Overview

URL www.cowichanstewardship.com
IP199.34.228.45
ASNWEEBLY
Location United States
Report completed2022-09-20 14:02:41 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-20 2 www.cowichanstewardship.com/ Malware
2022-09-20 2 www.cowichanstewardship.com/files/main_style.css?1663615523 Malware
2022-09-20 2 www.cowichanstewardship.com/uploads/1/4/4/5/14453984/published/csrt-horizon (...) Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (32)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS ocsp.pki.goog (8) 175 2017-06-14 07:23:31 UTC 2022-09-20 04:47:45 UTC 142.250.74.3
mnemonic passive DNS js-agent.newrelic.com (1) 378 2017-01-30 05:00:15 UTC 2022-09-20 10:16:41 UTC 151.101.86.137
mnemonic passive DNS kit.fontawesome.com (1) 1868 2019-03-29 02:12:52 UTC 2022-09-20 10:16:11 UTC 104.18.22.52
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-20 11:49:19 UTC 142.250.74.10
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-20 09:16:43 UTC 143.204.55.27
mnemonic passive DNS cdn.jsdelivr.net (1) 439 2012-09-30 00:15:09 UTC 2022-09-20 04:47:20 UTC 151.101.85.229
mnemonic passive DNS public.powrcdn.com (6) 33857 2021-05-11 13:04:39 UTC 2022-09-20 10:59:17 UTC 172.67.186.248
mnemonic passive DNS maxcdn.bootstrapcdn.com (1) 724 2014-06-18 00:37:31 UTC 2022-09-20 11:55:38 UTC 104.18.11.207
mnemonic passive DNS ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-09-20 10:16:44 UTC 104.18.21.226
mnemonic passive DNS graph.facebook.com (1) 113 2012-05-20 19:01:56 UTC 2022-09-20 11:56:15 UTC 157.240.200.16
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-20 04:47:04 UTC 34.117.237.239
mnemonic passive DNS ajax.googleapis.com (1) 12905 2019-10-15 17:52:08 UTC 2022-09-20 11:29:47 UTC 216.58.207.202
mnemonic passive DNS ocsp.digicert.com (8) 86 2012-05-21 07:02:23 UTC 2022-09-20 08:06:10 UTC 93.184.220.29
mnemonic passive DNS ec.editmysite.com (2) 12806 2017-01-29 21:50:35 UTC 2022-09-20 10:17:28 UTC 44.235.202.207
mnemonic passive DNS ocsp.sca1b.amazontrust.com (4) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.165
mnemonic passive DNS external-iad3-1.xx.fbcdn.net (2) 10946 2015-06-02 20:34:39 UTC 2022-09-20 11:54:19 UTC 31.13.66.19
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-20 04:47:05 UTC 23.36.77.32
mnemonic passive DNS cdn2.editmysite.com (18) 11564 2012-10-02 18:27:39 UTC 2022-09-20 09:45:34 UTC 151.101.85.46
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-20 07:44:02 UTC 142.250.74.164
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-20 04:46:53 UTC 34.120.237.76
mnemonic passive DNS fonts.gstatic.com (4) 0 2014-08-29 13:43:22 UTC 2022-09-20 04:47:45 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS scontent-iad3-1.xx.fbcdn.net (4) 5062 2015-05-20 18:36:56 UTC 2022-09-20 11:54:19 UTC 31.13.66.19
mnemonic passive DNS www.powr.io (4) 13233 2015-04-27 10:27:01 UTC 2022-09-20 10:59:16 UTC 172.67.5.146
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-20 05:36:22 UTC 52.38.227.80
mnemonic passive DNS bam.nr-data.net (1) 630 2015-02-10 00:06:27 UTC 2022-09-20 10:16:42 UTC 162.247.241.14
mnemonic passive DNS powr-counter.herokuapp.com (2) 46204 2017-02-01 11:41:28 UTC 2022-09-20 10:59:19 UTC 34.201.81.34
mnemonic passive DNS powr-outlet-v2.herokuapp.com (2) 139762 2020-08-25 09:54:12 UTC 2022-09-20 10:59:18 UTC 23.22.52.7
mnemonic passive DNS scontent-arn2-1.xx.fbcdn.net (1) 58958 2015-12-21 23:31:41 UTC 2022-09-20 10:55:45 UTC 31.13.72.12
mnemonic passive DNS www.cowichanstewardship.com (9) 0 2017-02-13 07:59:30 UTC 2022-09-16 13:16:55 UTC 199.34.228.45 Unknown ranking
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-20 05:19:24 UTC 143.204.55.110
mnemonic passive DNS www.gstatic.com (1) 0 2016-07-26 09:37:06 UTC 2022-09-20 09:06:49 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS ka-p.fontawesome.com (3) 4489 2019-12-16 20:35:53 UTC 2022-09-20 10:38:29 UTC 104.18.23.52


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 199.34.228.45

Date UQ / IDS / BL URL IP
2022-11-05 19:18:04 +0000
0 - 0 - 18 www.rowe-productions.com/ 199.34.228.45
2022-11-03 19:20:07 +0000
0 - 0 - 11 www.rowe-productions.com/ 199.34.228.45
2022-10-08 00:20:23 +0000
0 - 0 - 8 www.livraisonmoustachebikes.com/ 199.34.228.45
2022-09-20 14:02:41 +0000
0 - 0 - 3 www.cowichanstewardship.com 199.34.228.45
2022-09-06 18:35:17 +0000
0 - 0 - 1 communityshares.ca/accueil.html 199.34.228.45

Last 5 reports on ASN: WEEBLY

Date UQ / IDS / BL URL IP
2022-12-03 06:10:02 +0000
0 - 0 - 9 jeser-102703.weeblysite.com/ 199.34.228.96
2022-12-03 06:04:11 +0000
0 - 0 - 3 tttt-108587.weeblysite.com/ 199.34.228.97
2022-12-03 04:58:48 +0000
0 - 0 - 2 att0fb.weeblysite.com/ 199.34.228.96
2022-12-03 04:31:44 +0000
0 - 0 - 14 btinternetmed.weebly.com/ 199.34.228.53
2022-12-03 04:28:57 +0000
30 - 0 - 23 filexfrshareadmin.weebly.com/ 199.34.228.54

Last 1 reports on domain: cowichanstewardship.com

Date UQ / IDS / BL URL IP
2022-09-20 14:02:41 +0000
0 - 0 - 3 www.cowichanstewardship.com 199.34.228.45

No other reports with similar screenshot



JavaScript

Executed Scripts (43)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (105)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 20 Sep 2022 13:13:08 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _ZU8iWWVZmCUqs_a5o96hNvhvB7htdbjFHCQQnX4-QmPjVvAMCFHMA==
Age: 2961


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2770
Expires: Tue, 20 Sep 2022 14:48:39 GMT
Date: Tue, 20 Sep 2022 14:02:29 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: www.cowichanstewardship.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         199.34.228.45
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 20 Sep 2022 14:02:29 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.cowichanstewardship.com language=en; expires=Tue, 04-Oct-2022 14:02:29 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"0d840a2d53685f6314de55f7036e9a6b-gzip"
Content-Encoding: gzip
X-Host: grn119.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 10430
Keep-Alive: timeout=10, max=74
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1886), with CRLF, LF line terminators
Size:   10430
Md5:    8aa27af7541cbc2a88cfcb5c1d66ae72
Sha1:   a766b2b0f046ecc7a0aafc77cc48296869b18a74
Sha256: 557b62eb96f59d46c62aa578c617bc87615b56859260491fb3214b91db276212

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YjH7J2aAHh6hORTbskEUHhpeEb3Dr-aE2CH_PyoicGN-SM2FhaFs2w==
age: 34036
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 20 Sep 2022 14:02:29 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /css/old/fancybox.css?1663611591 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Last-Modified: Mon, 19 Sep 2022 17:46:38 GMT
ETag: "6328aafe-f47"
Expires: Mon, 03 Oct 2022 18:22:36 GMT
Cache-Control: max-age=1209600
X-Host: blu47.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 1218
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 70793
Connection: keep-alive
X-Served-By: cache-sjc10078-SJC, cache-bma1673-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 1
X-Timer: S1663682550.686277,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (3910)
Size:   1218
Md5:    b644e92258f4c7c0b4270047652d1e60
Sha1:   93734d52ee9e86a768159e514076051813c39cd9
Sha256: 29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
                                        
                                            GET /css/sites.css?buildTime=1663617132 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Last-Modified: Mon, 19 Sep 2022 17:46:32 GMT
ETag: W/"6328aaf8-347ac"
Expires: Mon, 03 Oct 2022 19:54:28 GMT
Cache-Control: max-age=1209600
X-Host: grn5.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 29746
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 65281
Connection: keep-alive
X-Served-By: cache-sjc10066-SJC, cache-bma1637-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 1
X-Timer: S1663682550.686044,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   29746
Md5:    d10158b22b553f723d99dc78eaee6390
Sha1:   80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
Sha256: 939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
                                        
                                            GET /fonts/Actor/font.css?2 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Last-Modified: Thu, 08 Sep 2022 17:37:42 GMT
ETag: "631a2866-1ac"
Expires: Thu, 22 Sep 2022 18:06:37 GMT
Cache-Control: max-age=1209600
X-Host: grn82.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 239
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 1022153
Connection: keep-alive
X-Served-By: cache-sjc10055-SJC, cache-bma1680-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 17, 3
X-Timer: S1663682550.686969,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text
Size:   239
Md5:    1df96da317ac06025cc13ec8c41ae863
Sha1:   2f44628b9dbea1003b4728f7e571133479b24587
Sha256: cbba923d81f5efd24035c0ae07dcb791a7ee32ec0e411a3d17c5c0971dac12f9
                                        
                                            GET /fonts/Open_Sans/font.css?2 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Last-Modified: Thu, 08 Sep 2022 17:37:44 GMT
ETag: "631a2868-a2a"
Expires: Thu, 22 Sep 2022 18:06:46 GMT
Cache-Control: max-age=1209600
X-Host: blu123.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 367
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 1022144
Connection: keep-alive
X-Served-By: cache-sjc10083-SJC, cache-bma1645-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 44
X-Timer: S1663682550.688709,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text
Size:   367
Md5:    52e94ffb1c814650bab35433c3034ac7
Sha1:   b42d636ac9b71805f751612208ddb34e93a6538d
Sha256: fe0f821828a4b146e9b0aba7f9a4956a0caa14a2ac72541ced5ee1d2ed376462
                                        
                                            GET /js/lang/en/stl.js?buildTime=1663611591& HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Mon, 19 Sep 2022 17:45:21 GMT
ETag: "6328aab1-2c4a6"
Expires: Mon, 03 Oct 2022 18:22:30 GMT
Cache-Control: max-age=1209600
X-Host: blu90.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 32828
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 70799
Connection: keep-alive
X-Served-By: cache-sjc10026-SJC, cache-bma1651-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 2
X-Timer: S1663682550.693110,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (64997)
Size:   32828
Md5:    9a49c00a13898c31cb9ae140287b524d
Sha1:   79aa80ae3e30b6f4ea929e6e118b16c68db216c2
Sha256: 7d4c52ebfd0e158669a414ec9c2ee33a1296b20d59370d8b3193c1ec81a9ec35
                                        
                                            GET /js/site/footerSignup.js?buildTime=1663645305 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Mon, 19 Sep 2022 20:21:10 GMT
ETag: "6328cf36-e10"
Expires: Tue, 04 Oct 2022 03:51:57 GMT
Cache-Control: max-age=1209600
X-Host: blu57.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 1372
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 36632
Connection: keep-alive
X-Served-By: cache-sjc10041-SJC, cache-bma1637-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 175
X-Timer: S1663682550.697074,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (3600), with no line terminators
Size:   1372
Md5:    121a5b9688d8e70ee7bb06cc79491f76
Sha1:   3a28220baa7d8879270c8311bed7dddefa7e43e9
Sha256: 181716c84474c9eb6685a809d69dda5d49ce44dfbf64c5dee89a3091e23def40
                                        
                                            GET /js/lang/en/stl.js?buildTime=1663617132& HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Mon, 19 Sep 2022 17:45:21 GMT
ETag: "6328aab1-2c4a6"
Expires: Mon, 03 Oct 2022 19:54:28 GMT
Cache-Control: max-age=1209600
X-Host: grn27.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 32828
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 65281
Connection: keep-alive
X-Served-By: cache-sjc10054-SJC, cache-bma1673-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 3, 4
X-Timer: S1663682550.695419,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (64997)
Size:   32828
Md5:    9a49c00a13898c31cb9ae140287b524d
Sha1:   79aa80ae3e30b6f4ea929e6e118b16c68db216c2
Sha256: 7d4c52ebfd0e158669a414ec9c2ee33a1296b20d59370d8b3193c1ec81a9ec35
                                        
                                            GET /js/site/main-customer-accounts-site.js?buildTime=1663617132 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Mon, 19 Sep 2022 17:46:56 GMT
ETag: "6328ab10-8250f"
Expires: Mon, 03 Oct 2022 19:54:29 GMT
Cache-Control: max-age=1209600
X-Host: blu68.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 158930
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 65280
Connection: keep-alive
X-Served-By: cache-sjc10044-SJC, cache-bma1680-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1663682550.696637,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (32007)
Size:   158930
Md5:    f740fdfbcf394f270a9b176029fa6f37
Sha1:   5f20c49627104282744508eb0278d7185128532e
Sha256: 3021f0f944c9bd7c6e995601f25b3d970e0bd41f9a411f08b2871bb5415a8707
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 14:02:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.202
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 06:15:30 GMT
expires: Sun, 17 Sep 2023 06:15:30 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 287219
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65483)
Size:   33593
Md5:    a54a444f20643b131117dc2112cca05f
Sha1:   074964746b12ff1d30f7656310d6154ae1cc98b5
Sha256: aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
                                        
                                            GET /files/main_style.css?1663615523 HTTP/1.1 
Host: www.cowichanstewardship.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.45
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Tue, 20 Sep 2022 14:02:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu70.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (303)
Size:   2558
Md5:    3fdbba1b70efa50f97da16c8b455a03f
Sha1:   07fc7fe7f4f439ac5da16e4c273ffcdaa96f969c
Sha256: 67ef4cc97724beb57317e7fdbf6f9926e925bfa0fa7bc5dea732aa0987718da0

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: image/png
                                        
X-GUploader-UploadID: ADPycdtBep7ROccdUt9-QNl5VbmRIpCUwFb5y0r5I6-vVE2nBsM9PCbzHI6xHxQIvmEjxA2YbetFcXQVHBR8TKD8jioOTQFmXNb8
x-goog-generation: 1549995548326466
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9677
x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ==
x-goog-storage-class: STANDARD
Server: UploadServer
Expires: Sun, 17 Apr 2022 00:19:21 GMT
Cache-Control: public, max-age=86400, s-maxage=259200
Last-Modified: Tue, 12 Feb 2019 18:19:08 GMT
ETag: "6e0f7ad31bf187e0d88fc5787573ba71"
Content-Length: 9677
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Via: 1.1 varnish
Age: 48479
Connection: keep-alive
X-Served-By: cache-bma1680-BMA
X-Cache: HIT
X-Cache-Hits: 171
X-Timer: S1663682550.841690,VS0,VE0
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  PNG image data, 199 x 97, 8-bit colormap, non-interlaced\012- data
Size:   9677
Md5:    6e0f7ad31bf187e0d88fc5787573ba71
Sha1:   14e8b85cc32a01c8901e4ac0160582d29a45e9e6
Sha256: 580ef6409e067a4ec4a427400c7d6216184869e2da53343df20753cc1f8a46cd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 14:02:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/wsnbn/snowday262.js HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Wed, 14 Sep 2022 16:18:50 GMT
ETag: "6321feea-124fe"
Expires: Thu, 29 Sep 2022 08:38:41 GMT
Cache-Control: max-age=1209600
X-Host: blu123.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 25752
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:30 GMT
Age: 451429
Connection: keep-alive
X-Served-By: cache-sjc10051-SJC, cache-bma1680-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 4842
X-Timer: S1663682550.010409,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (2512)
Size:   25752
Md5:    234327230add9a5a5d61a48829ea4565
Sha1:   7966cc0e4bd76f88ff193c8a99a067de804b7129
Sha256: bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
                                        
                                            GET /fonts/Open_Sans/regular.woff2 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.cowichanstewardship.com
Connection: keep-alive
Referer: http://cdn2.editmysite.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Server: nginx
Last-Modified: Thu, 08 Sep 2022 17:37:44 GMT
ETag: "631a2868-4164"
Expires: Thu, 22 Sep 2022 18:06:47 GMT
Cache-Control: max-age=1209600
X-Host: grn123.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Content-Length: 16740
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:30 GMT
Age: 1022142
Connection: keep-alive
X-Served-By: cache-sjc10025-SJC, cache-bma1631-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 3, 40
X-Timer: S1663682550.025097,VS0,VE0
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size:   16740
Md5:    e43b535855a4ae53bd5b07a6eeb3bf67
Sha1:   6507312d9491156036316484bf8dc41e8b52ddd9
Sha256: b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
                                        
                                            GET /fonts/Open_Sans/bold.woff2 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.cowichanstewardship.com
Connection: keep-alive
Referer: http://cdn2.editmysite.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Server: nginx
Last-Modified: Thu, 08 Sep 2022 17:37:44 GMT
ETag: "631a2868-3ff4"
Expires: Thu, 22 Sep 2022 18:06:47 GMT
Cache-Control: max-age=1209600
X-Host: blu56.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Content-Length: 16372
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:30 GMT
Age: 1022142
Connection: keep-alive
X-Served-By: cache-sjc10044-SJC, cache-bma1660-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 29, 40
X-Timer: S1663682550.027318,VS0,VE0
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16372, version 1.0\012- data
Size:   16372
Md5:    e45478d4d6f15dafda1f25d9e0fb5fa1
Sha1:   52cb490cd0ee4442ede034085cda9652b206f91c
Sha256: d1a17abb1a999842fe425e1a4ace9d90f9c18f3595c21a63d89f0611b90cfd72
                                        
                                            GET /fonts/Actor/regular.woff2 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.cowichanstewardship.com
Connection: keep-alive
Referer: http://cdn2.editmysite.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Server: nginx
Last-Modified: Thu, 08 Sep 2022 17:37:42 GMT
ETag: "631a2866-55d8"
Expires: Thu, 22 Sep 2022 18:09:03 GMT
Cache-Control: max-age=1209600
X-Host: grn5.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Content-Length: 21976
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:30 GMT
Age: 1022006
Connection: keep-alive
X-Served-By: cache-sjc10021-SJC, cache-bma1657-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 2
X-Timer: S1663682550.031070,VS0,VE0
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21976, version 1.0\012- data
Size:   21976
Md5:    7ee7f470152787952958d6adfa07b2ac
Sha1:   14a09075b2cbec9ff65302de9d634f9011f70e53
Sha256: b31aaefa522d67846638fa4181bbb22375bd0cb1beb37d514609c3821953161a
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 20 Sep 2022 13:03:22 GMT
Expires: Tue, 20 Sep 2022 13:06:41 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HxoYD8ALwa9Hyqi_kJjfW--v89z5zXAk6_gOsU5pGbl53AMTe0ZUdQ==
Age: 3548


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /sprites/site/forms-s3786257308.png HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn2.editmysite.com/css/sites.css?buildTime=1663617132

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Last-Modified: Tue, 06 Sep 2022 15:23:03 GMT
ETag: "631765d7-155"
Expires: Wed, 21 Sep 2022 07:42:59 GMT
Cache-Control: max-age=1209600
X-Host: grn104.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Content-Length: 341
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:30 GMT
Age: 1145971
Connection: keep-alive
X-Served-By: cache-sjc10073-SJC, cache-bma1680-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 4
X-Timer: S1663682550.108996,VS0,VE0
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  PNG image data, 13 x 26, 8-bit gray+alpha, non-interlaced\012- data
Size:   341
Md5:    8bebedaad333db9b949dab050728d9be
Sha1:   9c58d43d230d8b5e6befc2198999840ff555934c
Sha256: 6928442dcdfd67ab71262fb35b80fdddb13277f7fceb3744d417b2d22bcaeecb
                                        
                                            GET /css/free-footer-v3.css?buildtime=1663645305 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Last-Modified: Mon, 19 Sep 2022 20:20:44 GMT
ETag: "6328cf1c-a49"
Expires: Tue, 04 Oct 2022 03:51:57 GMT
Cache-Control: max-age=1209600
X-Host: grn54.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 886
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:30 GMT
Age: 36632
Connection: keep-alive
X-Served-By: cache-sjc10076-SJC, cache-bma1661-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 182
X-Timer: S1663682550.111571,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  ASCII text, with very long lines (2632)
Size:   886
Md5:    5c465ace654da8d0e367f91e7751ae62
Sha1:   f218f483eccbba5be90abf97eff819569329f8b7
Sha256: 0c91c8e311bc809644913a2ff023585ba587ecfc834ba3cd152544e75d422bd9
                                        
                                            GET /uploads/1/4/4/5/14453984/published/csrt-horizontal-logo-transparent.png?1660357851 HTTP/1.1 
Host: www.cowichanstewardship.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.45
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 20 Sep 2022 14:02:29 GMT
Content-Length: 38798
Connection: keep-alive
Last-Modified: Sat, 13 Aug 2022 02:30:51 GMT
x-rgw-object-type: Normal
ETag: "a8ff44aaff9abdf2b3f69d8fd509e435"
x-amz-request-id: tx000000000000036f033f2-0063175f9a-bfe27ea-sfo1
X-Storage-Bucket: z9407
X-Storage-Object: 94074b58473f02603e9d3681d1d4aab0e9462b64b15b783380ac29ccd7b794dc
X-Host: blu61.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 484 x 84, 8-bit/color RGBA, non-interlaced\012- data
Size:   38798
Md5:    a8ff44aaff9abdf2b3f69d8fd509e435
Sha1:   3e8ddf7b31cd61afba99d2ad84c88fc91a6f1f37
Sha256: 94074b58473f02603e9d3681d1d4aab0e9462b64b15b783380ac29ccd7b794dc

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /uploads/1/4/4/5/14453984/logo-sidney-anglers_5.png HTTP/1.1 
Host: www.cowichanstewardship.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.45
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 20 Sep 2022 14:02:29 GMT
Content-Length: 39100
Connection: keep-alive
Last-Modified: Tue, 14 May 2019 20:46:38 GMT
x-rgw-object-type: Normal
ETag: "ffa407815a593c113a30979fdee884df"
x-amz-request-id: tx00000000000000596c4bd-006329c7f5-c695612-sfo1
X-Storage-Bucket: ze9aa
X-Storage-Object: e9aa3c9bb5663dc1b85c802b4bc6f076b3d88500f9297fd829c1cd6e43b8aba5
X-Host: blu76.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes


--- Additional Info ---
Magic:  PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size:   39100
Md5:    ffa407815a593c113a30979fdee884df
Sha1:   d73173b77e772c28e92737da26fcacea990aebcf
Sha256: e9aa3c9bb5663dc1b85c802b4bc6f076b3d88500f9297fd829c1cd6e43b8aba5
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 14:02:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /images/landing-pages/global/logotype.svg HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1663645305

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
X-GUploader-UploadID: ADPycduITtRhv_5h862549JhDllw6e8s6BnV_OXwumpJRf4tFUCeyTwCkktV2dvyagvDEGSph_ZPdebwS4sUYTbNDwxM4yW9wl-L
Cache-Control: public, max-age=86400, s-maxage=259200
Expires: Sat, 17 Sep 2022 00:08:57 GMT
Last-Modified: Wed, 10 Oct 2018 21:37:00 GMT
ETag: "bc61dcb431a14c508075eeff4f74523a"
x-goog-generation: 1539207420450301
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3507
x-goog-hash: crc32c=vgUlyw==, md5=vGHctDGhTFCAde7/T3RSOg==
x-goog-storage-class: STANDARD
Server: UploadServer
Content-Encoding: gzip
Content-Length: 1488
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:30 GMT
Via: 1.1 varnish
Age: 49981
Connection: keep-alive
X-Served-By: cache-bma1680-BMA
X-Cache: HIT
X-Cache-Hits: 165
X-Timer: S1663682550.154714,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2858)
Size:   1488
Md5:    0d1c9fb7005532e7b245cfdf1280d805
Sha1:   2466421992f1fb0e44829833aaee7afc0e5ac7cc
Sha256: 8691b92eed1360903b2182d81e491c80141d0cd051366ce3e8c4f359538eb1ff
                                        
                                            GET /fonts/SQ_Market/sqmarket-medium.woff2 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.cowichanstewardship.com
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Server: nginx
Last-Modified: Thu, 08 Sep 2022 17:37:45 GMT
ETag: "631a2869-7830"
Expires: Wed, 28 Sep 2022 08:35:40 GMT
Cache-Control: max-age=1209600
X-Host: blu74.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Content-Length: 30768
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:30 GMT
Age: 538010
Connection: keep-alive
X-Served-By: cache-sjc10054-SJC, cache-bma1657-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 12, 1518
X-Timer: S1663682550.158749,VS0,VE0
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30768, version 1.393\012- data
Size:   30768
Md5:    2344124773c71bf4fa4ad407e7c3a467
Sha1:   3394a43ab1efab8a22a1f07222f7f02a9e12cbb8
Sha256: bd4d2e29f503390e4951af9232fc43780b43d349647188d8f3f600835f16afb7
                                        
                                            GET /files/theme/social-no-border-grey.png?1663615523 HTTP/1.1 
Host: www.cowichanstewardship.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/files/main_style.css?1663615523
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.45
HTTP/1.1 200 OK
Content-Type: image/png; charset=binary
                                        
Server: nginx
Date: Tue, 20 Sep 2022 14:02:30 GMT
Content-Length: 2854
Connection: keep-alive
Last-Modified: Sun, 05 Jul 2020 15:40:35 GMT
x-rgw-object-type: Normal
ETag: "5da81cd882f2d778762bc98ccca248ea"
x-amz-request-id: tx000000000000001b33d6b-0062847b9f-b9fbc7f-sfo1
X-Storage-Bucket: zae2b
X-Storage-Object: ae2bb402ba98a2745825f357d8004e64f0f87ca97a23f347fc842d10dc1f16ff
X-Host: grn140.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 220 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size:   2854
Md5:    5da81cd882f2d778762bc98ccca248ea
Sha1:   218d68f2ce79c547a7e06ca36edea66047976e89
Sha256: ae2bb402ba98a2745825f357d8004e64f0f87ca97a23f347fc842d10dc1f16ff
                                        
                                            GET /recaptcha/api.js?_=1663682550061 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Tue, 20 Sep 2022 14:02:30 GMT
date: Tue, 20 Sep 2022 14:02:30 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (850), with no line terminators
Size:   556
Md5:    27b68162c75bebb4dacf518c46e974d5
Sha1:   99abc7e3e02891bec5de3dda3cb18a6f865f82bc
Sha256: 93415a1ed398b656767f092c53ca274ad9ae9c8cb0672831fa3c4ab275f994d1
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 14:02:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /powr.js HTTP/1.1 
Host: www.powr.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

                                         
                                         172.67.5.146
HTTP/1.1 301 Moved Permanently
                                        
Date: Tue, 20 Sep 2022 14:02:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 20 Sep 2022 15:02:30 GMT
Location: https://www.powr.io/powr.js
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74db19635e1eb51d-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            GET /files/theme/button.png?1663615523 HTTP/1.1 
Host: www.cowichanstewardship.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/files/main_style.css?1663615523
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.45
HTTP/1.1 200 OK
Content-Type: image/png; charset=binary
                                        
Server: nginx
Date: Tue, 20 Sep 2022 14:02:30 GMT
Content-Length: 1924
Connection: keep-alive
Last-Modified: Sun, 05 Jul 2020 15:40:37 GMT
x-rgw-object-type: Normal
ETag: "aa65bbf2ec4d6f085dcf455e6edfcf66"
x-amz-request-id: tx000000000000001ec2c1a-006284b2b3-b9fbc64-sfo1
X-Storage-Bucket: zc3c2
X-Storage-Object: c3c290aad3091ee38186c2fc897a4d3f7c2011d34e7c692bac82b42695b9ae36
X-Host: blu61.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 400 x 209, 8-bit/color RGBA, non-interlaced\012- data
Size:   1924
Md5:    aa65bbf2ec4d6f085dcf455e6edfcf66
Sha1:   9b60a18456ffe1ea00fff7ae492d5d5aa62fcf25
Sha256: c3c290aad3091ee38186c2fc897a4d3f7c2011d34e7c692bac82b42695b9ae36
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2087
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:02:30 GMT
Last-Modified: Tue, 20 Sep 2022 13:27:43 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6494
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:02:30 GMT
Last-Modified: Tue, 20 Sep 2022 12:14:16 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279

                                        
                                            OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://www.cowichanstewardship.com/
Origin: http://www.cowichanstewardship.com
Connection: keep-alive

                                         
                                         44.235.202.207
HTTP/1.1 200 OK
                                        
Date: Tue, 20 Sep 2022 14:02:30 GMT
Content-Length: 0
Connection: keep-alive
Server: nginx
Access-Control-Allow-Origin: http://www.cowichanstewardship.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type, SP-Anonymous
Access-Control-Max-Age: 5

                                        
                                            GET /powr.js HTTP/1.1 
Host: www.powr.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cowichanstewardship.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.5.146
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 20 Sep 2022 14:02:30 GMT
cache-control: max-age=604800, public
cf-bgj: minify
expires: Wed, 20 Sep 2023 08:44:12 GMT
last-modified: Tue, 20 Sep 2022 08:44:04 GMT
vary: Accept-Encoding
via: 1.1 vegur
cf-cache-status: HIT
age: 7990
server: cloudflare
cf-ray: 74db1963980f0b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (15800), with no line terminators
Size:   22867
Md5:    0ce5af784969a4d07904ab9d67a04f75
Sha1:   cf4bdedc27b5ef48b78db94cd6267ea260267241
Sha256: 2244d38af1c671243231a3f18af2d17abf1ebcba1c03a86e303b0cf01b576186
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 14:02:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.cowichanstewardship.com
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:37:29 GMT
expires: Thu, 14 Sep 2023 05:37:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Sep 2022 00:24:01 GMT
age: 548701
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (581)
Size:   157726
Md5:    6519c7c04cf32a57b1c5ee45a73c233e
Sha1:   4939bb921988e9eb13780cc2244f3099776e9bfb
Sha256: 8352dd4e3e0fe82562cdc280c020fc31d2c6d054f7ead441a3b18de8ef04401b
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /OnkqAcLs7XhvMXs0EcTBw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.38.227.80
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: z2Yg1UMNOumNv2B8CRfDvaV8YwU=

                                        
                                            POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
Content-Length: 1780
Origin: http://www.cowichanstewardship.com
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

                                         
                                         44.235.202.207
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
                                        
Date: Tue, 20 Sep 2022 14:02:30 GMT
Content-Length: 2
Connection: keep-alive
Server: nginx
Set-Cookie: sp=23208b60-99af-479a-b9ce-46c0bd280f46; Expires=Wed, 20 Sep 2023 14:02:30 GMT; Domain=; Path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
Access-Control-Allow-Origin: http://www.cowichanstewardship.com
Access-Control-Allow-Credentials: true


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    444bcb3a3fcf8389296c49467f27e1d6
Sha1:   7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 14:02:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.cowichanstewardship.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Cookie: is_mobile=0; language=en; _snow_ses.bfc4=*; _snow_id.bfc4=6de9b00b-3136-4327-92ce-84ddcc7a19c2.1663682550.1.1663682550.1663682550.2e282309-8dd4-43c0-8e41-1cfc412db454

                                         
                                         199.34.228.45
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Tue, 20 Sep 2022 14:02:30 GMT
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000000c8f1f2-0061a70684-a9f1b25-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: blu42.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size:   4286
Md5:    4d27526198ac873ccec96935198e0fb9
Sha1:   b98d8b73ad6a0f7477c3397561b4aab37bf262aa
Sha256: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
                                        
                                            POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1 
Host: www.cowichanstewardship.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: http://www.cowichanstewardship.com
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Cookie: is_mobile=0; language=en; _snow_ses.bfc4=*; _snow_id.bfc4=6de9b00b-3136-4327-92ce-84ddcc7a19c2.1663682550.1.1663682550.1663682550.2e282309-8dd4-43c0-8e41-1cfc412db454

                                         
                                         199.34.228.45
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Date: Tue, 20 Sep 2022 14:02:30 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu72.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Size:   348
Md5:    a944dd688c99d2901d6719be713271c0
Sha1:   4f5454d5d434829baf46671638610791758725d9
Sha256: adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
                                        
                                            GET /uploads/1/4/4/5/14453984/22-08-18-qss-poster-kb_orig.png HTTP/1.1 
Host: www.cowichanstewardship.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Cookie: is_mobile=0; language=en

                                         
                                         199.34.228.45
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 20 Sep 2022 14:02:30 GMT
Content-Length: 515440
Connection: keep-alive
Last-Modified: Thu, 25 Aug 2022 15:57:45 GMT
x-rgw-object-type: Normal
ETag: "a3da9ffb62b8b6a328a3a98aaa59fe1f"
x-amz-request-id: tx000000000000004f75b75-006328b270-c695612-sfo1
X-Storage-Bucket: z0e8b
X-Storage-Object: 0e8bccb133d2083711f662fb6d7bb3e83b44a788a86a674f16e84babb57deb97
X-Host: blu76.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 600 x 800, 8-bit/color RGBA, non-interlaced\012- data
Size:   515440
Md5:    a3da9ffb62b8b6a328a3a98aaa59fe1f
Sha1:   19e05960fda0be1e2cb126b39d9a66c120d23e42
Sha256: 0e8bccb133d2083711f662fb6d7bb3e83b44a788a86a674f16e84babb57deb97
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7719
Expires: Tue, 20 Sep 2022 16:11:10 GMT
Date: Tue, 20 Sep 2022 14:02:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7719
Expires: Tue, 20 Sep 2022 16:11:10 GMT
Date: Tue, 20 Sep 2022 14:02:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7719
Expires: Tue, 20 Sep 2022 16:11:10 GMT
Date: Tue, 20 Sep 2022 14:02:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7719
Expires: Tue, 20 Sep 2022 16:11:10 GMT
Date: Tue, 20 Sep 2022 14:02:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7719
Expires: Tue, 20 Sep 2022 16:11:10 GMT
Date: Tue, 20 Sep 2022 14:02:31 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
age: 57168
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11832
Md5:    2ed7323b395e757f7766ea0045efdaca
Sha1:   8b91bc3069a3217bc719c27959d578b353b5d9dc
Sha256: 8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11145
x-amzn-requestid: dcb726a6-2f43-4170-a53c-4f0d2883309e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yuh7yHfHIAMFu4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e37e-11bf06e96123e01c11854cbb;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:47:42 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oJyChyEdTbGx6oQCRy6IVMS8qU22LupFYn6FOii3p4BUVFyKnssQ7Q==
via: 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:05:54 GMT
age: 57397
etag: "ff8286c4d2cf87a1865d56d082bc5235dba60ad7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11145
Md5:    c283017ec789693602177a2785177e21
Sha1:   ff8286c4d2cf87a1865d56d082bc5235dba60ad7
Sha256: 520db2567ad5529d35d2ac63b94d4186848382e9c86d0c4355ab979b34f0e0ab
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9873
x-amzn-requestid: 7171299f-e6e3-40ef-a292-33779346e1ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI-FDIIAMF-xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-31f9413434a6b00e77e7709b;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: evL3aL1ULo6B2a8Rp6iILKCX7F14O9HMSbEqkEY3XHFhmMptE8FaVw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:44 GMT
age: 57167
etag: "0e14f5062e40ce94346494ff947bfcf74b5e88c1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9873
Md5:    7ca0c1a7f205ad07f1cce80b26448873
Sha1:   0e14f5062e40ce94346494ff947bfcf74b5e88c1
Sha256: ebc960279032671136749823c126ec807334d9eaf2b019abcc63b41bcdbf4a7f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9543
x-amzn-requestid: 17be04c9-54f0-4988-82dd-f13911a2a629
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugINHN1IAMF8iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09a-35496b4c21c23dec75257964;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -VBFetQNkmIiWeJtW5IOheaPLdDHM9iKhiGPzVcA3_KQk7Qha5VrXg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:14:25 GMT
age: 56886
etag: "a852edb64a7220532aa619ab2a440c3a7e11b97a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9543
Md5:    30fbdfee7ec4513a5ff3dfcb7282f816
Sha1:   a852edb64a7220532aa619ab2a440c3a7e11b97a
Sha256: 4adee59f97bea412c6a0a786d0a27e431a497198b9047a75841b0a530803bdfe
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9865
x-amzn-requestid: 7eeeff5b-cb13-4060-96a6-bf5a4be57331
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugokGQVoAMFXmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e169-4211dbbe1a22d0255a45aff0;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:38:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2kU9PLuzusMR04mNUdwbU6-120ESVhYJtNaIixERO68Vo9jEfP3JWg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:04:47 GMT
age: 57464
etag: "b8484fb5443344b03e52dd56b1d6c5682eb6221a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9865
Md5:    1a7d863845e96c5927e812f325c08c16
Sha1:   b8484fb5443344b03e52dd56b1d6c5682eb6221a
Sha256: fcb382029332a44deaf212298b618074a752d674d0c735a1b8b861ab4bb6ff0f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10894
x-amzn-requestid: f7aad96e-af80-4db7-8bc1-d1e09a9b37e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeJQGHhOIAMFYuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322559a-538534e91448af217c59ab3d;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:28:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P7aZQzmAvqn2rcHJUQjHo0Dcg8dsrqseey5mNOabfq1b857M4SUMDQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 10:06:02 GMT
age: 14189
etag: "ebd83f29edd95217dfa4f4c7a94eddf34dd58b14"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10894
Md5:    d3e70b2859ca89b353682d03f6b46b93
Sha1:   ebd83f29edd95217dfa4f4c7a94eddf34dd58b14
Sha256: 43ad8f8b0a664bbec39e0410c1201498a2d2e36e5bd7d5ece8d65b15230ec50b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4477
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:02:32 GMT
Last-Modified: Tue, 20 Sep 2022 12:47:55 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4613
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:02:32 GMT
Last-Modified: Tue, 20 Sep 2022 12:45:39 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /npm/jquery@1.11.2/dist/jquery.min.js HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.229
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 1.11.2
x-jsd-version-type: version
etag: W/"176de-sz7jtCuYju+dTWJJW25U4j3WQv0"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 20 Sep 2022 14:02:32 GMT
age: 6698207
x-served-by: cache-fra19169-FRA, cache-bma1625-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33348
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32047)
Size:   33348
Md5:    63e182df0883a4702e8db066451bdba0
Sha1:   993f0816fd2c8286c0f59df00e2697d6f7ad25cb
Sha256: b9c375a13d4fa1e14ba88460ddb93ac9d380e77965cceb203145127f6ea82961
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4477
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:02:32 GMT
Last-Modified: Tue, 20 Sep 2022 12:47:55 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 14:02:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "A97D49D6DF62A7366E6ED99006DC39847F2FA103"
Expires: Wed, 21 Sep 2022 01:00:00 GMT
Last-Modified: Tue, 20 Sep 2022 13:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1135
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74db196eff2fb517-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    ff5b1a5950a24578fea623ad48f0a331
Sha1:   5f6e1d355740a71af366a7fdb2eff3f0c6a68a1a
Sha256: ddd0303186be361a81328fbd96a5ecd2a5fa5902f8b632cc24fd2170a5d05138
                                        
                                            GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d HTTP/1.1 
Host: ka-p.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.23.52
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 20 Sep 2022 14:02:32 GMT
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 9129238
accept-ranges: bytes
server: cloudflare
cf-ray: 74db196f6c7ffabc-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26366)
Size:   4194
Md5:    7fd743485fa194e25e2a207bff6c258a
Sha1:   97c999d752b95ee1ed6271a29aa58109dc17281e
Sha256: dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc
                                        
                                            GET /releases/v5.15.4/css/pro.min.css?token=14579ba48d HTTP/1.1 
Host: ka-p.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.23.52
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 20 Sep 2022 14:02:32 GMT
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 9126632
accept-ranges: bytes
server: cloudflare
cf-ray: 74db196f6c79fabc-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65397)
Size:   54194
Md5:    dc9270247a97f75913a5d8934c24de03
Sha1:   ed9b0fa01b552571f99d529ed355b2ba91cfc48d
Sha256: 847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8
                                        
                                            GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d HTTP/1.1 
Host: ka-p.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.23.52
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 20 Sep 2022 14:02:32 GMT
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 1418626
accept-ranges: bytes
server: cloudflare
cf-ray: 74db196f6c7cfabc-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27832)
Size:   2603
Md5:    eaaabd3f60063923cd5333eb1d7a20a1
Sha1:   0da69706105e28896a1f6eeaa91d5bec1b82f7f1
Sha256: f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
                                        
                                            GET /nr-1184.min.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: aOKLVFxehe299BchQZ1iqWYmG3f1UoB2kHc2XCz2yQy3U3WlwJQI4pRl4GtHGYjos3ZMLdEYhQQ=
x-amz-request-id: GB4468MZ82K6V9J6
last-modified: Mon, 28 Sep 2020 16:34:45 GMT
etag: "3d7f312be60d08a2568e311e4762f3af"
x-amz-version-id: null
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Tue, 20 Sep 2022 14:02:32 GMT
via: 1.1 varnish
x-served-by: cache-bma1622-BMA
x-cache: HIT
x-cache-hits: 38
x-timer: S1663682553.801142,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 10624
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27995), with no line terminators
Size:   10624
Md5:    43e0aec0456ae54841a52fe989abb1ec
Sha1:   d9e080d86beada72e9e42092bede868db3d4aee4
Sha256: 9d7ecd792af230cea192e0786491921415d809686321da7414b3df85d875de07
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6063
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:02:32 GMT
Last-Modified: Tue, 20 Sep 2022 12:21:30 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 14:02:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1096&ck=1&ref=https://www.powr.io/plugins/social-feed/cached_view&be=478&fe=943&dc=851&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1663682551728,%22n%22:0,%22f%22:1,%22dn%22:1,%22dne%22:1,%22c%22:1,%22s%22:1,%22ce%22:1,%22rq%22:10,%22rp%22:272,%22rpe%22:272,%22dl%22:277,%22di%22:807,%22ds%22:823,%22de%22:851,%22dc%22:941,%22l%22:941,%22le%22:945%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken HTTP/1.1 
Host: bam.nr-data.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.247.241.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Tue, 20 Sep 2022 14:02:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 74db1973ef2f1bfa-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=65e8f3d7d786ca0d; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   73
Md5:    516a128bb6000ca8154792678f4333fb
Sha1:   41d0257bea96afd36c6f3e40fcfdc9ca247f8e01
Sha256: 9fa62b52f24b87a40410fe842cb9be494abed114a2eac2eb406c8b4a4d372d10
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:02:33 GMT
Last-Modified: Tue, 20 Sep 2022 12:56:22 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: A_2Oqk7C8KiT04NLbuI8ab_lVQlKF-WS9HTleCq7kb6dn47rM6Oipg==
Age: 3971

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:02:33 GMT
Last-Modified: Tue, 20 Sep 2022 12:40:47 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 41WgowEJrXKKPmPl3c8mSINYSSwGYJEWMt_yHmfNJVgKGG3RFT3Vig==
Age: 4906

                                        
                                            GET /s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7664
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 22:49:22 GMT
expires: Tue, 19 Sep 2023 22:49:22 GMT
cache-control: public, max-age=31536000
age: 54791
last-modified: Mon, 09 May 2022 18:44:31 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   8802
Md5:    2099d00d54f634e9d66466f76f631fc3
Sha1:   1316596c5c9bd373fb77b95bdfc29836bc1c2422
Sha256: f347505429a22ee26981d0ef72d5ba38d96c03208aaa90a157373e7a0202cf3e
                                        
                                            GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 18:53:39 GMT
expires: Tue, 19 Sep 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 68934
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size:   16740
Md5:    e43b535855a4ae53bd5b07a6eeb3bf67
Sha1:   6507312d9491156036316484bf8dc41e8b52ddd9
Sha256: b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
                                        
                                            GET /s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://public.powrcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11016
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 16:44:00 GMT
expires: Fri, 15 Sep 2023 16:44:00 GMT
cache-control: public, max-age=31536000
age: 422313
last-modified: Wed, 24 Jul 2019 01:18:50 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   12324
Md5:    61ff8bd11e2dbc8a77e53794aaa1c16a
Sha1:   f68067037031a860d7d3f38c9c9afb3505e99fcf
Sha256: 17b3754d4921ba5bf2a777b7482abbc443bc841abc511c693e26188e002117f3
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 498505
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            OPTIONS /social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=674683289397912&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=674683289397912&data%5B0%5D%5BinstagramUsername%5D=&data%5B0%5D%5BconnectionType%5D=basic&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=Cowichan+Stewardship+Roundtable&data%5B0%5D%5BmaxPosts%5D=6&premium=free&app_id=33308764&refreshRate=1200 HTTP/1.1 
Host: powr-outlet-v2.herokuapp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-csrf-token
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.22.52.7
HTTP/1.1 204 No Content
                                        
Server: Cowboy
Content-Length: 0
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.powr.io
Vary: Origin, Access-Control-Request-Headers
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Headers: x-csrf-token
Date: Tue, 20 Sep 2022 14:02:33 GMT
Via: 1.1 vegur

                                        
                                            GET /social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=674683289397912&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=674683289397912&data%5B0%5D%5BinstagramUsername%5D=&data%5B0%5D%5BconnectionType%5D=basic&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=Cowichan+Stewardship+Roundtable&data%5B0%5D%5BmaxPosts%5D=6&premium=free&app_id=33308764&refreshRate=1200 HTTP/1.1 
Host: powr-outlet-v2.herokuapp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: CSShPWBI6Qbd8RqG1PuzZA6COmz5raQ-VymNqsTLiqpf8JLKq9Wu_oE5SAfdS5VcuE4h5GEtufOH92mjk35ZPw
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.22.52.7
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.powr.io
Vary: Origin
Cache-Control: public, max-age=3600
Date: Tue, 20 Sep 2022 14:02:33 GMT
Content-Length: 138138
Via: 1.1 vegur


--- Additional Info ---
Magic:  data
Size:   173520
Md5:    8fe384ac679068d85f1364969ab09e87
Sha1:   4f9e17d3a82a0166d7db883249fde1a39d3eb9c1
Sha256: 5fb20a4356786118321fbcdb151dbc680494700537dea8bc8109465eb6b2e56c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:02:33 GMT
Last-Modified: Tue, 20 Sep 2022 13:46:53 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LQoPPWD8ZQzwqBZ-zEMTZcCTkFh6hzLQYaCj6sgO0sKTUScGT4y7MQ==
Age: 940

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:02:33 GMT
Last-Modified: Tue, 20 Sep 2022 13:33:05 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lGNdwuFpGZ71iM3Z6twf7sNakB9DEzkhXm5WZXn8dOTKIAO1ru19dQ==
Age: 1768

                                        
                                            OPTIONS /33308764 HTTP/1.1 
Host: powr-counter.herokuapp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.201.81.34
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Server: Cowboy
Date: Tue, 20 Sep 2022 14:02:34 GMT
Connection: keep-alive
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Transfer-Encoding: chunked
Via: 1.1 vegur

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6024
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:02:34 GMT
Last-Modified: Tue, 20 Sep 2022 12:22:10 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   2723
Md5:    afce8ff2250b8e987777eb764ff5ff2e
Sha1:   57956ea23badbc8f682f14d3c6cd18206e969337
Sha256: 0d92f4ef6d4efafe6a9c89304e4ad66e078bdad0fb012779c13e91fbf431202a
                                        
                                            GET /674683289397912/picture?type=square HTTP/1.1 
Host: graph.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.16
HTTP/2 302 Found
content-type: image/jpeg
                                        
x-fb-rlafr: 0
location: https://scontent-arn2-1.xx.fbcdn.net/v/t31.18172-1/21200833_674684759397765_6708879507682114040_o.jpg?stp=cp0_dst-jpg_p50x50&_nc_cat=107&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=v1S8SGm1fx8AX-3PwD0&_nc_ht=scontent-arn2-1.xx&edm=AOf6bZoEAAAA&oh=00_AT8ZSIRURSDVWmQv4Ri8yVSXt6e8GUDHEKeI8LlKxwMqSQ&oe=634F8FD0
access-control-allow-origin: *
facebook-api-version: v8.0
strict-transport-security: max-age=15552000; preload
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-fb-request-id: AeocZnQoGcC4xTHbJlg8xhh
x-fb-trace-id: H5kDoOouI6F
x-fb-rev: 1006232667
x-fb-debug: 3YSAm+16Dh/vEl6xUoFlVIGpxnyK55nM3UPv17Wi270I5QjQgcVS1XGHyn11qf/FIqS8q97JiJL1b+7DhakUtA==
content-length: 0
date: Tue, 20 Sep 2022 14:02:34 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6024
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:02:34 GMT
Last-Modified: Tue, 20 Sep 2022 12:22:10 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   15389
Md5:    f5edcbb5f69eb603e7223d68f8801fbb
Sha1:   97ec9a19e21c2c8743291feca9665e4771a98c50
Sha256: ce8e61f202028a3766b3985a7500024d1d6f38c881daba668fb8e73025c08da1
                                        
                                            POST /33308764 HTTP/1.1 
Host: powr-counter.herokuapp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 614
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.201.81.34
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
                                        
Server: Cowboy
Date: Tue, 20 Sep 2022 14:02:33 GMT
Connection: keep-alive
Etag: W/"36a9e7f1c95b82ffb99743e0c5c4ce95"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: 95bc3d22-4a1e-492a-8f81-3dee392908fa
X-Runtime: 0.055718
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Vary: Origin
Transfer-Encoding: chunked
Via: 1.1 vegur


--- Additional Info ---
Magic:  data
Size:   18115
Md5:    0817d761aa21f941df092c68213ef3cf
Sha1:   cec8d93641869f4e6297e7c826081bcd1e22f9f6
Sha256: 57a60a1fe3b2e1802a67526b099b7963d1ef4b118a5b8f459bb452ffda7ed206
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 14:02:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /14579ba48d.js HTTP/1.1 
Host: kit.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.22.52
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Tue, 20 Sep 2022 14:02:32 GMT
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fuu_NKRKzsFcWtfaTAAi
cf-cache-status: HIT
age: 23
server: cloudflare
cf-ray: 74db196ecb3e0b02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   4483
Md5:    10ba84d7b4935cf7b9347ac27bb1c2a6
Sha1:   6c8be2f477d1e3ac6ddec805d7b78c3962777ec2
Sha256: 21b4a7fcb929b319bc6a4e93130e4495f392849219c7b6baec03b81cd3a60701
                                        
                                            GET /v/t31.18172-1/21200833_674684759397765_6708879507682114040_o.jpg?stp=cp0_dst-jpg_p50x50&_nc_cat=107&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=v1S8SGm1fx8AX-3PwD0&_nc_ht=scontent-arn2-1.xx&edm=AOf6bZoEAAAA&oh=00_AT8ZSIRURSDVWmQv4Ri8yVSXt6e8GUDHEKeI8LlKxwMqSQ&oe=634F8FD0 HTTP/1.1 
Host: scontent-arn2-1.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.12
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Mon, 28 Aug 2017 19:08:41 GMT
x-haystack-needlechecksum: 49759146
x-needle-checksum: 3031279687
content-length: 1972
content-digest: adler32=2442579277
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1904183273
date: Tue, 20 Sep 2022 14:02:34 GMT
x-fb-edge-debug: rgdhxOrQbSy44iC2beU7CF71FTxzK8HWdlkgEbgsYahtIAR_rBRiGth85Zu9Us2A0LIPf8f7AuO800w0fRixFA
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Size:   1972
Md5:    52af5834c2d36088062c8f7ec5a3685e
Sha1:   800f0c5d6c51ff8e377b2eedf9be3e1aa8bd20ca
Sha256: 6379e84d42a0550a3f44200ac2afe87c0e967286eb2e083f09be6dda52dd69c1
                                        
                                            GET /v/t39.30808-6/305210775_1914607455405483_2111707467367514500_n.jpg?stp=dst-jpg_s720x720&_nc_cat=111&ccb=1-7&_nc_sid=110474&_nc_ohc=_G-s9iMjHdEAX_iURUm&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT_ZquaeKLRYETzUaiaFQK1mPew4AgYA3Ue6dRZfO_skYQ&oe=632F60B6 HTTP/1.1 
Host: scontent-iad3-1.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.66.19
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Wed, 07 Sep 2022 17:06:42 GMT
accept-ranges: bytes
x-haystack-needlechecksum: 3365207141
x-needle-checksum: 1271131432
content-digest: adler32=1376369312
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 98934
x-fb-trip-id: 1814657579
date: Tue, 20 Sep 2022 14:02:34 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 576x720, components 3\012- data
Size:   98934
Md5:    1e3b09fbb6bb3d8bdab1b7f637a8372f
Sha1:   a575e2588f7c1d2264a5d1df0fc30c427ce2ab09
Sha256: 4681d5576321b623558ef403791983cdef2e868f79f02361cbca58bb75c89ca8
                                        
                                            GET /emg1/v/t13/4910295940065044545?url=https%3a%2f%2fi.cbc.ca%2f1.6500387.1656096161%21%2ffileImage%2fhttpImage%2fimage.jpg_gen%2fderivatives%2f16x9_620%2fjellyfish-bc.jpg&fb_obo=1&utld=fbcdn.net&stp=dst-emg0_q75&ccb=13-1&oh=06_AaoLEUVtUZ7jE2YC41J1-76ViFbbHcRqAgoXgpODF7ITWw&oe=632B7FAF&_nc_sid=5f3a21 HTTP/1.1 
Host: external-iad3-1.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.66.19
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 20 Sep 2022 14:02:04 GMT
content-digest: adler32=4201420742
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-length: 27061
x-fb-trip-id: 1814657579
date: Tue, 20 Sep 2022 14:02:34 GMT
cache-control: max-age=1209600, no-transform
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 620x349, components 3\012- data
Size:   27061
Md5:    22a834a49891a3af62137604e9c2472c
Sha1:   996361bc61f31ed2a48d24137e60d7e2b827d6a7
Sha256: 17d32494f03b61766a6893d4b17acc172cf63f9b20413374fa6487c7a4e35c11
                                        
                                            GET /v/t39.30808-6/292669481_5621056474605637_5830522229708955889_n.jpg?stp=dst-jpg_p480x480&_nc_cat=107&ccb=1-7&_nc_sid=8024bb&_nc_ohc=eaAB2zf_mE8AX8NwX0s&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT8aiks14ghrzZS-TtZ8dmiJch4aJ8RygTwJJtp0ebfvdA&oe=632F8AB2 HTTP/1.1 
Host: scontent-iad3-1.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.66.19
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Thu, 07 Jul 2022 02:01:26 GMT
x-haystack-needlechecksum: 3962856563
x-needle-checksum: 2294408810
content-digest: adler32=2497125066
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 71088
x-fb-trip-id: 1814657579
date: Tue, 20 Sep 2022 14:02:34 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 719x480, components 3\012- data
Size:   71088
Md5:    ddee778e0d2ecb15f9c6fedb08247f96
Sha1:   20dc3b6c5c1e89059b7bb3d5605727183a0aabdf
Sha256: c70ad77e26a5f1268d6549826766d07fc5d23c6b3221fca6ab2190714800e60b
                                        
                                            GET /v/t39.30808-6/294589969_1881756242023938_3691733354646538627_n.jpg?stp=dst-jpg_s720x720&_nc_cat=105&ccb=1-7&_nc_sid=110474&_nc_ohc=PTyO6874cJ0AX8bpAec&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT9cggPHbNCf0Mppt-nwcFJKC38FPpXIRu157tcsv3Pa7g&oe=632E7B63 HTTP/1.1 
Host: scontent-iad3-1.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.66.19
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sat, 23 Jul 2022 02:15:55 GMT
accept-ranges: bytes
x-haystack-needlechecksum: 4156593950
x-needle-checksum: 2873905939
content-digest: adler32=1307445664
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 192007
x-fb-trip-id: 1814657579
date: Tue, 20 Sep 2022 14:02:34 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 647x720, components 3\012- data
Size:   192007
Md5:    b0b0eb16ae02aeb2215b76e5a02f10d1
Sha1:   f5a12a45d5edbb456b91df10fb7668d145445ef3
Sha256: 3e61e34481607d56fd23201e496e26b38025b43a40332107787e35ed57b84258
                                        
                                            GET /v/t39.30808-6/302694205_1909008012632094_4893795998730415534_n.jpg?stp=dst-jpg_p720x720&_nc_cat=109&ccb=1-7&_nc_sid=110474&_nc_ohc=LuwFDCK0HsoAX8OpX_M&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT-JZknI-xC8B1Wu45KW2faiDdq-_OysqAxfY59YLAl40w&oe=632F9CB3 HTTP/1.1 
Host: scontent-iad3-1.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.66.19
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Wed, 31 Aug 2022 03:03:42 GMT
x-haystack-needlechecksum: 3899880977
x-needle-checksum: 3366930301
content-digest: adler32=1617431005
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 109646
x-fb-trip-id: 1814657579
date: Tue, 20 Sep 2022 14:02:34 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x720, components 3\012- data
Size:   109646
Md5:    a86a7b37828bc1669518149f2050d611
Sha1:   b5264c3f623fe648f81ad709cf44749146ad3c9f
Sha256: bc0964f9efd49e7085c504eba6e2f3c1f0bf21cb7997b88550a4a30065fb87f9
                                        
                                            GET /emg1/v/t13/15718781718493118088?url=https%3a%2f%2fwww.facebook.com%2fads%2fimage%2f%3fd%3dAQKn8m4zEVFa_j1GhMr5v2rN_K1FURunrmmaZk5kygaI8RHyPFfYXWG63HnEQTjqZeDof3nQ5fJahUrYNbusnTpXD3TDHQFmxk1MZEht_PDZWyficLDvf8MOkzKOVwiHD-b6Y1vHHGX0MUm-YYzXo6ea&fb_obo=1&utld=fbcdn.net&stp=dst-emg0_q75&ccb=13-1&oh=06_AarDJURaY49YgFmp-RJ5fZnKFMnmV1MiHn75hvf0uGyKmg&oe=632BA239&_nc_sid=5f3a21 HTTP/1.1 
Host: external-iad3-1.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.66.19
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 20 Sep 2022 14:02:04 GMT
content-digest: adler32=3356570123
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-length: 652019
x-fb-trip-id: 1814657579
date: Tue, 20 Sep 2022 14:02:34 GMT
cache-control: max-age=1209600, no-transform
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   653773
Md5:    5808932968f3e9330be0d4b3c25e56fc
Sha1:   7b8bcd8b20853d48b5587f98adda99dcba6a039e
Sha256: 32e83491c5da3fb8a4f8f4b31896e204251e713dfa4f4d5a6245d531a2714c7f
                                        
                                            GET /latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css HTTP/1.1 
Host: public.powrcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.186.248
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 20 Sep 2022 14:02:32 GMT
cf-bgj: minify
cf-polished: origSize=460092
etag: W/"2cbef8bacb84cdf787933b228259ff66"
last-modified: Thu, 15 Sep 2022 05:32:54 GMT
x-amz-id-2: rOZY7MHa5RCv8if14q8kBBkJg8a6xR63GVnz+WweoQTrpeHjlK4gKn6qQR0QLrrjhUS5YhaEHyY=
x-amz-request-id: 38RWPY9XTXEH3X3Z
x-amz-version-id: 4sVXb7jHJeQHJhWzLHlRoE4pUiOKIjGO
cache-control: max-age=2073600
cf-cache-status: HIT
age: 6606
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dgk%2Bsm0akSIrfrjGtwK88nQJFAMmq6UCFs5%2FnL5B7GgwdQPt0XHy%2B1EedFcPWsn4%2BdK3YDh%2FFFgVTVMggmlcQAORqJeRkUzEcQ1l%2BrF%2B83ZdqwKpPVWbW%2BAry%2FpPZECd9Vy4FsY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74db196e5a2bb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /latest/assets/packs/apps-view-2b8b89ec08cb1075456f.js HTTP/1.1 
Host: public.powrcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.186.248
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 20 Sep 2022 14:02:32 GMT
cf-bgj: minify
cf-polished: origSize=1443474
etag: W/"caa98b573dd8f5919ea4fbfd86b5e7b1"
last-modified: Thu, 15 Sep 2022 05:32:47 GMT
x-amz-id-2: fF0pzZjEbeaZKuxf1r85fMDOs583w2t8Aa/2Z4yirOtk+6R2F21lfJC2fTmEKeQhnhXx4+mOVNw=
x-amz-request-id: 38RZWXZFJBZZV80Q
x-amz-version-id: fdwKf.FgOvvmFm3IC2tDHLGKyJzoLyPp
cache-control: max-age=2073600
cf-cache-status: HIT
age: 6606
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xq64LVuu%2BNjwUTkQevTRW8fvo5yri5YMvVhHWUOuqUPRHVqEoB3aI9e1lubjd0LqSjIgZznpRy5dH8OuPchtZ5bQr9G9AE%2BaGsBMOe37cMTZ6fvv14%2F6U%2FnmzElVgE24Cg0j9Gs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74db196e7a6fb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /bootstrap/3.0.0/css/bootstrap.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.11.207
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Tue, 20 Sep 2022 14:02:32 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:03:55 GMT
cdn-cachedat: 11/04/2021 22:40:16
cdn-edgestorageid: 755
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.0
cdn-requestid: a0669b23f8a3a4d2d54e12d18ef5c3e0
cdn-cache: HIT
cf-cache-status: HIT
age: 15900463
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74db196ebd2b0b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/site/main.js?buildTime=1663617132 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

                                         
                                         151.101.85.46
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Last-Modified: Mon, 19 Sep 2022 17:46:56 GMT
ETag: "6328ab10-74804"
Expires: Mon, 03 Oct 2022 19:54:29 GMT
Cache-Control: max-age=1209600
X-Host: grn99.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 146400
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 65280
Connection: keep-alive
X-Served-By: cache-sjc10045-SJC, cache-bma1661-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1663682550.693584,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *


--- Additional Info ---
                                        
                                            GET /latest/assets/packs/apps/socialFeed-67c470227dbe61560cc9.js HTTP/1.1 
Host: public.powrcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.186.248
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 20 Sep 2022 14:02:32 GMT
cf-bgj: minify
cf-polished: origSize=2755265
etag: W/"1cf43ddc786984d12d0cdc7c0beb8dd9"
last-modified: Thu, 15 Sep 2022 05:32:45 GMT
x-amz-id-2: IvFG6m+m8GDoTd9xz6OU8qiD2KQJqwcWBo+4V6zd4cZiEbyxztX3YRyYAU/r932zRaqwM/MPE+E=
x-amz-request-id: 38RPMA6MDED15GRA
x-amz-version-id: pwHJDTOGD6LWVQ3Efl1db1HyNsdiVU7r
cache-control: max-age=2073600
cf-cache-status: HIT
age: 5745
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IY6MIPShWkvuBDZaoT34punaCnj8Z7r9kPIyiY4ofRxPn0JPl23LaZLjIYomzzS63MpbPP4N2NShl8NbaIpvwXqLkowNedt3lRWAS3SA0%2B3FxtirEHAe4touIRrYbW4F85%2Ftm6o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74db196e5a2cb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css HTTP/1.1 
Host: public.powrcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.186.248
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 20 Sep 2022 14:02:32 GMT
cf-bgj: minify
cf-polished: origSize=286497
etag: W/"adf889ed0314b585cb0181bf734134ba"
last-modified: Thu, 15 Sep 2022 05:32:47 GMT
x-amz-id-2: ZVaGBqaikeSX4BOnjrf/ePJZvkng18/C7KK+u6WtXN7YBU6vXikAn72CDB2bJvJBkbLeFcfnz6Q=
x-amz-request-id: 38RW1A307PJN6DYH
x-amz-version-id: K16JcId5KgW7j2lJJmkwYjqjYhwp_uen
cache-control: max-age=2073600
cf-cache-status: HIT
age: 5748
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mLoTVcmliaLGDztVfmqy0l7xPOVUpnbrayGlfi%2BDWYLD1ztpujBiQuY2BH6egJCD9rUQidxbdi2y3BW6qODjkWZkk7CE%2BiRQGk8uHQwNe9pUZlGFgvucCs9zy%2FYqSxKt04BzPmo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74db196e7a64b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /plugins/social-feed/view.json?powr_token=weebly_843418383802620604&user_label=weebly_843418383802620604_6b25dce1-f351-4a49-932b-e29de749ccc6&external_type=weebly-integrated HTTP/1.1 
Host: www.powr.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: CSShPWBI6Qbd8RqG1PuzZA6COmz5raQ-VymNqsTLiqpf8JLKq9Wu_oE5SAfdS5VcuE4h5GEtufOH92mjk35ZPw
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_843418383802620604&user_label=weebly_843418383802620604_6b25dce1-f351-4a49-932b-e29de749ccc6&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=http%3A%2F%2Fwww.cowichanstewardship.com%2F
Cookie: src=http%3A%2F%2Fwww.cowichanstewardship.com%2F; unique_id=f25252ca_1663682551; POWR_PRODUCTION=wWK5R7CizwCWnC1H4k7qGswxvbSYDDmHHcs7nN%2BkGAGr6Opn6GCUMdEDKi0o%2BZPv24QdXVdgtrpCgrSapWz5OpwGoAt%2FXSkMXBhkxLuHTyRVLdGttzSVl0l1dA6ZvMkjd21FMaMi9ZbTwvDUdXX%2BNHRiCo2craOcRNhgrHqBJoOpMFEN3WdoEAC%2F3H4PTHCbUC%2FyWBxY5YhbWS%2BGH3HQevex8Wyzu23YZksF2QK%2Fma6nvsgM6eysZ4XD4BrqOv%2BXSL51RqNn4KL1kX%2BzR9bS%2Bigxg%2BLxPImFZtde0u%2Bz2s94oh9Ltfk5dtk251Mh%2BU2Tjnfe7nI%2FqawLUmv6oqLsyaV9cvPdOkxu2%2Bel50GqZzjVLeatgXYIt664IOpOh41%2BcDHgWHEoNcs88xmlvz616uQtO8YO9LM1MQz9qVLP9mQq0YS9%2B%2F2G13Zk180zMCCCo1Y3m38cm865JQydpTO2UNqZVeVcOHzi7WVv%2BKz6%2BDT%2F3nvpSX7V0J%2Fj6KSl14HGz%2B3j%2FYbtTgvs2v2z3ErPlBUzA5VkcOfsYJvZvFlJv%2BHKPDb9d6RdagWRKKK0o5vzYxHKUK6rix688hQ5XZGrHaxyuvho1yB29isAJk6pO9KNSgz8AtrimsZ55vGYJk60nxbrZLHLCWEIcBMgGVJKi5Mw%2Fs9tRf0mrqF2JweR7DqxA318uAHpGTTcX9SbQxmczIBfddlN%2Ftrviv89vkTTU2CE4d8vtuld86OPTvgClogNUJd%2Fp26qh89hu%2BIAdjxy3ySx11tJPV1Z0eBqXK0%2BdCIRPsIBM52bSnXumAc78K115XfYohM0%2BiK7d9APNuPx3BAcOGgbv7WxqPjj5tEujn0wnYkjwdpkmlB7TUng%2FmxlIg%2FGAE3NhxF8Gk2y%2BUcUk57k3jji%2F%2BU8N%2BfntomYDngaiml9OIDemnXJryjl%2FzMCNjg4mT%2FzjyVApId6bp0Gu%2Fob1rDDh576dw5RO5PlCKDRbd9NVZvYTsnsiIPqlFwbOVo%3D--qIZrBjNVZ0hAGXj8--RDMPQe%2FtiLdOs8MBE0KTdA%3D%3D; __cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JfvYmh62nPSC3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.67.5.146
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Tue, 20 Sep 2022 14:02:33 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
vary: Accept-Encoding
etag: W/"40ba2d493b21f0df198f1ddadcc6248e"
cache-control: max-age=0, private, must-revalidate
set-cookie: editables=; path=/; secure; SameSite=None POWR_PRODUCTION=q2g7snmc3GWYBLECm14s7ayVo0aoiGyppnqiUBJ35Q%2FYd4Mg7pYABCVDepcvWso3LEcGs3qeSDq9%2B4TNjkAhv39AC8rImI5qpxa0I5wvWL%2BvllFmMYjaksHUce5%2FJieIazpDPp3DZ0DVdPyaSq3Kil7O0mpeCCWlKZaFcSA6dD%2BbxQsqVgl2KHztJYkLgCL%2Fu7qvFZcZyw5KMPj3iZynZKIaICBVn8N142IUhVMTURyw2j%2BjPvQtIK6n8UZ2LcjFpRH9oboVr5Jquj%2Fml%2FMJcCPWyupTk4ZeNEHDAEqWpWS8rbNeUM1dDJEn6K%2FttBDUo3%2BKcMXfbyZdJD%2FM%2FLTgJm10bEZaKfXaAlZ9IDCkCg3kcirQJqtjIyh%2FPv%2FrUVpN5vTtohJ%2BFlTMzW0VNDp7199UzyohS6eOOGXRUxqTSpkH4iRVcnd5mG3EC8NncvicbCtvhKcNKrN%2Fdj4yyDvky1pB7TnioY089jYD%2BDJanRHfVJqQDQSIfg%2F4JaudRdYyOg%2B25XbcvEV8bYPqTQuTkusXOjNZ7%2BfSkt%2F799xSSh8DUo2LnjL%2FTgXvaqTadeUOPIDrONKie5f3dnww9sgGzv3HwCLkWiysibDFd6WmoNAOtwjKM5eCZbUH6DOcMyvBuV2fXQtQQxoG1pD%2Fimsg3X4oCD9g8T0iXjpWH17R3UFpf3BKuNRj4AyU6xJJoIsanOLRAJADu1n2PE60p2f728Ju1n1f8oqU08tDv3NxWwRafB6VpFtlFGngxS4RWNW57YMAIpWgoaDLlIVz5ocBk%2BRmotMoVYWZRdtGfuoIP54VIEF0vn8M5IJtiFq%2F54ZUDqVhbDqHnMYFT9FHxCaS4pUiXyCNYP%2F%2FuVg%2B8PvRInSz2tEX8F259iGmLx2YnXfg%2BQ9UKC1jjF5s5YExNtDyyz%2B2xJp8NoyMmkA4Z1gxJdvgLGJnu%2B%2FujPB6JyFoOnIDz4fg5Y4QnRMipL1rYEMAEBrIehIGt1I26DMi7W3kW3Kdg1I%3D--N9OQDwl%2FOi2h24v8--J735mvZ7JYZ6Z1OLRsD8DA%3D%3D; path=/; secure; HttpOnly; SameSite=None
x-request-id: ac2a58e1-9294-4609-9cd3-e34734ae44fa
x-runtime: 0.315974
via: 1.1 vegur
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74db19719f670b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Pathway+Gothic+One%7COpen+Sans%7COpen+Sans%7CRoboto HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 20 Sep 2022 14:02:33 GMT
date: Tue, 20 Sep 2022 14:02:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_843418383802620604&user_label=weebly_843418383802620604_6b25dce1-f351-4a49-932b-e29de749ccc6&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=http%3A%2F%2Fwww.cowichanstewardship.com%2F HTTP/1.1 
Host: www.powr.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.67.5.146
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Tue, 20 Sep 2022 14:02:31 GMT
cache-control: max-age=300, public
link: <https://public.powrcdn.com/latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps-view-2b8b89ec08cb1075456f.js>; rel=preload; as=script; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/socialFeed-67c470227dbe61560cc9.js>; rel=preload; as=script; nopush
vary: Accept-Encoding
x-request-id: 35d7aae7-1f3b-4dc8-89f2-84fd0190edec
x-runtime: 0.026202
via: 1.1 vegur
cf-cache-status: DYNAMIC
set-cookie: src=http%3A%2F%2Fwww.cowichanstewardship.com%2F; path=/; expires=Thu, 20 Oct 2022 14:02:31 GMT; secure; SameSite=None unique_id=f25252ca_1663682551; path=/; secure; SameSite=None POWR_PRODUCTION=wWK5R7CizwCWnC1H4k7qGswxvbSYDDmHHcs7nN%2BkGAGr6Opn6GCUMdEDKi0o%2BZPv24QdXVdgtrpCgrSapWz5OpwGoAt%2FXSkMXBhkxLuHTyRVLdGttzSVl0l1dA6ZvMkjd21FMaMi9ZbTwvDUdXX%2BNHRiCo2craOcRNhgrHqBJoOpMFEN3WdoEAC%2F3H4PTHCbUC%2FyWBxY5YhbWS%2BGH3HQevex8Wyzu23YZksF2QK%2Fma6nvsgM6eysZ4XD4BrqOv%2BXSL51RqNn4KL1kX%2BzR9bS%2Bigxg%2BLxPImFZtde0u%2Bz2s94oh9Ltfk5dtk251Mh%2BU2Tjnfe7nI%2FqawLUmv6oqLsyaV9cvPdOkxu2%2Bel50GqZzjVLeatgXYIt664IOpOh41%2BcDHgWHEoNcs88xmlvz616uQtO8YO9LM1MQz9qVLP9mQq0YS9%2B%2F2G13Zk180zMCCCo1Y3m38cm865JQydpTO2UNqZVeVcOHzi7WVv%2BKz6%2BDT%2F3nvpSX7V0J%2Fj6KSl14HGz%2B3j%2FYbtTgvs2v2z3ErPlBUzA5VkcOfsYJvZvFlJv%2BHKPDb9d6RdagWRKKK0o5vzYxHKUK6rix688hQ5XZGrHaxyuvho1yB29isAJk6pO9KNSgz8AtrimsZ55vGYJk60nxbrZLHLCWEIcBMgGVJKi5Mw%2Fs9tRf0mrqF2JweR7DqxA318uAHpGTTcX9SbQxmczIBfddlN%2Ftrviv89vkTTU2CE4d8vtuld86OPTvgClogNUJd%2Fp26qh89hu%2BIAdjxy3ySx11tJPV1Z0eBqXK0%2BdCIRPsIBM52bSnXumAc78K115XfYohM0%2BiK7d9APNuPx3BAcOGgbv7WxqPjj5tEujn0wnYkjwdpkmlB7TUng%2FmxlIg%2FGAE3NhxF8Gk2y%2BUcUk57k3jji%2F%2BU8N%2BfntomYDngaiml9OIDemnXJryjl%2FzMCNjg4mT%2FzjyVApId6bp0Gu%2Fob1rDDh576dw5RO5PlCKDRbd9NVZvYTsnsiIPqlFwbOVo%3D--qIZrBjNVZ0hAGXj8--RDMPQe%2FtiLdOs8MBE0KTdA%3D%3D; path=/; secure; HttpOnly; SameSite=None __cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JfvYmh62nPSC3; SameSite=None; Secure; path=/; expires=Tue, 27-Sep-22 14:02:31 GMT; HttpOnly
server: cloudflare
cf-ray: 74db196c5a180b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css HTTP/1.1 
Host: public.powrcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.186.248
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 20 Sep 2022 14:02:32 GMT
cf-bgj: minify
cf-polished: origSize=97779
etag: W/"8569d08b93b65be6f73bca7e48e87a62"
last-modified: Thu, 15 Sep 2022 05:32:53 GMT
x-amz-id-2: jNnO2R7h9I/kewQDUB7yHog0vUeNwdTTBT3BhBHC3L5LES+0FneRJq7vrobZH2hUjm0OvZq4p0o=
x-amz-request-id: 4GXPTCYC0CCJ3AM1
x-amz-version-id: bIuVifY2WQeWxEm2OlE_0Fvs8HoPdMjN
cache-control: max-age=2073600
cf-cache-status: HIT
age: 6606
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J1jgpD%2Bz4WVRl0nye2xjPnojxeG1vk%2Bimj1mFim44%2BL%2FELEmvdMH4%2BbpCfW1nhFqa5hsSzVMWbFOgeHNdAiqCyk6Yn013RjsYISF4vcsJRaqndsI7%2BLpc4R0OEvkKsnVnpMZ4jU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74db196e5a2fb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /fonts/gordita/gordita-regular-webfont-woff.woff HTTP/1.1 
Host: public.powrcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.186.248
HTTP/2 200 OK
content-type: application/font-woff
                                        
date: Tue, 20 Sep 2022 14:02:32 GMT
x-amz-id-2: 0REWttQ23hFt91HUIl5zrQKSQWkjHDn+SiQaytA+6xgu4cL31AVOq9Zzqnfy+cIxdL1eI0496yE=
x-amz-request-id: S5DNSVBXSJJA8RT5
access-control-allow-origin: *
access-control-allow-methods: GET, POST
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 31 May 2021 12:44:51 GMT
x-amz-version-id: hx7AXNg7K1e1RTazyN_0DpBGtio5OElw
etag: W/"951cf61fb8b08593af1d6466359e32fe"
cache-control: max-age=2073600
cf-cache-status: HIT
age: 6606
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xMM%2B24ZB5r6z0Eq9997AWL2UWcaTuV5Q5klQKpWWbfJdC1ULyc7sGLT47Rf2quWBwi2sUz2wG5G3CLFkhNzS1XYFDHKuaM5%2BcX1I8OWObKjlspmdKE9%2BL0e2%2FHlbKfCO1HkQ35c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74db196e991fb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---