Report - www.cowichanstewardship.com

Report Overview

Submitted URL
www.cowichanstewardship.com
IP
199.34.228.45
ASN
#27647 WEEBLY
Submitted
2022-09-20 14:02:41
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	5.6 kB	142.250.74.3
kit.fontawesome.com	1868	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	352 B	5.1 kB	104.18.22.52
public.powrcdn.com	33857	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.5 kB	5.9 kB	172.67.186.248
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	390 B	35 kB	216.58.207.202
js-agent.newrelic.com	378	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	355 B	11 kB	151.101.86.137
scontent-iad3-1.xx.fbcdn.net	5062	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.5 kB	474 kB	31.13.66.19
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
www.powr.io	13233	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	28 kB	172.67.5.146
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	356 B	1.9 kB	104.18.21.226
ka-p.fontawesome.com	4489	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	62 kB	104.18.23.52
powr-outlet-v2.herokuapp.com	139762	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	174 kB	23.22.52.7
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	416 B	746 B	142.250.74.10
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	70 kB	34.120.237.76
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.8 kB	143.204.42.165
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	57 kB	142.250.74.163
external-iad3-1.xx.fbcdn.net	10946	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	682 kB	31.13.66.19
graph.facebook.com	113	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	394 B	940 B	157.240.200.16
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	1.2 kB	142.250.74.164
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	22 kB	93.184.220.29
maxcdn.bootstrapcdn.com	724	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	394 B	903 B	104.18.11.207
cdn2.editmysite.com	11564	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.1 kB	393 kB	151.101.85.46
cdn.jsdelivr.net	439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	372 B	34 kB	151.101.85.229
scontent-arn2-1.xx.fbcdn.net	58958	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	627 B	2.6 kB	31.13.72.12
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
www.cowichanstewardship.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.9 kB	620 kB	199.34.228.45
ec.editmysite.com	12806	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	855 B	771 B	44.235.202.207
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	451 B	159 kB	142.250.74.163
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.38.227.80
bam.nr-data.net	630	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	813 B	603 B	162.247.241.14
powr-counter.herokuapp.com	46204	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	957 B	19 kB	34.201.81.34

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-20	medium	www.cowichanstewardship.com/	Malware
2022-09-20	medium	www.cowichanstewardship.com/files/main_style.css?1663615523	Malware
2022-09-20	medium	www.cowichanstewardship.com/uploads/1/4/4/5/14453984/published/csrt-horizontal-logo-transparent.png?1660357851	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (43)

	URL	Size	First Seen	Last Seen
	kit.fontawesome.com/14579ba48d.js	11 kB	2023-03-07	2023-03-29
Pretty URL kit.fontawesome.com/14579ba48d.js IP 104.18.22.52 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:31 Last Seen2023-03-29 23:09:36 Times Seen8 Hash 2bbe4584ab8e4f59d064148f5bfbc679 9674f0cb0f11c0b7087b1907c6879b47ef9a83e0 c995273280fb3c4298e8db0f9fa281ca18cfb940239a5ae6a34603cc8f32d5d4 Loading...

	www.youtube.com/iframe_api	992 B	2023-03-07	2023-03-07
Pretty URL www.youtube.com/iframe_api IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:30:13 Last Seen2023-03-07 22:52:06 Times Seen1 Hash fab978489c30979799801125e9707d52 37fb7337e0e5e389cc8ba9b15904cfe88bbd2e30 b003c62f1cf4122a3d475619abe0ae2d289f4ea46542e5e9a342eff7e206b12b Loading...

	public.powrcdn.com/latest/assets/packs/382-3d85db975cb1c606ffdd.js	116 kB	2023-03-07	2023-03-17
Pretty URL public.powrcdn.com/latest/assets/packs/382-3d85db975cb1c606ffdd.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:56 Last Seen2023-03-17 10:32:12 Times Seen1 Hash cbfc529195e67015003a7f9939e85183 c1a0bf38be8e8fb4b1e75079eeb795915f844a83 d52ca1bcdb7e75161c33caa4c19de1ec0ff3aacf5b7f685d3b90deac9141e0a3 Loading...

	www.cowichanstewardship.com/	2.3 kB	2023-03-07	2023-03-07
Pretty URL www.cowichanstewardship.com/ IP 199.34.228.45 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:41 Last Seen2023-03-07 21:45:41 Times Seen1 Hash 04096d7f44b53ef992c5f6f216d289e1 538844d68cb9fb10618cb914d6ae58ddc3847392 a51a2401979d6f569023243541037f7f17413bd9163b8dd60b0d828413a17152 Loading...

	cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1663645305	3.6 kB	2023-03-07	2024-04-26
Pretty URL cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1663645305 IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-26 08:17:53 Times Seen4370 Hash 40b81b2d52ba9d2e2c64c31ff6a24cd7 6b5689250661646ecbb841f2475f1556a113373c e06baca13f25df9c7d684fc1b1fdfbbbb95070a1d5a9cd648632da7bccc90b96 Loading...

	www.cowichanstewardship.com/	263 B	2023-03-07	2023-03-07
Pretty URL www.cowichanstewardship.com/ IP 199.34.228.45 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:36:51 Last Seen2023-03-07 21:45:41 Times Seen1 Hash af1c6451ff0c87ef73e38eb31b34debc 84afb8d7f05f0d04d120e97e97b90b2e2f6ca973 5bd2b98bb8cdbd41d312e3f9f64ce9ff44835e4d45543c2c9be37458e1bd3f14 Loading...

	www.cowichanstewardship.com/	1.2 kB	2023-03-07	2024-04-26
Pretty URL www.cowichanstewardship.com/ IP 199.34.228.45 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-26 08:17:53 Times Seen2918 Hash 24449345e209b8641a813eaef44a5244 21617897e4d35717e2e41b766501fbd883a8f16d 3e72636c6cf854c8657ccbf9e03f7af05bd4836066c329417a4f8251bb5d18c1 Loading...

	www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_843418383802620604&user_label=weebly_843418383802620604_6b25dce1-f351-4a49-932b-e29de749ccc6&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=http%3A%2F%2Fwww.cowichanstewardship.com%2F	395 B	2023-03-07	2023-03-17
Pretty URL www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_843418383802620604&user_label=weebly_843418383802620604_6b25dce1-f351-4a49-932b-e29de749ccc6&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=http%3A%2F%2Fwww.cowichanstewardship.com%2F IP 172.67.5.146 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:45 Last Seen2023-03-17 10:32:12 Times Seen1 Hash 14cf67907527681fe9216c578aca79c9 fa9b4f6f6daafaa128ff17b752e32081e69623b2 05c3c1bbc955bedf1f1d1241c7ec154dab122d326bc040c3caf0b9ebf8ed0a19 Loading...

	www.cowichanstewardship.com/	265 B	2023-03-07	2023-03-07
Pretty URL www.cowichanstewardship.com/ IP 199.34.228.45 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:41 Last Seen2023-03-07 21:45:41 Times Seen1 Hash a4ba0f52ac4a47191428a8266f8b7c77 ffdbf1f71af06001132209fd5a750e18e14f85d1 6b33238d8b449b92669521d7044805547947e17a726bf327312c63e7aa75335c Loading...

	www.cowichanstewardship.com/	32 B	2023-03-07	2024-04-26
Pretty URL www.cowichanstewardship.com/ IP 199.34.228.45 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-26 08:17:53 Times Seen2966 Hash 1bca01edca83d94091a2bb38d7ef8183 d05117e4ab3b3461be3855e95813a5c607e3ca95 fcf1cbf5cfad6d605868f42d38a0a937f5e6eaa91b05dcfbbbc95e4c3e23e528 Loading...

	www.cowichanstewardship.com/	22 B	2023-03-07	2024-04-26
Pretty URL www.cowichanstewardship.com/ IP 199.34.228.45 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-26 08:17:53 Times Seen2287 Hash 9a33cbad7c996ea8903a3eb3332a125c 8efed109b301f8aa0f3768dcd824d669d0129741 5d3b8f4578ca89904a46d014a8433346ca2773e8691f6cc9d09b2b30f0802dbc Loading...

	bam.nr-data.net/1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1096&ck=1&ref=https://www.powr.io/plugins/social-feed/cached_view&be=478&fe=943&dc=851&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1663682551728,%22n%22:0,%22f%22:1,%22dn%22:1,%22dne%22:1,%22c%22:1,%22s%22:1,%22ce%22:1,%22rq%22:10,%22rp%22:272,%22rpe%22:272,%22dl%22:277,%22di%22:807,%22ds%22:823,%22de%22:851,%22dc%22:941,%22l%22:941,%22le%22:945%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken	49 B	2023-03-07	2023-07-30
Pretty URL bam.nr-data.net/1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1096&ck=1&ref=https://www.powr.io/plugins/social-feed/cached_view&be=478&fe=943&dc=851&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1663682551728,%22n%22:0,%22f%22:1,%22dn%22:1,%22dne%22:1,%22c%22:1,%22s%22:1,%22ce%22:1,%22rq%22:10,%22rp%22:272,%22rpe%22:272,%22dl%22:277,%22di%22:807,%22ds%22:823,%22de%22:851,%22dc%22:941,%22l%22:941,%22le%22:945%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken IP 162.247.241.14 ASN #23467 NEWRELIC-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:56 Last Seen2023-07-30 22:07:50 Times Seen563 Hash b8b9dc20ec73bc71d24c07ed557c27bf f27a0c9366eaafcf17b81cc50d32660637d0ee57 b91234b576455d66e12dd661a2539eb2418a831078ecef9ebc7f4bbd4e580d9c Loading...

	public.powrcdn.com/latest/assets/packs/443-4b92673cf197b50d40b3.js	42 kB	2023-03-07	2023-03-17
Pretty URL public.powrcdn.com/latest/assets/packs/443-4b92673cf197b50d40b3.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:56 Last Seen2023-03-17 10:32:12 Times Seen1 Hash 700165d3a0c1de7073ce8afb38c91c23 bd8cac51bcebc6c178d108f0089b7839b33ea6ae 54f0da9f7ebc9cc77d847d197d4f4eff27c15988d281719e372af6d0dee731e2 Loading...

	www.cowichanstewardship.com/	398 B	2023-03-07	2024-04-26
Pretty URL www.cowichanstewardship.com/ IP 199.34.228.45 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-26 00:51:06 Times Seen79 Hash f3248e4c4191204900f8bc59f9f008c6 8375059f4843cb30c0bd3d17faaf5bfa41a88210 966050198c27c6cc3c6cad0d9726f3e66d72c4288197a29d1ebe0f94372613c0 Loading...

	www.cowichanstewardship.com/	664 B	2023-03-07	2024-04-26
Pretty URL www.cowichanstewardship.com/ IP 199.34.228.45 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-26 08:17:53 Times Seen2912 Hash fdd0b895b9cf69a9a4f4817533aa51f5 afc67ab62c3c91df626260407845fc41bf5d895e a50f8a487c23d76460681440220a85a28cdb09912ef451d59aa2b4f47c32aea0 Loading...

	www.cowichanstewardship.com/	2.3 kB	2023-03-07	2023-03-07
Pretty URL www.cowichanstewardship.com/ IP 199.34.228.45 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:41 Last Seen2023-03-07 21:45:41 Times Seen1 Hash c461f12e9ce6653eb008a85d8d73e4ca 55e95854fd81abea4b4be68517d750f666eca882 f1be88e3450dff53c0010ee043bdf6dcaf9615a163edf97487172d6517d1251e Loading...

	www.cowichanstewardship.com/	64 B	2023-03-07	2024-04-25
Pretty URL www.cowichanstewardship.com/ IP 199.34.228.45 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:23 Last Seen2024-04-25 20:02:10 Times Seen30 Hash 4015912a384762922dd67368d2b0f532 36d898c62a993da1164741b58269572255824ce9 4bbf286d95f4b784d63baad2a99ce2c57dfc4f08e8ee548f94aafa4922e5eb18 Loading...

	cdn.jsdelivr.net/npm/jquery@1.11.2/dist/jquery.min.js	96 kB	2023-03-07	2024-04-26
Pretty URL cdn.jsdelivr.net/npm/jquery@1.11.2/dist/jquery.min.js IP 151.101.85.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:31 Last Seen2024-04-26 07:00:48 Times Seen708 Hash 87e69028f78d75ca225b3dc54d233239 b33ee3b42b988eef9d4d62495b6e54e23dd642fd d4ec583c7604001f87233d1fe0076cbd909f15a5f8c6b4c3f5dd81b462d79d32 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 08:25:14 Times Seen37087147 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js	94 kB	2023-03-07	2024-04-26
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js IP 216.58.207.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:53 Last Seen2024-04-26 08:23:53 Times Seen16314 Hash 3576a6e73c9dccdbbc4a2cf8ff544ad7 06e872300088b9ba8a08427d28ed0efcdf9c6ff5 61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf Loading...

	www.cowichanstewardship.com/	62 B	2023-03-07	2024-04-26
Pretty URL www.cowichanstewardship.com/ IP 199.34.228.45 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-26 08:17:53 Times Seen2952 Hash 461bd236ddeca3b8b6e3cca8599ccb43 73c74d3281452e483c11f944d798738afc7f5b89 aebd4ac1ead5b4987d8b975cafa889ca1a6831175bc206ca9552863e390bc0f1 Loading...

	public.powrcdn.com/latest/assets/packs/365-a2c6b3e46c72723c6ab6.js	3.6 kB	2023-03-07	2023-03-17
Pretty URL public.powrcdn.com/latest/assets/packs/365-a2c6b3e46c72723c6ab6.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:33 Last Seen2023-03-17 10:32:12 Times Seen1 Hash 002ed3368d409addb50eb815a1ca8732 3d03293f2ac7c68bc4a9b1f11720d4e2197a814d 62bc37e612648a84023ee94ed6ee5706ae48a6770622b2f4d1bd1cfc22088ef0 Loading...

	public.powrcdn.com/latest/assets/packs/395-c8821ed5cc2adca83f10.js	80 kB	2023-03-07	2023-03-17
Pretty URL public.powrcdn.com/latest/assets/packs/395-c8821ed5cc2adca83f10.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:33 Last Seen2023-03-17 10:32:12 Times Seen1 Hash ae08491c54e18e9a48407bf6116341ff da974455ddcadfd908287f5a952087985ee2d2a4 e86fa256d3fcb60732e0b5389ba21b548a6fef4ff72f669f97606cff2674ab60 Loading...

	public.powrcdn.com/latest/assets/packs/89-b729614ea2236a20c30d.js	159 kB	2023-03-07	2023-03-17
Pretty URL public.powrcdn.com/latest/assets/packs/89-b729614ea2236a20c30d.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:56 Last Seen2023-03-17 10:32:12 Times Seen1 Hash f6426cd75b1659517d97d4fca545fd5e 6c8ea8ad7b0f587faadb73b7673ed53565721f82 0be667fa59e100d67b6193f890bd934ae75e1251ebdba36c7347a70324509cec Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-04-25
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-25 19:24:16 Times Seen842 Hash d40531c5e99a6f84e42535859476fe35 a901817d77b2fe5259c298c91bc65c54d7f8a1a9 a1925038db769477ab74b4df34350c35688a795bb718727b0f4292a4a78a6210 Loading...

	www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_843418383802620604&user_label=weebly_843418383802620604_6b25dce1-f351-4a49-932b-e29de749ccc6&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=http%3A%2F%2Fwww.cowichanstewardship.com%2F	77 B	2023-03-07	2024-01-26
Pretty URL www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_843418383802620604&user_label=weebly_843418383802620604_6b25dce1-f351-4a49-932b-e29de749ccc6&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=http%3A%2F%2Fwww.cowichanstewardship.com%2F IP 172.67.5.146 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:45 Last Seen2024-01-26 11:21:35 Times Seen15 Hash 1fa4f6c830f7eaaaf3e2355a54b3eb3d 6dcd2790262a24f8c990b595570ce5c11678b0f2 d068a0d6a353529e7649188ca664579dc56bd9d00b5ca0e9de680a426e3e8759 Loading...

	public.powrcdn.com/latest/assets/packs/apps-view-2b8b89ec08cb1075456f.js	934 kB	2023-03-07	2023-03-07
Pretty URL public.powrcdn.com/latest/assets/packs/apps-view-2b8b89ec08cb1075456f.js IP 172.67.186.248 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:25:28 Last Seen2023-03-07 22:42:51 Times Seen1 Hash b30cb78d6c6d590d87e02e644189783a f46ee7d9ffae5a85fd7a5ab0cb453cb1d592d030 1e42559a5be372075d0f1ac799b26fec2bb6a564edf2869a3740f8d7533835c4 Loading...

	www.cowichanstewardship.com/	63 B	2023-03-07	2023-03-07
Pretty URL www.cowichanstewardship.com/ IP 199.34.228.45 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:41 Last Seen2023-03-07 21:45:41 Times Seen1 Hash 2c22030fe818ab815f4933e55402a8f7 4a98a3a08b9bb914104e9ecebea613b43b9506db 7e424b6f7661873123cc03fb6a61f65911f8bbafcefef7875bdbdbea0185afc3 Loading...

	www.cowichanstewardship.com/	35 B	2023-03-07	2024-04-26
Pretty URL www.cowichanstewardship.com/ IP 199.34.228.45 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-26 08:17:53 Times Seen2957 Hash 13385ea3f3e6184de3bfa80f08fe938b 6f859a2fd4b7e15ed74990516d97a52e7b4eeb20 5e87d85ec57af5d97b6c0d4c6e766afd2b53d077102827d19625a37d8cd11c2d Loading...

	public.powrcdn.com/latest/assets/packs/366-badb51b58f258ad08f14.js	296 kB	2023-03-07	2023-03-17
Pretty URL public.powrcdn.com/latest/assets/packs/366-badb51b58f258ad08f14.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:32 Last Seen2023-03-17 10:32:12 Times Seen1 Hash efa998d8e69af13e45b0ae1bb368b418 3fad5bfac2f410cd53a4c31fe466771d75dd7357 8979c869e52b37d613ad7e94eb91e478a93a6a29a70970ea23addd81277dc828 Loading...

	cdn2.editmysite.com/js/wsnbn/snowday262.js	75 kB	2023-03-07	2024-04-26
Pretty URL cdn2.editmysite.com/js/wsnbn/snowday262.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-04-26 08:22:47 Times Seen28760 Hash 99bbe560926e583b8e99036251deb783 8d81b73ae06f664f9d9e53dd5829a799bf434491 648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3 Loading...

	www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_843418383802620604&user_label=weebly_843418383802620604_6b25dce1-f351-4a49-932b-e29de749ccc6&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=http%3A%2F%2Fwww.cowichanstewardship.com%2F	32 kB	2023-03-07	2024-04-16
Pretty URL www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_843418383802620604&user_label=weebly_843418383802620604_6b25dce1-f351-4a49-932b-e29de749ccc6&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=http%3A%2F%2Fwww.cowichanstewardship.com%2F IP 172.67.5.146 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:31 Last Seen2024-04-16 06:19:50 Times Seen370 Hash cbce2d4be92acc352c8c7743d597c86c 9e944f98438ee56ae48db4064707ab33de4e58cb ba3835831baf5ccd45734b8e32fa5c00b7df8450b9fba243eb1ecc7438344273 Loading...

	www.youtube.com/s/player/7577aaa2/www-widgetapi.vflset/www-widgetapi.js	165 kB	2023-03-07	2023-03-07
Pretty URL www.youtube.com/s/player/7577aaa2/www-widgetapi.vflset/www-widgetapi.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:30:13 Last Seen2023-03-07 22:52:06 Times Seen1 Hash 0ee3704a9f92d0da3c421ecbb265d929 a3133f648a31c109a90232f048752e436352ed15 5469c6823b39982822ab045ac7388b68bcbce0548f799c5e5af3c8cf68196a9e Loading...

	www.google-analytics.com/ga.js	46 kB	2023-03-07	2024-04-16
Pretty URL www.google-analytics.com/ga.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-16 23:24:27 Times Seen3495 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js	397 kB	2023-03-07	2023-03-17
Pretty URL www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:00:06 Last Seen2023-03-17 12:55:53 Times Seen1 Hash ae7e42b66aa74379f09af0329753f2a3 c286bb007313f9aadb8b51dd749f28cae9addcac 3d94d48861ea4d1585e765d393147dafc3df44e3f33a2150b944bca4815cf9e4 Loading...

	ajax.googleapis.com/ajax/libs/webfont/1/webfont.js	13 kB	2023-03-07	2024-04-26
Pretty URL ajax.googleapis.com/ajax/libs/webfont/1/webfont.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:17 Last Seen2024-04-26 08:15:15 Times Seen22427 Hash 7c96a5f11d9741541d5e3c42ff6380d7 d3fa2564c021cf730e58ffddb138cf6b57ed126e 81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee Loading...

	js-agent.newrelic.com/nr-1184.min.js	28 kB	2023-03-07	2023-05-02
Pretty URL js-agent.newrelic.com/nr-1184.min.js IP 151.101.86.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:31 Last Seen2023-05-02 22:07:36 Times Seen48 Hash 3d7f312be60d08a2568e311e4762f3af edc028acc27fb8dc6e2106a071a03ae7f93dc3b4 780861f2ab29c0144055244696561fb0306c8cb3cb7f548f9105c763b0e91f77 Loading...

	www.cowichanstewardship.com/	5.1 kB	2023-03-07	2023-03-07
Pretty URL www.cowichanstewardship.com/ IP 199.34.228.45 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:41 Last Seen2023-03-07 21:45:41 Times Seen1 Hash 7bfd222506aad47438b6b62f97cb9b1f d0b14e915f6bf179a40399d6471bf55a71bc830f e418c66d5cb6ea56483cc42f996a9def4db0e9f08abcad3771f73d248c045470 Loading...

	www.powr.io/powr.js	16 kB	2023-03-07	2023-03-10
Pretty URL www.powr.io/powr.js IP 172.67.5.146 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:41 Last Seen2023-03-10 14:03:02 Times Seen1 Hash 7721279b56a755ec1ada4828a6042cf1 d4ee1f3d89fef9e74223f42a9216a90d2a5f8055 6a750155101daf5007f25be733b2c6a0b33b9b1fbb466ce5cae2cb2e3525e210 Loading...

	public.powrcdn.com/latest/assets/packs/328-b59d89fe17a493acb0bf.js	21 kB	2023-03-07	2023-03-17
Pretty URL public.powrcdn.com/latest/assets/packs/328-b59d89fe17a493acb0bf.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:34 Last Seen2023-03-17 10:32:12 Times Seen1 Hash 613465d88a4bb11c26586ed7321df87f 0624357fbe20380d73315766a37933006df86874 76951d5d5e1672331ae87515ece73a1a731a005abde8c6d3e302d9c78c8e56a4 Loading...

	www.cowichanstewardship.com/	117 B	2023-03-07	2024-04-26
Pretty URL www.cowichanstewardship.com/ IP 199.34.228.45 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-26 08:17:53 Times Seen2943 Hash ef142665f07ac27f698aa34d471c4439 b9e0d81f97054a9a0a68f57096d992ba58f33184 fbfd3b11452dce82b76e405100aece37dcfe12df4c71fb8f2bc2fe2166e9f07f Loading...

	www.cowichanstewardship.com/	1.8 kB	2023-03-07	2024-04-26
Pretty URL www.cowichanstewardship.com/ IP 199.34.228.45 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-26 08:17:53 Times Seen2940 Hash 563cec0ace2baea4e867b491f66cd6b0 fc4451f8fa76c5d1e3714e9008510633cffaa4f7 e4538493fc4f43f93806d0239acac9b38b0453c8440dc5ba4fcb47eae6ab2556 Loading...

	www.google.com/recaptcha/api.js?_=1663682550061	850 B	2023-03-07	2023-03-17
Pretty URL www.google.com/recaptcha/api.js?_=1663682550061 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:00:40 Last Seen2023-03-17 12:55:13 Times Seen1 Hash 5a091973c265321ac3dc678f4d18b2dd e294c0072b296f04ee8e802a4ba8cf2494674125 f2a5ef3629b695ea6f46814cab28aaac4ba7dc6c694847e5b0090e22e0d55eb9 Loading...

HTTP Transactions (105)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 20 Sep 2022 13:13:08 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _ZU8iWWVZmCUqs_a5o96hNvhvB7htdbjFHCQQnX4-QmPjVvAMCFHMA==
Age: 2961

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2770
Expires: Tue, 20 Sep 2022 14:48:39 GMT
Date: Tue, 20 Sep 2022 14:02:29 GMT
Connection: keep-alive

www.cowichanstewardship.com/

199.34.228.45

200 OK

10 kB

URL HTTP/1.1
www.cowichanstewardship.com/
IP
199.34.228.45:0
ASN
#27647 WEEBLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1886), with CRLF, LF line terminators
Size
10 kB (10430 bytes)
Hash
8aa27af7541cbc2a88cfcb5c1d66ae72
a766b2b0f046ecc7a0aafc77cc48296869b18a74
557b62eb96f59d46c62aa578c617bc87615b56859260491fb3214b91db276212

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: www.cowichanstewardship.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:02:29 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.cowichanstewardship.com
language=en; expires=Tue, 04-Oct-2022 14:02:29 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"0d840a2d53685f6314de55f7036e9a6b-gzip"
Content-Encoding: gzip
X-Host: grn119.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 10430
Keep-Alive: timeout=10, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YjH7J2aAHh6hORTbskEUHhpeEb3Dr-aE2CH_PyoicGN-SM2FhaFs2w==
age: 34036
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 14:02:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

cdn2.editmysite.com/css/old/fancybox.css?1663611591

151.101.85.46

200 OK

1.2 kB

URL HTTP/1.1
cdn2.editmysite.com/css/old/fancybox.css?1663611591
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (3910)
Size
1.2 kB (1218 bytes)
Hash
b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907

HTTP Headers

GET /css/old/fancybox.css?1663611591 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css
Last-Modified: Mon, 19 Sep 2022 17:46:38 GMT
ETag: "6328aafe-f47"
Expires: Mon, 03 Oct 2022 18:22:36 GMT
Cache-Control: max-age=1209600
X-Host: blu47.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 1218
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 70793
Connection: keep-alive
X-Served-By: cache-sjc10078-SJC, cache-bma1673-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 1
X-Timer: S1663682550.686277,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

cdn2.editmysite.com/css/sites.css?buildTime=1663617132

151.101.85.46

200 OK

30 kB

URL HTTP/1.1
cdn2.editmysite.com/css/sites.css?buildTime=1663617132
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (29746 bytes)
Hash
d10158b22b553f723d99dc78eaee6390
80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e

HTTP Headers

GET /css/sites.css?buildTime=1663617132 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css
Last-Modified: Mon, 19 Sep 2022 17:46:32 GMT
ETag: W/"6328aaf8-347ac"
Expires: Mon, 03 Oct 2022 19:54:28 GMT
Cache-Control: max-age=1209600
X-Host: grn5.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 29746
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 65281
Connection: keep-alive
X-Served-By: cache-sjc10066-SJC, cache-bma1637-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 1
X-Timer: S1663682550.686044,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

cdn2.editmysite.com/fonts/Actor/font.css?2

151.101.85.46

200 OK

239 B

URL HTTP/1.1
cdn2.editmysite.com/fonts/Actor/font.css?2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
239 B (239 bytes)
Hash
1df96da317ac06025cc13ec8c41ae863
2f44628b9dbea1003b4728f7e571133479b24587
cbba923d81f5efd24035c0ae07dcb791a7ee32ec0e411a3d17c5c0971dac12f9

HTTP Headers

GET /fonts/Actor/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css
Last-Modified: Thu, 08 Sep 2022 17:37:42 GMT
ETag: "631a2866-1ac"
Expires: Thu, 22 Sep 2022 18:06:37 GMT
Cache-Control: max-age=1209600
X-Host: grn82.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 239
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 1022153
Connection: keep-alive
X-Served-By: cache-sjc10055-SJC, cache-bma1680-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 17, 3
X-Timer: S1663682550.686969,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

cdn2.editmysite.com/fonts/Open_Sans/font.css?2

151.101.85.46

200 OK

367 B

URL HTTP/1.1
cdn2.editmysite.com/fonts/Open_Sans/font.css?2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
367 B (367 bytes)
Hash
52e94ffb1c814650bab35433c3034ac7
b42d636ac9b71805f751612208ddb34e93a6538d
fe0f821828a4b146e9b0aba7f9a4956a0caa14a2ac72541ced5ee1d2ed376462

HTTP Headers

GET /fonts/Open_Sans/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css
Last-Modified: Thu, 08 Sep 2022 17:37:44 GMT
ETag: "631a2868-a2a"
Expires: Thu, 22 Sep 2022 18:06:46 GMT
Cache-Control: max-age=1209600
X-Host: blu123.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 367
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 1022144
Connection: keep-alive
X-Served-By: cache-sjc10083-SJC, cache-bma1645-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 44
X-Timer: S1663682550.688709,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1663611591&

151.101.85.46

200 OK

33 kB

URL HTTP/1.1
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1663611591&
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
HTML document, Unicode text, UTF-8 text, with very long lines (64997)
Size
33 kB (32828 bytes)
Hash
9a49c00a13898c31cb9ae140287b524d
79aa80ae3e30b6f4ea929e6e118b16c68db216c2
7d4c52ebfd0e158669a414ec9c2ee33a1296b20d59370d8b3193c1ec81a9ec35

HTTP Headers

GET /js/lang/en/stl.js?buildTime=1663611591& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript
Last-Modified: Mon, 19 Sep 2022 17:45:21 GMT
ETag: "6328aab1-2c4a6"
Expires: Mon, 03 Oct 2022 18:22:30 GMT
Cache-Control: max-age=1209600
X-Host: blu90.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 32828
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 70799
Connection: keep-alive
X-Served-By: cache-sjc10026-SJC, cache-bma1651-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 2
X-Timer: S1663682550.693110,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1663645305

151.101.85.46

200 OK

1.4 kB

URL HTTP/1.1
cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1663645305
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (3600), with no line terminators
Size
1.4 kB (1372 bytes)
Hash
121a5b9688d8e70ee7bb06cc79491f76
3a28220baa7d8879270c8311bed7dddefa7e43e9
181716c84474c9eb6685a809d69dda5d49ce44dfbf64c5dee89a3091e23def40

HTTP Headers

GET /js/site/footerSignup.js?buildTime=1663645305 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript
Last-Modified: Mon, 19 Sep 2022 20:21:10 GMT
ETag: "6328cf36-e10"
Expires: Tue, 04 Oct 2022 03:51:57 GMT
Cache-Control: max-age=1209600
X-Host: blu57.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 1372
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 36632
Connection: keep-alive
X-Served-By: cache-sjc10041-SJC, cache-bma1637-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 175
X-Timer: S1663682550.697074,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1663617132&

151.101.85.46

200 OK

33 kB

URL HTTP/1.1
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1663617132&
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
HTML document, Unicode text, UTF-8 text, with very long lines (64997)
Size
33 kB (32828 bytes)
Hash
9a49c00a13898c31cb9ae140287b524d
79aa80ae3e30b6f4ea929e6e118b16c68db216c2
7d4c52ebfd0e158669a414ec9c2ee33a1296b20d59370d8b3193c1ec81a9ec35

HTTP Headers

GET /js/lang/en/stl.js?buildTime=1663617132& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript
Last-Modified: Mon, 19 Sep 2022 17:45:21 GMT
ETag: "6328aab1-2c4a6"
Expires: Mon, 03 Oct 2022 19:54:28 GMT
Cache-Control: max-age=1209600
X-Host: grn27.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 32828
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 65281
Connection: keep-alive
X-Served-By: cache-sjc10054-SJC, cache-bma1673-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 3, 4
X-Timer: S1663682550.695419,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1663617132

151.101.85.46

200 OK

159 kB

URL HTTP/1.1
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1663617132
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (32007)
Size
159 kB (158930 bytes)
Hash
f740fdfbcf394f270a9b176029fa6f37
5f20c49627104282744508eb0278d7185128532e
3021f0f944c9bd7c6e995601f25b3d970e0bd41f9a411f08b2871bb5415a8707

HTTP Headers

GET /js/site/main-customer-accounts-site.js?buildTime=1663617132 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript
Last-Modified: Mon, 19 Sep 2022 17:46:56 GMT
ETag: "6328ab10-8250f"
Expires: Mon, 03 Oct 2022 19:54:29 GMT
Cache-Control: max-age=1209600
X-Host: blu68.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 158930
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 65280
Connection: keep-alive
X-Served-By: cache-sjc10044-SJC, cache-bma1680-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1663682550.696637,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e34f594c2e3b9b6a81e4ae9fef80f363
b7f65f5fb0df328d3c863af6c9351923205645f2
bcedda132b602d90a62a5fbe07e7c37f69cce319fb4b84e1bed40b1200e9898b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:02:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js

216.58.207.202

200 OK

34 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65483)
Size
34 kB (33593 bytes)
Hash
a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830

HTTP Headers

GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 06:15:30 GMT
expires: Sun, 17 Sep 2023 06:15:30 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 287219
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.cowichanstewardship.com/files/main_style.css?1663615523

199.34.228.45

200 OK

2.6 kB

URL HTTP/1.1
www.cowichanstewardship.com/files/main_style.css?1663615523
IP
199.34.228.45:0
ASN
#27647 WEEBLY

File type
ASCII text, with very long lines (303)
Size
2.6 kB (2558 bytes)
Hash
3fdbba1b70efa50f97da16c8b455a03f
07fc7fe7f4f439ac5da16e4c273ffcdaa96f969c
67ef4cc97724beb57317e7fdbf6f9926e925bfa0fa7bc5dea732aa0987718da0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /files/main_style.css?1663615523 HTTP/1.1
Host: www.cowichanstewardship.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Cookie: is_mobile=0; language=en

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Sep 2022 14:02:29 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu70.sf2p.intern.weebly.net
Content-Encoding: gzip

cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png

151.101.85.46

200 OK

9.7 kB

URL HTTP/1.1
cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
PNG image data, 199 x 97, 8-bit colormap, non-interlaced\012- data
Size
9.7 kB (9677 bytes)
Hash
6e0f7ad31bf187e0d88fc5787573ba71
14e8b85cc32a01c8901e4ac0160582d29a45e9e6
580ef6409e067a4ec4a427400c7d6216184869e2da53343df20753cc1f8a46cd

HTTP Headers

GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

HTTP/1.1 200 OK
X-GUploader-UploadID: ADPycdtBep7ROccdUt9-QNl5VbmRIpCUwFb5y0r5I6-vVE2nBsM9PCbzHI6xHxQIvmEjxA2YbetFcXQVHBR8TKD8jioOTQFmXNb8
x-goog-generation: 1549995548326466
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9677
x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ==
x-goog-storage-class: STANDARD
Server: UploadServer
Expires: Sun, 17 Apr 2022 00:19:21 GMT
Cache-Control: public, max-age=86400, s-maxage=259200
Last-Modified: Tue, 12 Feb 2019 18:19:08 GMT
ETag: "6e0f7ad31bf187e0d88fc5787573ba71"
Content-Type: image/png
Content-Length: 9677
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Via: 1.1 varnish
Age: 48479
Connection: keep-alive
X-Served-By: cache-bma1680-BMA
X-Cache: HIT
X-Cache-Hits: 171
X-Timer: S1663682550.841690,VS0,VE0
Access-Control-Allow-Origin: *

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e34f594c2e3b9b6a81e4ae9fef80f363
b7f65f5fb0df328d3c863af6c9351923205645f2
bcedda132b602d90a62a5fbe07e7c37f69cce319fb4b84e1bed40b1200e9898b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:02:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn2.editmysite.com/js/wsnbn/snowday262.js

151.101.85.46

200 OK

26 kB

URL HTTP/1.1
cdn2.editmysite.com/js/wsnbn/snowday262.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (2512)
Size
26 kB (25752 bytes)
Hash
234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75

HTTP Headers

GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript
Last-Modified: Wed, 14 Sep 2022 16:18:50 GMT
ETag: "6321feea-124fe"
Expires: Thu, 29 Sep 2022 08:38:41 GMT
Cache-Control: max-age=1209600
X-Host: blu123.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 25752
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:30 GMT
Age: 451429
Connection: keep-alive
X-Served-By: cache-sjc10051-SJC, cache-bma1680-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 4842
X-Timer: S1663682550.010409,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

cdn2.editmysite.com/fonts/Open_Sans/regular.woff2

151.101.85.46

200 OK

17 kB

URL HTTP/1.1
cdn2.editmysite.com/fonts/Open_Sans/regular.woff2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size
17 kB (16740 bytes)
Hash
e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681

HTTP Headers

GET /fonts/Open_Sans/regular.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.cowichanstewardship.com
Connection: keep-alive
Referer: http://cdn2.editmysite.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: font/woff2
Last-Modified: Thu, 08 Sep 2022 17:37:44 GMT
ETag: "631a2868-4164"
Expires: Thu, 22 Sep 2022 18:06:47 GMT
Cache-Control: max-age=1209600
X-Host: grn123.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Content-Length: 16740
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:30 GMT
Age: 1022142
Connection: keep-alive
X-Served-By: cache-sjc10025-SJC, cache-bma1631-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 3, 40
X-Timer: S1663682550.025097,VS0,VE0
Access-Control-Allow-Origin: *

cdn2.editmysite.com/fonts/Open_Sans/bold.woff2

151.101.85.46

200 OK

16 kB

URL HTTP/1.1
cdn2.editmysite.com/fonts/Open_Sans/bold.woff2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 16372, version 1.0\012- data
Size
16 kB (16372 bytes)
Hash
e45478d4d6f15dafda1f25d9e0fb5fa1
52cb490cd0ee4442ede034085cda9652b206f91c
d1a17abb1a999842fe425e1a4ace9d90f9c18f3595c21a63d89f0611b90cfd72

HTTP Headers

GET /fonts/Open_Sans/bold.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.cowichanstewardship.com
Connection: keep-alive
Referer: http://cdn2.editmysite.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: font/woff2
Last-Modified: Thu, 08 Sep 2022 17:37:44 GMT
ETag: "631a2868-3ff4"
Expires: Thu, 22 Sep 2022 18:06:47 GMT
Cache-Control: max-age=1209600
X-Host: blu56.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Content-Length: 16372
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:30 GMT
Age: 1022142
Connection: keep-alive
X-Served-By: cache-sjc10044-SJC, cache-bma1660-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 29, 40
X-Timer: S1663682550.027318,VS0,VE0
Access-Control-Allow-Origin: *

cdn2.editmysite.com/fonts/Actor/regular.woff2

151.101.85.46

200 OK

22 kB

URL HTTP/1.1
cdn2.editmysite.com/fonts/Actor/regular.woff2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 21976, version 1.0\012- data
Size
22 kB (21976 bytes)
Hash
7ee7f470152787952958d6adfa07b2ac
14a09075b2cbec9ff65302de9d634f9011f70e53
b31aaefa522d67846638fa4181bbb22375bd0cb1beb37d514609c3821953161a

HTTP Headers

GET /fonts/Actor/regular.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.cowichanstewardship.com
Connection: keep-alive
Referer: http://cdn2.editmysite.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: font/woff2
Last-Modified: Thu, 08 Sep 2022 17:37:42 GMT
ETag: "631a2866-55d8"
Expires: Thu, 22 Sep 2022 18:09:03 GMT
Cache-Control: max-age=1209600
X-Host: grn5.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Content-Length: 21976
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:30 GMT
Age: 1022006
Connection: keep-alive
X-Served-By: cache-sjc10021-SJC, cache-bma1657-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 2
X-Timer: S1663682550.031070,VS0,VE0
Access-Control-Allow-Origin: *

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 20 Sep 2022 13:03:22 GMT
Expires: Tue, 20 Sep 2022 13:06:41 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HxoYD8ALwa9Hyqi_kJjfW--v89z5zXAk6_gOsU5pGbl53AMTe0ZUdQ==
Age: 3548

cdn2.editmysite.com/sprites/site/forms-s3786257308.png

151.101.85.46

200 OK

341 B

URL HTTP/1.1
cdn2.editmysite.com/sprites/site/forms-s3786257308.png
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
PNG image data, 13 x 26, 8-bit gray+alpha, non-interlaced\012- data
Size
341 B (341 bytes)
Hash
8bebedaad333db9b949dab050728d9be
9c58d43d230d8b5e6befc2198999840ff555934c
6928442dcdfd67ab71262fb35b80fdddb13277f7fceb3744d417b2d22bcaeecb

HTTP Headers

GET /sprites/site/forms-s3786257308.png HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn2.editmysite.com/css/sites.css?buildTime=1663617132

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Last-Modified: Tue, 06 Sep 2022 15:23:03 GMT
ETag: "631765d7-155"
Expires: Wed, 21 Sep 2022 07:42:59 GMT
Cache-Control: max-age=1209600
X-Host: grn104.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Content-Length: 341
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:30 GMT
Age: 1145971
Connection: keep-alive
X-Served-By: cache-sjc10073-SJC, cache-bma1680-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 4
X-Timer: S1663682550.108996,VS0,VE0
Access-Control-Allow-Origin: *

cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1663645305

151.101.85.46

200 OK

886 B

URL HTTP/1.1
cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1663645305
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (2632)
Size
886 B (886 bytes)
Hash
5c465ace654da8d0e367f91e7751ae62
f218f483eccbba5be90abf97eff819569329f8b7
0c91c8e311bc809644913a2ff023585ba587ecfc834ba3cd152544e75d422bd9

HTTP Headers

GET /css/free-footer-v3.css?buildtime=1663645305 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css
Last-Modified: Mon, 19 Sep 2022 20:20:44 GMT
ETag: "6328cf1c-a49"
Expires: Tue, 04 Oct 2022 03:51:57 GMT
Cache-Control: max-age=1209600
X-Host: grn54.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 886
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:30 GMT
Age: 36632
Connection: keep-alive
X-Served-By: cache-sjc10076-SJC, cache-bma1661-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 182
X-Timer: S1663682550.111571,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

www.cowichanstewardship.com/uploads/1/4/4/5/14453984/published/csrt-horizontal-logo-transparent.png?1660357851

199.34.228.45

200 OK

39 kB

URL HTTP/1.1
www.cowichanstewardship.com/uploads/1/4/4/5/14453984/published/csrt-horizontal-logo-transparent.png?1660357851
IP
199.34.228.45:0
ASN
#27647 WEEBLY

File type
PNG image data, 484 x 84, 8-bit/color RGBA, non-interlaced\012- data
Size
39 kB (38798 bytes)
Hash
a8ff44aaff9abdf2b3f69d8fd509e435
3e8ddf7b31cd61afba99d2ad84c88fc91a6f1f37
94074b58473f02603e9d3681d1d4aab0e9462b64b15b783380ac29ccd7b794dc

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /uploads/1/4/4/5/14453984/published/csrt-horizontal-logo-transparent.png?1660357851 HTTP/1.1
Host: www.cowichanstewardship.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Cookie: is_mobile=0; language=en

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Sep 2022 14:02:29 GMT
Content-Type: image/png
Content-Length: 38798
Connection: keep-alive
Last-Modified: Sat, 13 Aug 2022 02:30:51 GMT
x-rgw-object-type: Normal
ETag: "a8ff44aaff9abdf2b3f69d8fd509e435"
x-amz-request-id: tx000000000000036f033f2-0063175f9a-bfe27ea-sfo1
X-Storage-Bucket: z9407
X-Storage-Object: 94074b58473f02603e9d3681d1d4aab0e9462b64b15b783380ac29ccd7b794dc
X-Host: blu61.sf2p.intern.weebly.net
Accept-Ranges: bytes

www.cowichanstewardship.com/uploads/1/4/4/5/14453984/logo-sidney-anglers_5.png

199.34.228.45

200 OK

39 kB

URL HTTP/1.1
www.cowichanstewardship.com/uploads/1/4/4/5/14453984/logo-sidney-anglers_5.png
IP
199.34.228.45:0
ASN
#27647 WEEBLY

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
39 kB (39100 bytes)
Hash
ffa407815a593c113a30979fdee884df
d73173b77e772c28e92737da26fcacea990aebcf
e9aa3c9bb5663dc1b85c802b4bc6f076b3d88500f9297fd829c1cd6e43b8aba5

HTTP Headers

GET /uploads/1/4/4/5/14453984/logo-sidney-anglers_5.png HTTP/1.1
Host: www.cowichanstewardship.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Cookie: is_mobile=0; language=en

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Sep 2022 14:02:29 GMT
Content-Type: image/png
Content-Length: 39100
Connection: keep-alive
Last-Modified: Tue, 14 May 2019 20:46:38 GMT
x-rgw-object-type: Normal
ETag: "ffa407815a593c113a30979fdee884df"
x-amz-request-id: tx00000000000000596c4bd-006329c7f5-c695612-sfo1
X-Storage-Bucket: ze9aa
X-Storage-Object: e9aa3c9bb5663dc1b85c802b4bc6f076b3d88500f9297fd829c1cd6e43b8aba5
X-Host: blu76.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c53364cae0510b97de38fb4b3396ff56
d6088b7fe775ebc077d116271fbe7fce898c06f0
2df909d86d97fbb9a27dd94ca9335ea29eae8f9325fccc8d0ef00a4f7cd7cdc6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:02:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn2.editmysite.com/images/landing-pages/global/logotype.svg

151.101.85.46

200 OK

1.5 kB

URL HTTP/1.1
cdn2.editmysite.com/images/landing-pages/global/logotype.svg
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2858)
Size
1.5 kB (1488 bytes)
Hash
0d1c9fb7005532e7b245cfdf1280d805
2466421992f1fb0e44829833aaee7afc0e5ac7cc
8691b92eed1360903b2182d81e491c80141d0cd051366ce3e8c4f359538eb1ff

HTTP Headers

GET /images/landing-pages/global/logotype.svg HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1663645305

HTTP/1.1 200 OK
X-GUploader-UploadID: ADPycduITtRhv_5h862549JhDllw6e8s6BnV_OXwumpJRf4tFUCeyTwCkktV2dvyagvDEGSph_ZPdebwS4sUYTbNDwxM4yW9wl-L
Cache-Control: public, max-age=86400, s-maxage=259200
Expires: Sat, 17 Sep 2022 00:08:57 GMT
Last-Modified: Wed, 10 Oct 2018 21:37:00 GMT
ETag: "bc61dcb431a14c508075eeff4f74523a"
x-goog-generation: 1539207420450301
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3507
Content-Type: image/svg+xml
x-goog-hash: crc32c=vgUlyw==, md5=vGHctDGhTFCAde7/T3RSOg==
x-goog-storage-class: STANDARD
Server: UploadServer
Content-Encoding: gzip
Content-Length: 1488
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:30 GMT
Via: 1.1 varnish
Age: 49981
Connection: keep-alive
X-Served-By: cache-bma1680-BMA
X-Cache: HIT
X-Cache-Hits: 165
X-Timer: S1663682550.154714,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

cdn2.editmysite.com/fonts/SQ_Market/sqmarket-medium.woff2

151.101.85.46

200 OK

31 kB

URL HTTP/1.1
cdn2.editmysite.com/fonts/SQ_Market/sqmarket-medium.woff2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 30768, version 1.393\012- data
Size
31 kB (30768 bytes)
Hash
2344124773c71bf4fa4ad407e7c3a467
3394a43ab1efab8a22a1f07222f7f02a9e12cbb8
bd4d2e29f503390e4951af9232fc43780b43d349647188d8f3f600835f16afb7

HTTP Headers

GET /fonts/SQ_Market/sqmarket-medium.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.cowichanstewardship.com
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: font/woff2
Last-Modified: Thu, 08 Sep 2022 17:37:45 GMT
ETag: "631a2869-7830"
Expires: Wed, 28 Sep 2022 08:35:40 GMT
Cache-Control: max-age=1209600
X-Host: blu74.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Content-Length: 30768
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:30 GMT
Age: 538010
Connection: keep-alive
X-Served-By: cache-sjc10054-SJC, cache-bma1657-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 12, 1518
X-Timer: S1663682550.158749,VS0,VE0
Access-Control-Allow-Origin: *

www.cowichanstewardship.com/files/theme/social-no-border-grey.png?1663615523

199.34.228.45

200 OK

2.9 kB

URL HTTP/1.1
www.cowichanstewardship.com/files/theme/social-no-border-grey.png?1663615523
IP
199.34.228.45:0
ASN
#27647 WEEBLY

File type
PNG image data, 220 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
2.9 kB (2854 bytes)
Hash
5da81cd882f2d778762bc98ccca248ea
218d68f2ce79c547a7e06ca36edea66047976e89
ae2bb402ba98a2745825f357d8004e64f0f87ca97a23f347fc842d10dc1f16ff

HTTP Headers

GET /files/theme/social-no-border-grey.png?1663615523 HTTP/1.1
Host: www.cowichanstewardship.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/files/main_style.css?1663615523
Cookie: is_mobile=0; language=en

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Sep 2022 14:02:30 GMT
Content-Type: image/png; charset=binary
Content-Length: 2854
Connection: keep-alive
Last-Modified: Sun, 05 Jul 2020 15:40:35 GMT
x-rgw-object-type: Normal
ETag: "5da81cd882f2d778762bc98ccca248ea"
x-amz-request-id: tx000000000000001b33d6b-0062847b9f-b9fbc7f-sfo1
X-Storage-Bucket: zae2b
X-Storage-Object: ae2bb402ba98a2745825f357d8004e64f0f87ca97a23f347fc842d10dc1f16ff
X-Host: grn140.sf2p.intern.weebly.net
Accept-Ranges: bytes

www.google.com/recaptcha/api.js?_=1663682550061

142.250.74.164

200 OK

556 B

URL HTTP/2
www.google.com/recaptcha/api.js?_=1663682550061
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (850), with no line terminators
Size
556 B (556 bytes)
Hash
27b68162c75bebb4dacf518c46e974d5
99abc7e3e02891bec5de3dda3cb18a6f865f82bc
93415a1ed398b656767f092c53ca274ad9ae9c8cb0672831fa3c4ab275f994d1

HTTP Headers

GET /recaptcha/api.js?_=1663682550061 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Tue, 20 Sep 2022 14:02:30 GMT
date: Tue, 20 Sep 2022 14:02:30 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
81fa7001b4b94f54d2ab4f3237ecaabb
e21bb07f34d9bed91f5caac3f9a83e9600a5652c
0ecbe6e0c5198d792a0eeb4197c88ec1d3a9f8b215efae7a6bb87776f7673b6a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:02:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.powr.io/powr.js

172.67.5.146

301 Moved Permanently

0 B

URL HTTP/1.1
www.powr.io/powr.js
IP
172.67.5.146:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /powr.js HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

HTTP/1.1 301 Moved Permanently
Date: Tue, 20 Sep 2022 14:02:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 20 Sep 2022 15:02:30 GMT
Location: https://www.powr.io/powr.js
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74db19635e1eb51d-OSL
alt-svc: h2=":443"; ma=60

www.cowichanstewardship.com/files/theme/button.png?1663615523

199.34.228.45

200 OK

1.9 kB

URL HTTP/1.1
www.cowichanstewardship.com/files/theme/button.png?1663615523
IP
199.34.228.45:0
ASN
#27647 WEEBLY

File type
PNG image data, 400 x 209, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1924 bytes)
Hash
aa65bbf2ec4d6f085dcf455e6edfcf66
9b60a18456ffe1ea00fff7ae492d5d5aa62fcf25
c3c290aad3091ee38186c2fc897a4d3f7c2011d34e7c692bac82b42695b9ae36

HTTP Headers

GET /files/theme/button.png?1663615523 HTTP/1.1
Host: www.cowichanstewardship.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/files/main_style.css?1663615523
Cookie: is_mobile=0; language=en

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Sep 2022 14:02:30 GMT
Content-Type: image/png; charset=binary
Content-Length: 1924
Connection: keep-alive
Last-Modified: Sun, 05 Jul 2020 15:40:37 GMT
x-rgw-object-type: Normal
ETag: "aa65bbf2ec4d6f085dcf455e6edfcf66"
x-amz-request-id: tx000000000000001ec2c1a-006284b2b3-b9fbc64-sfo1
X-Storage-Bucket: zc3c2
X-Storage-Object: c3c290aad3091ee38186c2fc897a4d3f7c2011d34e7c692bac82b42695b9ae36
X-Host: blu61.sf2p.intern.weebly.net
Accept-Ranges: bytes

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
edf07cd621f733b0eb50c632387ebf4f
61a082d26501c2c8d481b1676d0de2e585269613
e5c4324e4c55824b86f48bf0b9a1d317a82e7d3c19bdea7a91d78ce98d68a980

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2087
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:02:30 GMT
Last-Modified: Tue, 20 Sep 2022 13:27:43 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
9fa7348b891f63382d20e26e52c4b782
0cd7899fdbc5c6ea28d085f3c2fcf0a29c53288f
e47fa178300df9143442d83884f0bca5bd4441d5ec28ef438d42819ae0547fbe

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6494
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:02:30 GMT
Last-Modified: Tue, 20 Sep 2022 12:14:16 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279

ec.editmysite.com/com.snowplowanalytics.snowplow/tp2

44.235.202.207

200 OK

0 B

URL HTTP/1.1
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
44.235.202.207:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://www.cowichanstewardship.com/
Origin: http://www.cowichanstewardship.com
Connection: keep-alive

HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:02:30 GMT
Content-Length: 0
Connection: keep-alive
Server: nginx
Access-Control-Allow-Origin: http://www.cowichanstewardship.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type, SP-Anonymous
Access-Control-Max-Age: 5

www.powr.io/powr.js

172.67.5.146

200 OK

23 kB

URL HTTP/2
www.powr.io/powr.js
IP
172.67.5.146:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (15800), with no line terminators
Size
23 kB (22867 bytes)
Hash
0ce5af784969a4d07904ab9d67a04f75
cf4bdedc27b5ef48b78db94cd6267ea260267241
2244d38af1c671243231a3f18af2d17abf1ebcba1c03a86e303b0cf01b576186

HTTP Headers

GET /powr.js HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.cowichanstewardship.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:02:30 GMT
content-type: application/javascript
cache-control: max-age=604800, public
cf-bgj: minify
expires: Wed, 20 Sep 2023 08:44:12 GMT
last-modified: Tue, 20 Sep 2022 08:44:04 GMT
vary: Accept-Encoding
via: 1.1 vegur
cf-cache-status: HIT
age: 7990
server: cloudflare
cf-ray: 74db1963980f0b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:02:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js

142.250.74.163

200 OK

158 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (581)
Size
158 kB (157726 bytes)
Hash
6519c7c04cf32a57b1c5ee45a73c233e
4939bb921988e9eb13780cc2244f3099776e9bfb
8352dd4e3e0fe82562cdc280c020fc31d2c6d054f7ead441a3b18de8ef04401b

HTTP Headers

GET /recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.cowichanstewardship.com
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:37:29 GMT
expires: Thu, 14 Sep 2023 05:37:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Sep 2022 00:24:01 GMT
content-type: text/javascript
age: 548701
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.38.227.80

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.38.227.80:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /OnkqAcLs7XhvMXs0EcTBw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: z2Yg1UMNOumNv2B8CRfDvaV8YwU=

ec.editmysite.com/com.snowplowanalytics.snowplow/tp2

44.235.202.207

200 OK

2 B

URL HTTP/1.1
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
44.235.202.207:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
Content-Length: 1780
Origin: http://www.cowichanstewardship.com
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:02:30 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Connection: keep-alive
Server: nginx
Set-Cookie: sp=23208b60-99af-479a-b9ce-46c0bd280f46; Expires=Wed, 20 Sep 2023 14:02:30 GMT; Domain=; Path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
Access-Control-Allow-Origin: http://www.cowichanstewardship.com
Access-Control-Allow-Credentials: true

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:02:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.cowichanstewardship.com/favicon.ico

199.34.228.45

200 OK

4.3 kB

URL HTTP/1.1
www.cowichanstewardship.com/favicon.ico
IP
199.34.228.45:0
ASN
#27647 WEEBLY

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size
4.3 kB (4286 bytes)
Hash
4d27526198ac873ccec96935198e0fb9
b98d8b73ad6a0f7477c3397561b4aab37bf262aa
40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.cowichanstewardship.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Cookie: is_mobile=0; language=en; _snow_ses.bfc4=*; _snow_id.bfc4=6de9b00b-3136-4327-92ce-84ddcc7a19c2.1663682550.1.1663682550.1663682550.2e282309-8dd4-43c0-8e41-1cfc412db454

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Sep 2022 14:02:30 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000000c8f1f2-0061a70684-a9f1b25-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: blu42.sf2p.intern.weebly.net
Accept-Ranges: bytes

www.cowichanstewardship.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]

199.34.228.45

200 OK

348 B

URL HTTP/1.1
www.cowichanstewardship.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP
199.34.228.45:0
ASN
#27647 WEEBLY

File type
JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Size
348 B (348 bytes)
Hash
a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49

HTTP Headers

POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: www.cowichanstewardship.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: http://www.cowichanstewardship.com
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Cookie: is_mobile=0; language=en; _snow_ses.bfc4=*; _snow_id.bfc4=6de9b00b-3136-4327-92ce-84ddcc7a19c2.1663682550.1.1663682550.1663682550.2e282309-8dd4-43c0-8e41-1cfc412db454

HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:02:30 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu72.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: application/json

www.cowichanstewardship.com/uploads/1/4/4/5/14453984/22-08-18-qss-poster-kb_orig.png

199.34.228.45

200 OK

515 kB

URL HTTP/1.1
www.cowichanstewardship.com/uploads/1/4/4/5/14453984/22-08-18-qss-poster-kb_orig.png
IP
199.34.228.45:0
ASN
#27647 WEEBLY

File type
PNG image data, 600 x 800, 8-bit/color RGBA, non-interlaced\012- data
Size
515 kB (515440 bytes)
Hash
a3da9ffb62b8b6a328a3a98aaa59fe1f
19e05960fda0be1e2cb126b39d9a66c120d23e42
0e8bccb133d2083711f662fb6d7bb3e83b44a788a86a674f16e84babb57deb97

HTTP Headers

GET /uploads/1/4/4/5/14453984/22-08-18-qss-poster-kb_orig.png HTTP/1.1
Host: www.cowichanstewardship.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Cookie: is_mobile=0; language=en

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Sep 2022 14:02:30 GMT
Content-Type: image/png
Content-Length: 515440
Connection: keep-alive
Last-Modified: Thu, 25 Aug 2022 15:57:45 GMT
x-rgw-object-type: Normal
ETag: "a3da9ffb62b8b6a328a3a98aaa59fe1f"
x-amz-request-id: tx000000000000004f75b75-006328b270-c695612-sfo1
X-Storage-Bucket: z0e8b
X-Storage-Object: 0e8bccb133d2083711f662fb6d7bb3e83b44a788a86a674f16e84babb57deb97
X-Host: blu76.sf2p.intern.weebly.net
Accept-Ranges: bytes

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7719
Expires: Tue, 20 Sep 2022 16:11:10 GMT
Date: Tue, 20 Sep 2022 14:02:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7719
Expires: Tue, 20 Sep 2022 16:11:10 GMT
Date: Tue, 20 Sep 2022 14:02:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7719
Expires: Tue, 20 Sep 2022 16:11:10 GMT
Date: Tue, 20 Sep 2022 14:02:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7719
Expires: Tue, 20 Sep 2022 16:11:10 GMT
Date: Tue, 20 Sep 2022 14:02:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7719
Expires: Tue, 20 Sep 2022 16:11:10 GMT
Date: Tue, 20 Sep 2022 14:02:31 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11832 bytes)
Hash
2ed7323b395e757f7766ea0045efdaca
8b91bc3069a3217bc719c27959d578b353b5d9dc
8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
content-type: image/jpeg
age: 57168
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11145 bytes)
Hash
c283017ec789693602177a2785177e21
ff8286c4d2cf87a1865d56d082bc5235dba60ad7
520db2567ad5529d35d2ac63b94d4186848382e9c86d0c4355ab979b34f0e0ab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11145
x-amzn-requestid: dcb726a6-2f43-4170-a53c-4f0d2883309e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yuh7yHfHIAMFu4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e37e-11bf06e96123e01c11854cbb;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:47:42 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oJyChyEdTbGx6oQCRy6IVMS8qU22LupFYn6FOii3p4BUVFyKnssQ7Q==
via: 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:05:54 GMT
age: 57397
etag: "ff8286c4d2cf87a1865d56d082bc5235dba60ad7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9873 bytes)
Hash
7ca0c1a7f205ad07f1cce80b26448873
0e14f5062e40ce94346494ff947bfcf74b5e88c1
ebc960279032671136749823c126ec807334d9eaf2b019abcc63b41bcdbf4a7f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9873
x-amzn-requestid: 7171299f-e6e3-40ef-a292-33779346e1ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI-FDIIAMF-xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-31f9413434a6b00e77e7709b;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: evL3aL1ULo6B2a8Rp6iILKCX7F14O9HMSbEqkEY3XHFhmMptE8FaVw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:44 GMT
age: 57167
etag: "0e14f5062e40ce94346494ff947bfcf74b5e88c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9543 bytes)
Hash
30fbdfee7ec4513a5ff3dfcb7282f816
a852edb64a7220532aa619ab2a440c3a7e11b97a
4adee59f97bea412c6a0a786d0a27e431a497198b9047a75841b0a530803bdfe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9543
x-amzn-requestid: 17be04c9-54f0-4988-82dd-f13911a2a629
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugINHN1IAMF8iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09a-35496b4c21c23dec75257964;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -VBFetQNkmIiWeJtW5IOheaPLdDHM9iKhiGPzVcA3_KQk7Qha5VrXg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:14:25 GMT
age: 56886
etag: "a852edb64a7220532aa619ab2a440c3a7e11b97a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9865 bytes)
Hash
1a7d863845e96c5927e812f325c08c16
b8484fb5443344b03e52dd56b1d6c5682eb6221a
fcb382029332a44deaf212298b618074a752d674d0c735a1b8b861ab4bb6ff0f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9865
x-amzn-requestid: 7eeeff5b-cb13-4060-96a6-bf5a4be57331
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugokGQVoAMFXmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e169-4211dbbe1a22d0255a45aff0;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:38:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2kU9PLuzusMR04mNUdwbU6-120ESVhYJtNaIixERO68Vo9jEfP3JWg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:04:47 GMT
age: 57464
etag: "b8484fb5443344b03e52dd56b1d6c5682eb6221a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10894 bytes)
Hash
d3e70b2859ca89b353682d03f6b46b93
ebd83f29edd95217dfa4f4c7a94eddf34dd58b14
43ad8f8b0a664bbec39e0410c1201498a2d2e36e5bd7d5ece8d65b15230ec50b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10894
x-amzn-requestid: f7aad96e-af80-4db7-8bc1-d1e09a9b37e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeJQGHhOIAMFYuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322559a-538534e91448af217c59ab3d;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:28:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P7aZQzmAvqn2rcHJUQjHo0Dcg8dsrqseey5mNOabfq1b857M4SUMDQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 10:06:02 GMT
age: 14189
etag: "ebd83f29edd95217dfa4f4c7a94eddf34dd58b14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
61e5226dc3bddf0c0823c3134ebde224
4b35c53e8f91a840a4125b1ff92e99589c007a37
223615fe4754c0953ed65ec85d36d5219904395c8d7d7963670ab6f4c44e22da

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4477
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:02:32 GMT
Last-Modified: Tue, 20 Sep 2022 12:47:55 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3c1752fc89daa295ec7c0d6eef3551e9
b9f8d21b3796ee81c5c3aa927fd3b38c8714e623
c218215380f35a01ba1e19a395d90966f3b4cecc48e90acbf45bfeb0c0cd76d3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4613
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:02:32 GMT
Last-Modified: Tue, 20 Sep 2022 12:45:39 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

cdn.jsdelivr.net/npm/jquery@1.11.2/dist/jquery.min.js

151.101.85.229

200 OK

33 kB

URL HTTP/2
cdn.jsdelivr.net/npm/jquery@1.11.2/dist/jquery.min.js
IP
151.101.85.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (32047)
Size
33 kB (33348 bytes)
Hash
63e182df0883a4702e8db066451bdba0
993f0816fd2c8286c0f59df00e2697d6f7ad25cb
b9c375a13d4fa1e14ba88460ddb93ac9d380e77965cceb203145127f6ea82961

HTTP Headers

GET /npm/jquery@1.11.2/dist/jquery.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.11.2
x-jsd-version-type: version
etag: W/"176de-sz7jtCuYju+dTWJJW25U4j3WQv0"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 20 Sep 2022 14:02:32 GMT
age: 6698207
x-served-by: cache-fra19169-FRA, cache-bma1625-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33348
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
61e5226dc3bddf0c0823c3134ebde224
4b35c53e8f91a840a4125b1ff92e99589c007a37
223615fe4754c0953ed65ec85d36d5219904395c8d7d7963670ab6f4c44e22da

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4477
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:02:32 GMT
Last-Modified: Tue, 20 Sep 2022 12:47:55 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1

104.18.21.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
ff5b1a5950a24578fea623ad48f0a331
5f6e1d355740a71af366a7fdb2eff3f0c6a68a1a
ddd0303186be361a81328fbd96a5ecd2a5fa5902f8b632cc24fd2170a5d05138

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:02:32 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "A97D49D6DF62A7366E6ED99006DC39847F2FA103"
Expires: Wed, 21 Sep 2022 01:00:00 GMT
Last-Modified: Tue, 20 Sep 2022 13:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1135
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74db196eff2fb517-OSL

ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d

104.18.23.52

200 OK

4.2 kB

URL HTTP/2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (26366)
Size
4.2 kB (4194 bytes)
Hash
7fd743485fa194e25e2a207bff6c258a
97c999d752b95ee1ed6271a29aa58109dc17281e
dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc

HTTP Headers

GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:02:32 GMT
content-type: text/css
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 9129238
accept-ranges: bytes
server: cloudflare
cf-ray: 74db196f6c7ffabc-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=14579ba48d

104.18.23.52

200 OK

54 kB

URL HTTP/2
ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=14579ba48d
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65397)
Size
54 kB (54194 bytes)
Hash
dc9270247a97f75913a5d8934c24de03
ed9b0fa01b552571f99d529ed355b2ba91cfc48d
847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8

HTTP Headers

GET /releases/v5.15.4/css/pro.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:02:32 GMT
content-type: text/css
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 9126632
accept-ranges: bytes
server: cloudflare
cf-ray: 74db196f6c79fabc-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d

104.18.23.52

200 OK

2.6 kB

URL HTTP/2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (27832)
Size
2.6 kB (2603 bytes)
Hash
eaaabd3f60063923cd5333eb1d7a20a1
0da69706105e28896a1f6eeaa91d5bec1b82f7f1
f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70

HTTP Headers

GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:02:32 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 1418626
accept-ranges: bytes
server: cloudflare
cf-ray: 74db196f6c7cfabc-OSL
X-Firefox-Spdy: h2

js-agent.newrelic.com/nr-1184.min.js

151.101.86.137

200 OK

11 kB

URL HTTP/2
js-agent.newrelic.com/nr-1184.min.js
IP
151.101.86.137:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (27995), with no line terminators
Size
11 kB (10624 bytes)
Hash
43e0aec0456ae54841a52fe989abb1ec
d9e080d86beada72e9e42092bede868db3d4aee4
9d7ecd792af230cea192e0786491921415d809686321da7414b3df85d875de07

HTTP Headers

GET /nr-1184.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: aOKLVFxehe299BchQZ1iqWYmG3f1UoB2kHc2XCz2yQy3U3WlwJQI4pRl4GtHGYjos3ZMLdEYhQQ=
x-amz-request-id: GB4468MZ82K6V9J6
last-modified: Mon, 28 Sep 2020 16:34:45 GMT
etag: "3d7f312be60d08a2568e311e4762f3af"
x-amz-version-id: null
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Tue, 20 Sep 2022 14:02:32 GMT
via: 1.1 varnish
x-served-by: cache-bma1622-BMA
x-cache: HIT
x-cache-hits: 38
x-timer: S1663682553.801142,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 10624
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b83a6b6b4befc3dde083b82c36d63a58
ee43af38bbdbf69c7f6697aa9edd70b0d1263b2b
177757fc5a4865f99a033f45e5e278d9c88ddc3344e7af940a6a7c0d934f368d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6063
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:02:32 GMT
Last-Modified: Tue, 20 Sep 2022 12:21:30 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
81fa7001b4b94f54d2ab4f3237ecaabb
e21bb07f34d9bed91f5caac3f9a83e9600a5652c
0ecbe6e0c5198d792a0eeb4197c88ec1d3a9f8b215efae7a6bb87776f7673b6a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:02:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bam.nr-data.net/1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1096&ck=1&ref=https://www.powr.io/plugins/social-feed/cached_view&be=478&fe=943&dc=851&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1663682551728,%22n%22:0,%22f%22:1,%22dn%22:1,%22dne%22:1,%22c%22:1,%22s%22:1,%22ce%22:1,%22rq%22:10,%22rp%22:272,%22rpe%22:272,%22dl%22:277,%22di%22:807,%22ds%22:823,%22de%22:851,%22dc%22:941,%22l%22:941,%22le%22:945%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken

162.247.241.14

200 OK

73 B

URL HTTP/1.1
bam.nr-data.net/1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1096&ck=1&ref=https://www.powr.io/plugins/social-feed/cached_view&be=478&fe=943&dc=851&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1663682551728,%22n%22:0,%22f%22:1,%22dn%22:1,%22dne%22:1,%22c%22:1,%22s%22:1,%22ce%22:1,%22rq%22:10,%22rp%22:272,%22rpe%22:272,%22dl%22:277,%22di%22:807,%22ds%22:823,%22de%22:851,%22dc%22:941,%22l%22:941,%22le%22:945%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken
IP
162.247.241.14:0
ASN
#23467 NEWRELIC-AS-1

File type
ASCII text, with no line terminators
Size
73 B (73 bytes)
Hash
516a128bb6000ca8154792678f4333fb
41d0257bea96afd36c6f3e40fcfdc9ca247f8e01
9fa62b52f24b87a40410fe842cb9be494abed114a2eac2eb406c8b4a4d372d10

HTTP Headers

GET /1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1096&ck=1&ref=https://www.powr.io/plugins/social-feed/cached_view&be=478&fe=943&dc=851&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1663682551728,%22n%22:0,%22f%22:1,%22dn%22:1,%22dne%22:1,%22c%22:1,%22s%22:1,%22ce%22:1,%22rq%22:10,%22rp%22:272,%22rpe%22:272,%22dl%22:277,%22di%22:807,%22ds%22:823,%22de%22:851,%22dc%22:941,%22l%22:941,%22le%22:945%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 14:02:33 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 74db1973ef2f1bfa-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=65e8f3d7d786ca0d; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
498b8fdf0a03340fac9145638455fddb
3115f8065cb828210b3a01bc4296f71cc216af71
1fe81cd5e2cedf7cd43ace160f22b517f97c61cd6d1818111e9c1bc0da02ed09

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:02:33 GMT
Last-Modified: Tue, 20 Sep 2022 12:56:22 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: A_2Oqk7C8KiT04NLbuI8ab_lVQlKF-WS9HTleCq7kb6dn47rM6Oipg==
Age: 3971

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
498b8fdf0a03340fac9145638455fddb
3115f8065cb828210b3a01bc4296f71cc216af71
1fe81cd5e2cedf7cd43ace160f22b517f97c61cd6d1818111e9c1bc0da02ed09

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:02:33 GMT
Last-Modified: Tue, 20 Sep 2022 12:40:47 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 41WgowEJrXKKPmPl3c8mSINYSSwGYJEWMt_yHmfNJVgKGG3RFT3Vig==
Age: 4906

fonts.gstatic.com/s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2

142.250.74.163

200 OK

8.8 kB

URL HTTP/2
fonts.gstatic.com/s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
8.8 kB (8802 bytes)
Hash
2099d00d54f634e9d66466f76f631fc3
1316596c5c9bd373fb77b95bdfc29836bc1c2422
f347505429a22ee26981d0ef72d5ba38d96c03208aaa90a157373e7a0202cf3e

HTTP Headers

GET /s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7664
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 22:49:22 GMT
expires: Tue, 19 Sep 2023 22:49:22 GMT
cache-control: public, max-age=31536000
age: 54791
last-modified: Mon, 09 May 2022 18:44:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2

142.250.74.163

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size
17 kB (16740 bytes)
Hash
e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681

HTTP Headers

GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 18:53:39 GMT
expires: Tue, 19 Sep 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 68934
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
12 kB (12324 bytes)
Hash
61ff8bd11e2dbc8a77e53794aaa1c16a
f68067037031a860d7d3f38c9c9afb3505e99fcf
17b3754d4921ba5bf2a777b7482abbc443bc841abc511c693e26188e002117f3

HTTP Headers

GET /s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://public.powrcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11016
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 16:44:00 GMT
expires: Fri, 15 Sep 2023 16:44:00 GMT
cache-control: public, max-age=31536000
age: 422313
last-modified: Wed, 24 Jul 2019 01:18:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 498505
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=674683289397912&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=674683289397912&data%5B0%5D%5BinstagramUsername%5D=&data%5B0%5D%5BconnectionType%5D=basic&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=Cowichan+Stewardship+Roundtable&data%5B0%5D%5BmaxPosts%5D=6&premium=free&app_id=33308764&refreshRate=1200

23.22.52.7

204 No Content

0 B

URL HTTP/1.1
powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=674683289397912&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=674683289397912&data%5B0%5D%5BinstagramUsername%5D=&data%5B0%5D%5BconnectionType%5D=basic&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=Cowichan+Stewardship+Roundtable&data%5B0%5D%5BmaxPosts%5D=6&premium=free&app_id=33308764&refreshRate=1200
IP
23.22.52.7:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=674683289397912&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=674683289397912&data%5B0%5D%5BinstagramUsername%5D=&data%5B0%5D%5BconnectionType%5D=basic&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=Cowichan+Stewardship+Roundtable&data%5B0%5D%5BmaxPosts%5D=6&premium=free&app_id=33308764&refreshRate=1200 HTTP/1.1
Host: powr-outlet-v2.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-csrf-token
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: Cowboy
Content-Length: 0
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.powr.io
Vary: Origin, Access-Control-Request-Headers
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Headers: x-csrf-token
Date: Tue, 20 Sep 2022 14:02:33 GMT
Via: 1.1 vegur

23.22.52.7

200 OK

174 kB

URL HTTP/1.1
powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=674683289397912&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=674683289397912&data%5B0%5D%5BinstagramUsername%5D=&data%5B0%5D%5BconnectionType%5D=basic&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=Cowichan+Stewardship+Roundtable&data%5B0%5D%5BmaxPosts%5D=6&premium=free&app_id=33308764&refreshRate=1200
IP
23.22.52.7:0
ASN
#14618 AMAZON-AES

File type
data
Size
174 kB (173520 bytes)
Hash
8fe384ac679068d85f1364969ab09e87
4f9e17d3a82a0166d7db883249fde1a39d3eb9c1
5fb20a4356786118321fbcdb151dbc680494700537dea8bc8109465eb6b2e56c

HTTP Headers

GET /social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=674683289397912&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=674683289397912&data%5B0%5D%5BinstagramUsername%5D=&data%5B0%5D%5BconnectionType%5D=basic&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=Cowichan+Stewardship+Roundtable&data%5B0%5D%5BmaxPosts%5D=6&premium=free&app_id=33308764&refreshRate=1200 HTTP/1.1
Host: powr-outlet-v2.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: CSShPWBI6Qbd8RqG1PuzZA6COmz5raQ-VymNqsTLiqpf8JLKq9Wu_oE5SAfdS5VcuE4h5GEtufOH92mjk35ZPw
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.powr.io
Vary: Origin
Content-Type: application/json; charset=utf-8
Cache-Control: public, max-age=3600
Date: Tue, 20 Sep 2022 14:02:33 GMT
Content-Length: 138138
Via: 1.1 vegur

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
09fd78a2456c7073e3182ebfb956dd73
d7f5b70ba522655860c053e1702abede2e8b4119
00e1d70079798796d05d47733e57843ff080ca19d377c92589b5971fd0244e94

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:02:33 GMT
Last-Modified: Tue, 20 Sep 2022 13:46:53 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LQoPPWD8ZQzwqBZ-zEMTZcCTkFh6hzLQYaCj6sgO0sKTUScGT4y7MQ==
Age: 940

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
09fd78a2456c7073e3182ebfb956dd73
d7f5b70ba522655860c053e1702abede2e8b4119
00e1d70079798796d05d47733e57843ff080ca19d377c92589b5971fd0244e94

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 14:02:33 GMT
Last-Modified: Tue, 20 Sep 2022 13:33:05 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lGNdwuFpGZ71iM3Z6twf7sNakB9DEzkhXm5WZXn8dOTKIAO1ru19dQ==
Age: 1768

powr-counter.herokuapp.com/33308764

34.201.81.34

200 OK

0 B

URL HTTP/1.1
powr-counter.herokuapp.com/33308764
IP
34.201.81.34:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /33308764 HTTP/1.1
Host: powr-counter.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 20 Sep 2022 14:02:34 GMT
Connection: keep-alive
Content-Type: text/plain
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers: 
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Transfer-Encoding: chunked
Via: 1.1 vegur

ocsp.digicert.com/

93.184.220.29

200 OK

2.7 kB

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
2.7 kB (2723 bytes)
Hash
afce8ff2250b8e987777eb764ff5ff2e
57956ea23badbc8f682f14d3c6cd18206e969337
0d92f4ef6d4efafe6a9c89304e4ad66e078bdad0fb012779c13e91fbf431202a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6024
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:02:34 GMT
Last-Modified: Tue, 20 Sep 2022 12:22:10 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

graph.facebook.com/674683289397912/picture?type=square

157.240.200.16

302 Found

0 B

URL HTTP/2
graph.facebook.com/674683289397912/picture?type=square
IP
157.240.200.16:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /674683289397912/picture?type=square HTTP/1.1
Host: graph.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
x-fb-rlafr: 0
location: https://scontent-arn2-1.xx.fbcdn.net/v/t31.18172-1/21200833_674684759397765_6708879507682114040_o.jpg?stp=cp0_dst-jpg_p50x50&_nc_cat=107&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=v1S8SGm1fx8AX-3PwD0&_nc_ht=scontent-arn2-1.xx&edm=AOf6bZoEAAAA&oh=00_AT8ZSIRURSDVWmQv4Ri8yVSXt6e8GUDHEKeI8LlKxwMqSQ&oe=634F8FD0
content-type: image/jpeg
access-control-allow-origin: *
facebook-api-version: v8.0
strict-transport-security: max-age=15552000; preload
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-fb-request-id: AeocZnQoGcC4xTHbJlg8xhh
x-fb-trace-id: H5kDoOouI6F
x-fb-rev: 1006232667
x-fb-debug: 3YSAm+16Dh/vEl6xUoFlVIGpxnyK55nM3UPv17Wi270I5QjQgcVS1XGHyn11qf/FIqS8q97JiJL1b+7DhakUtA==
content-length: 0
date: Tue, 20 Sep 2022 14:02:34 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

15 kB

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
15 kB (15389 bytes)
Hash
f5edcbb5f69eb603e7223d68f8801fbb
97ec9a19e21c2c8743291feca9665e4771a98c50
ce8e61f202028a3766b3985a7500024d1d6f38c881daba668fb8e73025c08da1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6024
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:02:34 GMT
Last-Modified: Tue, 20 Sep 2022 12:22:10 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

powr-counter.herokuapp.com/33308764

34.201.81.34

200 OK

18 kB

URL HTTP/1.1
powr-counter.herokuapp.com/33308764
IP
34.201.81.34:0
ASN
#14618 AMAZON-AES

File type
data
Size
18 kB (18115 bytes)
Hash
0817d761aa21f941df092c68213ef3cf
cec8d93641869f4e6297e7c826081bcd1e22f9f6
57a60a1fe3b2e1802a67526b099b7963d1ef4b118a5b8f459bb452ffda7ed206

HTTP Headers

POST /33308764 HTTP/1.1
Host: powr-counter.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 614
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 20 Sep 2022 14:02:33 GMT
Connection: keep-alive
Content-Type: text/plain; charset=utf-8
Etag: W/"36a9e7f1c95b82ffb99743e0c5c4ce95"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: 95bc3d22-4a1e-492a-8f81-3dee392908fa
X-Runtime: 0.055718
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers: 
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Vary: Origin
Transfer-Encoding: chunked
Via: 1.1 vegur

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
26fcf8aea27805b4a6a29e3e2a4ba19b
f920fd6c5a79a4adb2f456edcee678757ff1602c
7aa63d03f514e4f51190e85f167f747563f980e0e6fdee6cce9393321dff1038

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 14:02:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

kit.fontawesome.com/14579ba48d.js

104.18.22.52

200 OK

4.5 kB

URL HTTP/2
kit.fontawesome.com/14579ba48d.js
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
4.5 kB (4483 bytes)
Hash
10ba84d7b4935cf7b9347ac27bb1c2a6
6c8be2f477d1e3ac6ddec805d7b78c3962777ec2
21b4a7fcb929b319bc6a4e93130e4495f392849219c7b6baec03b81cd3a60701

HTTP Headers

GET /14579ba48d.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:02:32 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fuu_NKRKzsFcWtfaTAAi
cf-cache-status: HIT
age: 23
server: cloudflare
cf-ray: 74db196ecb3e0b02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

scontent-arn2-1.xx.fbcdn.net/v/t31.18172-1/21200833_674684759397765_6708879507682114040_o.jpg?stp=cp0_dst-jpg_p50x50&_nc_cat=107&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=v1S8SGm1fx8AX-3PwD0&_nc_ht=scontent-arn2-1.xx&edm=AOf6bZoEAAAA&oh=00_AT8ZSIRURSDVWmQv4Ri8yVSXt6e8GUDHEKeI8LlKxwMqSQ&oe=634F8FD0

31.13.72.12

200 OK

2.0 kB

URL HTTP/2
scontent-arn2-1.xx.fbcdn.net/v/t31.18172-1/21200833_674684759397765_6708879507682114040_o.jpg?stp=cp0_dst-jpg_p50x50&_nc_cat=107&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=v1S8SGm1fx8AX-3PwD0&_nc_ht=scontent-arn2-1.xx&edm=AOf6bZoEAAAA&oh=00_AT8ZSIRURSDVWmQv4Ri8yVSXt6e8GUDHEKeI8LlKxwMqSQ&oe=634F8FD0
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Size
2.0 kB (1972 bytes)
Hash
52af5834c2d36088062c8f7ec5a3685e
800f0c5d6c51ff8e377b2eedf9be3e1aa8bd20ca
6379e84d42a0550a3f44200ac2afe87c0e967286eb2e083f09be6dda52dd69c1

HTTP Headers

GET /v/t31.18172-1/21200833_674684759397765_6708879507682114040_o.jpg?stp=cp0_dst-jpg_p50x50&_nc_cat=107&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=v1S8SGm1fx8AX-3PwD0&_nc_ht=scontent-arn2-1.xx&edm=AOf6bZoEAAAA&oh=00_AT8ZSIRURSDVWmQv4Ri8yVSXt6e8GUDHEKeI8LlKxwMqSQ&oe=634F8FD0 HTTP/1.1
Host: scontent-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Mon, 28 Aug 2017 19:08:41 GMT
x-haystack-needlechecksum: 49759146
x-needle-checksum: 3031279687
content-type: image/jpeg
content-length: 1972
content-digest: adler32=2442579277
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1904183273
date: Tue, 20 Sep 2022 14:02:34 GMT
x-fb-edge-debug: rgdhxOrQbSy44iC2beU7CF71FTxzK8HWdlkgEbgsYahtIAR_rBRiGth85Zu9Us2A0LIPf8f7AuO800w0fRixFA
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

scontent-iad3-1.xx.fbcdn.net/v/t39.30808-6/305210775_1914607455405483_2111707467367514500_n.jpg?stp=dst-jpg_s720x720&_nc_cat=111&ccb=1-7&_nc_sid=110474&_nc_ohc=_G-s9iMjHdEAX_iURUm&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT_ZquaeKLRYETzUaiaFQK1mPew4AgYA3Ue6dRZfO_skYQ&oe=632F60B6

31.13.66.19

200 OK

99 kB

URL HTTP/2
scontent-iad3-1.xx.fbcdn.net/v/t39.30808-6/305210775_1914607455405483_2111707467367514500_n.jpg?stp=dst-jpg_s720x720&_nc_cat=111&ccb=1-7&_nc_sid=110474&_nc_ohc=_G-s9iMjHdEAX_iURUm&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT_ZquaeKLRYETzUaiaFQK1mPew4AgYA3Ue6dRZfO_skYQ&oe=632F60B6
IP
31.13.66.19:0
ASN
#32934 FACEBOOK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 576x720, components 3\012- data
Size
99 kB (98934 bytes)
Hash
1e3b09fbb6bb3d8bdab1b7f637a8372f
a575e2588f7c1d2264a5d1df0fc30c427ce2ab09
4681d5576321b623558ef403791983cdef2e868f79f02361cbca58bb75c89ca8

HTTP Headers

GET /v/t39.30808-6/305210775_1914607455405483_2111707467367514500_n.jpg?stp=dst-jpg_s720x720&_nc_cat=111&ccb=1-7&_nc_sid=110474&_nc_ohc=_G-s9iMjHdEAX_iURUm&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT_ZquaeKLRYETzUaiaFQK1mPew4AgYA3Ue6dRZfO_skYQ&oe=632F60B6 HTTP/1.1
Host: scontent-iad3-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Wed, 07 Sep 2022 17:06:42 GMT
accept-ranges: bytes
x-haystack-needlechecksum: 3365207141
x-needle-checksum: 1271131432
content-type: image/jpeg
content-digest: adler32=1376369312
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 98934
x-fb-trip-id: 1814657579
date: Tue, 20 Sep 2022 14:02:34 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

external-iad3-1.xx.fbcdn.net/emg1/v/t13/4910295940065044545?url=https%3a%2f%2fi.cbc.ca%2f1.6500387.1656096161%21%2ffileImage%2fhttpImage%2fimage.jpg_gen%2fderivatives%2f16x9_620%2fjellyfish-bc.jpg&fb_obo=1&utld=fbcdn.net&stp=dst-emg0_q75&ccb=13-1&oh=06_AaoLEUVtUZ7jE2YC41J1-76ViFbbHcRqAgoXgpODF7ITWw&oe=632B7FAF&_nc_sid=5f3a21

31.13.66.19

200 OK

27 kB

URL HTTP/2
external-iad3-1.xx.fbcdn.net/emg1/v/t13/4910295940065044545?url=https%3a%2f%2fi.cbc.ca%2f1.6500387.1656096161%21%2ffileImage%2fhttpImage%2fimage.jpg_gen%2fderivatives%2f16x9_620%2fjellyfish-bc.jpg&fb_obo=1&utld=fbcdn.net&stp=dst-emg0_q75&ccb=13-1&oh=06_AaoLEUVtUZ7jE2YC41J1-76ViFbbHcRqAgoXgpODF7ITWw&oe=632B7FAF&_nc_sid=5f3a21
IP
31.13.66.19:0
ASN
#32934 FACEBOOK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 620x349, components 3\012- data
Size
27 kB (27061 bytes)
Hash
22a834a49891a3af62137604e9c2472c
996361bc61f31ed2a48d24137e60d7e2b827d6a7
17d32494f03b61766a6893d4b17acc172cf63f9b20413374fa6487c7a4e35c11

HTTP Headers

GET /emg1/v/t13/4910295940065044545?url=https%3a%2f%2fi.cbc.ca%2f1.6500387.1656096161%21%2ffileImage%2fhttpImage%2fimage.jpg_gen%2fderivatives%2f16x9_620%2fjellyfish-bc.jpg&fb_obo=1&utld=fbcdn.net&stp=dst-emg0_q75&ccb=13-1&oh=06_AaoLEUVtUZ7jE2YC41J1-76ViFbbHcRqAgoXgpODF7ITWw&oe=632B7FAF&_nc_sid=5f3a21 HTTP/1.1
Host: external-iad3-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Tue, 20 Sep 2022 14:02:04 GMT
content-type: image/jpeg
content-digest: adler32=4201420742
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-length: 27061
x-fb-trip-id: 1814657579
date: Tue, 20 Sep 2022 14:02:34 GMT
cache-control: max-age=1209600, no-transform
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

scontent-iad3-1.xx.fbcdn.net/v/t39.30808-6/292669481_5621056474605637_5830522229708955889_n.jpg?stp=dst-jpg_p480x480&_nc_cat=107&ccb=1-7&_nc_sid=8024bb&_nc_ohc=eaAB2zf_mE8AX8NwX0s&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT8aiks14ghrzZS-TtZ8dmiJch4aJ8RygTwJJtp0ebfvdA&oe=632F8AB2

31.13.66.19

200 OK

71 kB

URL HTTP/2
scontent-iad3-1.xx.fbcdn.net/v/t39.30808-6/292669481_5621056474605637_5830522229708955889_n.jpg?stp=dst-jpg_p480x480&_nc_cat=107&ccb=1-7&_nc_sid=8024bb&_nc_ohc=eaAB2zf_mE8AX8NwX0s&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT8aiks14ghrzZS-TtZ8dmiJch4aJ8RygTwJJtp0ebfvdA&oe=632F8AB2
IP
31.13.66.19:0
ASN
#32934 FACEBOOK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 719x480, components 3\012- data
Size
71 kB (71088 bytes)
Hash
ddee778e0d2ecb15f9c6fedb08247f96
20dc3b6c5c1e89059b7bb3d5605727183a0aabdf
c70ad77e26a5f1268d6549826766d07fc5d23c6b3221fca6ab2190714800e60b

HTTP Headers

GET /v/t39.30808-6/292669481_5621056474605637_5830522229708955889_n.jpg?stp=dst-jpg_p480x480&_nc_cat=107&ccb=1-7&_nc_sid=8024bb&_nc_ohc=eaAB2zf_mE8AX8NwX0s&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT8aiks14ghrzZS-TtZ8dmiJch4aJ8RygTwJJtp0ebfvdA&oe=632F8AB2 HTTP/1.1
Host: scontent-iad3-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Thu, 07 Jul 2022 02:01:26 GMT
x-haystack-needlechecksum: 3962856563
x-needle-checksum: 2294408810
content-type: image/jpeg
content-digest: adler32=2497125066
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 71088
x-fb-trip-id: 1814657579
date: Tue, 20 Sep 2022 14:02:34 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

scontent-iad3-1.xx.fbcdn.net/v/t39.30808-6/294589969_1881756242023938_3691733354646538627_n.jpg?stp=dst-jpg_s720x720&_nc_cat=105&ccb=1-7&_nc_sid=110474&_nc_ohc=PTyO6874cJ0AX8bpAec&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT9cggPHbNCf0Mppt-nwcFJKC38FPpXIRu157tcsv3Pa7g&oe=632E7B63

31.13.66.19

200 OK

192 kB

URL HTTP/2
scontent-iad3-1.xx.fbcdn.net/v/t39.30808-6/294589969_1881756242023938_3691733354646538627_n.jpg?stp=dst-jpg_s720x720&_nc_cat=105&ccb=1-7&_nc_sid=110474&_nc_ohc=PTyO6874cJ0AX8bpAec&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT9cggPHbNCf0Mppt-nwcFJKC38FPpXIRu157tcsv3Pa7g&oe=632E7B63
IP
31.13.66.19:0
ASN
#32934 FACEBOOK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 647x720, components 3\012- data
Size
192 kB (192007 bytes)
Hash
b0b0eb16ae02aeb2215b76e5a02f10d1
f5a12a45d5edbb456b91df10fb7668d145445ef3
3e61e34481607d56fd23201e496e26b38025b43a40332107787e35ed57b84258

HTTP Headers

GET /v/t39.30808-6/294589969_1881756242023938_3691733354646538627_n.jpg?stp=dst-jpg_s720x720&_nc_cat=105&ccb=1-7&_nc_sid=110474&_nc_ohc=PTyO6874cJ0AX8bpAec&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT9cggPHbNCf0Mppt-nwcFJKC38FPpXIRu157tcsv3Pa7g&oe=632E7B63 HTTP/1.1
Host: scontent-iad3-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sat, 23 Jul 2022 02:15:55 GMT
accept-ranges: bytes
x-haystack-needlechecksum: 4156593950
x-needle-checksum: 2873905939
content-type: image/jpeg
content-digest: adler32=1307445664
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 192007
x-fb-trip-id: 1814657579
date: Tue, 20 Sep 2022 14:02:34 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

scontent-iad3-1.xx.fbcdn.net/v/t39.30808-6/302694205_1909008012632094_4893795998730415534_n.jpg?stp=dst-jpg_p720x720&_nc_cat=109&ccb=1-7&_nc_sid=110474&_nc_ohc=LuwFDCK0HsoAX8OpX_M&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT-JZknI-xC8B1Wu45KW2faiDdq-_OysqAxfY59YLAl40w&oe=632F9CB3

31.13.66.19

200 OK

110 kB

URL HTTP/2
scontent-iad3-1.xx.fbcdn.net/v/t39.30808-6/302694205_1909008012632094_4893795998730415534_n.jpg?stp=dst-jpg_p720x720&_nc_cat=109&ccb=1-7&_nc_sid=110474&_nc_ohc=LuwFDCK0HsoAX8OpX_M&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT-JZknI-xC8B1Wu45KW2faiDdq-_OysqAxfY59YLAl40w&oe=632F9CB3
IP
31.13.66.19:0
ASN
#32934 FACEBOOK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x720, components 3\012- data
Size
110 kB (109646 bytes)
Hash
a86a7b37828bc1669518149f2050d611
b5264c3f623fe648f81ad709cf44749146ad3c9f
bc0964f9efd49e7085c504eba6e2f3c1f0bf21cb7997b88550a4a30065fb87f9

HTTP Headers

GET /v/t39.30808-6/302694205_1909008012632094_4893795998730415534_n.jpg?stp=dst-jpg_p720x720&_nc_cat=109&ccb=1-7&_nc_sid=110474&_nc_ohc=LuwFDCK0HsoAX8OpX_M&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT-JZknI-xC8B1Wu45KW2faiDdq-_OysqAxfY59YLAl40w&oe=632F9CB3 HTTP/1.1
Host: scontent-iad3-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Wed, 31 Aug 2022 03:03:42 GMT
x-haystack-needlechecksum: 3899880977
x-needle-checksum: 3366930301
content-type: image/jpeg
content-digest: adler32=1617431005
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 109646
x-fb-trip-id: 1814657579
date: Tue, 20 Sep 2022 14:02:34 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

external-iad3-1.xx.fbcdn.net/emg1/v/t13/15718781718493118088?url=https%3a%2f%2fwww.facebook.com%2fads%2fimage%2f%3fd%3dAQKn8m4zEVFa_j1GhMr5v2rN_K1FURunrmmaZk5kygaI8RHyPFfYXWG63HnEQTjqZeDof3nQ5fJahUrYNbusnTpXD3TDHQFmxk1MZEht_PDZWyficLDvf8MOkzKOVwiHD-b6Y1vHHGX0MUm-YYzXo6ea&fb_obo=1&utld=fbcdn.net&stp=dst-emg0_q75&ccb=13-1&oh=06_AarDJURaY49YgFmp-RJ5fZnKFMnmV1MiHn75hvf0uGyKmg&oe=632BA239&_nc_sid=5f3a21

31.13.66.19

200 OK

654 kB

URL HTTP/2
external-iad3-1.xx.fbcdn.net/emg1/v/t13/15718781718493118088?url=https%3a%2f%2fwww.facebook.com%2fads%2fimage%2f%3fd%3dAQKn8m4zEVFa_j1GhMr5v2rN_K1FURunrmmaZk5kygaI8RHyPFfYXWG63HnEQTjqZeDof3nQ5fJahUrYNbusnTpXD3TDHQFmxk1MZEht_PDZWyficLDvf8MOkzKOVwiHD-b6Y1vHHGX0MUm-YYzXo6ea&fb_obo=1&utld=fbcdn.net&stp=dst-emg0_q75&ccb=13-1&oh=06_AarDJURaY49YgFmp-RJ5fZnKFMnmV1MiHn75hvf0uGyKmg&oe=632BA239&_nc_sid=5f3a21
IP
31.13.66.19:0
ASN
#32934 FACEBOOK

File type
data
Size
654 kB (653773 bytes)
Hash
5808932968f3e9330be0d4b3c25e56fc
7b8bcd8b20853d48b5587f98adda99dcba6a039e
32e83491c5da3fb8a4f8f4b31896e204251e713dfa4f4d5a6245d531a2714c7f

HTTP Headers

GET /emg1/v/t13/15718781718493118088?url=https%3a%2f%2fwww.facebook.com%2fads%2fimage%2f%3fd%3dAQKn8m4zEVFa_j1GhMr5v2rN_K1FURunrmmaZk5kygaI8RHyPFfYXWG63HnEQTjqZeDof3nQ5fJahUrYNbusnTpXD3TDHQFmxk1MZEht_PDZWyficLDvf8MOkzKOVwiHD-b6Y1vHHGX0MUm-YYzXo6ea&fb_obo=1&utld=fbcdn.net&stp=dst-emg0_q75&ccb=13-1&oh=06_AarDJURaY49YgFmp-RJ5fZnKFMnmV1MiHn75hvf0uGyKmg&oe=632BA239&_nc_sid=5f3a21 HTTP/1.1
Host: external-iad3-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Tue, 20 Sep 2022 14:02:04 GMT
content-type: image/jpeg
content-digest: adler32=3356570123
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-length: 652019
x-fb-trip-id: 1814657579
date: Tue, 20 Sep 2022 14:02:34 GMT
cache-control: max-age=1209600, no-transform
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

public.powrcdn.com/latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css

172.67.186.248

200 OK

0 B

URL HTTP/2
public.powrcdn.com/latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css
IP
172.67.186.248:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:02:32 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=460092
etag: W/"2cbef8bacb84cdf787933b228259ff66"
last-modified: Thu, 15 Sep 2022 05:32:54 GMT
x-amz-id-2: rOZY7MHa5RCv8if14q8kBBkJg8a6xR63GVnz+WweoQTrpeHjlK4gKn6qQR0QLrrjhUS5YhaEHyY=
x-amz-request-id: 38RWPY9XTXEH3X3Z
x-amz-version-id: 4sVXb7jHJeQHJhWzLHlRoE4pUiOKIjGO
cache-control: max-age=2073600
cf-cache-status: HIT
age: 6606
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dgk%2Bsm0akSIrfrjGtwK88nQJFAMmq6UCFs5%2FnL5B7GgwdQPt0XHy%2B1EedFcPWsn4%2BdK3YDh%2FFFgVTVMggmlcQAORqJeRkUzEcQ1l%2BrF%2B83ZdqwKpPVWbW%2BAry%2FpPZECd9Vy4FsY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74db196e5a2bb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

public.powrcdn.com/latest/assets/packs/apps-view-2b8b89ec08cb1075456f.js

172.67.186.248

200 OK

0 B

URL HTTP/2
public.powrcdn.com/latest/assets/packs/apps-view-2b8b89ec08cb1075456f.js
IP
172.67.186.248:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /latest/assets/packs/apps-view-2b8b89ec08cb1075456f.js HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:02:32 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1443474
etag: W/"caa98b573dd8f5919ea4fbfd86b5e7b1"
last-modified: Thu, 15 Sep 2022 05:32:47 GMT
x-amz-id-2: fF0pzZjEbeaZKuxf1r85fMDOs583w2t8Aa/2Z4yirOtk+6R2F21lfJC2fTmEKeQhnhXx4+mOVNw=
x-amz-request-id: 38RZWXZFJBZZV80Q
x-amz-version-id: fdwKf.FgOvvmFm3IC2tDHLGKyJzoLyPp
cache-control: max-age=2073600
cf-cache-status: HIT
age: 6606
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xq64LVuu%2BNjwUTkQevTRW8fvo5yri5YMvVhHWUOuqUPRHVqEoB3aI9e1lubjd0LqSjIgZznpRy5dH8OuPchtZ5bQr9G9AE%2BaGsBMOe37cMTZ6fvv14%2F6U%2FnmzElVgE24Cg0j9Gs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74db196e7a6fb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/3.0.0/css/bootstrap.min.css

104.18.11.207

200 OK

0 B

URL HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.0.0/css/bootstrap.min.css
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bootstrap/3.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:02:32 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:03:55 GMT
cdn-cachedat: 11/04/2021 22:40:16
cdn-edgestorageid: 755
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.0
cdn-requestid: a0669b23f8a3a4d2d54e12d18ef5c3e0
cdn-cache: HIT
cf-cache-status: HIT
age: 15900463
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74db196ebd2b0b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/site/main.js?buildTime=1663617132

151.101.85.46

200 OK

0 B

URL HTTP/1.1
cdn2.editmysite.com/js/site/main.js?buildTime=1663617132
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/site/main.js?buildTime=1663617132 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript
Last-Modified: Mon, 19 Sep 2022 17:46:56 GMT
ETag: "6328ab10-74804"
Expires: Mon, 03 Oct 2022 19:54:29 GMT
Cache-Control: max-age=1209600
X-Host: grn99.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 146400
Accept-Ranges: bytes
Date: Tue, 20 Sep 2022 14:02:29 GMT
Age: 65280
Connection: keep-alive
X-Served-By: cache-sjc10045-SJC, cache-bma1661-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1663682550.693584,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

public.powrcdn.com/latest/assets/packs/apps/socialFeed-67c470227dbe61560cc9.js

172.67.186.248

200 OK

0 B

URL HTTP/2
public.powrcdn.com/latest/assets/packs/apps/socialFeed-67c470227dbe61560cc9.js
IP
172.67.186.248:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /latest/assets/packs/apps/socialFeed-67c470227dbe61560cc9.js HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:02:32 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2755265
etag: W/"1cf43ddc786984d12d0cdc7c0beb8dd9"
last-modified: Thu, 15 Sep 2022 05:32:45 GMT
x-amz-id-2: IvFG6m+m8GDoTd9xz6OU8qiD2KQJqwcWBo+4V6zd4cZiEbyxztX3YRyYAU/r932zRaqwM/MPE+E=
x-amz-request-id: 38RPMA6MDED15GRA
x-amz-version-id: pwHJDTOGD6LWVQ3Efl1db1HyNsdiVU7r
cache-control: max-age=2073600
cf-cache-status: HIT
age: 5745
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IY6MIPShWkvuBDZaoT34punaCnj8Z7r9kPIyiY4ofRxPn0JPl23LaZLjIYomzzS63MpbPP4N2NShl8NbaIpvwXqLkowNedt3lRWAS3SA0%2B3FxtirEHAe4touIRrYbW4F85%2Ftm6o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74db196e5a2cb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css

172.67.186.248

200 OK

0 B

URL HTTP/2
public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css
IP
172.67.186.248:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:02:32 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=286497
etag: W/"adf889ed0314b585cb0181bf734134ba"
last-modified: Thu, 15 Sep 2022 05:32:47 GMT
x-amz-id-2: ZVaGBqaikeSX4BOnjrf/ePJZvkng18/C7KK+u6WtXN7YBU6vXikAn72CDB2bJvJBkbLeFcfnz6Q=
x-amz-request-id: 38RW1A307PJN6DYH
x-amz-version-id: K16JcId5KgW7j2lJJmkwYjqjYhwp_uen
cache-control: max-age=2073600
cf-cache-status: HIT
age: 5748
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mLoTVcmliaLGDztVfmqy0l7xPOVUpnbrayGlfi%2BDWYLD1ztpujBiQuY2BH6egJCD9rUQidxbdi2y3BW6qODjkWZkk7CE%2BiRQGk8uHQwNe9pUZlGFgvucCs9zy%2FYqSxKt04BzPmo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74db196e7a64b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.powr.io/plugins/social-feed/view.json?powr_token=weebly_843418383802620604&user_label=weebly_843418383802620604_6b25dce1-f351-4a49-932b-e29de749ccc6&external_type=weebly-integrated

172.67.5.146

200 OK

0 B

URL HTTP/2
www.powr.io/plugins/social-feed/view.json?powr_token=weebly_843418383802620604&user_label=weebly_843418383802620604_6b25dce1-f351-4a49-932b-e29de749ccc6&external_type=weebly-integrated
IP
172.67.5.146:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /plugins/social-feed/view.json?powr_token=weebly_843418383802620604&user_label=weebly_843418383802620604_6b25dce1-f351-4a49-932b-e29de749ccc6&external_type=weebly-integrated HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: CSShPWBI6Qbd8RqG1PuzZA6COmz5raQ-VymNqsTLiqpf8JLKq9Wu_oE5SAfdS5VcuE4h5GEtufOH92mjk35ZPw
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_843418383802620604&user_label=weebly_843418383802620604_6b25dce1-f351-4a49-932b-e29de749ccc6&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=http%3A%2F%2Fwww.cowichanstewardship.com%2F
Cookie: src=http%3A%2F%2Fwww.cowichanstewardship.com%2F; unique_id=f25252ca_1663682551; POWR_PRODUCTION=wWK5R7CizwCWnC1H4k7qGswxvbSYDDmHHcs7nN%2BkGAGr6Opn6GCUMdEDKi0o%2BZPv24QdXVdgtrpCgrSapWz5OpwGoAt%2FXSkMXBhkxLuHTyRVLdGttzSVl0l1dA6ZvMkjd21FMaMi9ZbTwvDUdXX%2BNHRiCo2craOcRNhgrHqBJoOpMFEN3WdoEAC%2F3H4PTHCbUC%2FyWBxY5YhbWS%2BGH3HQevex8Wyzu23YZksF2QK%2Fma6nvsgM6eysZ4XD4BrqOv%2BXSL51RqNn4KL1kX%2BzR9bS%2Bigxg%2BLxPImFZtde0u%2Bz2s94oh9Ltfk5dtk251Mh%2BU2Tjnfe7nI%2FqawLUmv6oqLsyaV9cvPdOkxu2%2Bel50GqZzjVLeatgXYIt664IOpOh41%2BcDHgWHEoNcs88xmlvz616uQtO8YO9LM1MQz9qVLP9mQq0YS9%2B%2F2G13Zk180zMCCCo1Y3m38cm865JQydpTO2UNqZVeVcOHzi7WVv%2BKz6%2BDT%2F3nvpSX7V0J%2Fj6KSl14HGz%2B3j%2FYbtTgvs2v2z3ErPlBUzA5VkcOfsYJvZvFlJv%2BHKPDb9d6RdagWRKKK0o5vzYxHKUK6rix688hQ5XZGrHaxyuvho1yB29isAJk6pO9KNSgz8AtrimsZ55vGYJk60nxbrZLHLCWEIcBMgGVJKi5Mw%2Fs9tRf0mrqF2JweR7DqxA318uAHpGTTcX9SbQxmczIBfddlN%2Ftrviv89vkTTU2CE4d8vtuld86OPTvgClogNUJd%2Fp26qh89hu%2BIAdjxy3ySx11tJPV1Z0eBqXK0%2BdCIRPsIBM52bSnXumAc78K115XfYohM0%2BiK7d9APNuPx3BAcOGgbv7WxqPjj5tEujn0wnYkjwdpkmlB7TUng%2FmxlIg%2FGAE3NhxF8Gk2y%2BUcUk57k3jji%2F%2BU8N%2BfntomYDngaiml9OIDemnXJryjl%2FzMCNjg4mT%2FzjyVApId6bp0Gu%2Fob1rDDh576dw5RO5PlCKDRbd9NVZvYTsnsiIPqlFwbOVo%3D--qIZrBjNVZ0hAGXj8--RDMPQe%2FtiLdOs8MBE0KTdA%3D%3D; __cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JfvYmh62nPSC3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:02:33 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-credentials: true
vary: Accept-Encoding
etag: W/"40ba2d493b21f0df198f1ddadcc6248e"
cache-control: max-age=0, private, must-revalidate
set-cookie: editables=; path=/; secure; SameSite=None
POWR_PRODUCTION=q2g7snmc3GWYBLECm14s7ayVo0aoiGyppnqiUBJ35Q%2FYd4Mg7pYABCVDepcvWso3LEcGs3qeSDq9%2B4TNjkAhv39AC8rImI5qpxa0I5wvWL%2BvllFmMYjaksHUce5%2FJieIazpDPp3DZ0DVdPyaSq3Kil7O0mpeCCWlKZaFcSA6dD%2BbxQsqVgl2KHztJYkLgCL%2Fu7qvFZcZyw5KMPj3iZynZKIaICBVn8N142IUhVMTURyw2j%2BjPvQtIK6n8UZ2LcjFpRH9oboVr5Jquj%2Fml%2FMJcCPWyupTk4ZeNEHDAEqWpWS8rbNeUM1dDJEn6K%2FttBDUo3%2BKcMXfbyZdJD%2FM%2FLTgJm10bEZaKfXaAlZ9IDCkCg3kcirQJqtjIyh%2FPv%2FrUVpN5vTtohJ%2BFlTMzW0VNDp7199UzyohS6eOOGXRUxqTSpkH4iRVcnd5mG3EC8NncvicbCtvhKcNKrN%2Fdj4yyDvky1pB7TnioY089jYD%2BDJanRHfVJqQDQSIfg%2F4JaudRdYyOg%2B25XbcvEV8bYPqTQuTkusXOjNZ7%2BfSkt%2F799xSSh8DUo2LnjL%2FTgXvaqTadeUOPIDrONKie5f3dnww9sgGzv3HwCLkWiysibDFd6WmoNAOtwjKM5eCZbUH6DOcMyvBuV2fXQtQQxoG1pD%2Fimsg3X4oCD9g8T0iXjpWH17R3UFpf3BKuNRj4AyU6xJJoIsanOLRAJADu1n2PE60p2f728Ju1n1f8oqU08tDv3NxWwRafB6VpFtlFGngxS4RWNW57YMAIpWgoaDLlIVz5ocBk%2BRmotMoVYWZRdtGfuoIP54VIEF0vn8M5IJtiFq%2F54ZUDqVhbDqHnMYFT9FHxCaS4pUiXyCNYP%2F%2FuVg%2B8PvRInSz2tEX8F259iGmLx2YnXfg%2BQ9UKC1jjF5s5YExNtDyyz%2B2xJp8NoyMmkA4Z1gxJdvgLGJnu%2B%2FujPB6JyFoOnIDz4fg5Y4QnRMipL1rYEMAEBrIehIGt1I26DMi7W3kW3Kdg1I%3D--N9OQDwl%2FOi2h24v8--J735mvZ7JYZ6Z1OLRsD8DA%3D%3D; path=/; secure; HttpOnly; SameSite=None
x-request-id: ac2a58e1-9294-4609-9cd3-e34734ae44fa
x-runtime: 0.315974
via: 1.1 vegur
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74db19719f670b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Pathway+Gothic+One%7COpen+Sans%7COpen+Sans%7CRoboto

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Pathway+Gothic+One%7COpen+Sans%7COpen+Sans%7CRoboto
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Pathway+Gothic+One%7COpen+Sans%7COpen+Sans%7CRoboto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 20 Sep 2022 14:02:33 GMT
date: Tue, 20 Sep 2022 14:02:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_843418383802620604&user_label=weebly_843418383802620604_6b25dce1-f351-4a49-932b-e29de749ccc6&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=http%3A%2F%2Fwww.cowichanstewardship.com%2F

172.67.5.146

200 OK

0 B

URL HTTP/2
www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_843418383802620604&user_label=weebly_843418383802620604_6b25dce1-f351-4a49-932b-e29de749ccc6&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=http%3A%2F%2Fwww.cowichanstewardship.com%2F
IP
172.67.5.146:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_843418383802620604&user_label=weebly_843418383802620604_6b25dce1-f351-4a49-932b-e29de749ccc6&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=http%3A%2F%2Fwww.cowichanstewardship.com%2F HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.cowichanstewardship.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:02:31 GMT
content-type: text/html; charset=utf-8
cache-control: max-age=300, public
link: <https://public.powrcdn.com/latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps-view-2b8b89ec08cb1075456f.js>; rel=preload; as=script; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/socialFeed-67c470227dbe61560cc9.js>; rel=preload; as=script; nopush
vary: Accept-Encoding
x-request-id: 35d7aae7-1f3b-4dc8-89f2-84fd0190edec
x-runtime: 0.026202
via: 1.1 vegur
cf-cache-status: DYNAMIC
set-cookie: src=http%3A%2F%2Fwww.cowichanstewardship.com%2F; path=/; expires=Thu, 20 Oct 2022 14:02:31 GMT; secure; SameSite=None
unique_id=f25252ca_1663682551; path=/; secure; SameSite=None
POWR_PRODUCTION=wWK5R7CizwCWnC1H4k7qGswxvbSYDDmHHcs7nN%2BkGAGr6Opn6GCUMdEDKi0o%2BZPv24QdXVdgtrpCgrSapWz5OpwGoAt%2FXSkMXBhkxLuHTyRVLdGttzSVl0l1dA6ZvMkjd21FMaMi9ZbTwvDUdXX%2BNHRiCo2craOcRNhgrHqBJoOpMFEN3WdoEAC%2F3H4PTHCbUC%2FyWBxY5YhbWS%2BGH3HQevex8Wyzu23YZksF2QK%2Fma6nvsgM6eysZ4XD4BrqOv%2BXSL51RqNn4KL1kX%2BzR9bS%2Bigxg%2BLxPImFZtde0u%2Bz2s94oh9Ltfk5dtk251Mh%2BU2Tjnfe7nI%2FqawLUmv6oqLsyaV9cvPdOkxu2%2Bel50GqZzjVLeatgXYIt664IOpOh41%2BcDHgWHEoNcs88xmlvz616uQtO8YO9LM1MQz9qVLP9mQq0YS9%2B%2F2G13Zk180zMCCCo1Y3m38cm865JQydpTO2UNqZVeVcOHzi7WVv%2BKz6%2BDT%2F3nvpSX7V0J%2Fj6KSl14HGz%2B3j%2FYbtTgvs2v2z3ErPlBUzA5VkcOfsYJvZvFlJv%2BHKPDb9d6RdagWRKKK0o5vzYxHKUK6rix688hQ5XZGrHaxyuvho1yB29isAJk6pO9KNSgz8AtrimsZ55vGYJk60nxbrZLHLCWEIcBMgGVJKi5Mw%2Fs9tRf0mrqF2JweR7DqxA318uAHpGTTcX9SbQxmczIBfddlN%2Ftrviv89vkTTU2CE4d8vtuld86OPTvgClogNUJd%2Fp26qh89hu%2BIAdjxy3ySx11tJPV1Z0eBqXK0%2BdCIRPsIBM52bSnXumAc78K115XfYohM0%2BiK7d9APNuPx3BAcOGgbv7WxqPjj5tEujn0wnYkjwdpkmlB7TUng%2FmxlIg%2FGAE3NhxF8Gk2y%2BUcUk57k3jji%2F%2BU8N%2BfntomYDngaiml9OIDemnXJryjl%2FzMCNjg4mT%2FzjyVApId6bp0Gu%2Fob1rDDh576dw5RO5PlCKDRbd9NVZvYTsnsiIPqlFwbOVo%3D--qIZrBjNVZ0hAGXj8--RDMPQe%2FtiLdOs8MBE0KTdA%3D%3D; path=/; secure; HttpOnly; SameSite=None
__cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JfvYmh62nPSC3; SameSite=None; Secure; path=/; expires=Tue, 27-Sep-22 14:02:31 GMT; HttpOnly
server: cloudflare
cf-ray: 74db196c5a180b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2

public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css

172.67.186.248

200 OK

0 B

URL HTTP/2
public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css
IP
172.67.186.248:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:02:32 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=97779
etag: W/"8569d08b93b65be6f73bca7e48e87a62"
last-modified: Thu, 15 Sep 2022 05:32:53 GMT
x-amz-id-2: jNnO2R7h9I/kewQDUB7yHog0vUeNwdTTBT3BhBHC3L5LES+0FneRJq7vrobZH2hUjm0OvZq4p0o=
x-amz-request-id: 4GXPTCYC0CCJ3AM1
x-amz-version-id: bIuVifY2WQeWxEm2OlE_0Fvs8HoPdMjN
cache-control: max-age=2073600
cf-cache-status: HIT
age: 6606
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J1jgpD%2Bz4WVRl0nye2xjPnojxeG1vk%2Bimj1mFim44%2BL%2FELEmvdMH4%2BbpCfW1nhFqa5hsSzVMWbFOgeHNdAiqCyk6Yn013RjsYISF4vcsJRaqndsI7%2BLpc4R0OEvkKsnVnpMZ4jU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74db196e5a2fb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

public.powrcdn.com/fonts/gordita/gordita-regular-webfont-woff.woff

172.67.186.248

200 OK

0 B

URL HTTP/2
public.powrcdn.com/fonts/gordita/gordita-regular-webfont-woff.woff
IP
172.67.186.248:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /fonts/gordita/gordita-regular-webfont-woff.woff HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 20 Sep 2022 14:02:32 GMT
content-type: application/font-woff
x-amz-id-2: 0REWttQ23hFt91HUIl5zrQKSQWkjHDn+SiQaytA+6xgu4cL31AVOq9Zzqnfy+cIxdL1eI0496yE=
x-amz-request-id: S5DNSVBXSJJA8RT5
access-control-allow-origin: *
access-control-allow-methods: GET, POST
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 31 May 2021 12:44:51 GMT
x-amz-version-id: hx7AXNg7K1e1RTazyN_0DpBGtio5OElw
etag: W/"951cf61fb8b08593af1d6466359e32fe"
cache-control: max-age=2073600
cf-cache-status: HIT
age: 6606
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xMM%2B24ZB5r6z0Eq9997AWL2UWcaTuV5Q5klQKpWWbfJdC1ULyc7sGLT47Rf2quWBwi2sUz2wG5G3CLFkhNzS1XYFDHKuaM5%2BcX1I8OWObKjlspmdKE9%2BL0e2%2FHlbKfCO1HkQ35c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74db196e991fb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (43)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations