HTTP/2 client-registry.mutinycdn.com/personalize/client_data/16919262ebbbde25.json
IP 151.101.129.91:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 6105de972d1edb596b6e694c211e84a8
baf4943c7c228d2101310db595e1417189a241a4
c1e98ecbbad17f034ba1edda75fe4f156f8f3a3514e806673ba323310e758958
GET /personalize/client_data/16919262ebbbde25.json HTTP/1.1
Host: client-registry.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: tM2B2LJEZmX0KCW6zkm+No12IavV3v8oWWrUt6MbJBFFD7hVHzua/11DBFpA3nEcCRLqTgOpWYs=
x-amz-request-id: X5CRH4VTF9PAQ9P8
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Fri, 03 Feb 2023 15:36:30 GMT
etag: "4fc316db8a9a049b687b7f77f3b4c049"
cache-control: s-maxage=3600, max-age=0
x-amz-version-id: hc2x_HSxRv3moMEkEwcAH494FLI.GOYQ
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
x-continent-code: EU
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:36:01 GMT
via: 1.1 varnish
age: 3242
x-served-by: cache-bma1676-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675888562.915804,VS0,VE1
vary: X-Continent-Code
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 13108
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/blackbaud/main/prod/utag.js
2.18.173.203200 OK 84 kB URL HTTP/2 tags.tiqcdn.com/utag/blackbaud/main/prod/utag.js
IP 2.18.173.203:0
File type ASCII text, with very long lines (15464)
Hash 7038a37602a262105c5d02fbf632c3ca
23ffe8c2bbd0c765cb7d8b67e12f750b40523a85
10a05956e61e254a6dd3d05c2cb0bd6ef3a2b263e74d8c4602681f2ada148f79
GET /utag/blackbaud/main/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d032e3a8158d91ddc57322c298785838:1675800878.604444"
last-modified: Tue, 07 Feb 2023 20:14:38 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Wed, 08 Feb 2023 20:41:01 GMT
date: Wed, 08 Feb 2023 20:36:01 GMT
X-Firefox-Spdy: h2
info.everfi.com/js/forms2/js/forms2.min.js
104.17.70.206200 OK 71 kB URL HTTP/2 info.everfi.com/js/forms2/js/forms2.min.js
IP 104.17.70.206:0
Hash 471824900f27e8e98713c21a6bc5b40b
3ec5f2deac7fe4e027a477d0c905a9c4baa4a58f
e73aa3fc58d576bad459e19bad36dbf9de92dcefd41340679831c74a9bdabca7
GET /js/forms2/js/forms2.min.js HTTP/1.1
Host: info.everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:01 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 20:56:20 GMT
etag: "481ebc-33e51-5f217594de500"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1807
expires: Thu, 09 Feb 2023 00:36:01 GMT
cache-control: public, max-age=14400
set-cookie: __cf_bm=ie.VAhmIUX_5A5GPZuB2xK1zgW6tD6nFfWcl8zNoeWw-1675888561-0-AYOgab7AQkPDWNfkbCqaIv4FklqoC3ezmlXuvTLYx7LUaIFAVvoZlUjIbjJZ+taT2WYPHpHBTqGxwv1N11y5PpY=; path=/; expires=Wed, 08-Feb-23 21:06:01 GMT; domain=.info.everfi.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 796727b7cfdbb51e-OSL
X-Firefox-Spdy: h2
client.mutinycdn.com/mutiny-client/8.4.1.66.js
151.101.129.91200 OK 2.9 kB URL HTTP/2 client.mutinycdn.com/mutiny-client/8.4.1.66.js
IP 151.101.129.91:0
File type ASCII text, with very long lines (7567), with no line terminators
Hash 299c3228ebe7d0c6d325c41caa7f7185
1498bc0ef22a32b858929a95f7dbbbf92d92f183
3b32331169c110e59a466bd82bba6acc297d5fac7a8adee0ff47964c817e0ecd
GET /mutiny-client/8.4.1.66.js HTTP/1.1
Host: client.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jSEe85rRZhBwAsZnqLate5blpzkHOvIJbvfzx91XGb+GiFZ0KctMl2c26Xwc4jNNaGeSMRm7ovs=
x-amz-request-id: R5WKTYDRESX2XE46
last-modified: Thu, 02 Feb 2023 17:49:10 GMT
etag: "7038e2abc3c97f0cce472379a93e3a7c"
cache-control: max-age=31536000
x-amz-version-id: msLLnS8hQyu1LXogbSaMmVR3H190CiIQ
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:36:01 GMT
via: 1.1 varnish
age: 77154
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 387
x-timer: S1675888562.915707,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2934
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q2
104.18.20.226200 OK 33 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q2
IP 104.18.20.226:0
Hash 2d52e5d41dbf4090e8791f39ba9f984a
c23d07421b31424a768e0c482fa7c39f40dbd178
2ee6370f07a8c034c17eafbdb0a712c1e857509d752c67026f05aed1930f3a4c
POST /ca/gsatlasr3dvtlsca2022q2 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:36:01 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "B66EFFBC3B54B77F30B55D9EAD7D88FE60448B53"
Expires: Thu, 09 Feb 2023 07:00:00 GMT
Last-Modified: Wed, 08 Feb 2023 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 55
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 796727b87e16b4f7-OSL
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=655ccfc4f9
104.18.23.52200 OK 2.6 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=655ccfc4f9
IP 104.18.23.52:0
File type ASCII text, with very long lines (27832)
Hash eaaabd3f60063923cd5333eb1d7a20a1
0da69706105e28896a1f6eeaa91d5bec1b82f7f1
f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=655ccfc4f9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:02 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 276791
accept-ranges: bytes
server: cloudflare
cf-ray: 796727b88eda1c0a-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:300,400,400italic,700,900
142.250.74.106200 OK 103 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:300,400,400italic,700,900
IP 142.250.74.106:0
Size 103 kB (102951 bytes)
Hash d74b0a8eaa1201c7a5767043128ccbfc
5d0d56403b9b2711761b3b863a9f4e22893616cd
94d69b5d48ebb539bb91e81634ca60c6855e3f3878e3d6d2f60e54dd2f9ede90
GET /css?family=Lato:300,400,400italic,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 20:36:01 GMT
date: Wed, 08 Feb 2023 20:36:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=655ccfc4f9
104.18.23.52200 OK 54 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=655ccfc4f9
IP 104.18.23.52:0
File type ASCII text, with very long lines (65397)
Hash dc9270247a97f75913a5d8934c24de03
ed9b0fa01b552571f99d529ed355b2ba91cfc48d
847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8
GET /releases/v5.15.4/css/pro.min.css?token=655ccfc4f9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:02 GMT
content-type: text/css
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 276791
accept-ranges: bytes
server: cloudflare
cf-ray: 796727b89ee71c0a-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=655ccfc4f9
104.18.23.52200 OK 7.1 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=655ccfc4f9
IP 104.18.23.52:0
Hash b410a04caf0f2eb5363d7e916fa91cd2
bf7ec0e69d06bd1b9b4258b37d6aeb5aa76c9c7e
135041d843171e9671bb8136dcb959692f9e733602d9797546d4784d53e0227b
GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=655ccfc4f9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:02 GMT
content-type: text/css
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 276791
accept-ranges: bytes
server: cloudflare
cf-ray: 796727b89eee1c0a-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 2.5 kB IP 142.250.74.131:0
Hash 8c8bf17cb55ef55e0fba9669bd9d800c
b6dcb177b2448510dc23c2cb29b3c3d76127ac48
4020be1bce60a46e853124cb0b4489ed6658b64528868ee63f913914ca7956a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c99599d6628f41d54430edaa40f5c533
4bbd35fd1097784ae5e1e046ba35595eb49ac57f
3cb4e5c0f89f5e97bd7b4a11c25b6bae84bb5a1d55982c44719b76b3f852035e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/npm/vanilla-lazyload@10.19.0/dist/lazyload.min.js
151.101.129.229200 OK 46 kB URL HTTP/2 cdn.jsdelivr.net/npm/vanilla-lazyload@10.19.0/dist/lazyload.min.js
IP 151.101.129.229:0
Hash 313a5430d94ccb5d65d0ab056d6c77f9
1cf9bfce35b380e997d1deb36fb0e3a2ebf08c2d
9df1a736f6ed2bce33b897faa8d4f69cc78d53e9cbe8fc9430caa1fca0baa61c
GET /npm/vanilla-lazyload@10.19.0/dist/lazyload.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 10.19.0
x-jsd-version-type: version
etag: W/"157d-7oSTFmgFjdrwSUlzDWmBH9iMXEY"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:36:02 GMT
age: 28034915
x-served-by: cache-fra19154-FRA, cache-bma1626-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2168
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.227200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 10:25:03 GMT
expires: Mon, 05 Feb 2024 10:25:03 GMT
cache-control: public, max-age=31536000
age: 295859
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.20.226200 OK 7.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.20.226:0
Hash 071e1bf1c41a1de866cf03a3969b6184
dc22d5c0a87392ba29fbd5a0bbb71a07986c4a62
03c5dbea24840709e09ec0a6dfede7e8d262553792e8c588b5f08672e0e73df9
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:36:02 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "58E98A6761753D3D4819834F3AFAA2C51CE7E33A"
Expires: Thu, 09 Feb 2023 08:00:00 GMT
Last-Modified: Wed, 08 Feb 2023 20:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1353
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 796727b95fe7b4f7-OSL
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.227200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 04:29:08 GMT
expires: Wed, 07 Feb 2024 04:29:08 GMT
cache-control: public, max-age=31536000
age: 144414
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
216.58.207.227200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 22504, version 1.0\012- data
Hash 1c6c65523675abc6fcd78e804325bd77
898d9808304dc157f5dcb18ca169ec6e2b96b3d7
08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92
GET /s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 04:28:57 GMT
expires: Wed, 07 Feb 2024 04:28:57 GMT
cache-control: public, max-age=31536000
age: 144425
last-modified: Tue, 26 Apr 2022 16:04:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_500,h_336/f_auto,q_auto/v1615811746/Endeavor_Website_preview-e1533064446603.png?_i=AA
151.101.129.137200 OK 28 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_500,h_336/f_auto,q_auto/v1615811746/Endeavor_Website_preview-e1533064446603.png?_i=AA
IP 151.101.129.137:0
Hash d0aafcd167e671bb96d7f4e1add84910
95b22ee4a60a7291820712c4d2e942d7f510ce99
11515d01914665ea22f54c25c7988173373e55db6538b5b3df6a598bcabd6516
GET /everfi/image/upload/c_scale,w_500,h_336/f_auto,q_auto/v1615811746/Endeavor_Website_preview-e1533064446603.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="Endeavor_Website_preview-e1533064446603.webp"
content-type: image/webp
etag: "e718701be14dfb45e8e70950d88f2e54"
last-modified: Tue, 14 Dec 2021 02:23:41 GMT
date: Wed, 08 Feb 2023 20:36:02 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2023-02-08T20:36:02.149Z;desc=hit,rtt;dur=17
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 26104
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 14 kB IP 142.250.74.131:0
Hash f5ed1300141dd1606f49abc372b436b2
4a29ddb1a862ef2a0ffdfdd71119c3a295316057
2cdb9caefc3f970ec2a83076355267e999408cf8939a895b4f07f99cdeb587e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 44fc0cb48c26edb9ce36736707b9182a
62de7faa3e8171c0d38a2e03a604d2545a3ede7f
9e511ad6ed9e7c5f28f573422e3891d2f4e5c2ba5107f7eda808c529a95931a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
res.cloudinary.com/everfi/image/upload/c_scale,w_1270,h_784/f_auto,q_auto/v1653600554/306-feature.jpg?_i=AA
151.101.129.137200 OK 139 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_1270,h_784/f_auto,q_auto/v1653600554/306-feature.jpg?_i=AA
IP 151.101.129.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1270x784, components 3\012- data
Size 139 kB (139440 bytes)
Hash a16aae583e4634e743fb443af542fd07
5fc5d0c7b504a9ee454b3d94b0a3eb9f88cce510
945f826d7bc47963fa41b2cf5327daca7b01044e594c655995537c1fc6880543
GET /everfi/image/upload/c_scale,w_1270,h_784/f_auto,q_auto/v1653600554/306-feature.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "a16aae583e4634e743fb443af542fd07"
last-modified: Sat, 14 Jan 2023 06:27:36 GMT
date: Wed, 08 Feb 2023 20:36:02 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=3;cpu=1;start=2023-02-08T20:36:02.149Z;desc=hit,rtt;dur=17
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 139440
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_732,h_546/f_auto,q_auto/v1615774462/Screen-Shot-2018-06-06-at-4.30.59-PM_201343fd232.jpg?_i=AA
151.101.129.137200 OK 23 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_732,h_546/f_auto,q_auto/v1615774462/Screen-Shot-2018-06-06-at-4.30.59-PM_201343fd232.jpg?_i=AA
IP 151.101.129.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 732x546, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e6e3dcbf496bf46b458377be9ad90b24
5d5bfc21753a4c32bfd423bc61ff0ddb1563db54
f586d222cf9f2a5cc305ed1ed5feb74adc68cb3d86e1787de3023fb5674c000d
GET /everfi/image/upload/c_scale,w_732,h_546/f_auto,q_auto/v1615774462/Screen-Shot-2018-06-06-at-4.30.59-PM_201343fd232.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="Screen-Shot-2018-06-06-at-4.30.59-PM_201343fd232.webp"
content-type: image/webp
etag: "e6e3dcbf496bf46b458377be9ad90b24"
last-modified: Tue, 14 Dec 2021 01:44:30 GMT
date: Wed, 08 Feb 2023 20:36:02 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2023-02-08T20:36:02.163Z;desc=hit,rtt;dur=17
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 23314
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/f_auto,q_auto/v1662561673/word-force-screenshot/word-force-screenshot.png?_i=AA
151.101.129.137200 OK 79 kB URL HTTP/2 res.cloudinary.com/everfi/images/f_auto,q_auto/v1662561673/word-force-screenshot/word-force-screenshot.png?_i=AA
IP 151.101.129.137:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e90195b48e506da93cebd53d9b3bb6b5
b5138823ededa5d6999eff6ef80092a40a806f08
436e5bdbd55b0f212dfa2fa47f100ff6fca2beef79a3bd83f4063117857488b1
GET /everfi/images/f_auto,q_auto/v1662561673/word-force-screenshot/word-force-screenshot.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="word-force-screenshot.webp"
content-type: image/webp
etag: "e90195b48e506da93cebd53d9b3bb6b5"
last-modified: Wed, 07 Sep 2022 14:45:41 GMT
date: Wed, 08 Feb 2023 20:36:02 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2023-02-08T20:36:02.163Z;desc=hit,rtt;dur=17
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 78864
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_848,h_474/f_auto,q_auto/v1673889753/Best_306_5-1.jpg?_i=AA
151.101.129.137200 OK 46 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_848,h_474/f_auto,q_auto/v1673889753/Best_306_5-1.jpg?_i=AA
IP 151.101.129.137:0
Hash f00e7baa6d5cd09edd2c91fab5ae8995
2135486744ff6f9b1e8d77e6d2eb4c7d261424f7
6ec4a193a45ed9d6973099e7e14481046cbb77b2ba51b233e9a1865c4c129b2e
GET /everfi/image/upload/c_scale,w_848,h_474/f_auto,q_auto/v1673889753/Best_306_5-1.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="Best_306_5-1.webp"
content-type: image/webp
etag: "ddbde5848f9544524bd7530b906209fa"
last-modified: Wed, 18 Jan 2023 19:44:36 GMT
date: Wed, 08 Feb 2023 20:36:02 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2023-02-08T20:36:02.164Z;desc=hit,rtt;dur=17
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 41310
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_700,h_446/f_auto,q_auto/v1657567290/2022-2023-new-content.png?_i=AA
151.101.129.137200 OK 34 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_700,h_446/f_auto,q_auto/v1657567290/2022-2023-new-content.png?_i=AA
IP 151.101.129.137:0
Hash f786a1ec94e01607466409b4ef44297a
35415724c7db1f6ec9f5c4f1d253231f3ff1341f
b496c4beedb40dc3688174b4f5b37b63ca567c3ff0b9de1868728818249d5ae8
GET /everfi/image/upload/c_scale,w_700,h_446/f_auto,q_auto/v1657567290/2022-2023-new-content.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="2022-2023-new-content.webp"
content-type: image/webp
etag: "a96bd57f1ad8c808d8336b9bf67bc45b"
last-modified: Mon, 11 Jul 2022 19:45:14 GMT
date: Wed, 08 Feb 2023 20:36:02 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=3;cpu=1;start=2023-02-08T20:36:02.163Z;desc=hit,rtt;dur=17
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 33580
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/blackbaud/main/prod/utag.9.js?utv=ut4.48.202206141541
2.18.173.203200 OK 1.2 kB URL HTTP/2 tags.tiqcdn.com/utag/blackbaud/main/prod/utag.9.js?utv=ut4.48.202206141541
IP 2.18.173.203:0
File type ASCII text, with very long lines (995)
Hash cfd5c0a066e7addbdc9778a134b80d9c
9d34e630d703b18e1d48f4dc0c7e2f048b0ec368
ce79520f243faec0d953a70f3ac392ecc8e7936ab7e80bc94212d54af1f5f464
GET /utag/blackbaud/main/prod/utag.9.js?utv=ut4.48.202206141541 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "4ff103aae37a4ed488af34613295b078:1655221329.681708"
last-modified: Tue, 14 Jun 2022 15:42:09 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Thu, 23 Feb 2023 20:36:02 GMT
date: Wed, 08 Feb 2023 20:36:02 GMT
content-length: 1150
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=blackbaud/main/202302072014&cb=1675888618303
2.18.173.203200 OK 2 B URL HTTP/2 tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=blackbaud/main/202302072014&cb=1675888618303
IP 2.18.173.203:0
File type ASCII text, with no line terminators
Hash 7bc0ee636b3b83484fc3b9348863bd22
ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610
a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb
GET /utag/tiqapp/utag.v.js?a=blackbaud/main/202302072014&cb=1675888618303 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "7bc0ee636b3b83484fc3b9348863bd22:1460653071"
last-modified: Thu, 14 Apr 2016 16:57:51 GMT
server: AkamaiNetStorage
content-length: 2
unused62: 8096267
cache-control: max-age=600
expires: Wed, 08 Feb 2023 20:46:02 GMT
date: Wed, 08 Feb 2023 20:36:02 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 21:48:03 GMT
expires: Fri, 02 Feb 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 514079
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Feb 2023 17:20:45 GMT
expires: Tue, 06 Feb 2024 17:20:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 184517
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
user-data.mutinycdn.com/personalize/user_data/16919262ebbbde25.json?async=false&session_token=e050b908-c556-4f38-bcba-2859fa306316&token=7b73f9362c0ba1bd&visitor_token=1d5e835a-7c42-4de8-9c1c-af112351b027
151.101.1.91200 OK 748 B URL HTTP/2 user-data.mutinycdn.com/personalize/user_data/16919262ebbbde25.json?async=false&session_token=e050b908-c556-4f38-bcba-2859fa306316&token=7b73f9362c0ba1bd&visitor_token=1d5e835a-7c42-4de8-9c1c-af112351b027
IP 151.101.1.91:0
File type JSON data\012- , ASCII text, with very long lines (1280), with no line terminators
Hash 33333fed43e22b43a6d97bf3e8ad8441
be89ed941b1a501b28ae02849dbc60477bd27f0c
68adc55fab99ed0228986c4efedada456468cd2e4f8b96dbda078b180ee64d72
GET /personalize/user_data/16919262ebbbde25.json?async=false&session_token=e050b908-c556-4f38-bcba-2859fa306316&token=7b73f9362c0ba1bd&visitor_token=1d5e835a-7c42-4de8-9c1c-af112351b027 HTTP/1.1
Host: user-data.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: x-cache, x-cache-hits, age
access-control-max-age: 7200
cache-control: no-store
pragma: no-cache
x-visitor-token: 1d5e835a-7c42-4de8-9c1c-af112351b027
x-async-user-data: false
etag: W/"e9d5f7da3448d6affffa557e2fd0b48c"
x-request-id: 6d2b412f-460e-4867-8ac4-eca2099b0b34
x-runtime: 0.210356
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:36:02 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1653-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675888562.903276,VS0,VE597
vary: X-Visitor-Token,X-Profile-Token,Fastly-Client-Ip,X-Async-User-Data,Origin,Accept-Encoding
x-connection-speed: broadband
x-continent-code: EU
x-country-code: NO
x-edge-datacenter: BMA
x-edge-region: EU-East
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 748
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6a01a1cb62e9d8dcf9c746da7d0a69b8
95440ca2785209370ba2394c9466e361735ecb66
7927e64b9d5090d6e757323fd02c1f6058561d731c52de3fe8f6f10ac2bfa024
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:02 GMT
Etag: "63e39b8a-118"
Server: ECS (amb/6BA2)
Content-Length: 280
ob.healthroundprince.com/i/9ebca9e35a6781e1317f22e9acd57b94.js
54.230.111.101200 OK 32 kB URL HTTP/2 ob.healthroundprince.com/i/9ebca9e35a6781e1317f22e9acd57b94.js
IP 54.230.111.101:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash fb7494f64c015f8f4029616ae1f2bcf2
3fcd3d21cba99da8a924223e48fd3bb3fa9f6216
1ba1b1fb427b380bdb44c066ae4d6a98c830b0cd03ecd16eddb72297dfb22456
GET /i/9ebca9e35a6781e1317f22e9acd57b94.js HTTP/1.1
Host: ob.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 31909
content-encoding: gzip
server: Caddy
date: Wed, 08 Feb 2023 11:38:38 GMT
cache-control: max-age=43200
expires: Wed, 08 Feb 2023 23:38:38 GMT
etag: "15758-/t9aj+7Tfi1mOFzpwrZBH1jcGFc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QWJ-zO146SC5Iw5mwsP5xQQz1xthmtKMTk4n6wZ6wayoCsrWF6LCiA==
age: 32244
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5cee7b98e5150c1f893636a54fc4a6a3
a4a5c0b5271d7489985e25bc9c5d912d4e2552d6
695a2faaf6485e37d403123c99b79a6c3cdf768592b487862cc23a10a6ab407e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6483
Cache-Control: max-age=127140
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:02 GMT
Etag: "63e33c03-1d7"
Expires: Fri, 10 Feb 2023 07:55:02 GMT
Last-Modified: Wed, 08 Feb 2023 06:06:59 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 59274586b00249f3cbd2ff5dc9071563
76b59ad65277082e1811d339bf03d953037e0a25
7e6c2cd14a5c882d4a742f80bc48f2c9704ea2ca12e2e98f9f144ce230450eb0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4859
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:02 GMT
Last-Modified: Wed, 08 Feb 2023 19:15:04 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash dba40f6ad804f091736898d753428480
09bacfaee2996b419d26e0030ba62bdd11aaa29a
893d4dce599de7fd300233b7d306af3711d5e8396acf9429847521d5330347f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3915
Cache-Control: max-age=128153
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:02 GMT
Etag: "63e34a00-116"
Expires: Fri, 10 Feb 2023 08:11:55 GMT
Last-Modified: Wed, 08 Feb 2023 07:06:40 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1e41d2bb861e28f05f0735ad1b0d035e
a73686fbc5ab7cce5e2925bde0057af5acb0af74
8f477857ad04a959976a41e3f3500cc527f5bee412d6fd0616be96a25b57572a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6022
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:02 GMT
Last-Modified: Wed, 08 Feb 2023 18:55:40 GMT
Server: ECS (amb/6BA2)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=42915A04609D99C00A495C11%40AdobeOrg&d_nsid=0&ts=1675888618323
54.72.53.159200 OK 312 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=42915A04609D99C00A495C11%40AdobeOrg&d_nsid=0&ts=1675888618323
IP 54.72.53.159:0
File type JSON data\012- , ASCII text, with very long lines (368), with no line terminators
Hash 514494f330bb6b4467984dd07bbba0c2
16dad80839e9353a913f4ab54c0b5891b09764a7
36b343ab24ed39caab7559163adc6ce999a924d37c760829b925ee5f403f55a9
GET /id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=42915A04609D99C00A495C11%40AdobeOrg&d_nsid=0&ts=1675888618323 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://everfi.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v046-097336e4c.edge-irl1.demdex.com 3 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=24283959442939760710863383259552647728; Max-Age=15552000; Expires=Mon, 07 Aug 2023 20:36:02 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: Hb7KJSdNTFw=
Content-Length: 312
Connection: keep-alive
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C48PVR0E6TN457G0PKCG&lib=ttq
23.36.79.17200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C48PVR0E6TN457G0PKCG&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2298)
Hash dc91db6b048348b4b141d166bfd342c8
8d25b458ec2a38008b843b4f93f58c1ea5998cd4
80ef8232e9e1095f2b4d416c00585ffb4bc286aa7d92de26411b2ba38bc8a87f
GET /i18n/pixel/events.js?sdkid=C48PVR0E6TN457G0PKCG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202302082036026FE92016B8314CCC0644
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b524c73549539d6197cf21a9249166ce8e5fdc820f01f7190e4ddc46fe037675a2fe6a1ce0cf44573cd4d27a42b73be7f5b7c18b3e587b2d1065a6e1bdea6ce84fd0671353d1e0c103077cd2025d149d95
content-encoding: gzip
content-length: 1132
x-origin-response-time: 5,23.218.220.150
x-akamai-request-id: faa476b.a7b0549
expires: Wed, 08 Feb 2023 20:36:02 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 08 Feb 2023 20:36:02 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
vary: Accept-Encoding
set-cookie: _ttp=2LTII8RKmJ2Iuaw0GC4AQlZC5Ua; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-218-220-150.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=102, origin; dur=5, inner; dur=3
x-parent-response-time: 107,23.36.79.13
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MWNiNWY1N2YyMA.js
23.36.79.17200 OK 66 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWNiNWY1N2YyMA.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash 2f7f8f3de4f656207b1bb5213b99a66d
b343bbee34df8e1dc54f54a1db764871aa9c7f66
a72933f6888f7fadba1bccc2fe4c61d8bc14449f9d1b90a25c37f4da994ecbc5
GET /i18n/pixel/static/main.MWNiNWY1N2YyMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: _ttp=2LTII8RKmJ2Iuaw0GC4AQlZC5Ua
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202302072108362D6BF22F360C4EC81120
x-tt-trace-host: 0149ac210ef9156de5d0158c58c245ffa55bb2e8ba1356745a09f7bc6b8966f5e06f89c329caee7d4e9fe96ecf3737ecfceb49e6e347b2712d51e070233335e49d13f993967b18f98fcc221253404f6149360f17d79399b99d17fc68a0026e1e1e
content-encoding: gzip
date: Wed, 08 Feb 2023 20:36:02 GMT
content-length: 66064
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: a7b0782
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 68bd14f44f272890a22261faaab4ee96
030c029e314708bfff74272f6f5b4d93c3ffd786
a3549f81820a426c2806c1fc23bf366983dcc10f6c106bee71ab17193b7458b1
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 20:36:02 GMT
Last-Modified: Wed, 08 Feb 2023 18:46:14 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: WP2kMcdobCIlzO65VDQC4ZoHRoLsm-ktnBZAF42dOVlcYWdFQAWdbg==
Age: 6588
embed.formhq.net/v1/platforms/bWFya2V0bw.js
172.66.43.197200 OK 516 B URL HTTP/2 embed.formhq.net/v1/platforms/bWFya2V0bw.js
IP 172.66.43.197:0
File type ASCII text, with very long lines (422), with no line terminators
Hash b5dbaab1e52049b35b34a137a2dfb2cf
af7432bb4f618223538d6c94938ff35fa9d7a216
08409123996bd47e6f49db7e620dbed298fa90eb5861e625521c4a54c074b600
GET /v1/platforms/bWFya2V0bw.js HTTP/1.1
Host: embed.formhq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:02 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=423
etag: W/"62e92e06-1a7"
last-modified: Tue, 02 Aug 2022 14:00:38 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: max-age=1800
cf-cache-status: HIT
age: 1776
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GTMVFGWD6eVd4bY21SsVxP128JonOAFHRlCH%2BkX6RT7%2FBY5tSJi%2BSPhSJ6zlwbI6iF4KbzCvlb5JdhUmvSNy4SCqwBLuAm%2FHFiqy5NgXIHGz9c%2Bl4AHVwQmV0KuF0Eb0C%2BMy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 796727bd5dc0b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_5f1fb.js
23.36.79.17200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_5f1fb.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 591b95fff14a7f5e64f9536c5c595274
e02712023e2c51a67054a78696ea2203ff6fc85e
7b19272e8214a2ee99bba815ca143cf20e761055d526fa500d82b81f1753c634
GET /i18n/pixel/static/identify_5f1fb.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: _ttp=2LTII8RKmJ2Iuaw0GC4AQlZC5Ua
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202302072108362D6BF22F360C4EC8114B
x-tt-trace-host: 0149ac210ef9156de5d0158c58c245ffa55bb2e8ba1356745a09f7bc6b8966f5e06f89c329caee7d4e9fe96ecf3737ecfccf99cf284406cdeb69bc36a3048781d6910af8592b11c62fae4a30bea833e584e4d134275604f50d063fb2b5ac1f59e9
content-encoding: gzip
date: Wed, 08 Feb 2023 20:36:02 GMT
content-length: 30679
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: a7b09c9
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12243
Expires: Thu, 09 Feb 2023 00:00:05 GMT
Date: Wed, 08 Feb 2023 20:36:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12243
Expires: Thu, 09 Feb 2023 00:00:05 GMT
Date: Wed, 08 Feb 2023 20:36:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12243
Expires: Thu, 09 Feb 2023 00:00:05 GMT
Date: Wed, 08 Feb 2023 20:36:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8532aa1-7280-445c-9c4c-b562d09929d0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8532aa1-7280-445c-9c4c-b562d09929d0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1d2eccb9280b851aa1725df5681f6bbd
b4e2b14ee5bc9ee6c9c05666c34b2d1b6ec425b5
c64ece16f4c550feb05db1bccbf74b49d839e77fea31893d48a3f0c267939c92
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8532aa1-7280-445c-9c4c-b562d09929d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10328
x-amzn-requestid: 0b0b3fcd-416c-47ac-afa0-51be0ab85665
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PPlGGqoAMFxYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c596-219ee5023d71e4ce17d49233;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:41:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pNBF_lBtNmvVWQAnBxCp0e03pdV_rbGOf9V1UvqeRO2vcZR3_lSE2w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:55:21 GMT
age: 81641
etag: "b4e2b14ee5bc9ee6c9c05666c34b2d1b6ec425b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 81DTnHIh40lNEi6l5hC87Vo9R8k4w79Fr71zibyvGP0iJm4kmhWITA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 07:53:36 GMT
age: 45746
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe800d6af728cd622a6192ad5e7dda6a
3a301dd894fc428c7d1863c9d5eaf2652f5c2083
f4923c211ef24e933bbe73bd8d2033d6b6da4a9fa0c9d4699a1041a7bd8bf5a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12216
x-amzn-requestid: cc61a63b-35fe-4bfa-ad20-1db3f4165446
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7LFrCIAMFoYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-2b5e27c62218510b74ea0989;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Cf13Lp2SFHQ4SSF6_KpC4zx339tZRkMmnmF-OKM_2hbWbIoR3OLJ_g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:50:49 GMT
age: 81913
etag: "3a301dd894fc428c7d1863c9d5eaf2652f5c2083"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e586b8-49f5-40c3-b0d4-f6cdfc375a2b.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e586b8-49f5-40c3-b0d4-f6cdfc375a2b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 18a84ae645223aba0709b5e16c0207f7
0b865e797846520ccc6fff6fb2ee38d8836bd2c0
b1e4868045f074a84e3de1d82ec3ae22f6d2a1a4131b2a40bcce7f3f5375aff7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e586b8-49f5-40c3-b0d4-f6cdfc375a2b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9760
x-amzn-requestid: d5d8fdde-048f-4705-9fa4-99fd7d29d804
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f582DETSIAMFmEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a826-52a3b175584df1914260c8ae;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:11:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: wUaruDuqNDIlR6CWz9G7DAofcvS7UNmtPM7C2ve-RRbp57J43rWPxQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 07:27:43 GMT
age: 47299
etag: "0b865e797846520ccc6fff6fb2ee38d8836bd2c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9c2a9eee923b84d4e06438a8b2acaff
520b122e3ce52220af153fee26bb7067283f9075
9ff4236fdcd05210a9c8bb48ea68179e142b1b05c8b19dd66282590dff69fa22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10058
x-amzn-requestid: 94374454-1e89-4c43-895b-0a90f39b851d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O5vEgcoAMFctg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c50a-0bf11cad4b0818c36188ba91;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qYXu_I4vL00EOopA1nQcxCTMKf4nObKFk9XQozhw6FezKsfTDem3Mw==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:06:35 GMT
etag: "520b122e3ce52220af153fee26bb7067283f9075"
content-type: image/jpeg
age: 80967
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8122ba3b-f49a-49fa-acfb-88990087de42.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8122ba3b-f49a-49fa-acfb-88990087de42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 25fb37d8b072e47aae74933481fb9418
b073d213a6a7939efed7ee5ef62a5548e00082bc
59a9c61013b3a4faab6f1c578f45bb87397d2f9e7975ae58e53e2c4e4a791da2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8122ba3b-f49a-49fa-acfb-88990087de42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6177
x-amzn-requestid: 729ae67c-5468-42a6-ba16-2a6a55db001d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f-tUbE7EoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e28f4f-7f1fa6e162899c495e44e643;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 17:50:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xTJKf69wk7qWWhBYf-qO61jOY2jXIC4FNdt4Mxt2dLDmLm5U9OocVQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 14:57:32 GMT
age: 20310
etag: "b073d213a6a7939efed7ee5ef62a5548e00082bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
marketo.clearbit.com/assets/v1/marketo/forms.js
18.134.250.23200 OK 28 kB URL HTTP/2 marketo.clearbit.com/assets/v1/marketo/forms.js
IP 18.134.250.23:0
File type Unicode text, UTF-8 text, with very long lines (3400)
Hash bf6aa97d440b453e5d58cd5bcf2e585c
cd59575ea6262fa79890d53880697f82fb251cf0
4063e72c353fcac556ca10a2d6d26666e4b486aaefaa1872585b3f9e88b91adb
GET /assets/v1/marketo/forms.js HTTP/1.1
Host: marketo.clearbit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
last-modified: Fri, 06 Jan 2023 21:26:29 GMT
set-cookie: rack.session=BAh7CUkiD3Nlc3Npb25faWQGOgZFVG86HVJhY2s6OlNlc3Npb246OlNlc3Npb25JZAY6D0BwdWJsaWNfaWRJIkVkYjQ1ZDI2M2FkZmU3ZjBjYTU1YTNiZDY1MjM3MzY5NTE3OTUyMDNhNTkyYmZkMjM5YTFhNzgyZTFmZWMzNzFiBjsARkkiCWNzcmYGOwBGSSIxVTVMa0w3dXU2VmRWZDZXbEh2b0VCZXZPY202WVFTdFV3aHByUElzVkZuVT0GOwBGSSINdHJhY2tpbmcGOwBGewZJIhRIVFRQX1VTRVJfQUdFTlQGOwBUSSItMTFjZDFkMmEwOWFkM2NjMzM4ZWY4ZDY5NmY1NTdhYmNkZjNjMDNkMAY7AEZJIg5fX0ZMQVNIX18GOwBGewA%3D--05e473cb25664163b53568a21e84590015a55bd7; path=/; expires=Wed, 15 Feb 2023 20:36:02 GMT; secure; HttpOnly
content-length: 28086
date: Wed, 08 Feb 2023 20:36:02 GMT
server: envoy
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 985
Origin: https://everfi.com
Connection: keep-alive
Cookie: _ttp=2LTII8RKmJ2Iuaw0GC4AQlZC5Ua
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230208203602697C70F175EC97C9101F
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a918969cf5d1936d73b37aaf4d57de2c49212c2acf5e0fae5ad6fd29279fcb9c1ae16c9bb2239d4f5808d9d9395da23fd0e14d36df4ec54e7c4f73eda64272ffd
expires: Wed, 08 Feb 2023 20:36:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 08 Feb 2023 20:36:03 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=16, cdn-cache; desc=MISS, edge; dur=6, origin; dur=121
x-origin-response-time: 122,23.36.79.13
x-akamai-request-id: a7b0a2d
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 5ed011033fa864bdcb12a278c34cc61c
cbd91d20ab6a6af6a71edacf0178e63efc7a8bac
22cc4984d25607e73ecf203777e439fd0639755c59d7ca008ed59986d851664c
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 08 Feb 2023 20:36:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 04:36:23 GMT
Expires: Thu, 09 Feb 2023 04:36:23 GMT
ETag: "cbd91d20ab6a6af6a71edacf0178e63efc7a8bac"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
obs.healthroundprince.com/ct?id=37830&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675888618649&hl=1&op=0&ag=1317291471&rand=842828066001299019818087280097515726529555016200587211185587811058872107780&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=SnGdF3ufWd&pto=2380&ver=50&gac=-&mei=&ap=&duid=1.1675888618.GtUzFQFAiGJrqQWD&suid=1.1675888618.J6KOFjwS4HH1QynH&tuid=1.1675888618.uMp6E8B6mUXkoSdf&fbc=->m=W10%3D&it=81%2C2093%2C90&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
3.227.190.204200 OK 1.1 kB URL HTTP/2 obs.healthroundprince.com/ct?id=37830&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675888618649&hl=1&op=0&ag=1317291471&rand=842828066001299019818087280097515726529555016200587211185587811058872107780&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=SnGdF3ufWd&pto=2380&ver=50&gac=-&mei=&ap=&duid=1.1675888618.GtUzFQFAiGJrqQWD&suid=1.1675888618.J6KOFjwS4HH1QynH&tuid=1.1675888618.uMp6E8B6mUXkoSdf&fbc=->m=W10%3D&it=81%2C2093%2C90&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP 3.227.190.204:0
File type ASCII text, with very long lines (3435), with no line terminators
Hash 557c48e14c26ee0101904eccfe6a18b9
671c00a4fbf37466bd5a3dd25bb24aa19229e940
fbaf4e93cc1676934d13f243990edebd29ed801fa8c51380ce4228fb0b9e1230
GET /ct?id=37830&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675888618649&hl=1&op=0&ag=1317291471&rand=842828066001299019818087280097515726529555016200587211185587811058872107780&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=SnGdF3ufWd&pto=2380&ver=50&gac=-&mei=&ap=&duid=1.1675888618.GtUzFQFAiGJrqQWD&suid=1.1675888618.J6KOFjwS4HH1QynH&tuid=1.1675888618.uMp6E8B6mUXkoSdf&fbc=->m=W10%3D&it=81%2C2093%2C90&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Wed, 08 Feb 2023 20:36:03 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=d26c6223855599250b4347b50ecd0fb4; Max-Age=29030400; Path=/; Expires=Wed, 10 Jan 2024 20:36:03 GMT; HttpOnly; Secure; SameSite=None
content-length: 1095
X-Firefox-Spdy: h2
dx.mountain.com/spx?dxver=4.0.0&shaid=33973&tdr=&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&cb=73682390944071420term=value
52.88.179.26200 OK 3.9 kB URL HTTP/1.1 dx.mountain.com/spx?dxver=4.0.0&shaid=33973&tdr=&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&cb=73682390944071420term=value
IP 52.88.179.26:0
File type ASCII text, with very long lines (524)
Hash 0b318b6df42a61fc72be2e57b63fb32a
c7326406e1164b51d2f7b2d02c8fe172833d54bd
234ca64fe31d8d0373b5581a5160d7c163f3c5d19303eac4d821781e1ec21208
GET /spx?dxver=4.0.0&shaid=33973&tdr=&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&cb=73682390944071420term=value HTTP/1.1
Host: dx.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Wed, 08 Feb 2023 20:36:02 GMT
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
transfer-encoding: chunked
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f30ebb7855430e77d7f7e78185824905
f833d3fbb268c2d0b289b8af527a13ea6ab3535d
ecf61ddf953eab9c7889a0b5e697364bed9f8fee9f7be3c3d13258542c858354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 50ca5deab68ba881743e691a693819f1
fd6b74d17a961f751a8edf09fcfaab273f0a7408
139c5ed1fd10f67669a5de174c5ffb02411f96463217781882c9d22b050a02d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 08 Feb 2023 20:35:50 GMT
expires: Wed, 08 Feb 2023 20:50:50 GMT
cache-control: public, max-age=900
age: 13
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.66302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Wed, 08 Feb 2023 20:36:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f30ebb7855430e77d7f7e78185824905
f833d3fbb268c2d0b289b8af527a13ea6ab3535d
ecf61ddf953eab9c7889a0b5e697364bed9f8fee9f7be3c3d13258542c858354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 50ca5deab68ba881743e691a693819f1
fd6b74d17a961f751a8edf09fcfaab273f0a7408
139c5ed1fd10f67669a5de174c5ffb02411f96463217781882c9d22b050a02d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
obs.healthroundprince.com/tracker/tc_imp.gif?e=37dfbd8ee84e00136debcf3de2428c9e9225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5d16856e2717071a10acf9f29f671d8085da012e3d18f67d72018e32dd67c7563406279400055f60570bc6e8394b77be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c7911240e58a68728327d54a1fe412bdffaf12c90e20e201d7ff9f4ad979b74b6cfc248b5038e523b64cbef86a7b376cccee879cf774a91bac3330743b1342dfec90a37b185e427d043bd05e7c7079952cacd6092616bc7c7748134cccfb4aacbbaa14879bf32ebe2ae7d0d61a19030c8eb1def5a4947821f1edc8380c69ed5d6608c3dc691889975f96c7a33db5728849d96582cdced52a50cf095098161a0404d4c52c721b052dbc8ad74b6c32fd113da8edfd4758d524161a27747034f6643e3ab63fd1fe9e2ba10a68e68c0bf03feb3d4cf5ab286d516353a9fff5179daba054c05f8fabd3ee07edaa956f0ff7bf429e267cc4d874b8ab76f985f65a7fbd17964226101355d0549fbbfdf35835eaa1917077cbae51c96854555aaec83efa12f91b5bba3dae7bded591b69e94d87aa4b2cd6122644897157726df567bd250bc8f9bf1c987cc57799a12ed1aa48c86905253c103e46ca95a699693947900a5789c18ae3a2c04156c6e5fc79d68f2069c4c04c6d2fa0c6881278e87997558d44f12389458abb4fa1ef6ca6e2dcc092557ffdfc2935d005fad4e5f552e538261c17897a5f42f3ff4d858710d69a9acb48d0818733122a44b839c619b801f7d83d843851205f3b7b78e45286893554b171b7e3907fafae3bfd2d04d5533d4df89cc31648ad34acda02d015301e4bba3c298aa7df6eca5f20e08368dea987b8e346a22554435cac0f374e8ed44905ee2eedecc0338ed5eb0b5574aa6c21001a8a6a10e0ece66a17cd071988c8e4159fc6a6dd1b62ec22b16c074ade0c6726c7da045d9982b292b3ce4cb26be2378a7ba3da559db2a6393dee9a529bddc7f2b6af899e6f1bd2b1375fcd6ece49c813&cri=SnGdF3ufWd&ts=554&cb=1675888619203
3.227.190.204200 OK 43 B URL HTTP/2 obs.healthroundprince.com/tracker/tc_imp.gif?e=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&cri=SnGdF3ufWd&ts=554&cb=1675888619203
IP 3.227.190.204:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=SnGdF3ufWd&ts=554&cb=1675888619203 HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: cg_uuid=d26c6223855599250b4347b50ecd0fb4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Wed, 08 Feb 2023 20:36:03 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 08 Feb 2023 20:36:03 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.170200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.170:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 860eece9a1e0a5e67e5f1bd83c84ec84
1ed71aef15389484c78e22b03385c972f60169bf
252a0470191e932be3475473b0d081ea36843e0e4e004eb2c8ca742337e47567
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 08 Feb 2023 20:36:03 GMT
server: ESF
cache-control: private
content-length: 30715
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 84889b914548f7820766f27a40699cfa
bc674cdb5819759b5ecd5aabfde47f56127f5d89
e2a69fe4edd028d00a8a744b62ef51dada2aff144da0cd9813efc887a11f70a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/e-T0LC6veq6xndVnxNZYDs0k2YzO3ng5pgwYiLLC-NE.js
216.58.211.4200 OK 14 kB URL HTTP/2 www.google.com/js/th/e-T0LC6veq6xndVnxNZYDs0k2YzO3ng5pgwYiLLC-NE.js
IP 216.58.211.4:0
File type ASCII text, with very long lines (36180)
Hash 6caf3ddf47bad942732577bf1cd634ed
5930e4cdb4173c5ffa3f9e2eaf7ecc147623dd0c
cc13b4b51d92ba1992ec59da7b670f2a66cf5ffd4907061f911349e925a218b7
GET /js/th/e-T0LC6veq6xndVnxNZYDs0k2YzO3ng5pgwYiLLC-NE.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14345
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 22:00:59 GMT
expires: Mon, 05 Feb 2024 22:00:59 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Jan 2023 12:00:00 GMT
content-type: text/javascript
age: 254104
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da7ec6cdfb8eb8618e25bd1233622b0e
fa69c0711b2ad58b96ffbcaa8c1c8e617415712d
39ea51794254bafd67a8070483a664e61f63d5a7b15b8b083a109564641c11ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-W25X31S350>m=45je3260&_p=1596116265&cid=371467430.1675888619&ul=en-us&sr=1280x1024&uaW=1&_s=1&cu=USD&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%208_L_Varo_MMFS_SE_TP%201%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&sid=1675888618&sct=1&seg=0&dt=FutureSmart%20%7C%20EVERFI&en=page_view&_fv=1&_nsi=1&_ss=1&epn.vp_to_body_height_ratio=0.19
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-W25X31S350>m=45je3260&_p=1596116265&cid=371467430.1675888619&ul=en-us&sr=1280x1024&uaW=1&_s=1&cu=USD&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%208_L_Varo_MMFS_SE_TP%201%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&sid=1675888618&sct=1&seg=0&dt=FutureSmart%20%7C%20EVERFI&en=page_view&_fv=1&_nsi=1&_ss=1&epn.vp_to_body_height_ratio=0.19
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-W25X31S350>m=45je3260&_p=1596116265&cid=371467430.1675888619&ul=en-us&sr=1280x1024&uaW=1&_s=1&cu=USD&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%208_L_Varo_MMFS_SE_TP%201%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&sid=1675888618&sct=1&seg=0&dt=FutureSmart%20%7C%20EVERFI&en=page_view&_fv=1&_nsi=1&_ss=1&epn.vp_to_body_height_ratio=0.19 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://everfi.com
date: Wed, 08 Feb 2023 20:36:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/zXNZS7ou0_c/sddefault.webp
142.250.74.150200 OK 16 kB URL HTTP/2 i.ytimg.com/vi_webp/zXNZS7ou0_c/sddefault.webp
IP 142.250.74.150:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 141834d0beb00e0de70f8863b52d35e0
ce02aaef92b644d1bf9531dc40acf86765d35647
bd24a0c3431144b44278336169e9b1f0018a89e16df6f98d6d2de0388c371e45
GET /vi_webp/zXNZS7ou0_c/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 15450
date: Wed, 08 Feb 2023 20:36:03 GMT
expires: Wed, 08 Feb 2023 22:36:03 GMT
cache-control: public, max-age=7200
etag: "1612475991"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 433af7e1e2f0f14adb78a739bbae1832
fab933db47af9ab3f4f86befee579ac9972b82fd
a6be621f8cdc57bd55a8e73ff58a34b6a816eb558cb88b49cc031222042f82a0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da7ec6cdfb8eb8618e25bd1233622b0e
fa69c0711b2ad58b96ffbcaa8c1c8e617415712d
39ea51794254bafd67a8070483a664e61f63d5a7b15b8b083a109564641c11ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ws.zoominfo.com/pixel/uaPMNNWAvRE9GecQvShh
104.16.101.12200 OK 98 kB URL HTTP/2 ws.zoominfo.com/pixel/uaPMNNWAvRE9GecQvShh
IP 104.16.101.12:0
File type ASCII text, with very long lines (63109)
Hash 5d948323e15d22aef0ec000b3cb58575
d51ab0e0e6871b5c1fe933afb278d238b8459a34
94118b64b32846fb589edcf2274a5aaeb241f78515d62ff208b376b49fb27380
GET /pixel/uaPMNNWAvRE9GecQvShh HTTP/1.1
Host: ws.zoominfo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:02 GMT
content-type: text/javascript
vary: Accept-Encoding
x-powered-by: Express
x-content-type-options: nosniff
access-control-allow-headers: Content-Type,cf-ipcountry,service-version,x-appengine-user-ip,x-forwarded-for, x-ws-collect-type
access-control-allow-credentials: true
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: visitorId=db79eb0cb77389518b694546c9e1ebb94aa82d7a030c286c4ae966c576d4558b; Max-Age=31536000; Domain=ws.zoominfo.com; Path=/; Expires=Thu, 08 Feb 2024 20:36:02 GMT; Secure; SameSite=None
__cf_bm=4F_XTj9DfeWveIHUgnhbEH_5YdindHSdmB4IFXHIo0U-1675888562-0-Aba1W/plj5rCPXRPZ2QuM+27BwVrM16fzSjUeghzWd7+ewJdBh59LY/XAtuyA3W3l1qE4taSbOS+TF4+XmLSgQ8=; path=/; expires=Wed, 08-Feb-23 21:06:02 GMT; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
_cfuvid=DlFXLwIubpwHJuGpQIu47kEpLEqrRq5Z_mOXV6AbC0Q-1675888562794-0-604800000; path=/; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 796727bc4984b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
yt3.ggpht.com/bfv8asn8g-EjDhPxDuxZtXGpRqMLxociRooGtPMKrgWAjPWXEJ0ihdJPYnXTyJotuxPpG-iu3g=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 1.2 kB URL HTTP/2 yt3.ggpht.com/bfv8asn8g-EjDhPxDuxZtXGpRqMLxociRooGtPMKrgWAjPWXEJ0ihdJPYnXTyJotuxPpG-iu3g=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash a8e8ac8af7c71029bb12d1a07fd23186
c6fd4bb4690b9db0639d7d4d607bbccffd1b7bdc
6d28e61f4a1039cfb8bb1ac92cecc26b6710cfd64fead6994a394e8a8dded332
GET /bfv8asn8g-EjDhPxDuxZtXGpRqMLxociRooGtPMKrgWAjPWXEJ0ihdJPYnXTyJotuxPpG-iu3g=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Thu, 09 Feb 2023 20:36:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="channels4_profile.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 08 Feb 2023 20:36:03 GMT
server: fife
content-length: 1193
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4db8c5eea8252c02db969bca4905f46d
576390ca9ba16de46c301ed86c841da42a8bea71
f7bc002bcee242228e201a3c4d0edf2a3825629dc221b812b549723397429002
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2075
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:03 GMT
Last-Modified: Wed, 08 Feb 2023 20:01:28 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 279
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.210200 OK 4.8 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.210:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13351)
Hash 74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=37003
date: Wed, 08 Feb 2023 20:36:03 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 39f72ee961e1afed82fed52212ec6b65
557eae661c60433cfbbe14dbca5df31259e0c59b
b527888545839ca25e30f2fe8d409f3de6ab08d98a974dd14626b728e5ead13c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5866
Cache-Control: max-age=138028
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:03 GMT
Etag: "63e368f5-1d7"
Expires: Fri, 10 Feb 2023 10:56:31 GMT
Last-Modified: Wed, 08 Feb 2023 09:18:45 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
munchkin.marketo.net/munchkin.js
23.61.220.209200 OK 728 B URL HTTP/1.1 munchkin.marketo.net/munchkin.js
IP 23.61.220.209:0
File type ASCII text, with very long lines (521)
Hash 51a92d8c69733d719447dea0416ed039
69f4c1e0b7ebba812bc096708d57627927dff265
cb483c0ea4012ac512bcba6204b37622b388c1aefd4ae9028f60abb965f23d29
GET /munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "92b41a298690c047b0c4602dd843cba4:1662686319.691662"
Last-Modified: Fri, 09 Sep 2022 01:18:39 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 08 Feb 2023 20:36:03 GMT
Content-Length: 728
Connection: keep-alive
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
cdn.optimizely.com/js/22133900366.js
2.18.172.152200 OK 83 kB URL HTTP/2 cdn.optimizely.com/js/22133900366.js
IP 2.18.172.152:0
File type ASCII text, with very long lines (65468)
Hash c20e5f273bcdb5423220d5f4855ca570
c2d1b70df6993064c9fcf810782d2d212fe39924
99b8f4f9bf46adda4d6f24d574045e73020a85a6e94ae487599b547589849a38
GET /js/22133900366.js HTTP/1.1
Host: cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ycjDAXOKFWnUEg/DXqKHuCCPB2yIwDxZyWaHu9U3222Vmaqzm1CEyga9azYgEPIeaXx2iM8wWjI=
x-amz-request-id: N5VX28M5BKX2AZ3A
x-amz-replication-status: COMPLETED
last-modified: Wed, 21 Sep 2022 18:09:24 GMT
etag: "c20e5f273bcdb5423220d5f4855ca570"
x-amz-server-side-encryption: AES256
x-amz-meta-revision: 8
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: zxXHkbanS0Al8Kk6PQ5fj52mV_qPPwri
accept-ranges: bytes
content-type: text/javascript; charset=utf-8
server: AmazonS3
content-length: 82615
vary: Accept-Encoding
cache-control: max-age=120
date: Wed, 08 Feb 2023 20:36:03 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=782, cdn;desc="AkamaiION";dur=0,rtt;desc="3";dur=0,cdnip;desc="2.18.172.152";dur=0,cdnmap;desc="a5048.dsca.akamaiedge.net";dur=0,proto;desc="h2";dur=0
access-control-max-age: 86400
access-control-expose-headers: x-amz-meta-revision
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
player.vimeo.com/api/player.js
162.159.138.60200 OK 6.3 kB URL HTTP/1.1 player.vimeo.com/api/player.js
IP 162.159.138.60:0
File type Unicode text, UTF-8 text, with very long lines (21087)
Hash be35514553399a516ec9a8a782341d76
cc471c8a2ad4a645656f72e0833a3cd1a9131b63
ab060007b859a933f8fb7bbc505c9c0a06eef5813ab909d9f09f9656c2d53505
GET /api/player.js HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:36:03 GMT
Content-Type: application/javascript;charset=utf-8
Content-Length: 6272
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: default-src 'none'; style-src 'unsafe-inline'
x-content-type-options: nosniff
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Wed, 08 Feb 2023 20:42:05 GMT
x-host: player-56b544d789-qspv2
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-6
x-backend-proxy: playproxy7
x-bapp-server: player-56b544d789-qspv2
Accept-Ranges: bytes
Age: 1438
X-Served-By: cache-bma1656-BMA
X-Cache: HIT
X-Cache-Hits: 1430
X-Timer: S1675888564.776608,VS0,VE0
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=.p_5d.ls57igA4TLdx75SquqOcm7D4BsHzKGJu44NpA-1675888563-0-Ab5p2WIMdTzKnOG6n/FPaNfGfZPLRISWj+C3NowevNt10YqrZk51gIrdjHVXA5YYJqUdU+SJ4yGaqweSwAl43bM=; path=/; expires=Wed, 08-Feb-23 21:06:03 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 796727c38e4b0b59-OSL
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 289231d0e5757acc05e84b359924fe17
1acd227f83b46faf7b5989672f7fdc468ed9d1be
4c8c539da00429778e556067e7c246b70fc337a98d0411ec929a1d5003c0c06e
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11563
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 177AE2E860FD49269B5A758F0D9CAAEB Ref B: OSL30EDGE0515 Ref C: 2023-02-08T20:36:03Z
date: Wed, 08 Feb 2023 20:36:03 GMT
X-Firefox-Spdy: h2
s.pinimg.com/ct/core.js
151.101.244.84200 OK 1.1 kB IP 151.101.244.84:0
File type ASCII text, with very long lines (1146), with no line terminators
Hash 81cb953fadf9e47b0a9c2ae51c8bfbdd
c3001b3f0e3909a89b5b063eac41299443eb941a
a159e5324ecdf7e5c2fbd27226180b80b96a23a6235df2ffa3d71ca157001672
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "81cb953fadf9e47b0a9c2ae51c8bfbdd"
content-type: application/javascript
fastly-restarts: 1
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
access-control-expose-headers: X-CDN
vary: Accept-Encoding, Origin
cache-control: max-age=7200
date: Wed, 08 Feb 2023 20:36:03 GMT
content-length: 1146
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.7 kB IP 192.124.249.22:0
Hash b7afa7a2f493fa13b1fd5aa72a60f4be
249afa3f9c5d39accaf74d2a15cc369ff4ad814a
3e3c0448e5506cdabcaf5751ab1a7b893f8558a38c9bb1368ddafbd2ce5ddca0
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 68
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 08 Feb 2023 20:36:03 GMT
Content-Type: application/ocsp-response
Content-Length: 1731
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 18:57:45 GMT
Expires: Thu, 09 Feb 2023 18:57:45 GMT
ETag: "249afa3f9c5d39accaf74d2a15cc369ff4ad814a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
static.hotjar.com/c/hotjar-2584703.js?sv=7
54.230.111.113200 OK 4.5 kB URL HTTP/2 static.hotjar.com/c/hotjar-2584703.js?sv=7
IP 54.230.111.113:0
File type ASCII text, with very long lines (7460)
Hash 8fbf0709d1ecbde3e3f5bf30f6e60133
176397997955b254c73b5fbc44d5cb6d7ce507a6
331a0a4442b3acdbf69e090b245fc82a436324306efc0ff29cb190f4c3bd5dd7
GET /c/hotjar-2584703.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 08 Feb 2023 20:35:07 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/9b8b50d4380c20e8b3e9679e5c05c10b
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QzN3p0On4sJ_zJaeJt42fk-_vhbnAu41J_lo8yeDzIrgDBzy1iygZA==
age: 56
X-Firefox-Spdy: h2
embed.formhq.net/v1/base.js
172.66.43.197200 OK 30 kB URL HTTP/2 embed.formhq.net/v1/base.js
IP 172.66.43.197:0
File type ASCII text, with very long lines (6384), with no line terminators
Hash aa91e484435cc794da788c24608646eb
05c125a6cb2477b04b3490c3b1431ad36f03de25
457919996314e13c325c79f8fa3a65672304dad0194eb1596586c490696d56e5
GET /v1/base.js HTTP/1.1
Host: embed.formhq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:02 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=6385
etag: W/"63612f3e-18f1"
last-modified: Tue, 01 Nov 2022 14:37:50 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: max-age=1800
cf-cache-status: HIT
age: 5280
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rsPbl0JZU5Ug0OKivlld9Bsd2%2BaGJvtUNOg%2BE5gFZ33s1ULfmEtHbiAjNoqO30HuIv7ps4B6qug0fRoqqGPYTuUTew2PYCiBffQUoPJkc7yp0t%2BIwkUMcTszCTGiI4gXKNLr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 796727bc2c07b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e1166ea1a8d847bf15bb1fb9ee17dfd0
46f40a84dd0607f96a6322e21f014298326622c4
79314336ebf43f867ce780cf25be23682814992d22bd09067ff7624743cee142
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5234
Cache-Control: max-age=111130
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:03 GMT
Etag: "63e3025b-1d7"
Expires: Fri, 10 Feb 2023 03:28:13 GMT
Last-Modified: Wed, 08 Feb 2023 02:00:59 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 75a8471f74e296aed1e91f2a102b8f5e
7c9ff608be61b75b556e79d3bba40f2c17891850
469f05ad13deac8dd0307de09ca832778dc934368c512390c2915434548605de
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:36:03 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 05 Feb 2023 23:36:14 GMT
Expires: Sun, 12 Feb 2023 23:36:13 GMT
Etag: "7c9ff608be61b75b556e79d3bba40f2c17891850"
Cache-Control: max-age=355809,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 796727c3e966b4f4-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 39f72ee961e1afed82fed52212ec6b65
557eae661c60433cfbbe14dbca5df31259e0c59b
b527888545839ca25e30f2fe8d409f3de6ab08d98a974dd14626b728e5ead13c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5866
Cache-Control: max-age=138028
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:03 GMT
Etag: "63e368f5-1d7"
Expires: Fri, 10 Feb 2023 10:56:31 GMT
Last-Modified: Wed, 08 Feb 2023 09:18:45 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
a20497791765.cdn.optimizely.com/client_storage/a20497791765.html
104.110.8.48200 OK 843 B URL HTTP/2 a20497791765.cdn.optimizely.com/client_storage/a20497791765.html
IP 104.110.8.48:0
File type HTML document, ASCII text, with very long lines (1371)
Hash c122a3cab7bc9bab0fed7f26b3334706
35877323b39ff4632ee735d8f8e29e71b4fc4aa9
6015474cec9d8aba396ffac0073f15bf6299ade9f00f709be8ace492388b8c10
GET /client_storage/a20497791765.html HTTP/1.1
Host: a20497791765.cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: akTvBZHS9kSAStWBSLicpC35/ZU6lVtsWWjIlbtOc3HmRsJIEvwTJWlK8bwz0HJKNaX8dLj/Ols=
x-amz-request-id: TNYAV7N5JMPY49FX
x-amz-replication-status: PENDING
last-modified: Mon, 06 Feb 2023 19:47:06 GMT
etag: "28621884f3ecb72e8b12ab992dbdf7e6"
x-amz-server-side-encryption: AES256
x-amz-meta-pci_enabled: False
x-amz-version-id: hgV5znTzEYJtrLxexDzM6fRnO_WjaB9B
accept-ranges: bytes
content-type: text/html; charset=utf-8
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=120
x-akamai-transformed: 9 - 0 pmb=mRUM,2
content-encoding: gzip
date: Wed, 08 Feb 2023 20:36:03 GMT
content-length: 843
server-timing: cdn-cache; desc=HIT, edge; dur=1, cdn;desc="AkamaiION";dur=0,rtt;desc="2";dur=0,cdnip;desc="104.110.8.48";dur=0,cdnmap;desc="a4728.x.akamaiedge.net";dur=0,proto;desc="h2";dur=0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
sjrtp-cdn.marketo.com/rtp-api/v1/rtp.js?aid=blackbaud1
23.53.48.147200 OK 0 B URL HTTP/1.1 sjrtp-cdn.marketo.com/rtp-api/v1/rtp.js?aid=blackbaud1
IP 23.53.48.147:0
ASN #1299 Telia Company AB
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtp-api/v1/rtp.js?aid=blackbaud1 HTTP/1.1
Host: sjrtp-cdn.marketo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Jetty(9.4.45.v20220203)
Content-Type: application/x-javascript; charset=UTF-8
Content-Length: 0
Strict-Transport-Security: max-age=63113904
Date: Wed, 08 Feb 2023 20:36:03 GMT
Connection: keep-alive
script.hotjar.com/modules.14cb8958c3e3566a4606.js
54.230.111.44200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.14cb8958c3e3566a4606.js
IP 54.230.111.44:0
File type Unicode text, UTF-8 text, with very long lines (48770)
Hash 5331176444d8700436c501005f6a0731
d0f73de83bc0720ec98240ab04878a317491d640
07c3a5946b698fa789f6f4f6924761ffbc6808e145cba46c657092f9b36fee8a
GET /modules.14cb8958c3e3566a4606.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68072
date: Wed, 08 Feb 2023 15:48:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "5331176444d8700436c501005f6a0731"
last-modified: Wed, 08 Feb 2023 15:47:26 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: d8zE0dxf9HrneaqwTUuzNcsJaTO99QlrsNQuomnHiVGqU3heWm9POg==
age: 17278
X-Firefox-Spdy: h2
34.215.155.61/is
34.215.155.61200 OK 32 B IP 34.215.155.61:0
File type ASCII text, with no line terminators
Hash e31ba2ac96504b8a8d7dc8d7eb9b4d8a
7ac629e4c94f0b27dea2b314bc3e2cfcfc2ba4e8
a4105bcce588bfc95821b16bc5fee0bbcbfe750582e9032bb434acb1c5c748b3
Analyzer Verdict Alert quad9 Sinkholed
GET /is HTTP/1.1
Host: 34.215.155.61
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 08 Feb 2023 20:36:04 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: text/plain;charset=utf-8
content-length: 32
x-envoy-upstream-service-time: 0
server: istio-envoy
connection: close
munchkin.marketo.net/162/munchkin.js
23.61.220.209200 OK 471 B URL HTTP/1.1 munchkin.marketo.net/162/munchkin.js
IP 23.61.220.209:0
Hash 3d2254db64618fd4b1915e5b6ea2fd4d
542a2a05ce51215616bd7db4332af8ccf4dbc3d9
dc9651e87bd870de66c5024cee6765a8dc32a548da72b5ee1b3998f3d7eba4ce
GET /162/munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "75daf56f6191efe42577301908659c29:1656637152.894482"
Last-Modified: Fri, 01 Jul 2022 00:59:12 GMT
Server: AkamaiNetStorage
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=8640000
Expires: Fri, 19 May 2023 20:36:04 GMT
Date: Wed, 08 Feb 2023 20:36:04 GMT
Content-Length: 4677
Connection: keep-alive
ct.pinterest.com/user/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1675888620040&dep=2%2CPAGE_LOAD
2.18.172.195200 OK 378 B URL HTTP/2 ct.pinterest.com/user/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1675888620040&dep=2%2CPAGE_LOAD
IP 2.18.172.195:0
File type JSON data\012- , ASCII text, with very long lines (534), with no line terminators
Hash 6e63eb6af30db692485439f6687cfd3e
8b369c1b024c90a5646b8f7d36ff73e71a949bcd
a35f431d3eec1e88e5356fd6485190f4c4213276c1e046b072bfedb4f00dab19
GET /user/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1675888620040&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVlqVm1OREJrWmpJdFlUUXhOeTAwWmpZNExXRTJNRGd0WWpBeE5HTmlZalF4TW1NeA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://everfi.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 378
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 9221468306983937
date: Wed, 08 Feb 2023 20:36:04 GMT
vary: Accept-Encoding
akamai-grn: 0.540a655f.1675888564.247aeba
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
id.rlcdn.com/464526.gif
35.244.174.68451 Unavailable For Legal Reasons 0 B IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /464526.gif HTTP/1.1
Host: id.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Wed, 08 Feb 2023 20:36:04 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=25002257&tm=gtm002&Ver=2&mid=d41b23a5-176b-4e89-8f05-d720941aaffa&sid=56551530a7f011edafbc5b31f064ed88&vid=565511a0a7f011ed9400bbfd724e247b&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=FutureSmart%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&r=<=2007&evt=pageLoad&sv=1&rn=977587
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=25002257&tm=gtm002&Ver=2&mid=d41b23a5-176b-4e89-8f05-d720941aaffa&sid=56551530a7f011edafbc5b31f064ed88&vid=565511a0a7f011ed9400bbfd724e247b&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=FutureSmart%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&r=<=2007&evt=pageLoad&sv=1&rn=977587
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=25002257&tm=gtm002&Ver=2&mid=d41b23a5-176b-4e89-8f05-d720941aaffa&sid=56551530a7f011edafbc5b31f064ed88&vid=565511a0a7f011ed9400bbfd724e247b&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=FutureSmart%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&r=<=2007&evt=pageLoad&sv=1&rn=977587 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=219ABBE5DA4D6F6D28EDA957DBB86EF4; domain=.bing.com; expires=Mon, 04-Mar-2024 20:36:04 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9AE01A57FC6F4DD6AD10011D207B81F5 Ref B: OSL30EDGE0515 Ref C: 2023-02-08T20:36:04Z
date: Wed, 08 Feb 2023 20:36:03 GMT
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675888620071&dep=5%2CEVENT_TAGS_ABSENT
2.18.172.195200 OK 378 B URL HTTP/2 ct.pinterest.com/user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675888620071&dep=5%2CEVENT_TAGS_ABSENT
IP 2.18.172.195:0
File type JSON data\012- , ASCII text, with very long lines (534), with no line terminators
Hash 6e63eb6af30db692485439f6687cfd3e
8b369c1b024c90a5646b8f7d36ff73e71a949bcd
a35f431d3eec1e88e5356fd6485190f4c4213276c1e046b072bfedb4f00dab19
GET /user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675888620071&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVlqbGxZVGswTnpJdE56UmxOaTAwTnpjd0xXRm1NelV0TUdSak5qVTNNRFEyTkdNMw
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://everfi.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 378
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 1373775405024287
date: Wed, 08 Feb 2023 20:36:04 GMT
vary: Accept-Encoding
akamai-grn: 0.540a655f.1675888564.247aee1
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a8f5028569a98461bd4b2a7f079ff565
2ae41518b785bc40818961332a95f3a1f7c9ac03
c419fedc6516840878ba546175c9285c4049bd1bddf7383ce8534535af1d7b26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1747
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Last-Modified: Wed, 08 Feb 2023 20:06:57 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
bat.bing.com/p/action/25002257.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/25002257.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/25002257.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 78E1573A3FAF40ABAAAE6073A570C569 Ref B: OSL30EDGE0515 Ref C: 2023-02-08T20:36:04Z
date: Wed, 08 Feb 2023 20:36:03 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=226704524738512&ev=PageView&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&rl=&if=false&ts=1675888620185&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&cs_est=true&fbp=fb.1.1675888620184.552349173&it=1675888619882&coo=false&tm=1&exp=c1&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=226704524738512&ev=PageView&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&rl=&if=false&ts=1675888620185&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&cs_est=true&fbp=fb.1.1675888620184.552349173&it=1675888619882&coo=false&tm=1&exp=c1&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=226704524738512&ev=PageView&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&rl=&if=false&ts=1675888620185&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&cs_est=true&fbp=fb.1.1675888620184.552349173&it=1675888619882&coo=false&tm=1&exp=c1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 08 Feb 2023 20:36:04 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=25022015&tm=gtm002&Ver=2&mid=cb0b0171-363e-47b5-ab4e-c2790020bb20&sid=56551530a7f011edafbc5b31f064ed88&vid=565511a0a7f011ed9400bbfd724e247b&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=FutureSmart%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&r=<=2007&evt=pageLoad&sv=1&rn=901327
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=25022015&tm=gtm002&Ver=2&mid=cb0b0171-363e-47b5-ab4e-c2790020bb20&sid=56551530a7f011edafbc5b31f064ed88&vid=565511a0a7f011ed9400bbfd724e247b&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=FutureSmart%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&r=<=2007&evt=pageLoad&sv=1&rn=901327
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=25022015&tm=gtm002&Ver=2&mid=cb0b0171-363e-47b5-ab4e-c2790020bb20&sid=56551530a7f011edafbc5b31f064ed88&vid=565511a0a7f011ed9400bbfd724e247b&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=FutureSmart%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&r=<=2007&evt=pageLoad&sv=1&rn=901327 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=051E2A962CE365943DE838242D166440; domain=.bing.com; expires=Mon, 04-Mar-2024 20:36:04 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: DCA64A5122BC4751B6451D2CA729A9F6 Ref B: OSL30EDGE0515 Ref C: 2023-02-08T20:36:04Z
date: Wed, 08 Feb 2023 20:36:04 GMT
X-Firefox-Spdy: h2
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
54.230.111.71200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 54.230.111.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NzYptoiXkCOswJcx6Lxub6Ba99G1EYQuJST-n-lQj63groWLcdXFkg==
age: 458758
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675888619786&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
108.174.10.20302 Found 0 B URL HTTP/1.1 px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675888619786&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
IP 108.174.10.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=285700&time=1675888619786&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Play
Location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675888619786%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Ffinancial-literacy-middle-school%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12SM_Feb%252B8_L_Varo_MMFS_SE_TP%252B1%2526utm_content%253Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Ffinancial-literacy-middle-school%252F%26liSync%3Dtrue
LinkedIn-Action: 1
content-length: 0
Date: Wed, 08 Feb 2023 20:36:04 GMT
Connection: keep-alive
X-Li-Fabric: prod-lva1
X-Li-Pop: prod-lva1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAX0NjaPVNX7q/pW2GpZsg==
Set-Cookie: UserMatchHistory=AQK61NqoWRiS1AAAAYYyvhhtDBzrDWHtKAHHI94ycnE0KLxSnO3par-TeCliUOlkwHmzN8r5Yfg4fw; Max-Age=2592000; Expires=Fri, 10 Mar 2023 20:36:04 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKoBll6-e8ddQAAAYYyvhhu233v3W_wTjuW3lbNMFiF07XA4pnofOK7ZNdXql6mkn6UC4_nxmKNWEm07IETkA; Max-Age=2592000; Expires=Fri, 10 Mar 2023 20:36:04 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
bcookie="v=2&e7ad1311-b82e-4e92-840b-86fcc2a0cf61"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 08-Feb-2024 20:36:04 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675888564:t=1675974964:v=2:sig=AQE1k6i5BMnIPIF1EUqOO5XOl9deVQ_2"; Expires=Thu, 09 Feb 2023 20:36:04 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
bat.bing.com/p/action/25022015.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/25022015.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/25022015.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 20B4D507C44D43DCAA3BC8DA914F425E Ref B: OSL30EDGE0515 Ref C: 2023-02-08T20:36:04Z
date: Wed, 08 Feb 2023 20:36:04 GMT
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 3d2254db64618fd4b1915e5b6ea2fd4d
542a2a05ce51215616bd7db4332af8ccf4dbc3d9
dc9651e87bd870de66c5024cee6765a8dc32a548da72b5ee1b3998f3d7eba4ce
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:36:04 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 13:42:55 GMT
Expires: Wed, 15 Feb 2023 13:42:54 GMT
Etag: "542a2a05ce51215616bd7db4332af8ccf4dbc3d9"
Cache-Control: max-age=579409,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 796727c67de7b4f4-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0bdb7270303181a8741369fcfa9709e7
e85aa6393d2a1013b0546050c5158a5685c6feb3
23fd96172c8f72d73d8b2a85d29684d36d3037df3247e294f15259724eebcaae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3311
Cache-Control: max-age=148437
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Etag: "63e39b9a-1d7"
Expires: Fri, 10 Feb 2023 13:50:01 GMT
Last-Modified: Wed, 08 Feb 2023 12:54:50 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f2b0a6514c3d6dd2b28ae837d8fc3f1e
57684c105b5d5c87ef5b387def1156ea0b15b80b
670f2db240623d49c1c4089285f949c09f1bce10f3bc017c749131f32595da27
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2604
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Etag: "63e311df-117"
Last-Modified: Wed, 08 Feb 2023 19:52:40 GMT
Server: ECS (amb/6BA8)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f2b0a6514c3d6dd2b28ae837d8fc3f1e
57684c105b5d5c87ef5b387def1156ea0b15b80b
670f2db240623d49c1c4089285f949c09f1bce10f3bc017c749131f32595da27
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1972
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Last-Modified: Wed, 08 Feb 2023 20:03:12 GMT
Server: ECS (amb/6BBA)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f2b0a6514c3d6dd2b28ae837d8fc3f1e
57684c105b5d5c87ef5b387def1156ea0b15b80b
670f2db240623d49c1c4089285f949c09f1bce10f3bc017c749131f32595da27
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3781
Cache-Control: max-age=113648
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Etag: "63e311df-117"
Expires: Fri, 10 Feb 2023 04:10:12 GMT
Last-Modified: Wed, 08 Feb 2023 03:07:11 GMT
Server: ECS (amb/6B7F)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f2b0a6514c3d6dd2b28ae837d8fc3f1e
57684c105b5d5c87ef5b387def1156ea0b15b80b
670f2db240623d49c1c4089285f949c09f1bce10f3bc017c749131f32595da27
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6572
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Etag: "63e311df-117"
Last-Modified: Wed, 08 Feb 2023 18:46:32 GMT
Server: ECS (amb/6BBE)
X-Cache: HIT
Content-Length: 279
obs.healthroundprince.com/mon
3.227.190.204200 OK 0 B URL HTTP/2 obs.healthroundprince.com/mon
IP 3.227.190.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1772
Origin: https://everfi.com
Connection: keep-alive
Cookie: cg_uuid=d26c6223855599250b4347b50ecd0fb4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://everfi.com
content-type: application/json
date: Wed, 08 Feb 2023 20:36:04 GMT
content-length: 0
X-Firefox-Spdy: h2
fonts.hellobar.com/css2?family=Undefined
104.22.15.23400 Bad Request 1.6 kB URL HTTP/2 fonts.hellobar.com/css2?family=Undefined
IP 104.22.15.23:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (490)
Hash e424dbc2af7d85ded4d19e5ed715614f
5c13b485f16f2e3c142aa80d269b30cec6b826b0
64fd55372da262dbc49a4c79d8feb879848195dd0095a3a151c8c3afd963f3aa
GET /css2?family=Undefined HTTP/1.1
Host: fonts.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everfi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Wed, 08 Feb 2023 20:36:04 GMT
content-type: text/html; charset=utf-8
content-length: 1641
cf-ray: 796727c839e2b505-OSL
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Mon, 01 Jan 1990 00:00:00 GMT
cf-cache-status: DYNAMIC
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
pragma: no-cache
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 0
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
fonts.hellobar.com/css2?family=;
104.22.15.23400 Bad Request 1.6 kB URL HTTP/2 fonts.hellobar.com/css2?family=;
IP 104.22.15.23:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 203cbb527a96aa0e36ab77925d5e8a86
059cfa1330a9c124c1e6ad6538bd8395c00d61a2
57edfba3eb38b4ef9424473d9f2fb1658d2666dd09f25eb5026d2dfab0ee9841
GET /css2?family=; HTTP/1.1
Host: fonts.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everfi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Wed, 08 Feb 2023 20:36:04 GMT
content-type: text/html; charset=utf-8
content-length: 1572
cf-ray: 796727c849f9b505-OSL
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Mon, 01 Jan 1990 00:00:00 GMT
cf-cache-status: DYNAMIC
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
pragma: no-cache
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 0
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 931374cc5f548eb980181d61e4278798
40a2c53b550ea44a930892fe9ac7b26225c5e960
46dd369c210c99bbd54512f30facd70dc4012e62f5cbdf329ed3efb80a09f21c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1749
Cache-Control: max-age=142206
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Etag: "63e3895c-1d7"
Expires: Fri, 10 Feb 2023 12:06:10 GMT
Last-Modified: Wed, 08 Feb 2023 11:37:00 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675888619786%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Ffinancial-literacy-middle-school%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12SM_Feb%252B8_L_Varo_MMFS_SE_TP%252B1%2526utm_content%253Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Ffinancial-literacy-middle-school%252F%26liSync%3Dtrue
108.174.10.20302 Found 0 B URL HTTP/1.1 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675888619786%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Ffinancial-literacy-middle-school%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12SM_Feb%252B8_L_Varo_MMFS_SE_TP%252B1%2526utm_content%253Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Ffinancial-literacy-middle-school%252F%26liSync%3Dtrue
IP 108.174.10.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675888619786%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Ffinancial-literacy-middle-school%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12SM_Feb%252B8_L_Varo_MMFS_SE_TP%252B1%2526utm_content%253Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Ffinancial-literacy-middle-school%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Play
Location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675888619786&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&liSync=true
LinkedIn-Action: 1
content-length: 0
Date: Wed, 08 Feb 2023 20:36:04 GMT
Connection: keep-alive
Content-Security-Policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Expect-CT: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
X-Li-Fabric: prod-lva1
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-cache, no-store
X-Li-Pop: prod-lva1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAX0NjaUKe/8kWfNYBglyg==
Set-Cookie: bcookie="v=2&7b193b69-6a69-446e-83ef-1b17a6093938"; Domain=.linkedin.com; Expires=Thu, 08-Feb-2024 20:36:04 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202302082036042b317e1c-58c8-410a-830c-1340c5f085dbAQFgE8EatI9UYbDuL7h6Lk-xBKfbhbL0"; Domain=.www.linkedin.com; Expires=Thu, 08-Feb-2024 20:36:04 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzU4ODg1NjQ7MjswMjGbXyiSnV6x8tNmNVB4TbeJky4DAvCvQ5dnNoN4XeRvfw==; Domain=.linkedin.com; Expires=Mon, 07 Aug 2023 20:36:04 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675888564:t=1675974964:v=2:sig=AQE1k6i5BMnIPIF1EUqOO5XOl9deVQ_2"; Expires=Thu, 09 Feb 2023 20:36:04 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash bed03149c0aba545526a720ab2f46f5a
03ef590af1f824ad5248f9ebc2f0e575c320753a
be6699b517938133eae256e94e9f1911681e6fe8738c35f7d54d743027b06bed
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=134623
Date: Wed, 08 Feb 2023 20:36:04 GMT
Etag: "63e359a0-1d7"
Expires: Fri, 10 Feb 2023 09:59:47 GMT
Last-Modified: Wed, 08 Feb 2023 08:13:20 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yvVs0GSTwI6oTu7C8gjD62AaG6jTtUd2SfVI7-bJNYh_ORHvbCel-w==
Age: 6387
410-ycz-984.mktoresp.com/webevents/visitWebPage?_mchNc=1675888620054&_mchCn=&_mchId=410-YCZ-984&_mchTk=_mch-everfi.com-1675888620052-90323&_mchHo=everfi.com&_mchPo=&_mchRu=%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp=vertical%3DK12__-__utm_source%3DMarketingCloud__-__utm_medium%3Demail__-__utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1__-__utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
192.28.147.68200 OK 28 B URL HTTP/1.1 410-ycz-984.mktoresp.com/webevents/visitWebPage?_mchNc=1675888620054&_mchCn=&_mchId=410-YCZ-984&_mchTk=_mch-everfi.com-1675888620052-90323&_mchHo=everfi.com&_mchPo=&_mchRu=%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp=vertical%3DK12__-__utm_source%3DMarketingCloud__-__utm_medium%3Demail__-__utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1__-__utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
IP 192.28.147.68:0
File type ASCII text, with no line terminators
Hash 9dafc521bd59955b4986f0fc3777f77a
5a572b4730d4a2bce2fa35597a0993c649f26c74
e4e90a7b8bacdfe395361149a9fd42f9192b68bdf1497e4454d0ab4c4917f746
POST /webevents/visitWebPage?_mchNc=1675888620054&_mchCn=&_mchId=410-YCZ-984&_mchTk=_mch-everfi.com-1675888620052-90323&_mchHo=everfi.com&_mchPo=&_mchRu=%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp=vertical%3DK12__-__utm_source%3DMarketingCloud__-__utm_medium%3Demail__-__utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1__-__utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F HTTP/1.1
Host: 410-ycz-984.mktoresp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 08 Feb 2023 20:36:04 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Request-Id: af0b75e0-4835-4047-a359-85d4ae7400ff
Content-Encoding: gzip
Access-Control-Allow-Origin: *
px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675888619786&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&liSync=true
108.174.10.20200 OK 0 B URL HTTP/1.1 px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675888619786&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&liSync=true
IP 108.174.10.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=285700&time=1675888619786&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Play
LinkedIn-Action: 1
content-length: 0
Content-Type: application/javascript
Date: Wed, 08 Feb 2023 20:36:04 GMT
Connection: keep-alive
X-Li-Fabric: prod-lva1
X-Li-Pop: prod-lva1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAX0NjaWACp6KnWnUvLBfw==
Set-Cookie: bcookie="v=2&53cc8ec2-5a92-46c7-85f8-d7ac54de8a8b"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 08-Feb-2024 20:36:04 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675888564:t=1675974964:v=2:sig=AQE1k6i5BMnIPIF1EUqOO5XOl9deVQ_2"; Expires=Thu, 09 Feb 2023 20:36:04 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2
104.18.23.52200 OK 25 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 24800, version 331.-31196\012- data
Hash 4abe94f1746789f39110d3ebac7ebd96
bdc3b41f3cc3e5e3e87ca020eeddc2b288f0dd91
299dc8e16be2ab2214e279b5536efd387d17fd3d364f397ce9f1fed602384fea
GET /releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:04 GMT
content-type: font/woff2
content-length: 24800
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae357-60e0"
last-modified: Wed, 04 Aug 2021 18:58:31 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 204584
accept-ranges: bytes
server: cloudflare
cf-ray: 796727ca3d301c0a-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2
104.18.23.52200 OK 20 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 19784, version 331.-31196\012- data
Hash c7682b8035fc1d1672d6455631813794
9e2955e5e55b3073e229c218724406425862d4a1
1b50aa1d36ea249991fb44f8f6ad2aa74fe360df9cc04c564b5edf3b053b739c
GET /releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:04 GMT
content-type: font/woff2
content-length: 19784
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae35f-4d48"
last-modified: Wed, 04 Aug 2021 18:58:39 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 57
accept-ranges: bytes
server: cloudflare
cf-ray: 796727ca5d531c0a-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash b7e30f8419d69ce02a1f96b895cabac8
1de1962de5a350f1a905de3c61c01085eae52ec5
e30bea7507c8e32e8b2e7d6f54e9cd86e99d1198a5cb468221ae4cae33ee2085
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 20:36:04 GMT
Last-Modified: Wed, 08 Feb 2023 19:11:03 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Z3e1EfZXlZkOIwi2AcSViOgs-pJ0dgDdELTzhCalF6hJdwyw6yqdDw==
Age: 5101
blackbaud.demdex.net/dest5.html?d_nsid=0
52.16.89.208200 OK 2.8 kB URL HTTP/1.1 blackbaud.demdex.net/dest5.html?d_nsid=0
IP 52.16.89.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
GET /dest5.html?d_nsid=0 HTTP/1.1
Host: blackbaud.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Wed, 8 Feb 2023 20:36:04 GMT
DCS: dcs-prod-irl1-1-v046-0c554dbd5.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Wed, 8 Feb 2023 11:27:00 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: A7F/N5JMQQY=
Content-Length: 2791
Connection: keep-alive
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 08 Feb 2023 20:36:05 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.170200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.170:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6900b8fbcf15fcaf2207dbf326976cc0
25e6a043b47b300dd1b137a77d75237c42493986
9b0d72ff2092b9f6650bdb70caa09df5389a777eb8d3a5d8efd7da280bfcd8f8
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 998
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 08 Feb 2023 20:36:05 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 44a9bb9e3e9c0925981f83a20f207b2d
7988b17f807345067bfb78fca05012372e681584
efbd8ad5924acdf511455eccc2f648c5781ef04adaa8a0045d35fb435ad6c155
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=91837
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:05 GMT
Etag: "63e2cb72-1d7"
Expires: Thu, 09 Feb 2023 22:06:42 GMT
Last-Modified: Tue, 07 Feb 2023 22:06:42 GMT
Server: nginx
Content-Length: 471
metrics.blackbaud.com/b/ss/blackbaud-global-prod/1/JS-2.22.3/s42394314228505?AQB=1&ndh=1&pf=1&t=8%2F1%2F2023%2020%3A37%3A0%203%200&sdid=7CF7240E5188E6DF-6FEBDDB6196F38A7&mid=30695059677730286920058877563036914531&aamlh=6&ce=UTF-8&cdp=2&pageName=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&g=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&c.&getPercentPageViewed=5.0.1&apl=4.0&.c&cc=USD&ch=courses&server=everfi.com&v0=K12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%7CMarketingCloud%7Cemail%7Cno%20keyword%7Chttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&events=event12%3D1626&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=courses&l1=vertical%3Ak-12&c2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&v2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&l2=default&v3=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&v4=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&v5=not%20available&v6=en-US&v7=courses&v9=1626&v11=anonymous&v13=D%3Dmid&v30=courses&v31=courses%3Ak-12&v35=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&v38=FutureSmart&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=42915A04609D99C00A495C11%40AdobeOrg&AQE=1
15.236.125.10200 OK 43 B URL HTTP/2 metrics.blackbaud.com/b/ss/blackbaud-global-prod/1/JS-2.22.3/s42394314228505?AQB=1&ndh=1&pf=1&t=8%2F1%2F2023%2020%3A37%3A0%203%200&sdid=7CF7240E5188E6DF-6FEBDDB6196F38A7&mid=30695059677730286920058877563036914531&aamlh=6&ce=UTF-8&cdp=2&pageName=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&g=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&c.&getPercentPageViewed=5.0.1&apl=4.0&.c&cc=USD&ch=courses&server=everfi.com&v0=K12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%7CMarketingCloud%7Cemail%7Cno%20keyword%7Chttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&events=event12%3D1626&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=courses&l1=vertical%3Ak-12&c2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&v2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&l2=default&v3=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&v4=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&v5=not%20available&v6=en-US&v7=courses&v9=1626&v11=anonymous&v13=D%3Dmid&v30=courses&v31=courses%3Ak-12&v35=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&v38=FutureSmart&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=42915A04609D99C00A495C11%40AdobeOrg&AQE=1
IP 15.236.125.10:0
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/blackbaud-global-prod/1/JS-2.22.3/s42394314228505?AQB=1&ndh=1&pf=1&t=8%2F1%2F2023%2020%3A37%3A0%203%200&sdid=7CF7240E5188E6DF-6FEBDDB6196F38A7&mid=30695059677730286920058877563036914531&aamlh=6&ce=UTF-8&cdp=2&pageName=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&g=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&c.&getPercentPageViewed=5.0.1&apl=4.0&.c&cc=USD&ch=courses&server=everfi.com&v0=K12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%7CMarketingCloud%7Cemail%7Cno%20keyword%7Chttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&events=event12%3D1626&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=courses&l1=vertical%3Ak-12&c2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&v2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&l2=default&v3=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&v4=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&v5=not%20available&v6=en-US&v7=courses&v9=1626&v11=anonymous&v13=D%3Dmid&v30=courses&v31=courses%3Ak-12&v35=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&v38=FutureSmart&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=42915A04609D99C00A495C11%40AdobeOrg&AQE=1 HTTP/1.1
Host: metrics.blackbaud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
date: Wed, 08 Feb 2023 20:36:05 GMT
expires: Tue, 07 Feb 2023 20:36:05 GMT
last-modified: Thu, 09 Feb 2023 20:36:05 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3598943290771308544-4619716035837223634
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
hi.hellobar.com/v/pG2u3EdH8ImB1PuQF6-jZUg32F4UZOCuTmXj5jlTUZSSSS/d2CwIumayN9O1H253DGlDa0Fm8j6-34g06D4sf86S?t=1675888620&v=c5ffac93-d525-4dc7-f84a-e3ae1a4338b7&f=i&s=a8ab48f690f9fd82f0374e0483ffb51e9696d1773e688c0d26f8672cc3e57b378a4aca47c590aa9d078fe7bc6dca954f05c6e6551d24b54139f419c93bfe2611
54.230.111.52200 OK 35 B URL HTTP/2 hi.hellobar.com/v/pG2u3EdH8ImB1PuQF6-jZUg32F4UZOCuTmXj5jlTUZSSSS/d2CwIumayN9O1H253DGlDa0Fm8j6-34g06D4sf86S?t=1675888620&v=c5ffac93-d525-4dc7-f84a-e3ae1a4338b7&f=i&s=a8ab48f690f9fd82f0374e0483ffb51e9696d1773e688c0d26f8672cc3e57b378a4aca47c590aa9d078fe7bc6dca954f05c6e6551d24b54139f419c93bfe2611
IP 54.230.111.52:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /v/pG2u3EdH8ImB1PuQF6-jZUg32F4UZOCuTmXj5jlTUZSSSS/d2CwIumayN9O1H253DGlDa0Fm8j6-34g06D4sf86S?t=1675888620&v=c5ffac93-d525-4dc7-f84a-e3ae1a4338b7&f=i&s=a8ab48f690f9fd82f0374e0483ffb51e9696d1773e688c0d26f8672cc3e57b378a4aca47c590aa9d078fe7bc6dca954f05c6e6551d24b54139f419c93bfe2611 HTTP/1.1
Host: hi.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 35
date: Tue, 07 Feb 2023 23:10:21 GMT
last-modified: Tue, 10 Apr 2018 13:15:02 GMT
etag: "c2196de8ba412c60c22ab491af7b1409"
accept-ranges: bytes
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: PLd2nbdbGuCFQwUVJNTms8ERx4CuMVVloMpkaOlvZWIFBj-SJHVRow==
age: 77145
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash bed03149c0aba545526a720ab2f46f5a
03ef590af1f824ad5248f9ebc2f0e575c320753a
be6699b517938133eae256e94e9f1911681e6fe8738c35f7d54d743027b06bed
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=130629
Date: Wed, 08 Feb 2023 20:36:05 GMT
Etag: "63e359a0-1d7"
Expires: Fri, 10 Feb 2023 08:53:14 GMT
Last-Modified: Wed, 08 Feb 2023 08:13:20 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5K_kjHqmBbj7E5bUzHQS3aF--9IW_9l0CZxDEjWnCwB-MCQx1tIWRg==
Age: 2394
user-data.mutinycdn.com/personalize/user_data/16919262ebbbde25.json?async=true&session_token=e050b908-c556-4f38-bcba-2859fa306316&token=7b73f9362c0ba1bd&visitor_token=1d5e835a-7c42-4de8-9c1c-af112351b027
151.101.1.91200 OK 358 B URL HTTP/2 user-data.mutinycdn.com/personalize/user_data/16919262ebbbde25.json?async=true&session_token=e050b908-c556-4f38-bcba-2859fa306316&token=7b73f9362c0ba1bd&visitor_token=1d5e835a-7c42-4de8-9c1c-af112351b027
IP 151.101.1.91:0
File type JSON data\012- , ASCII text, with very long lines (482), with no line terminators
Hash 09741214e8b95b4a41d6d4331a1cb5d8
d20e1b8534db9f6c8e79634c4760558114f41188
f0878572f3e8965b33ada86b873e86e15ce2f4b227e825907495cd943c0f7e40
GET /personalize/user_data/16919262ebbbde25.json?async=true&session_token=e050b908-c556-4f38-bcba-2859fa306316&token=7b73f9362c0ba1bd&visitor_token=1d5e835a-7c42-4de8-9c1c-af112351b027 HTTP/1.1
Host: user-data.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: x-cache, x-cache-hits, age
access-control-max-age: 7200
cache-control: no-store
pragma: no-cache
x-visitor-token: 1d5e835a-7c42-4de8-9c1c-af112351b027
x-async-user-data: true
etag: W/"4e5846f857c3cff612012b2ffd241f70"
x-request-id: f8914de4-e6bf-4ac8-820f-8b6f3e877d7b
x-runtime: 0.150141
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:36:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1653-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675888565.891071,VS0,VE543
vary: X-Visitor-Token,X-Profile-Token,Fastly-Client-Ip,X-Async-User-Data,Origin,Accept-Encoding
x-connection-speed: broadband
x-continent-code: EU
x-country-code: NO
x-edge-datacenter: BMA
x-edge-region: EU-East
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 358
X-Firefox-Spdy: h2
obs.healthroundprince.com/mon
3.227.190.204200 OK 0 B URL HTTP/2 obs.healthroundprince.com/mon
IP 3.227.190.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1799
Origin: https://everfi.com
Connection: keep-alive
Cookie: cg_uuid=d26c6223855599250b4347b50ecd0fb4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://everfi.com
content-type: application/json
date: Wed, 08 Feb 2023 20:36:05 GMT
content-length: 0
X-Firefox-Spdy: h2
fonts.hellobar.com/s/lato/v23/S6uyw4BMUTPHvxk.ttf
104.22.15.23200 OK 37 kB URL HTTP/2 fonts.hellobar.com/s/lato/v23/S6uyw4BMUTPHvxk.ttf
IP 104.22.15.23:0
File type TrueType Font data, 16 tables, 1st "GPOS", 8 names, Microsoft, language 0x409\012- data
Hash 11f73487bc03bcf27a88c68e1519fd47
479066265f303b482ccdb2d327601b8dcb840e70
2a490352954deefc46740e639081a92e828e8063fde7458529b506f1546e15a6
GET /s/lato/v23/S6uyw4BMUTPHvxk.ttf HTTP/1.1
Host: fonts.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.hellobar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:04 GMT
content-type: font/ttf
cf-ray: 796727c92b48b505-OSL
access-control-allow-origin: *
age: 5914448
cache-control: public, max-age=31536000
expires: Sat, 25 Nov 2023 13:06:24 GMT
last-modified: Tue, 26 Apr 2022 15:50:24 GMT
vary: Accept-Encoding
cf-cache-status: HIT
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-opener-policy: same-origin; report-to="apps-themes"
cross-origin-resource-policy: cross-origin
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a746d459d4fbc7da99072462ed09b456
6ca7c899101b7ddcc1228f148cdcf16113a805f7
cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kit.fontawesome.com/655ccfc4f9.js?ver=6.1.1
104.18.23.52200 OK 4.3 kB URL HTTP/2 kit.fontawesome.com/655ccfc4f9.js?ver=6.1.1
IP 104.18.23.52:0
Hash 3239541d8bcbf454d813068109d7408f
2ad7d0ca30ded7c2dbebe631ab06b6624aabf180
7e90b65a5d9dc46de37d8355e66dc0c1ad425e4ab679697851f30700e7687674
GET /655ccfc4f9.js?ver=6.1.1 HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:01 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: FzlzA0Wly4PKVLnujNbB
cf-cache-status: HIT
age: 56
server: cloudflare
cf-ray: 796727b71c79b523-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a746d459d4fbc7da99072462ed09b456
6ca7c899101b7ddcc1228f148cdcf16113a805f7
cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 57e2189e39db1881e2420ddad64a1ca3
4c41ef7ec3b33c2cf4a58420700537c8073c9971
29fa92faf146319bbe2aaacee0a2876045ed5e3d02202db318a500d09fa29534
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=155688
Date: Wed, 08 Feb 2023 20:36:05 GMT
Etag: "63e3ab20-1d7"
Expires: Fri, 10 Feb 2023 15:50:53 GMT
Last-Modified: Wed, 08 Feb 2023 14:01:04 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ioyLatSiOX0RWeurvVopteIiY0dhse333VeEvxekfJLSUESvVgq-wQ==
Age: 6589
cm.everesttech.net/cm/dd?d_uuid=24283959442939760710863383259552647728
18.203.152.154302 0 B URL HTTP/1.1 cm.everesttech.net/cm/dd?d_uuid=24283959442939760710863383259552647728
IP 18.203.152.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/dd?d_uuid=24283959442939760710863383259552647728 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 08 Feb 2023 20:36:05 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y_QHtQAAAOBlAAN-; Domain=.everesttech.net; Expires=Thu, 08-Feb-2024 20:36:05 GMT; Path=/
everest_session_v2="Y@QHtQAAAOBlAQN-"; Version=1; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=Y_QHtQAAAOBlAAN-
Server: AMO-cookiemap/1.1
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 72226fa2f9513f894889fa652cb2a8bf
8a1b4f108db687c34b334a94e6d931544fd7508e
a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dpm.demdex.net/ibs:dpid=411&dpuuid=Y_QHtQAAAOBlAAN-
54.72.53.159302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=411&dpuuid=Y_QHtQAAAOBlAAN-
IP 54.72.53.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=411&dpuuid=Y_QHtQAAAOBlAAN- HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v046-01546fed3.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y_QHtQAAAOBlAAN-
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=10544693983126017012255216207704548396; Max-Age=15552000; Expires=Mon, 07 Aug 2023 20:36:05 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: 0XSAAW5xTIg=
Content-Length: 0
Connection: keep-alive
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=371467430.1675888619&jid=234480118&_u=YADAAUAAAAAAACgEK~&z=1616794779
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=371467430.1675888619&jid=234480118&_u=YADAAUAAAAAAACgEK~&z=1616794779
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=371467430.1675888619&jid=234480118&_u=YADAAUAAAAAAACgEK~&z=1616794779 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 20:36:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y_QHtQAAAOBlAAN-
54.72.53.159200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y_QHtQAAAOBlAAN-
IP 54.72.53.159:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y_QHtQAAAOBlAAN- HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v046-055e9ae9c.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: bDuuMPX4QWw=
Content-Length: 59
Connection: keep-alive
px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=371467430.1675888619&shpt=FutureSmart%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%22371467430.1675888619%22%2C%22shpt%22%3A%22FutureSmart%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888618.1%22%2C%22dcm_gid%22%3A%22522620257.1675888620%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888618.1&dcm_gid=522620257.1675888620&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&cb=73682390944071420term%3Dvalue
35.81.173.170200 OK 1.2 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=371467430.1675888619&shpt=FutureSmart%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%22371467430.1675888619%22%2C%22shpt%22%3A%22FutureSmart%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888618.1%22%2C%22dcm_gid%22%3A%22522620257.1675888620%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888618.1&dcm_gid=522620257.1675888620&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&cb=73682390944071420term%3Dvalue
IP 35.81.173.170:0
File type ASCII text, with very long lines (2504)
Hash 7a98c3da1b3c6c97c7aac5d93a1f359d
30de44e7862dd820a912fabcbfeaa9b04559d3df
33f8086b8e18da5bbfa0f60089621a4fe99110d65c3b0b5017da8f2b7e7000ef
GET /st?ga_tracking_id=UA-68235542-1&ga_client_id=371467430.1675888619&shpt=FutureSmart%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%22371467430.1675888619%22%2C%22shpt%22%3A%22FutureSmart%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888618.1%22%2C%22dcm_gid%22%3A%22522620257.1675888620%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888618.1&dcm_gid=522620257.1675888620&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&cb=73682390944071420term%3Dvalue HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 08 Feb 2023 20:36:05 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=360bdc68-a7f0-11ed-9a78-f55b938f4899;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
transfer-encoding: chunked
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 72226fa2f9513f894889fa652cb2a8bf
8a1b4f108db687c34b334a94e6d931544fd7508e
a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 4eb05b6b5e5ebdeaa575b76015736f3e
73dcc26acb95261d68e520753769cf5d81d34c7c
2d46f80640eb7a83f99229e6c125b9d07d24bad1deae4b6efc193a5f77e6d5c2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=130111
Date: Wed, 08 Feb 2023 20:36:06 GMT
Etag: "63e34b79-1d7"
Expires: Fri, 10 Feb 2023 08:44:37 GMT
Last-Modified: Wed, 08 Feb 2023 07:12:57 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qEjOcIabg35n0XL-I-Zb3vx3uHCCG-Er7atdkCbbn63BNX237gRROA==
Age: 5500
logx.optimizely.com/v1/events
67.202.27.200204 No Content 0 B URL HTTP/1.1 logx.optimizely.com/v1/events
IP 67.202.27.200:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/events HTTP/1.1
Host: logx.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 811
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://everfi.com
Access-Control-Expose-Headers: X-Results-Data-Source
Content-Type: text/plain
Date: Wed, 08 Feb 2023 20:36:06 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 898ab8c9-dad5-426a-b51e-4fb4a3c7be45
Connection: keep-alive
obs.healthroundprince.com/mon
3.227.190.204200 OK 0 B URL HTTP/2 obs.healthroundprince.com/mon
IP 3.227.190.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1794
Origin: https://everfi.com
Connection: keep-alive
Cookie: cg_uuid=d26c6223855599250b4347b50ecd0fb4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://everfi.com
content-type: application/json
date: Wed, 08 Feb 2023 20:36:06 GMT
content-length: 0
X-Firefox-Spdy: h2
gs.mountain.com/gs
52.12.117.226200 OK 144 B IP 52.12.117.226:0
File type ASCII text, with no line terminators
Hash a25d4022bfbfd0a410cad13db4e9f18a
8c9a417faa694a8abccfbbf1def8be6f57f59909
ef7dc6fc659b1b4eb403f5ec20df83426f959c8238e8e24895f4bdbaa8fdd5a1
GET /gs HTTP/1.1
Host: gs.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: guid=360bdc68-a7f0-11ed-9a78-f55b938f4899
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 08 Feb 2023 20:36:06 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: application/javascript;charset=utf-8
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 144
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=371467430.1675888619&shpt=FutureSmart%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%22371467430.1675888619%22%2C%22shpt%22%3A%22FutureSmart%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888618.1%22%2C%22dcm_gid%22%3A%22522620257.1675888620%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888618.1&dcm_gid=522620257.1675888620&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&cb=1675888565909679&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1675888566626
35.81.173.170200 OK 450 B URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=371467430.1675888619&shpt=FutureSmart%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%22371467430.1675888619%22%2C%22shpt%22%3A%22FutureSmart%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888618.1%22%2C%22dcm_gid%22%3A%22522620257.1675888620%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888618.1&dcm_gid=522620257.1675888620&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&cb=1675888565909679&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1675888566626
IP 35.81.173.170:0
File type ASCII text, with very long lines (1555), with no line terminators
Hash c19529dbd697e469e767194d6631106e
3a76c12cc04c085b983c2c6467046f38dfab2e6f
480b88f9edad2ca12053a09a8145c6de9a42c5369b8c585839abae56f03e0563
GET /st?ga_tracking_id=UA-68235542-1&ga_client_id=371467430.1675888619&shpt=FutureSmart%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%22371467430.1675888619%22%2C%22shpt%22%3A%22FutureSmart%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888618.1%22%2C%22dcm_gid%22%3A%22522620257.1675888620%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888618.1&dcm_gid=522620257.1675888620&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&cb=1675888565909679&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1675888566626 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: guid=360bdc68-a7f0-11ed-9a78-f55b938f4899
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 08 Feb 2023 20:36:07 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: tt=H4sIAAAAAAAAAKtWKlOyMqoFAP609q8HAAAA;Domain=px.mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=360bdc68-a7f0-11ed-9a78-f55b938f4899;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 14
server: istio-envoy
connection: close
transfer-encoding: chunked
js.driftt.com/include/1675888800000/ebs64edsgr5y.js
54.230.111.73200 OK 61 kB URL HTTP/2 js.driftt.com/include/1675888800000/ebs64edsgr5y.js
IP 54.230.111.73:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7b5e7d4904a572445c4043a8951063ce
15d513ab82ef438c8f5805d38c229e84b66ca298
8cdce976026d8c8eb5d76a7c5e496687addfcf304da9c44223f235e6b3f30e65
GET /include/1675888800000/ebs64edsgr5y.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 20:36:06 GMT
last-modified: Wed, 08 Feb 2023 19:00:37 GMT
etag: W/"35f0d0262832a8a44cb80d6b93f49b1e"
x-amz-server-side-encryption: AES256
x-amz-version-id: M4dLytCbVJlfY.O0vg3Ja12ujbZHwmlt
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache
x-envoy-upstream-service-time: 46
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vjhhDuds_hZ4AGnKRFIoybwBP8TqKVlWOkS0Nq3EmDOAFZRTNTktIw==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/43.7ac85d58.chunk.js
54.230.111.73200 OK 7.4 kB URL HTTP/2 js.driftt.com/core/assets/js/43.7ac85d58.chunk.js
IP 54.230.111.73:0
Hash ca81a5887a96aa49af082adf3a6c671c
70360322d8783a50f2db8cf1b44d31109b956610
5dd53ec2eabee71b7426507a0e21621b04acb07bc7702d03e5ffa1ffd3dfd076
GET /core/assets/js/43.7ac85d58.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"48be1563378f7c36bdadc0f2eb616856"
x-amz-server-side-encryption: AES256
x-amz-version-id: nlt9wYKKCayMlGWQHqpz8g8qDzXbqs5K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1ZQrYoAnUrJbxaNGZC8vwFOjBhoasxDHdrgA0n1Lj-trgM70JnS-Vg==
age: 1048271
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash bf0fd5827521576c8b55f90f62db4fe2
daa49326cc39a31de834e384eecaed210789add9
2ef645cc8ba99c0d13cb78f6f395c426898d18b687b682b982c051cd99724eaa
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=143137
Date: Wed, 08 Feb 2023 20:36:08 GMT
Etag: "63e38979-1d7"
Expires: Fri, 10 Feb 2023 12:21:45 GMT
Last-Modified: Wed, 08 Feb 2023 11:37:29 GMT
Server: ECS (nyb/1D15)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: iQmkJGMcjMZfEePEnd2R-Cd3Y7peLzPN4DDJcqvTTZExiwGAu4bdoQ==
Age: 2656
js.driftt.com/core/assets/js/27.f44ab9c1.chunk.js
54.230.111.73200 OK 43 kB URL HTTP/2 js.driftt.com/core/assets/js/27.f44ab9c1.chunk.js
IP 54.230.111.73:0
Hash b077f033d7cb047acec1708e2f64a02e
50affd41e394bd3d5cfd7a26f450a8277b299e1c
838d6ec773aa0b5eec5812e90b3fbfae8bfdebe37252ed864ef021d271b2b157
GET /core/assets/js/27.f44ab9c1.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"768714622a8a2db20ece85777ba47642"
x-amz-server-side-encryption: AES256
x-amz-version-id: wrgwLo8Ut7GsYvCwhzW617Km3EuBTw6K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 24
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vKE_c4C33HKYqi5ItnvmLOt_fz8u0kbv8XpT5SbshZuf1plHhb3BCQ==
age: 1048270
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/9.4a3e9801.chunk.js
54.230.111.73200 OK 40 kB URL HTTP/2 js.driftt.com/core/assets/js/9.4a3e9801.chunk.js
IP 54.230.111.73:0
Hash 6b1c709806bf3e673ece8b9d45ff2523
159a1e0c35c610b0e0dc1034a0e5c02ff6a258d7
1764cc47b6ea1c3e268f1f938cb11af0f7c36aedda86055c7e709431d4ee3cc0
GET /core/assets/js/9.4a3e9801.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:22 GMT
etag: W/"c6f58dd3d60f07462254b842dd4f9ca1"
x-amz-server-side-encryption: AES256
x-amz-version-id: hzm2Healt7ZjvNDM3nYQ47BRwWjFuLrw
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CCM9gOvenWghnvEQS3Vza6OHwF9lASJBMIwKmZ55KzyG6DaOGaMBCw==
age: 1048271
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/runtime~main.d3d0cfc4.js
54.230.111.73200 OK 2.6 kB URL HTTP/2 js.driftt.com/core/assets/js/runtime~main.d3d0cfc4.js
IP 54.230.111.73:0
File type ASCII text, with very long lines (6142), with no line terminators
Hash 130579b9b10a7cf922a3a471052e7d8e
5e405d54da465d88d611f41f12e7de9b93777f6c
8c9239d86db4c8ee66171c32c64195d47aeca34ffc025bc716810c3fb681f8b6
GET /core/assets/js/runtime~main.d3d0cfc4.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 19:00:18 GMT
last-modified: Wed, 08 Feb 2023 18:35:28 GMT
etag: W/"97f543911fc43e93f244f837ddd08e51"
x-amz-server-side-encryption: AES256
x-amz-version-id: 3kWkyAZY1NFWQ.T0mYtcdv_vl43nozxI
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JKOkYVJ3RA295I7kGYSHn6nDH0uf-Sqr9HUbSzMu1BCgWsukCDdgqA==
age: 5749
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/38.11d2b6a7.chunk.css
54.230.111.73200 OK 32 kB URL HTTP/2 js.driftt.com/core/assets/css/38.11d2b6a7.chunk.css
IP 54.230.111.73:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash bd775ea2bdd3ef72b2c2502d367cab03
fd407a345c293732344af5e087238d0699990b0b
59fbbf10bd9066afe6289f6d214ea7d03aad9da59b59ad13a1c3399ed4565f11
GET /core/assets/css/38.11d2b6a7.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888617422
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: W/"87532c4db85f1429fa6d759bc3332f36"
x-amz-server-side-encryption: AES256
x-amz-version-id: hzHYKpyiaZmITNnBC_LqpsxusmNF7FFl
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 15
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZQUVAXThkOzkrSSH3PEwhKLKKnuyBrrB0PzvedHuHv94QTnh6DuAfQ==
age: 1048271
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/29.9bf46b67.chunk.css
54.230.111.73200 OK 1.8 kB URL HTTP/2 js.driftt.com/core/assets/css/29.9bf46b67.chunk.css
IP 54.230.111.73:0
File type ASCII text, with very long lines (8675), with no line terminators
Hash aa84adcffb44fbecbd790e3106bd55bb
63f5f5bbe89b2b6250bae002de34f4227b00c3df
5741b177a54a8dcebcd0da7aab45141a20883d1ed6bffc53eb6d1063eb955027
GET /core/assets/css/29.9bf46b67.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: W/"4f21faf2ba450e5fcdf7eda90813e185"
x-amz-server-side-encryption: AES256
x-amz-version-id: qzro7282BXz7SnLdWr3hLeI1pZAqJ2A1
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 19
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 293Q3vXLZhpvOtMb1Azyxv0g66RNhPqjGgQ3KXItjsjZjlW58zvd5A==
age: 1048271
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/1.5b69d480.chunk.css
54.230.111.73200 OK 6.8 kB URL HTTP/2 js.driftt.com/core/assets/css/1.5b69d480.chunk.css
IP 54.230.111.73:0
File type ASCII text, with very long lines (45030), with no line terminators
Hash e948388d62217cc78cc3d6704673bd73
bce2a9794121813da9f36deb4fe751068b08f842
0ab02c450354aab6af4ddf22e4ca2b205334a4bf687ef3e132a5c928b8c4721f
GET /core/assets/css/1.5b69d480.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888617422
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Thu, 02 Feb 2023 15:28:31 GMT
last-modified: Thu, 02 Feb 2023 14:58:15 GMT
etag: W/"3237f71ac06bcb0447f60fe4b1d5948e"
x-amz-server-side-encryption: AES256
x-amz-version-id: yFEFrbt3Vox_ceR8jg0L9VJqKO7sanHh
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 47
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: n8oW0nvckRydDC2u4QSTTHAk_lC9QosRJd-TdH6x4XuQuaOTqP5Nkw==
age: 536857
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 1231e29c2a5abc47f79ed4fcf4dd3b16
645d4d833c7b7ce9d1d1efdcbcd4573cf3e13fa2
6b5d9380453b28d59f00fcb15fc2346eaa303c1ac9984ae2173c9375b16c1189
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=153914
Date: Wed, 08 Feb 2023 20:36:09 GMT
Etag: "63e3ac74-1d7"
Expires: Fri, 10 Feb 2023 15:21:23 GMT
Last-Modified: Wed, 08 Feb 2023 14:06:44 GMT
Server: ECS (nyb/1D1A)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mIDvwMneZgevfuuymuqRZVN8yWby_Ry5RgLpedkUuE5U71u0akOXAg==
Age: 4479
js.driftt.com/core/assets/js/15.699b0dc7.chunk.js
54.230.111.73200 OK 41 kB URL HTTP/2 js.driftt.com/core/assets/js/15.699b0dc7.chunk.js
IP 54.230.111.73:0
Hash 615ecf10ff1294bb666d42a304b85767
4178584295e2e6c9644434600b9f9fbcbcec7c49
c915dec4d16fc1082a335906a83085223962037a6096844581410548842246d5
GET /core/assets/js/15.699b0dc7.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"43d1442a9d30453da9eaeb12b9daafff"
x-amz-server-side-encryption: AES256
x-amz-version-id: jUF4GGgcG34JdLv0MHXRHyWvmwH3OQeO
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gj2BEg6wGtRWWBvSbMwR0KE1LFx3DdRdXrGjg7a22Lat1Ew4vl5_yQ==
age: 1048269
X-Firefox-Spdy: h2
js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888617422
54.230.111.73200 OK 12 kB URL HTTP/2 js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888617422
IP 54.230.111.73:0
Hash 0d5942ab674198e8ef94902bbdde8e39
8f214f15565c10f4bb2ef3ccfcc89c856629d878
e7ea21bc1a28bda84e7f7371df22b4cbeb5f28c20083d66f0113fed46b76c4c1
GET /core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888617422 HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: istio-envoy
last-modified: Wed, 08 Feb 2023 19:00:19 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: anVnAvkfgn5J6cuZXMyTKehe9MUtP13K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
x-envoy-upstream-service-time: 16
date: Wed, 08 Feb 2023 20:36:07 GMT
cache-control: no-cache
etag: W/"91bbc65a16f226622a581aaaf53cafa1"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 97v3WxugB7fWKZ18cbrpLwbF7Mr9BT9kn4WY6XuUedj0U3tabxxkwQ==
X-Firefox-Spdy: h2
my.hellobar.com/modules.js
104.22.15.23200 OK 0 B URL HTTP/2 my.hellobar.com/modules.js
IP 104.22.15.23:0
GET /modules.js HTTP/1.1
Host: my.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:03 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=260615
etag: W/"ee85f3aa09f4f82ddd1d0df2fd1af30f"
last-modified: Fri, 23 Dec 2022 05:10:46 GMT
x-amz-id-2: FbKu5nSSamqqutaqGylcNdcI5O5SDGopg0GxPftEg1ygWGh7Rvcz4B73tCzUOVDlgYROQFCF8SM=
x-amz-request-id: 2W5YNVHZ8P90QP0P
cache-control: max-age=14400
cf-cache-status: HIT
age: 2720
vary: Accept-Encoding
server: cloudflare
cf-ray: 796727bee899b500-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/21.69555934.chunk.js
54.230.111.73200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/21.69555934.chunk.js
IP 54.230.111.73:0
GET /core/assets/js/21.69555934.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 18:44:07 GMT
last-modified: Wed, 08 Feb 2023 18:35:26 GMT
etag: W/"288df9ffec9b073f1f10bebea367120a"
x-amz-server-side-encryption: AES256
x-amz-version-id: jAsT7w5C65Ekvv9zssDranLz2weOUBXw
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 24
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 84wPxqr92UuJ8bEsc_jtpVvdKWLW_t2JpOCQsrGHfK_S5ipNiqoIyg==
age: 6721
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 0 B IP 142.250.74.131:0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
my.hellobar.com/edcdff19ac78bb7a167b2e3617e196453f5eaefa.js
104.22.15.23200 OK 0 B URL HTTP/2 my.hellobar.com/edcdff19ac78bb7a167b2e3617e196453f5eaefa.js
IP 104.22.15.23:0
GET /edcdff19ac78bb7a167b2e3617e196453f5eaefa.js HTTP/1.1
Host: my.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:02 GMT
content-type: text/javascript
x-amz-id-2: Wn7Wo4kDmdQFh4wsOTrPTC2gWl8h9izGx4a+lW2LGOhwNXwANNgJWXIpKIA8Tj9pUyPEnw93P4Q=
x-amz-request-id: QE9R3MAFAQH11GFZ
last-modified: Wed, 08 Feb 2023 20:35:27 GMT
etag: W/"15512df56430efb60ea3b9901cb0ba16"
cache-control: max-age=86400, must-revalidate, proxy-revalidate, s-maxage=10
cf-cache-status: EXPIRED
vary: Accept-Encoding
server: cloudflare
cf-ray: 796727bc5d2fb500-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/28.01a0fe87.chunk.js
54.230.111.73200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/28.01a0fe87.chunk.js
IP 54.230.111.73:0
GET /core/assets/js/28.01a0fe87.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"0ad089f0617a0fa8014a23c2afa90ddd"
x-amz-server-side-encryption: AES256
x-amz-version-id: oCx9yWccW.dlty4hHqWiey7h_DwTeEBh
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 22
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: w4ImpsJV9YyCSI36UDi1Ky-G5tSvJIT45ukXrsDyB8c9jFd8m9C4Dw==
age: 1048271
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/3.f50b964b.chunk.js
54.230.111.73200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/3.f50b964b.chunk.js
IP 54.230.111.73:0
GET /core/assets/js/3.f50b964b.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888617422
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Sun, 15 Jan 2023 02:22:28 GMT
last-modified: Wed, 11 Jan 2023 18:48:21 GMT
etag: W/"1ac37bf2b93050f29058b66a9ad43e10"
x-amz-server-side-encryption: AES256
x-amz-version-id: XjyDJs7tJQ_66vN6EdQbFkXQ4j4BABRH
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 37
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: V5OBov119XwM4xL7t6nt2HvlN5C4xwiVzPOHYIq2bH7D1dZqINO4RQ==
age: 2139220
X-Firefox-Spdy: h2
api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&page_title=FutureSmart%20%7C%20EVERFI
54.230.111.46200 OK 0 B URL HTTP/2 api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&page_title=FutureSmart%20%7C%20EVERFI
IP 54.230.111.46:0
POST /api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&page_title=FutureSmart%20%7C%20EVERFI HTTP/1.1
Host: api.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 63
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json;charset=utf-8
date: Wed, 08 Feb 2023 20:36:04 GMT
server: nginx
access-control-allow-origin: https://everfi.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
api-version: v2
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
identification-source: CACHE
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Tue, 07 Feb 2023 20:36:04 GMT
vary: Accept-Encoding, Origin
content-encoding: gzip
request-id: 36ae82be-38a6-41be-8217-04761d06247a
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jLzeOEdQYnz1smBpx2iFewbEqax5yi-k75-00AE6dPwqnVXlwS8HTQ==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/36.b49bf23f.chunk.js
54.230.111.73200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/36.b49bf23f.chunk.js
IP 54.230.111.73:0
GET /core/assets/js/36.b49bf23f.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"4ae92c53ef226eb2a201fc855ccb7835"
x-amz-server-side-encryption: AES256
x-amz-version-id: SWSsVLzyOcOhQhmvR.pbvKyQeo7W0A10
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pSpi0kapsMBdFhfMTwZ5c0P1o81dGKAiqEZuEGXlIJJ9XgmBJvld8A==
age: 1048270
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/285700/domain/everfi.com/token
54.230.111.42200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/285700/domain/everfi.com/token
IP 54.230.111.42:0
GET /partner/285700/domain/everfi.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Wed, 08 Feb 2023 19:49:37 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: U_kBY5KdQlv_YgGM5UJqvOw0PZ4_iiJBVNWshcG2CJWanMBROelNYg==
age: 2787
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/3.07aa08a5.chunk.css
54.230.111.73200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/css/3.07aa08a5.chunk.css
IP 54.230.111.73:0
GET /core/assets/css/3.07aa08a5.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888617422
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Thu, 05 Jan 2023 03:03:55 GMT
last-modified: Thu, 29 Dec 2022 16:49:54 GMT
etag: W/"189aeffd571884559dababa22c66d75a"
x-amz-server-side-encryption: AES256
x-amz-version-id: cLzhtaoyHBY3wArkFjIQo58tr5JO.o0k
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 47
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oJ5iFVdBsYXSy_Tm1eIz4bEDd5-8v-qtHJArIFGEu4RDDkeI8H3xmg==
age: 3000733
X-Firefox-Spdy: h2
info.everfi.com/index.php/form/getForm?munchkinId=410-YCZ-984&form=9079&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&callback=jQuery112405366786014092426_1675888618134&_=1675888618135
104.17.70.206200 OK 0 B URL HTTP/2 info.everfi.com/index.php/form/getForm?munchkinId=410-YCZ-984&form=9079&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&callback=jQuery112405366786014092426_1675888618134&_=1675888618135
IP 104.17.70.206:0
GET /index.php/form/getForm?munchkinId=410-YCZ-984&form=9079&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&callback=jQuery112405366786014092426_1675888618134&_=1675888618135 HTTP/1.1
Host: info.everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: mutiny.user.token=1d5e835a-7c42-4de8-9c1c-af112351b027; mutiny.user.session=e050b908-c556-4f38-bcba-2859fa306316; utag_main=v_id:018632bee9340012899aa680c7bf0005000f400900918$_sn:1$_se:1$_ss:1$_st:1675890417780$ses_id:1675888617780%3Bexp-session$_pn:1%3Bexp-session; __cf_bm=ie.VAhmIUX_5A5GPZuB2xK1zgW6tD6nFfWcl8zNoeWw-1675888561-0-AYOgab7AQkPDWNfkbCqaIv4FklqoC3ezmlXuvTLYx7LUaIFAVvoZlUjIbjJZ+taT2WYPHpHBTqGxwv1N11y5PpY=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:02 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 796727ba3b94b51e-OSL
set-cookie: BIGipServersj02web-nginx-app_https=!9D4ww1uYROtBPmLMZROflEEG2tCikrm8p7p1sNTlMXydlL6W3xYfzysywbYFyVLus94jvy1Tk/Zce8Y=; Path=/; Version=1; Secure; Httponly
cf-cache-status: DYNAMIC
cached: false
x-form-service-request-id: 1d81#18632be1237
x-marketo-source: Form Service
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.hellobar.com/css2?family=Source+Sans+Pro
104.22.15.23200 OK 0 B URL HTTP/2 fonts.hellobar.com/css2?family=Source+Sans+Pro
IP 104.22.15.23:0
GET /css2?family=Source+Sans+Pro HTTP/1.1
Host: fonts.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everfi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:04 GMT
content-type: text/css; charset=utf-8
cf-ray: 796727c849ecb505-OSL
access-control-allow-origin: *
cache-control: private, max-age=86400
expires: Wed, 08 Feb 2023 20:36:04 GMT
cf-cache-status: DYNAMIC
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 0
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/main~493df0b3.bfaa8bf7.chunk.js
54.230.111.73200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/main~493df0b3.bfaa8bf7.chunk.js
IP 54.230.111.73:0
GET /core/assets/js/main~493df0b3.bfaa8bf7.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:22 GMT
etag: W/"f380dbfcbb0e3e9e079d70231be1cff3"
x-amz-server-side-encryption: AES256
x-amz-version-id: tVIOQ5knB_pnUIzARn2A1QNlFnrQ08ww
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 22
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: z9M0HaEqy49DJGSG2wSpfaOnI1hgTq1DEtbtPHXOTYFZi82K_WOzBQ==
age: 1048271
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/25.22647a55.chunk.js
54.230.111.73200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/25.22647a55.chunk.js
IP 54.230.111.73:0
GET /core/assets/js/25.22647a55.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"2ce6c446f71a395ff41647c9ba4b9c19"
x-amz-server-side-encryption: AES256
x-amz-version-id: 3Dq5XEj76miHFBtzwx_L1gh4_UbdDQYk
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: H2pqMooposZ1zowelMeXuOAwebFT5boGADFtq8RCtjMeR_OXwPViOQ==
age: 1048270
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/35.a3318c5e.chunk.css
54.230.111.73200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/css/35.a3318c5e.chunk.css
IP 54.230.111.73:0
GET /core/assets/css/35.a3318c5e.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888617422
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: W/"b06e02b360914b25e58305b1b9b954dc"
x-amz-server-side-encryption: AES256
x-amz-version-id: zduXhdkhoojuHNWfrJL3OG7UtCFvJe6h
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 15
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4Z48m_7liazPQuGXRAULvdnklK_waDA4L567TYtAFTeYyrNOD7dtdQ==
age: 1048271
X-Firefox-Spdy: h2
everfi.com/courses/k-12/financial-literacy-middle-school/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https://everfi.com/courses/k-12/financial-literacy-middle-school/
141.193.213.20200 OK 0 B URL HTTP/2 everfi.com/courses/k-12/financial-literacy-middle-school/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https://everfi.com/courses/k-12/financial-literacy-middle-school/
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /courses/k-12/financial-literacy-middle-school/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https://everfi.com/courses/k-12/financial-literacy-middle-school/ HTTP/1.1
Host: everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:01 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-powered-by: WP Engine
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
link: <https://everfi.com/wp-json/>; rel="https://api.w.org/", <https://everfi.com/wp-json/wp/v2/offering/227510>; rel="alternate"; type="application/json", <https://everfi.com/?p=227510>; rel=shortlink
x-pass-why: custom-args
permissions-policy: midi=(), camera=(), microphone=(), payment=()
referrer-policy: origin
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 796727b1196db4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A700&ver=6.1.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A700&ver=6.1.1
IP 142.250.74.106:0
GET /css?family=Lato%3A700&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 20:36:01 GMT
date: Wed, 08 Feb 2023 20:36:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/22.7161d1f7.chunk.js
54.230.111.73200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/22.7161d1f7.chunk.js
IP 54.230.111.73:0
GET /core/assets/js/22.7161d1f7.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"52c4ba62e758f95005aa326a7c67a335"
x-amz-server-side-encryption: AES256
x-amz-version-id: 5ZSPqOH.m7nwO1FPZhNLZC8oV8HN.hri
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 15
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: szjteHLW9Hx3tYWYo0dSBdVGhYs_s5EFQk8VWJfMiZU1EvJacw3G8A==
age: 1048271
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/12.d33926cb.chunk.js
54.230.111.73200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/12.d33926cb.chunk.js
IP 54.230.111.73:0
GET /core/assets/js/12.d33926cb.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"bdcb035523ec144399213aa65a8430ff"
x-amz-server-side-encryption: AES256
x-amz-version-id: KyS4g55V4uBz7fjaZ0R1pHyOHsEBkZV6
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 27
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -k1m_0L1oub9EvknOm5ljtuOWqKOZOdhI_TWIMoHCYz-zCW97LKGCw==
age: 1048269
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/19.8e79a39a.chunk.js
54.230.111.73200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/19.8e79a39a.chunk.js
IP 54.230.111.73:0
GET /core/assets/js/19.8e79a39a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"c478a5bb4d7885e2b9250c6beeb4fd6d"
x-amz-server-side-encryption: AES256
x-amz-version-id: uwUNfVtyHdRKYycXgamRNBkk5aCRrwjq
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nXEhubvJ82HOKWFNy10fCO7xyn9Ql-EKYZBn67JYERs1MKt-m--NjA==
age: 1048271
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/35.2db13da8.chunk.js
54.230.111.73200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/35.2db13da8.chunk.js
IP 54.230.111.73:0
GET /core/assets/js/35.2db13da8.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888617422
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"b335cb429753b2c3dabe45686f46aee9"
x-amz-server-side-encryption: AES256
x-amz-version-id: cZsJMbphr0g_Rs503LmupKJPT7bBS_rp
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0PFRCSWl5JXPzA-dj54DBhutIwi25c8ms-B6zPeSZ5KNrPGcJ3Ed2w==
age: 1048271
X-Firefox-Spdy: h2
tag.demandbase.com/89bf928e3008d78e.min.js
54.230.111.54200 OK 0 B URL HTTP/2 tag.demandbase.com/89bf928e3008d78e.min.js
IP 54.230.111.54:0
GET /89bf928e3008d78e.min.js HTTP/1.1
Host: tag.demandbase.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Fri, 03 Feb 2023 22:29:38 GMT
x-amz-version-id: ZENMp.PG0_SCBKlA3gMuRbJ6iQODQlwL
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 20:35:07 GMT
cache-control: public, max-age=3600
etag: W/"d26c8daf51a6b52d2a4c1d1e2834c17f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YwgYD3AKHRXiBzKHXuTSAAS_VKcfiljjUi1det_9g6iP56h257aONQ==
age: 3553
strict-transport-security: max-age=63072000; includeSubDomains; preload
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=()
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/20.2ffef383.chunk.js
54.230.111.73200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/20.2ffef383.chunk.js
IP 54.230.111.73:0
GET /core/assets/js/20.2ffef383.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"ec6e94b6cea3a27506634867a8009ded"
x-amz-server-side-encryption: AES256
x-amz-version-id: Sl_LzJMe7m6MkWEK9Fxqk3gRf.6SeAYu
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 26
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hjQMcXwQKF16WUi2zHfcKPKEAn9f2YZtvgCV700X2Q5lozvigYO3mA==
age: 1048270
X-Firefox-Spdy: h2
fonts.hellobar.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3aPw.ttf
104.22.15.23200 OK 0 B URL HTTP/2 fonts.hellobar.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3aPw.ttf
IP 104.22.15.23:0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3aPw.ttf HTTP/1.1
Host: fonts.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.hellobar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:04 GMT
content-type: font/ttf
cf-ray: 796727c92b63b505-OSL
access-control-allow-origin: *
age: 5914424
cache-control: public, max-age=31536000
expires: Wed, 29 Nov 2023 21:25:48 GMT
last-modified: Wed, 27 Apr 2022 16:04:49 GMT
vary: Accept-Encoding
cf-cache-status: HIT
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-opener-policy: same-origin; report-to="apps-themes"
cross-origin-resource-policy: cross-origin
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
54.230.111.73200 OK 0 B URL HTTP/2 js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
IP 54.230.111.73:0
GET /core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=d6a6b119-1f10-460e-a62a-81c9a14f9980&sessionStarted=1675888623.337&campaignRefreshToken=5a7d66f9-cf1f-4ea7-aebf-9ea7f0b085cd&hideController=false&pageLoadStartTime=1675888617422&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: istio-envoy
last-modified: Wed, 08 Feb 2023 19:00:19 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: anVnAvkfgn5J6cuZXMyTKehe9MUtP13K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
x-envoy-upstream-service-time: 13
date: Wed, 08 Feb 2023 20:36:07 GMT
cache-control: no-cache
etag: W/"91bbc65a16f226622a581aaaf53cafa1"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: F7wiWm032ZYLKweDla5Gsi_VkV66lXgBpTTmZSBerVhUmB7l7j9ZxQ==
X-Firefox-Spdy: h2
api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&page_title=FutureSmart%20%7C%20EVERFI
54.230.111.46200 OK 0 B URL HTTP/2 api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&page_title=FutureSmart%20%7C%20EVERFI
IP 54.230.111.46:0
POST /api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&page_title=FutureSmart%20%7C%20EVERFI HTTP/1.1
Host: api.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 63
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json;charset=utf-8
date: Wed, 08 Feb 2023 20:36:04 GMT
server: nginx
access-control-allow-origin: https://everfi.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
api-version: v2
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
identification-source: CACHE
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Tue, 07 Feb 2023 20:36:04 GMT
vary: Accept-Encoding, Origin
content-encoding: gzip
request-id: 9c320f37-f623-4e44-b683-3d49aeadd543
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6GDhif_cuYcFiYEicw2_y8DgEMoJ07bP2iTB6DsvTajaQrAC7GD6Ag==
X-Firefox-Spdy: h2
www.youtube.com/embed/zXNZS7ou0_c
142.250.74.142200 OK 0 B URL HTTP/2 www.youtube.com/embed/zXNZS7ou0_c
IP 142.250.74.142:0
GET /embed/zXNZS7ou0_c HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 08 Feb 2023 20:36:02 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=4eu_C4CIKdw; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=mVVmjehy4CM; Domain=.youtube.com; Expires=Mon, 07-Aug-2023 20:36:02 GMT; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TnpnNE5qVTJOakl4TnpjeU1EWXlPQT09ELKPkJ8GGLKPkJ8G; Domain=.youtube.com; Expires=Mon, 07-Aug-2023 20:36:02 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+837; expires=Fri, 07-Feb-2025 20:36:02 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.hellobar.com/css2?family=Lato
104.22.15.23200 OK 0 B URL HTTP/2 fonts.hellobar.com/css2?family=Lato
IP 104.22.15.23:0
GET /css2?family=Lato HTTP/1.1
Host: fonts.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everfi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:04 GMT
content-type: text/css; charset=utf-8
cf-ray: 796727c84a03b505-OSL
access-control-allow-origin: *
cache-control: private, max-age=86400
expires: Wed, 08 Feb 2023 20:36:04 GMT
cf-cache-status: DYNAMIC
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 0
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2