iccuauth-pay.com/e48735b9e26f3452d86ce86d4cb4eb08/login.php?user=true
176.123.0.55301 Moved Permanently 285 B URL HTTP/1.1 iccuauth-pay.com/e48735b9e26f3452d86ce86d4cb4eb08/login.php?user=true
IP 176.123.0.55:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4a48bbe6c1eefc799976b0d39e989707
d9bdaa965eef662cc23b1d90eb24d353ecb85d10
fa544e1568bf83c92f2a9a6249a17352c72b7fb90019d5a893f8d7672646582e
Analyzer Verdict Alert quad9 Sinkholed
GET /e48735b9e26f3452d86ce86d4cb4eb08/login.php?user=true HTTP/1.1
Host: iccuauth-pay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 15:54:54 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 285
Connection: keep-alive
Location: https://iccuauth-pay.com/e48735b9e26f3452d86ce86d4cb4eb08/login.php?user=true
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: BYPASS
X-Server-Powered-By: Engintron
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5022
Expires: Thu, 24 Nov 2022 17:18:39 GMT
Date: Thu, 24 Nov 2022 15:54:57 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4596
Cache-Control: max-age=157970
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:54:57 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:47:47 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7413
Expires: Thu, 24 Nov 2022 17:58:30 GMT
Date: Thu, 24 Nov 2022 15:54:57 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 15:18:58 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2159
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8ksTlHj7Y6YLHZ3Q8KaMVSez+yx6cq/demL1njg//2M0jCFoUztAGwZdrLhMQnSWD9xz0ydOz80=
x-amz-request-id: 0B8E4JPDK8H8NV3X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 15:43:27 GMT
age: 690
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 15:54:57 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.comodoca.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 7416ea3ee4d3ca2806e9a11f902b582f
21418f0068ebd7265c5c1b84a7e3a2786fa0eaad
108570edbeb8c855f02b3860ffa0e463d6c9e9aa2df687eea12b0643a8cd328e
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 15:54:57 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 24 Nov 2022 01:35:40 GMT
Expires: Thu, 01 Dec 2022 01:35:39 GMT
Etag: "21418f0068ebd7265c5c1b84a7e3a2786fa0eaad"
Cache-Control: max-age=561744,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 5
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f3537edc10b4ff-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1e6f2ac4c1739d1933b52cbce9c5f787
eb3871232720e94ac3d489838a60714081c78f45
e7e6635338a9cf1d03470dc3ae8bd0b2a3737c9e983588d6fde3ecbca6c1be44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E7E6635338A9CF1D03470DC3AE8BD0B2A3737C9E983588D6FDE3ECBCA6C1BE44"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10706
Expires: Thu, 24 Nov 2022 18:53:24 GMT
Date: Thu, 24 Nov 2022 15:54:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 15:08:53 GMT
cache-control: public,max-age=3600
age: 2765
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5525
Cache-Control: max-age=153836
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:54:58 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:38:54 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 038839929fbf1851ff1023d3346a7180
b2a89e46f5764d31e86cc4d51fdae175b43f1fcf
94946cc851df0719ea68890c791eac8781bc014644884befa3da0a4473bb21cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94946CC851DF0719EA68890C791EAC8781BC014644884BEFA3DA0A4473BB21CF"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12485
Expires: Thu, 24 Nov 2022 19:23:03 GMT
Date: Thu, 24 Nov 2022 15:54:58 GMT
Connection: keep-alive
push.services.mozilla.com/
54.189.157.130101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.189.157.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NR8EAniovjiKxOYnFBFmTw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YlGL9cf3Kr5008PVr4QzCpr0eug=
iccu.com/
52.88.3.188301 Moved Permanently 162 B IP 52.88.3.188:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Thu, 24 Nov 2022 15:54:58 GMT
content-type: text/html
content-length: 162
location: https://www.iccu.com/
server: Pagely-ARES/1.10.15
x-gateway-request-id: 125de1efc26e20d0ec65b7239cf331d1
strict-transport-security: max-age=31536000; includeSubDomains
x-gateway-cache-key: 1669227391.167|standard|https|iccu.com|||/
x-gateway-skip-cache: 1
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e82bac439b4e05b63bd8049769218cb8
fe8c2994c00b1d8c6212d9a7006ff58498375575
5b905305e33eb7e21beb21216242ed0af8a4288b3a36c6aa278755244e57c373
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6112
Cache-Control: max-age=126379
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:54:59 GMT
Etag: "637ec69e-1d7"
Expires: Sat, 26 Nov 2022 03:01:18 GMT
Last-Modified: Thu, 24 Nov 2022 01:19:26 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 43bb3617d4ecb3fa748c4b34eccabdc2
1a4f4a4649cf35c378ee2edc6c424d8d7953b35a
3af54d307ec8e9ab3ed404fe5d89ea1ca4be0ac297c16ab3245bf0f8ecc25a44
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2184
Cache-Control: max-age=123150
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:54:59 GMT
Etag: "637ec959-1d7"
Expires: Sat, 26 Nov 2022 02:07:29 GMT
Last-Modified: Thu, 24 Nov 2022 01:31:05 GMT
Server: ECS (amb/6BB3)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10714
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 15:54:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10714
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 15:54:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10714
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 15:54:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10714
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 15:54:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10714
Expires: Thu, 24 Nov 2022 18:53:33 GMT
Date: Thu, 24 Nov 2022 15:54:59 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4157f2c5c3c77ce699324ecb08f47c7
a7d9135f9d01ba13c3cdaf8b038c70212f159297
2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:08:16 GMT
age: 64003
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9d93b2a6875d446c3467eb49767eef5
303c571b13b05fcf27ee1159d8fdf6369aaef0a2
2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:10:24 GMT
age: 31475
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:04:28 GMT
age: 39031
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YJuHCuUgkLuFFiQUlrPWgv9grHznufMTU08hi4ZMpQTBmou6BGWrhQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:52 GMT
age: 65227
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 64d79191f005c9876b952c5f948aa0f7
1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a
00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DYBcunpyI0FBJsJGh1kKpFI3X8kzCkO3mCxzUtWnaMKBT-Bv-zkq3Q==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:59:18 GMT
age: 64541
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0856fdb55f19f03a1bec38b3d6e0ac77
89accd230fba95fe0049678070817b36ead015fa
17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rrs7G6Wto6iY0rT6KsKwKAOPJjehXqD0jHZrR_eaiqpepQILFr7Dtw==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:07 GMT
age: 65152
etag: "89accd230fba95fe0049678070817b36ead015fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.iccu.com/
54.214.206.138200 OK 15 kB IP 54.214.206.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381)
Hash 783a619d8289f7597cfb8892983c10e7
7158c691ff88637a1d9f193a1a801cb850552a3e
ba3642f33c43f7d24981f0d0a889556dddc059c35e9b0da33dd849d263ab726f
GET / HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:00 GMT
content-type: text/html; charset=UTF-8
content-length: 15101
server: Pagely-ARES/1.10.15
x-gateway-request-id: fccb9dc5eaced7b3a968882dfc4a0997
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-pingback: https://www.iccu.com/xmlrpc.php
permissions-policy: geolocation=(self "https://maps.google.com"), encrypted-media=(self "https://*.brightcove.com")
referrer-policy: no-referrer-when-downgrade
link: <https://www.iccu.com/wp-json/>; rel="https://api.w.org/", <https://www.iccu.com/wp-json/wp/v2/pages/39>; rel="alternate"; type="application/json", <https://www.iccu.com/>; rel=shortlink
set-cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj; path=/
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669242486.075|standard|https|www.iccu.com|||/
x-gateway-cache-status: MISS
x-gateway-skip-cache: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.google.com/maps/api/js?key=AIzaSyABExOv-r9mP-Y-ARK9pWG4lpZahWKHc8M
216.58.211.14200 OK 53 kB URL HTTP/2 maps.google.com/maps/api/js?key=AIzaSyABExOv-r9mP-Y-ARK9pWG4lpZahWKHc8M
IP 216.58.211.14:0
File type ASCII text, with very long lines (2381)
Hash 0ea42d694aa4d562e0318b43e31827ea
7f652d3c664d6a08a7b5e5cfd1da73e418cfca0e
dcec30fa5f093b890aebd5ac56e35782dfcada89973761b9825c9148aa4a9766
GET /maps/api/js?key=AIzaSyABExOv-r9mP-Y-ARK9pWG4lpZahWKHc8M HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Thu, 24 Nov 2022 15:55:01 GMT
expires: Thu, 24 Nov 2022 16:25:01 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53336
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=24
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-M9ND4W
142.250.74.168200 OK 97 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M9ND4W
IP 142.250.74.168:0
File type ASCII text, with very long lines (43685)
Hash 783c25f9a2e480119f84a33bbc746076
5e4a23dc66f6d59a6d547324833a162bfb9a1993
fd1772421032b4c96dd4f714a7ae8b38f37443894a2e38ee8e41d3913c330a7d
GET /gtm.js?id=GTM-M9ND4W HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 15:55:01 GMT
expires: Thu, 24 Nov 2022 15:55:01 GMT
cache-control: private, max-age=900
last-modified: Thu, 24 Nov 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 96590
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash a9a82866a3a8540edb7576674cb50a7e
cf4874dd07cd908a2d1d90a23855fb19176557d3
df9f10063336eed13d799a2286a3ebea8021e7b640b3011a792600255adeb89a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=135832
Date: Thu, 24 Nov 2022 15:55:01 GMT
Etag: "637ef4f8-1d7"
Expires: Sat, 26 Nov 2022 05:38:53 GMT
Last-Modified: Thu, 24 Nov 2022 04:37:12 GMT
Server: ECS (dcb/7F5D)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6JbhIqD3Op7yAJuleBh8DCjGrUnlJFb5JEQc_BrO37YrRDEJRgpjiA==
Age: 3701
www.iccu.com/modules/column-shortcodes//assets/css/shortcodes.css
54.214.206.138301 Moved Permanently 162 B URL HTTP/2 www.iccu.com/modules/column-shortcodes//assets/css/shortcodes.css
IP 54.214.206.138:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /modules/column-shortcodes//assets/css/shortcodes.css HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: text/html
content-length: 162
server: Pagely-ARES/1.10.15
x-gateway-request-id: 8aca603513b75ebc952bc3e330b060ff
location: /modules/column-shortcodes/assets/css/shortcodes.css
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/modules/column-shortcodes//assets/css/shortcodes.css
x-gateway-skip-cache: 1
X-Firefox-Spdy: h2
www.iccu.com/template/library/css/icomoon.css
54.214.206.138200 OK 747 B URL HTTP/2 www.iccu.com/template/library/css/icomoon.css
IP 54.214.206.138:0
File type ASCII text, with very long lines (2562), with no line terminators
Hash e3e7094ccb9c273019e356f69ac05f2e
5f9810f3ebbbf73ff5f67c40be4cbd0c38929e4f
24ec1ac810e095b842dee829e01374cfe455bee90adb3a280eb3e501448ce1d4
GET /template/library/css/icomoon.css HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: text/css
content-length: 747
server: Pagely-ARES/1.10.15
x-gateway-request-id: ab6b2db86086ad5e41cfae58be7ebbd6
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "a02-5cd37a02a01a1-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/css/icomoon.css
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/template/library/css/style.css?ver1_0_2
54.214.206.138200 OK 8.3 kB URL HTTP/2 www.iccu.com/template/library/css/style.css?ver1_0_2
IP 54.214.206.138:0
File type ASCII text, with very long lines (29760)
Hash cba77c25d3e8c23c776784534ef42bce
f3d18ecec2857a9fe63baa5c7be106f65684aac1
4117e1d60e29886aab490eb34021da11f6858aebf8291433dc689439f3199472
GET /template/library/css/style.css?ver1_0_2 HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: text/css
content-length: 8314
server: Pagely-ARES/1.10.15
x-gateway-request-id: 675524cd7f5a337379e3e165a22bed47
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "7474-5cd37a02a01a1-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/css/style.css?ver1_0_2
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/template/library/css/jquery.bxslider.css
54.214.206.138200 OK 811 B URL HTTP/2 www.iccu.com/template/library/css/jquery.bxslider.css
IP 54.214.206.138:0
File type ASCII text, with very long lines (2879), with no line terminators
Hash ca16461f4888b08bf4da689ec7704bd8
e19ec1dcb695797fe8167ad5684ca6d3cd72bfcf
c15ca83818c346b148ac7afd1def026806de8746f0f2b40b0d193398241d2910
GET /template/library/css/jquery.bxslider.css HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: text/css
content-length: 811
server: Pagely-ARES/1.10.15
x-gateway-request-id: f11c05fd730bdfaee9bb021fd3874eaa
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "b3f-5cd37a02a01a1-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/css/jquery.bxslider.css
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.iccu.com/inc/env.js?v=2022.10.28.1614
143.204.55.64200 OK 194 B URL HTTP/2 cdn.iccu.com/inc/env.js?v=2022.10.28.1614
IP 143.204.55.64:0
Hash 90ccacfe7eaa1fecd1109f4560a668ba
69952f529ba894ee425a5d03624f6a575965b1e9
559d16f1cf16a250cf0719e4ce987558313e316bbec5830cfdaac8e87f66978f
GET /inc/env.js?v=2022.10.28.1614 HTTP/1.1
Host: cdn.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 194
date: Wed, 23 Nov 2022 18:30:25 GMT
server: Pagely-ARES/1.10.15
x-gateway-request-id: 7449cadf41a5a5da85d9c3d6ee50e01c
last-modified: Fri, 28 Oct 2022 21:54:40 GMT
etag: "131-5ec1f4dfdd898-gzip"
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/inc/env.js?v=2022.10.28.1614
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
vary: Accept-Encoding,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: W4hvJtRdQKy9UNd5lVYrVtykn48Tuo3Ix_cFNaMgRuTO3ZkUVR-OBw==
age: 77076
X-Firefox-Spdy: h2
cdn.iccu.com/inc/themes/ro-iccu/library/images/green-section-overlay.png
143.204.55.64200 OK 20 kB URL HTTP/2 cdn.iccu.com/inc/themes/ro-iccu/library/images/green-section-overlay.png
IP 143.204.55.64:0
File type PNG image data, 615 x 237, 8-bit/color RGBA, non-interlaced\012- data
Hash 6d79826090d5d93e4f7c7491e1d707d3
4b474ad04bc09d2e126a2f1b28b540ec73c0aeeb
2baab3fdf9a17de4b9c624505d7afc44efc72db4c9ba881b8e1377a3a3ac6b19
GET /inc/themes/ro-iccu/library/images/green-section-overlay.png HTTP/1.1
Host: cdn.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 20155
date: Wed, 23 Nov 2022 18:30:25 GMT
server: Pagely-ARES/1.10.15
x-gateway-request-id: ab467f8c125ea2363366334363a13fe3
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "4ebb-5cd37a02a9de1"
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.167||https|www.iccu.com|||/inc/themes/ro-iccu/library/images/green-section-overlay.png
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: S5dv2T5ESrAoGKnkAC8hcTZvBljaqApgws13_ueNc8-1TULwIJP7uw==
age: 77076
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
54.214.206.138200 OK 10 kB URL HTTP/2 www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
IP 54.214.206.138:0
File type ASCII text, with very long lines (327)
Hash 94db68ae02c56675d470e23e480fe336
1c018bb2fd01c53679e594d4ecfbc186f346d5ef
6338d7a04cc6cd27e9b4110d86b0c2b6c7cfc070274dcad98efa307d84d22c60
GET /template/library/css/redolive.css?v=2022.4.12.1246 HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: text/css
content-length: 10107
server: Pagely-ARES/1.10.15
x-gateway-request-id: 252ac775c26ae1e4790b7b90be5a2098
last-modified: Tue, 12 Apr 2022 20:50:57 GMT
etag: "c8e7-5dc7b37be5275-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/css/redolive.css?v=2022.4.12.1246
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/template/library/js/libs/fancybox/jquery.fancybox.css
54.214.206.138200 OK 1.4 kB URL HTTP/2 www.iccu.com/template/library/js/libs/fancybox/jquery.fancybox.css
IP 54.214.206.138:0
Hash c95bca9e0590cf1c2c2c1a5fae0cab66
198825529be8572c83e06d190906ea4a0c0aac21
0fd756899c22f1cb3d83d32627c2b0bcf54212479d8c166a81881b6e39dec75d
GET /template/library/js/libs/fancybox/jquery.fancybox.css HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: text/css
content-length: 1423
server: Pagely-ARES/1.10.15
x-gateway-request-id: 55c2af047e54f30c69c997d35e914221
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "131f-5cd37a02adc61-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/libs/fancybox/jquery.fancybox.css
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/lib/js/jquery/jquery.min.js
54.214.206.138200 OK 31 kB URL HTTP/2 www.iccu.com/lib/js/jquery/jquery.min.js
IP 54.214.206.138:0
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
GET /lib/js/jquery/jquery.min.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: application/javascript
content-length: 30995
server: Pagely-ARES/1.10.15
x-gateway-request-id: 29d5c14330e99f778bb214ef3db092c4
last-modified: Tue, 15 Nov 2022 21:14:51 GMT
etag: "15e54-5ed88d8baa8c0-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/lib/js/jquery/jquery.min.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/ctnN1fbrYwg
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/ctnN1fbrYwg
IP 142.250.74.3:0
Hash 9cc064a3b81ad417c757bb2d03d81a0f
8b462a906420bd0c79719f073cbabf780b860330
6162f282a7e3e72991358ce85da6d0ce26bf163672849b5cdf2c6c0c8b555a2c
POST /s/gts1d4/ctnN1fbrYwg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:01 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.iccu.com/template/library/js/libs/modernizr.custom.min.js
54.214.206.138200 OK 6.2 kB URL HTTP/2 www.iccu.com/template/library/js/libs/modernizr.custom.min.js
IP 54.214.206.138:0
File type HTML document, ASCII text, with very long lines (14558)
Hash 20f3300b8d897519834c9b3ab7eb3672
4f7f3f6fce25d7aceb1d59fedd4f8c34880dfeb5
fa6245f7c4bf9b54001e291567b9fdd7dc4e62e4e88acbfa5853b11289fa9f9d
GET /template/library/js/libs/modernizr.custom.min.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: application/javascript
content-length: 6221
server: Pagely-ARES/1.10.15
x-gateway-request-id: 00dabc22d9cc36c803de2d4a47c6dd67
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "3b16-5cd37a02adc61-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/libs/modernizr.custom.min.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/template/library/js/jquery.fittext.js
54.214.206.138200 OK 1.2 kB URL HTTP/2 www.iccu.com/template/library/js/jquery.fittext.js
IP 54.214.206.138:0
File type HTML document, ASCII text, with very long lines (2196), with no line terminators
Hash 686f2646cb2125ded76f2ef7e2445605
84c646ed032b19b87e4a8bc90d6d35ab93c33409
b9ad8028b8f2b959114ba955daf0b10db1298f1452e8e38c8af7a0fdee6bce0c
GET /template/library/js/jquery.fittext.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: application/javascript
content-length: 1160
server: Pagely-ARES/1.10.15
x-gateway-request-id: 9d7fca2d8dbe39d5af2da62789e50452
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "894-5cd37a02accc1-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/jquery.fittext.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/template/library/js/scripts.js?v=2022.10.28.1614
54.214.206.138200 OK 4.0 kB URL HTTP/2 www.iccu.com/template/library/js/scripts.js?v=2022.10.28.1614
IP 54.214.206.138:0
File type ASCII text, with very long lines (380)
Hash 1c6cb1276182a249f513883c09acc1be
748b019c0f95cc3a0be49330a5b106df85b58e03
eae4d9afdd0e3e0b2b21d0fcb067578b5d269d0db64524becfed6fa1df659c38
GET /template/library/js/scripts.js?v=2022.10.28.1614 HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: application/javascript
content-length: 3965
server: Pagely-ARES/1.10.15
x-gateway-request-id: add68aa6f08740d2cb9264f92994e05c
last-modified: Wed, 12 Oct 2022 17:41:07 GMT
etag: "3636-5ead9e5c19469-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/scripts.js?v=2022.10.28.1614
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash a9a82866a3a8540edb7576674cb50a7e
cf4874dd07cd908a2d1d90a23855fb19176557d3
df9f10063336eed13d799a2286a3ebea8021e7b640b3011a792600255adeb89a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Thu, 24 Nov 2022 15:55:01 GMT
Etag: "637ef4f8-1d7"
Server: ECS (dcb/7F7F)
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Cu1TesLePLonZJDc7KhQS8dbe0soTEqiAxiSi-EWRaGmGG58ZchLeA==
www.iccu.com/template/library/js/jquery.bxslider.min.js
54.214.206.138200 OK 5.2 kB URL HTTP/2 www.iccu.com/template/library/js/jquery.bxslider.min.js
IP 54.214.206.138:0
File type ASCII text, with very long lines (19040)
Hash f3bb76407c4ed0999771c696cee77648
c2bddad0ff58bbd5eb917a5fc828fd5b829444c0
d305f8cedacf0afc7c21b85b8c1d31060c9daa99997aef4bd05883f1230a17c0
GET /template/library/js/jquery.bxslider.min.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: application/javascript
content-length: 5162
server: Pagely-ARES/1.10.15
x-gateway-request-id: cc15adadc05756e0109acff16915bc60
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "4b9f-5cd37a02accc1-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/jquery.bxslider.min.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/template/library/js/libs/fancybox/jquery.fancybox.js
54.214.206.138200 OK 14 kB URL HTTP/2 www.iccu.com/template/library/js/libs/fancybox/jquery.fancybox.js
IP 54.214.206.138:0
Hash 711e2ae0ba4411cc4bb74bd9b04807f0
b33f3c310875a4854605c4069742ef4da52e1251
9c8d84c1d9442efa552a20abc517f5b6b66ce92e7edcc66f93b3c8de0474bb31
GET /template/library/js/libs/fancybox/jquery.fancybox.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: application/javascript
content-length: 13922
server: Pagely-ARES/1.10.15
x-gateway-request-id: a76c4ea012e1495035f0e6a724c6c32a
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "be42-5cd37a02adc61-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/libs/fancybox/jquery.fancybox.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/template/library/images/iccu-logo.png
54.214.206.138200 OK 7.8 kB URL HTTP/2 www.iccu.com/template/library/images/iccu-logo.png
IP 54.214.206.138:0
File type PNG image data, 190 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash be75cbac6644f4e1ef319a28b0f9f1d6
5ce2570715da934919333d4883e09c8037f6c418
277d5b050c33065d5a7cdb4d4198b57fdaa351eec68bb519db0d769296f79849
GET /template/library/images/iccu-logo.png HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: image/png
content-length: 7785
server: Pagely-ARES/1.10.15
x-gateway-request-id: 6d1af6c162c54647271a79b6750ca688
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "1e69-5cd37a02abd21"
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/images/iccu-logo.png
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/modules/quick-pagepost-redirect-plugin/js/qppr_frontend_script.min.js
54.214.206.138200 OK 541 B URL HTTP/2 www.iccu.com/modules/quick-pagepost-redirect-plugin/js/qppr_frontend_script.min.js
IP 54.214.206.138:0
File type ASCII text, with very long lines (1021)
Hash 9ba2f383ea1a378a83af00a4337cbcc6
a10de9935b0ff0277d762bb8a0629fc828726bcd
f76bb0c386ae1d0ff3821e00787611655393c99631c66bc06d4d8d9405fd761f
GET /modules/quick-pagepost-redirect-plugin/js/qppr_frontend_script.min.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: application/javascript
content-length: 541
server: Pagely-ARES/1.10.15
x-gateway-request-id: 59d9ddd02488e535bfe2cb94ca5f589f
last-modified: Sat, 12 Mar 2022 23:17:49 GMT
etag: "636-5da0da7e7ee01-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/modules/quick-pagepost-redirect-plugin/js/qppr_frontend_script.min.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/template/library/js/libs/gmaps.min.js
54.214.206.138200 OK 8.9 kB URL HTTP/2 www.iccu.com/template/library/js/libs/gmaps.min.js
IP 54.214.206.138:0
File type ASCII text, with very long lines (31160), with no line terminators
Hash a4c617df82eb36cc9efcb7dd9eace22a
1e9aa8fd7c63e37b4a558a4de3d8d378741eaac9
8308472eb0f1d53b41028b10ae34a2e466d287882020839f915e0798bc36520f
GET /template/library/js/libs/gmaps.min.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: application/javascript
content-length: 8917
server: Pagely-ARES/1.10.15
x-gateway-request-id: e812dbcee342f0a30630ec7232efd2dd
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "79b8-5cd37a02adc61-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/libs/gmaps.min.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/template/library/js/branches.js
54.214.206.138200 OK 0 B URL HTTP/2 www.iccu.com/template/library/js/branches.js
IP 54.214.206.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /template/library/js/branches.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: application/javascript
content-length: 0
server: Pagely-ARES/1.10.15
x-gateway-request-id: 29b4947863618021d5de63a683445e35
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "0-5cd37a02accc1"
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/branches.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/lib/js/jquery/jquery.form.min.js
54.214.206.138200 OK 6.0 kB URL HTTP/2 www.iccu.com/lib/js/jquery/jquery.form.min.js
IP 54.214.206.138:0
File type ASCII text, with very long lines (15977), with no line terminators
Hash 7aeeb733430179288e8fc8c304eb76dd
4c5767819308499db85ab40d64c1f06dadd007a8
dd5150b0eb0b9d8f0969f3e47a4c17edcdd613862456c2b4575910e038ff22f5
GET /lib/js/jquery/jquery.form.min.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: application/javascript
content-length: 5958
server: Pagely-ARES/1.10.15
x-gateway-request-id: eecc2dbb9d2e0014b64e6edd0e1c2076
last-modified: Tue, 15 Nov 2022 21:14:51 GMT
etag: "3e69-5ed88d8baa8c0-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/lib/js/jquery/jquery.form.min.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
jelly.mdhv.io/v1/star.gif?pid=k68xTQf5KLBLY7g6WVq8X5QX7IFv&src=mh&evt=hi>mcb=1094733913
216.239.36.21307 Temporary Redirect 194 B URL HTTP/2 jelly.mdhv.io/v1/star.gif?pid=k68xTQf5KLBLY7g6WVq8X5QX7IFv&src=mh&evt=hi>mcb=1094733913
IP 216.239.36.21:0
File type HTML document, ASCII text
Hash 574c8efc1ad4991c87b13c43d88994b1
4e86814dc77dcc2c0ebd3b952905920db357d2f1
eb69227a6b2556741b98245111bfb1f7bd43df443cb5797a3f47a86cb75f3b18
GET /v1/star.gif?pid=k68xTQf5KLBLY7g6WVq8X5QX7IFv&src=mh&evt=hi>mcb=1094733913 HTTP/1.1
Host: jelly.mdhv.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html; charset=utf-8
location: https://jelly-v6.mdhv.io/v1/starV6.gif?evt=hi>mcb=1094733913&pid=k68xTQf5KLBLY7g6WVq8X5QX7IFv&src=mh&tx=00fd82a1-d881-47b6-8657-cc1fcb65fb22
x-cloud-trace-context: ee36bf544a5eafb19183d2f27cca1130
date: Thu, 24 Nov 2022 15:55:01 GMT
server: Google Frontend
content-length: 194
X-Firefox-Spdy: h2
www.iccu.com/template/library/js/login.js
54.214.206.138200 OK 472 B URL HTTP/2 www.iccu.com/template/library/js/login.js
IP 54.214.206.138:0
Hash 9b8611198e96f5fe45ea4141cf74e4a6
abc8a4d37a109727fe6acafbe843fcd8ea358072
92d1723bab81567ae2b86a16ad9a8051577ecf7e1742401c8be69c873968e333
GET /template/library/js/login.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: application/javascript
content-length: 472
server: Pagely-ARES/1.10.15
x-gateway-request-id: 3f97d2a90b0a050bcec33bdb4a59ee40
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "41e-5cd37a02adc61-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/login.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/template/library/js/html5shiv.js
54.214.206.138200 OK 1.2 kB URL HTTP/2 www.iccu.com/template/library/js/html5shiv.js
IP 54.214.206.138:0
File type HTML document, ASCII text, with very long lines (645)
Hash 028192673bfb699f9b0b9adf25f022b7
b8e3276bf7ad1649798595d22b47866259f2b8fe
97cdab837957cde45a7b1f2f30f6926350c2ba423cd35e1a1d20299a149d0f12
GET /template/library/js/html5shiv.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: application/javascript
content-length: 1248
server: Pagely-ARES/1.10.15
x-gateway-request-id: 886d1e0c82bc2e842503146ecbe75740
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "97c-5cd37a02accc1-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/html5shiv.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/template/library/js/respond.min.js
54.214.206.138200 OK 2.2 kB URL HTTP/2 www.iccu.com/template/library/js/respond.min.js
IP 54.214.206.138:0
File type HTML document, ASCII text, with very long lines (4204)
Hash eccf4ce2ff9ef9387cbd68c16098da2c
b1d0936582b0477ce15e3aa9d35b308d191cdf9d
32859d2277095945e7584fdbd93b94417675462a4259d2ab65ca36fcafbb99f2
GET /template/library/js/respond.min.js HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: application/javascript
content-length: 2151
server: Pagely-ARES/1.10.15
x-gateway-request-id: c2d5edfcb1705e915d6e5d1a5ae97a1c
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "1119-5cd37a02adc61-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/js/respond.min.js
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/modules/column-shortcodes/assets/css/shortcodes.css
54.214.206.138200 OK 694 B URL HTTP/2 www.iccu.com/modules/column-shortcodes/assets/css/shortcodes.css
IP 54.214.206.138:0
File type ASCII text, with CRLF line terminators
Hash 8bcd953dec4e1a00c06f422bf7c092e7
a3dae6ce7633a8144569a8aa6c98d77e9f404d44
c3b8402cec0d8e9306078e352e66e9ff7ea2e895d12f6cc9a8101ad2e4cd9769
GET /modules/column-shortcodes/assets/css/shortcodes.css HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: text/css
content-length: 694
server: Pagely-ARES/1.10.15
x-gateway-request-id: faca26c41b7ef4569bb3a2dfa70fa152
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "c71-5cd37a0252f3f-gzip"
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
expires: Fri, 23 Dec 2022 18:16:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/modules/column-shortcodes/assets/css/shortcodes.css
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/template/library/fonts/PN-Regular.woff
54.214.206.138200 OK 57 kB URL HTTP/2 www.iccu.com/template/library/fonts/PN-Regular.woff
IP 54.214.206.138:0
File type Web Open Font Format, CFF, length 57260, version 2.3\012- data
Hash 40a7c5c7e81cedde9cc68d5a26d72552
7d0468c2607f929e3edbcf5e77ed0400b8ca221e
1d54edce75dd642fa65d1d2abf50bdb753117da33b274bba116a626b5839d9c8
GET /template/library/fonts/PN-Regular.woff HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj; _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: font/woff
content-length: 57260
server: Pagely-ARES/1.10.15
x-gateway-request-id: daf692be7123f1eab4ec84d3975e143d
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "dfac-5cd37a02a4021"
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/fonts/PN-Regular.woff
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/wp-content/uploads/2018/04/smallGreenHump.png
54.214.206.138200 OK 693 B URL HTTP/2 www.iccu.com/wp-content/uploads/2018/04/smallGreenHump.png
IP 54.214.206.138:0
File type PNG image data, 123 x 26, 8-bit colormap, non-interlaced\012- data
Hash 0a16125594770ba6c98517e8c10cfaa2
fd6d49da706c4af6a0baf6a5c42bd3d5612632b5
9cad4e384c0705fee89906b6f469b12b8f3f8eee558eaf3a914be26556e8d975
GET /wp-content/uploads/2018/04/smallGreenHump.png HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj; _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: image/png
content-length: 693
server: Pagely-ARES/1.10.15
x-gateway-request-id: a046c912d68b3b18cb895f4e10539a0e
last-modified: Thu, 30 Sep 2021 14:54:39 GMT
etag: "2b5-5cd37a0412389"
expires: Fri, 23 Dec 2022 18:16:35 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/wp-content/uploads/2018/04/smallGreenHump.png
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/wp-content/uploads/2018/04/whiteHump.png
54.214.206.138200 OK 928 B URL HTTP/2 www.iccu.com/wp-content/uploads/2018/04/whiteHump.png
IP 54.214.206.138:0
File type PNG image data, 198 x 47, 8-bit colormap, non-interlaced\012- data
Hash 1bb6d4e0f2b639acc42990b53936ef88
53a7c005a77a79e005d1d77d26f262810a6c8f01
963b3ce0f3b28e70452e781c268740099a3a5f1f15373bd44e2ea3b165bb25aa
GET /wp-content/uploads/2018/04/whiteHump.png HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj; _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: image/png
content-length: 928
server: Pagely-ARES/1.10.15
x-gateway-request-id: ce54da5aed7e6eccda4bc816df7e3065
last-modified: Thu, 30 Sep 2021 14:54:39 GMT
etag: "3a0-5cd37a0412389"
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/wp-content/uploads/2018/04/whiteHump.png
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/wp-content/uploads/2018/04/greenHump.png
54.214.206.138200 OK 875 B URL HTTP/2 www.iccu.com/wp-content/uploads/2018/04/greenHump.png
IP 54.214.206.138:0
File type PNG image data, 198 x 47, 8-bit colormap, non-interlaced\012- data
Hash d273c8f38498e78e39cecdc266f088f4
49f4889a33182d04b5585b59790fe0a2e7cdafcc
5f8b15bcd22a660dd9b43abcceac5a884f40c1b105ec67eeed99053647a2a3eb
GET /wp-content/uploads/2018/04/greenHump.png HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj; _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: image/png
content-length: 875
server: Pagely-ARES/1.10.15
x-gateway-request-id: 08cb1c88a93e4954bae61ef0add3aec0
last-modified: Thu, 30 Sep 2021 14:54:39 GMT
etag: "36b-5cd37a04113e9"
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/wp-content/uploads/2018/04/greenHump.png
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/wp-content/uploads/2018/04/shutterstock_179752877_reduced_green.jpg
54.214.206.138200 OK 212 kB URL HTTP/2 www.iccu.com/wp-content/uploads/2018/04/shutterstock_179752877_reduced_green.jpg
IP 54.214.206.138:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1280, components 3\012- data
Size 212 kB (212509 bytes)
Hash c9678c7f5a377c529e60cd2cec89c609
c972114ff40568ae1a522121d2017430a37482ff
4e0ce6477fa0592b330374eb88b772a98db2639a920785166b8bb87696cf32cc
GET /wp-content/uploads/2018/04/shutterstock_179752877_reduced_green.jpg HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj; _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: image/jpeg
content-length: 212509
server: Pagely-ARES/1.10.15
x-gateway-request-id: f56262096b6bdc5689a56b7851553a6a
last-modified: Thu, 30 Sep 2021 14:54:39 GMT
etag: "33e1d-5cd37a0412389"
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/wp-content/uploads/2018/04/shutterstock_179752877_reduced_green.jpg
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/template/library/fonts/PN-Semibold.woff
54.214.206.138200 OK 57 kB URL HTTP/2 www.iccu.com/template/library/fonts/PN-Semibold.woff
IP 54.214.206.138:0
File type Web Open Font Format, CFF, length 57272, version 2.3\012- data
Hash d9b5bcfc35fdb6d396802d77cfd653ab
69aa33f4cf2d06eeb4049ca9c202f835071f2a24
72e4e99a5820302ea169be3ee1d39f75b288258baedf6311cdccc504ff11a079
GET /template/library/fonts/PN-Semibold.woff HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj; _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: font/woff
content-length: 57272
server: Pagely-ARES/1.10.15
x-gateway-request-id: a550dd823e18d8651cc6f90f6a175ef0
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "dfb8-5cd37a02a4fc1"
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/fonts/PN-Semibold.woff
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
sc-static.net/scevent.min.js
54.230.82.240200 OK 12 kB URL HTTP/2 sc-static.net/scevent.min.js
IP 54.230.82.240:0
File type ASCII text, with very long lines (27639), with no line terminators
Hash 6d231d01533de87f1978527ff1582e85
2681a231f71539018d1e7ef81b21035159e70067
dd8eda4130a189c4da20100752803ccb737e26f5c93f97f8db822f29f545be19
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 11968
server: CloudFront
date: Thu, 24 Nov 2022 15:55:02 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Fri, 25 Nov 2022 14:37:24 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mjfCsMJXFRfDl7BqR9lwAHxfAOBg40UFIzwuxlpHJh96RjmocXXFcQ==
X-Firefox-Spdy: h2
www.iccu.com/template/library/css/fonts/icomoon.woff2?nwfys3
54.214.206.138200 OK 15 kB URL HTTP/2 www.iccu.com/template/library/css/fonts/icomoon.woff2?nwfys3
IP 54.214.206.138:0
File type Web Open Font Format (Version 2), TrueType, length 15184, version 1.0\012- data
Hash 375dde6977aa255d1b954f3dda483adc
d750a2a2a78842d60acf520faf8aecfba8a93b3f
b599ea6c6fb82de03e4eee221c06618f8b50c65c28787eba2c8045d7873562f1
GET /template/library/css/fonts/icomoon.woff2?nwfys3 HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/icomoon.css
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj; _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: font/woff2
content-length: 15184
server: Pagely-ARES/1.10.15
x-gateway-request-id: d1b0fd799f94143b4d53b345ce2d6960
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "3b50-5cd37a02a01a1"
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/css/fonts/icomoon.woff2?nwfys3
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/template/library/fonts/PN-Light.woff
54.214.206.138200 OK 57 kB URL HTTP/2 www.iccu.com/template/library/fonts/PN-Light.woff
IP 54.214.206.138:0
File type Web Open Font Format, CFF, length 57340, version 2.3\012- data
Hash 1eb197fea0cd5a6b704c69860aa15c1c
474fe8af6a90f241442804b25a7651c90d102381
4efa8c23eca941196761a29a78e304110e90c893dd2b48ec1a219e7a28c99553
GET /template/library/fonts/PN-Light.woff HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj; _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:02 GMT
content-type: font/woff
content-length: 57340
server: Pagely-ARES/1.10.15
x-gateway-request-id: 0c2666d9c26fa2a60baf656b8a1bb4b9
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "dffc-5cd37a02a4021"
expires: Fri, 23 Dec 2022 18:16:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/fonts/PN-Light.woff
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/template/library/fonts/PN-Thin.woff
54.214.206.138200 OK 56 kB URL HTTP/2 www.iccu.com/template/library/fonts/PN-Thin.woff
IP 54.214.206.138:0
File type Web Open Font Format, CFF, length 55576, version 2.3\012- data
Hash 3a9176172ca0f43f450f1a7c0cebd032
d7f768234141ac4ac661b39b08cdcd528e1fcfd5
851bfc7968130cd0610a19365a0729fe91a97b3a8b4cc924368d361d0df51a10
GET /template/library/fonts/PN-Thin.woff HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj; _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:02 GMT
content-type: font/woff
content-length: 55576
server: Pagely-ARES/1.10.15
x-gateway-request-id: e8cd56758bd54f699f4c3307ebe5f10f
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "d918-5cd37a02a6f01"
expires: Fri, 23 Dec 2022 18:16:36 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/fonts/PN-Thin.woff
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-37JPF553KD>m=2oeb90&_p=721174852&_gaz=1&cid=1533794799.1669305301&ul=en-us&sr=1280x1024&_s=1&sid=1669305301&sct=1&seg=0&dl=https%3A%2F%2Fwww.iccu.com%2F&dt=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-37JPF553KD>m=2oeb90&_p=721174852&_gaz=1&cid=1533794799.1669305301&ul=en-us&sr=1280x1024&_s=1&sid=1669305301&sct=1&seg=0&dl=https%3A%2F%2Fwww.iccu.com%2F&dt=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-37JPF553KD>m=2oeb90&_p=721174852&_gaz=1&cid=1533794799.1669305301&ul=en-us&sr=1280x1024&_s=1&sid=1669305301&sct=1&seg=0&dl=https%3A%2F%2Fwww.iccu.com%2F&dt=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.iccu.com
date: Thu, 24 Nov 2022 15:55:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.evgnet.com/beacon/idahoccu/idahoccu/scripts/evergage.min.js
151.101.64.114200 OK 46 kB URL HTTP/2 cdn.evgnet.com/beacon/idahoccu/idahoccu/scripts/evergage.min.js
IP 151.101.64.114:0
File type ASCII text, with very long lines (594)
Hash e243e8ec57e1aa473dc8b94efcd22d21
64cf8734f133cff8ad9f36a28479f3621647b9af
489ace076435a44f46011c23b9d57e193dfd72733d3a18621f358348dab593c0
GET /beacon/idahoccu/idahoccu/scripts/evergage.min.js HTTP/1.1
Host: cdn.evgnet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 84TIqZ4iSBB94ZnfsaVR4jebqu7jI1Ogym7z070tkfBNvqhf5cScOdrlgT5h1QczHrMrP0GHaI4=
x-amz-request-id: 1HTZC68JGM0HWWB5
x-amz-replication-status: COMPLETED
last-modified: Tue, 22 Nov 2022 23:21:25 GMT
etag: "e243e8ec57e1aa473dc8b94efcd22d21"
cache-control: max-age=120
content-encoding: gzip
x-amz-meta-evergage-beacon-ver: 16
x-amz-meta-evergage-sum: 3e4eb9a21d26e3905cc09524ae1e62d53ef76672
x-amz-version-id: 2kQJS1Y11RHoVx3KZfR8iIHG_EbPygsr
content-type: application/javascript; charset=utf-8
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 24 Nov 2022 15:55:02 GMT
age: 42
x-served-by: cache-iad-kjyo7100059-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 20, 1
x-timer: S1669305302.271651,VS0,VE1
vary: Accept-Encoding
timing-allow-origin: *
content-length: 45931
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-37JPF553KD&cid=1533794799.1669305301>m=2oeb90&aip=1
142.251.1.157204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-37JPF553KD&cid=1533794799.1669305301>m=2oeb90&aip=1
IP 142.251.1.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-37JPF553KD&cid=1533794799.1669305301>m=2oeb90&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.iccu.com
date: Thu, 24 Nov 2022 15:55:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.iccu.com/template/library/images/bx_loader.gif
54.214.206.138200 OK 5.6 kB URL HTTP/2 www.iccu.com/template/library/images/bx_loader.gif
IP 54.214.206.138:0
File type GIF image data, version 89a, 32 x 32\012- data
Hash 77b8e992a3b89d8f8c6f3018b39152b8
fbf66db9e5e75afa60632543da6145f0781dd872
1781afbfbb64bbf86ab6ed3d0d8fc9755226c8bd76376df95424dc5538d4c4c7
GET /template/library/images/bx_loader.gif HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/jquery.bxslider.css
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj; _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:02 GMT
content-type: image/gif
content-length: 5615
server: Pagely-ARES/1.10.15
x-gateway-request-id: db917ba9a982459711875d3959c8a51c
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "15ef-5cd37a02a8e41"
expires: Fri, 23 Dec 2022 18:16:36 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/images/bx_loader.gif
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c4d92a3ae2e8fdd6c44cf8a72e698594
bbf0e70817ef5023eaa7c432682bc9fb236fbbb3
8cda780b6627211a38f856af8482732caf2648ce83ee2d634394752b83ce2d70
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6170
Cache-Control: max-age=146222
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:02 GMT
Etag: "637f13ea-1d7"
Expires: Sat, 26 Nov 2022 08:32:04 GMT
Last-Modified: Thu, 24 Nov 2022 06:49:14 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c4d92a3ae2e8fdd6c44cf8a72e698594
bbf0e70817ef5023eaa7c432682bc9fb236fbbb3
8cda780b6627211a38f856af8482732caf2648ce83ee2d634394752b83ce2d70
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6170
Cache-Control: max-age=146222
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:02 GMT
Etag: "637f13ea-1d7"
Expires: Sat, 26 Nov 2022 08:32:04 GMT
Last-Modified: Thu, 24 Nov 2022 06:49:14 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 021ed2859e7053c9b4464cbc474ce459
7184756a5f1b31ca95374418316008e9139c2ca5
74d208fffee580cc7696dda4459d102a2324aeeb15bb0b810a76df5fb805dcf9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=134296
Date: Thu, 24 Nov 2022 15:55:02 GMT
Etag: "637ee830-1d7"
Expires: Sat, 26 Nov 2022 05:13:18 GMT
Last-Modified: Thu, 24 Nov 2022 03:42:40 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FnJNKte70XYvJcJ8riC3QvUoJBm47Pu6rYOCEk5pcJ_Jt5viahuxwg==
Age: 5438
tr.snapchat.com/cm/i?pid=4f35f424-49c8-4fe3-8e39-57f403fa9f72&u_scsid=6da10023-bb1e-4884-aab5-9c929728d70f&u_sclid=bee59d6d-55da-43bb-8567-924e8f9dd982
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/cm/i?pid=4f35f424-49c8-4fe3-8e39-57f403fa9f72&u_scsid=6da10023-bb1e-4884-aab5-9c929728d70f&u_sclid=bee59d6d-55da-43bb-8567-924e8f9dd982
IP 35.190.43.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/i?pid=4f35f424-49c8-4fe3-8e39-57f403fa9f72&u_scsid=6da10023-bb1e-4884-aab5-9c929728d70f&u_sclid=bee59d6d-55da-43bb-8567-924e8f9dd982 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:02 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c4d92a3ae2e8fdd6c44cf8a72e698594
bbf0e70817ef5023eaa7c432682bc9fb236fbbb3
8cda780b6627211a38f856af8482732caf2648ce83ee2d634394752b83ce2d70
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6170
Cache-Control: max-age=146222
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:02 GMT
Etag: "637f13ea-1d7"
Expires: Sat, 26 Nov 2022 08:32:04 GMT
Last-Modified: Thu, 24 Nov 2022 06:49:14 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
tr.snapchat.com/p
35.190.43.134200 OK 68 B IP 35.190.43.134:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
POST /p HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 455
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:02 GMT
access-control-allow-origin: https://www.iccu.com
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBiQ3AMAgEsImQgEt4xrlKZAqGr00Cr5HSX6WcOSbMDrlO51TZzNu1iIZeqK/+5RLBxjIAAAA=;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 6
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.iccu.com/inc/uploads/2022/11/nov-dec-new-member-2022-slider.jpg
143.204.55.64200 OK 272 kB URL HTTP/2 cdn.iccu.com/inc/uploads/2022/11/nov-dec-new-member-2022-slider.jpg
IP 143.204.55.64:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x800, components 3\012- data
Size 272 kB (272090 bytes)
Hash 5921951f4f56f3ae73a9551ee0fddbb9
86db9e29ca111a03ad9f15ec91b6f913af4d57f9
55c074df6cd717efa5b6eff8d0b9fa65f70808bc7c0dad5a8ccb5b2d874311fd
GET /inc/uploads/2022/11/nov-dec-new-member-2022-slider.jpg HTTP/1.1
Host: cdn.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 272090
date: Thu, 24 Nov 2022 15:55:01 GMT
server: Pagely-ARES/1.10.15
x-gateway-request-id: fc58d086ee5c261145291a7390a71f55
last-modified: Tue, 01 Nov 2022 16:11:30 GMT
etag: "426da-5ec6afa1fda74"
expires: Sat, 24 Dec 2022 11:31:30 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.167||https|www.iccu.com|||/inc/uploads/2022/11/nov-dec-new-member-2022-slider.jpg
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Dt5_wff4oDLTmv3SrCZcYdyM-yj2am7c6xDo9XpJEoCpE31IDO6DoQ==
X-Firefox-Spdy: h2
cdn.iccu.com/inc/uploads/2022/10/north-spokane-slider.webp
143.204.55.64200 OK 300 kB URL HTTP/2 cdn.iccu.com/inc/uploads/2022/10/north-spokane-slider.webp
IP 143.204.55.64:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x1080, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 300 kB (299820 bytes)
Hash fb2184ac53d92d6ce52672916086cbcd
20bcbcc4837deaf63b6ed4c5fe0cb163fd813852
593f5b2717cf856e467c04678382a787707d3be5d230a3ae09780bb045c77a10
GET /inc/uploads/2022/10/north-spokane-slider.webp HTTP/1.1
Host: cdn.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-length: 299820
date: Thu, 24 Nov 2022 15:55:01 GMT
server: Pagely-ARES/1.10.15
x-gateway-request-id: ecea4fc82b8dd1db796fd045985c28bd
last-modified: Tue, 25 Oct 2022 21:37:41 GMT
etag: "4932c-5ebe2b7c0356a"
expires: Sat, 24 Dec 2022 12:11:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/inc/uploads/2022/10/north-spokane-slider.webp
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZHFRaUxJ_ZOCbvOkq6ZBn_aUOUXt_ZC-mKcrodTVeSy8CInhgaOdlg==
X-Firefox-Spdy: h2
cdn.iccu.com/inc/uploads/2022/11/2022-holiday-rewards-slider.webp
143.204.55.64200 OK 53 kB URL HTTP/2 cdn.iccu.com/inc/uploads/2022/11/2022-holiday-rewards-slider.webp
IP 143.204.55.64:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 69ce75610cc6095890e707de58a70cfe
c5b14493f0909758592ba63df58b63bed7a21b6d
57cd46800651071f922837f1b81c23d3053b96510b0066a0557d1f86b08c6051
GET /inc/uploads/2022/11/2022-holiday-rewards-slider.webp HTTP/1.1
Host: cdn.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-length: 53164
date: Thu, 24 Nov 2022 15:55:02 GMT
server: Pagely-ARES/1.10.15
x-gateway-request-id: e2ecb9d712d125d5cbd24514947ff8ce
last-modified: Mon, 14 Nov 2022 17:39:19 GMT
etag: "cfac-5ed71b81d27a5"
expires: Sat, 24 Dec 2022 11:43:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.167||https|www.iccu.com|||/inc/uploads/2022/11/2022-holiday-rewards-slider.webp
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 70HS7Ri7UBAs-llTdqa44m4FWewTpZDou-5GqWAci9NeTKzHk1RdTQ==
X-Firefox-Spdy: h2
collector-21348.us.tvsquared.com/tv2track.js
18.217.91.236200 OK 8.5 kB URL HTTP/1.1 collector-21348.us.tvsquared.com/tv2track.js
IP 18.217.91.236:0
File type ASCII text, with very long lines (1162)
Hash 0dfa43ce95b39a456eae5449442aff6e
f5a7a9573c38d97cb3c7d8d811b8b6707a7f2d88
3135834b3c8b03e052d94f9b63cf3f796ff4a3077256dd1daddc16d5c204306a
GET /tv2track.js HTTP/1.1
Host: collector-21348.us.tvsquared.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=600
Content-Encoding: gzip
Content-Type: application/javascript
Date: Thu, 24 Nov 2022 15:55:02 GMT
ETag: "6306051b-2133"
Expires: Thu, 24 Nov 2022 16:05:02 GMT
Last-Modified: Wed, 24 Aug 2022 11:01:47 GMT
Server: nginx
X-Robots-Tag: noindex
Content-Length: 8499
Connection: keep-alive
analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDMJCTRC77U9BMO6V730&hostname=www.iccu.com
23.36.79.17200 OK 347 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=CDMJCTRC77U9BMO6V730&hostname=www.iccu.com
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 0a6cf9004dcee152a1995d7a9df6a655
4910a4583ab604ff138a321f03dca21559a73f87
3cae6a7267053169eaa75764aabd73152652a7982ab31d1a511da1ffb4193012
GET /i18n/pixel/config.js?sdkid=CDMJCTRC77U9BMO6V730&hostname=www.iccu.com HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211241555024C3404EF1FC0DB67EF3C
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf601c5f6a04a777121cde7d9af65489455e7c47808476652405a69e7f57404e1871793bfd4b1fda2cb6baf7a2e3f3b2c4d46bdd3c9271f252af89e36f9686145477
content-encoding: gzip
expires: Thu, 24 Nov 2022 15:55:02 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 15:55:02 GMT
content-length: 347
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2I04jeHyhQNnOdW3ODopNC6C1fk; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=2, cdn-cache; desc=MISS, edge; dur=11, origin; dur=112
x-origin-response-time: 112,23.36.79.13
x-akamai-request-id: 6b1f9ff0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash aa0aa70380875fc95d201e90cc51a79b
15991bc79e85c711342826c9263ae022548f5df8
be940c2eb2351ef423073c5c5d70daa3e5f8815cf99e741cf8d8329e86c38ef5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=155382
Date: Thu, 24 Nov 2022 15:55:02 GMT
Etag: "637f4ef6-1d7"
Expires: Sat, 26 Nov 2022 11:04:44 GMT
Last-Modified: Thu, 24 Nov 2022 11:01:10 GMT
Server: ECS (dcb/7F83)
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GZTu4Dinjx7982sR5EozmKpxIMhxTXkgXtiPZvbTcrYFKQ7hYhXZvQ==
Age: 214
cdn.iccu.com/inc/uploads/2022/10/medicare-AEP-slider.jpg
143.204.55.64200 OK 152 kB URL HTTP/2 cdn.iccu.com/inc/uploads/2022/10/medicare-AEP-slider.jpg
IP 143.204.55.64:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x800, components 3\012- data
Size 152 kB (152053 bytes)
Hash abb51f9d5700eb19ee344716d0778f19
3299a57a55b08296921c8de478f9c4fbbfd17a9d
cf9aa4915b2c68f7f616fc4fbaf7ff698dffac44952fec27261c4c982760ac1a
GET /inc/uploads/2022/10/medicare-AEP-slider.jpg HTTP/1.1
Host: cdn.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 152053
date: Thu, 24 Nov 2022 15:55:02 GMT
server: Pagely-ARES/1.10.15
x-gateway-request-id: 0bd19ec9717a1e6b94483efbdbba7e91
last-modified: Mon, 17 Oct 2022 16:23:48 GMT
etag: "251f5-5eb3d667e662b"
expires: Sat, 24 Dec 2022 11:28:01 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/inc/uploads/2022/10/medicare-AEP-slider.jpg
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AbEEH2tNBTkgbGQuSqnuDBPLVgTgGmioRAtwc1MR3yz32eKBZF1R4w==
X-Firefox-Spdy: h2
collector-21348.us.tvsquared.com/tv2track.php?action_name=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&idsite=TV-7281635418-1&rec=1&r=143981&h=15&m=55&s=2&url=https%3A%2F%2Fwww.iccu.com%2F&_id=c81541090d786644&_idts=1669305302&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=1863
18.217.91.236200 OK 42 B URL HTTP/1.1 collector-21348.us.tvsquared.com/tv2track.php?action_name=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&idsite=TV-7281635418-1&rec=1&r=143981&h=15&m=55&s=2&url=https%3A%2F%2Fwww.iccu.com%2F&_id=c81541090d786644&_idts=1669305302&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=1863
IP 18.217.91.236:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 00657dd79637a8daf5e6196ca17f1887
3e064855d1fe7c6eac52981a646ec5840ba7efb5
f0c71e3da5b3fcab3c66af1cf0cdbf262c97b9330b7b37116f1ae2ab18bdc660
GET /tv2track.php?action_name=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&idsite=TV-7281635418-1&rec=1&r=143981&h=15&m=55&s=2&url=https%3A%2F%2Fwww.iccu.com%2F&_id=c81541090d786644&_idts=1669305302&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=1863 HTTP/1.1
Host: collector-21348.us.tvsquared.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Thu, 24 Nov 2022 15:55:02 GMT
P3p: CP='OTI DSP COR NID STP UNI OTPa OUR'
Request-Id: e163b32a-1ec4-490d-8c41-ebe797220251
Server: nginx
Content-Length: 42
Connection: keep-alive
idahoccu.us-1.evergage.com/pr?.top=452&action=Homepage&.tt=435&.ttdns=2&.dt=3782&.btdns=8&.bv=16&_ak=idahoccu&_ds=idahoccu&.scv=56&channel=Web&_r=164031&.anonId=b6698df2acd745b0&_anon=true
34.226.151.45204 No Content 0 B URL HTTP/2 idahoccu.us-1.evergage.com/pr?.top=452&action=Homepage&.tt=435&.ttdns=2&.dt=3782&.btdns=8&.bv=16&_ak=idahoccu&_ds=idahoccu&.scv=56&channel=Web&_r=164031&.anonId=b6698df2acd745b0&_anon=true
IP 34.226.151.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pr?.top=452&action=Homepage&.tt=435&.ttdns=2&.dt=3782&.btdns=8&.bv=16&_ak=idahoccu&_ds=idahoccu&.scv=56&channel=Web&_r=164031&.anonId=b6698df2acd745b0&_anon=true HTTP/1.1
Host: idahoccu.us-1.evergage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 0
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Cookie: AWSALBCORS=4X5e5kK2It/0YmfmS0hUcjFL6X/VJfEUPyHpIFZNP2j43VO5VhJS1C0MwnSMXgiIqJ3TUwRf1cniq15WI+M4I5o4oO7yQQZnGX3TyO8Lgxmh5ggLSxTAoB3dmgUr
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Nov 2022 15:55:02 GMT
set-cookie: AWSALB=VJVjHC/OwclsrY/iaVYoML5no8Hwcj9X5/rIqdkD4EwKL2WAe8syi5lkvrkyQV/Y2jjexnjPa6uI9tozBMTd3lmP88CARFk62Qg1UKFpsM2jaTHHcslVDzYnaEXi; Expires=Thu, 01 Dec 2022 15:55:02 GMT; Path=/
AWSALBCORS=VJVjHC/OwclsrY/iaVYoML5no8Hwcj9X5/rIqdkD4EwKL2WAe8syi5lkvrkyQV/Y2jjexnjPa6uI9tozBMTd3lmP88CARFk62Qg1UKFpsM2jaTHHcslVDzYnaEXi; Expires=Thu, 01 Dec 2022 15:55:02 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: https://www.iccu.com
timing-allow-origin: *
x-content-type-options: nosniff
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/identify.js
23.36.79.17200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/identify.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0895ca2f6f12c0da54300a185e8da2ff
7b0eb0573cbb7721c6ae497b6b0b9873bc40d057
401474b2b52c4b741cad498a391b552558e0794514c4e5ddedfba9c3dbe4ac83
GET /i18n/pixel/identify.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022112415550293B0274B987C195B3805
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b58098d7a7e6b1920355da96b1df82f9bdc34ad49cfc8bd64d729bbcf966dd0a801d181d8391e57424278dbed62397b80b400a3d8d0b19dec47e1d01b431a65c61
content-encoding: gzip
x-origin-response-time: 8,23.218.220.137
x-akamai-request-id: c42e3216.6b1f9fbc
expires: Thu, 24 Nov 2022 15:55:02 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 15:55:02 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-218-220-137.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=103, origin; dur=7, inner; dur=4
x-parent-response-time: 109,23.36.79.13
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b6e7c5faf2d24e0d958ab10ee95f6791
16b68ad4b4a2776571697dff8edc9369a3c5c451
1431771f6fd4ad8c028d53a7489acc16b829e32e01d92df5e8c923723024b75a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4755
Cache-Control: max-age=85724
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:03 GMT
Etag: "637e2d20-1d7"
Expires: Fri, 25 Nov 2022 15:43:47 GMT
Last-Modified: Wed, 23 Nov 2022 14:24:32 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b6a795cdfedb5c954b3000dbb2dc7f90
b17bb97d224d89bc8227cddf5a8386e100751cda
78c411d16c1be2d8da51fc409cb45ec2aca8d32b77ab4d1a1a1fe5d1a33552e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/922652299/?random=1669305301805&cv=11&fst=1669305301805&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.iccu.com%2F&tiba=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&auid=445993807.1669305301&rfmt=3&fmt=4
142.250.74.2200 OK 883 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/922652299/?random=1669305301805&cv=11&fst=1669305301805&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.iccu.com%2F&tiba=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&auid=445993807.1669305301&rfmt=3&fmt=4
IP 142.250.74.2:0
File type ASCII text, with very long lines (1885), with no line terminators
Hash 9addc927f942273155c17f97dcc7c121
a1b8771986f2c691c09f4e5c4a252067ceaecd14
b0c0bbaab3be8feb92a2ba865aaf82706518b660f931e277097433bbd123b9c7
GET /pagead/viewthroughconversion/922652299/?random=1669305301805&cv=11&fst=1669305301805&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.iccu.com%2F&tiba=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&auid=445993807.1669305301&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 15:55:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 883
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 24-Nov-2022 16:10:03 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-37JPF553KD&cid=1533794799.1669305301>m=2oeb90&aip=1&z=1200647450
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-37JPF553KD&cid=1533794799.1669305301>m=2oeb90&aip=1&z=1200647450
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-37JPF553KD&cid=1533794799.1669305301>m=2oeb90&aip=1&z=1200647450 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 15:55:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/gtm/optimize.js?id=GTM-NNR2J8L
142.250.74.174200 OK 44 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=GTM-NNR2J8L
IP 142.250.74.174:0
File type ASCII text, with very long lines (1921)
Hash 5d65d8fbd340cd11618c0af9abe36c28
b6a3f75f114c47ae10f1dafe4d8589211ff37d95
0da6100f5c1d082c6daaf7c8d4456436ded53e19b8dd52ac1020fbe8c05a86d4
GET /gtm/optimize.js?id=GTM-NNR2J8L HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 15:55:03 GMT
expires: Thu, 24 Nov 2022 15:55:03 GMT
cache-control: private, max-age=900
last-modified: Thu, 24 Nov 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43999
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39007), with no line terminators
Hash 22e2e3226eb5ada04929a2e43307eeda
04615fa88f80567974bdeb0f103ca5909746ebd7
41feebdfb0b03cd7fee2eb886adef6f3f1f85d3f14215e9a388d2a50e42efb9b
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11421
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 09 Nov 2022 21:23:50 GMT
accept-ranges: bytes
etag: "077538f81f4d81:0"
vary: Accept-Encoding
set-cookie: MUID=02C6A623D7766E1E23D8B445D6836F06; domain=.bing.com; expires=Tue, 19-Dec-2023 15:55:03 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 50F8726149564995920A4E1AB97B1382 Ref B: OSL30EDGE0210 Ref C: 2022-11-24T15:55:03Z
date: Thu, 24 Nov 2022 15:55:02 GMT
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 4fhlTqKXbt32U+oaScZGy5cebf7MwuNWiY6jzCpODCUBVRKhkqR67E5orKxAVx9MMwSRdgzfrvOSJ5PNfOAvnQ==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 15:55:03 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.106200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.106:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 24 Nov 2022 15:55:03 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.iccu.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.iccu.com/template/library/images/apple-icon-touch.png
54.214.206.138200 OK 859 B URL HTTP/2 www.iccu.com/template/library/images/apple-icon-touch.png
IP 54.214.206.138:0
File type PNG image data, 129 x 129, 8-bit colormap, non-interlaced\012- data
Hash 2312274243580ec097982784e78fa4be
774e1cca659c43d7258a876c2c5ee5ad115209b1
03294dd31589f8331a9c6249eba2228e0e049c335a7823466438eaa84e6acde0
GET /template/library/images/apple-icon-touch.png HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj; _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301; _sfid_4bb8={%22anonymousId%22:%22b6698df2acd745b0%22%2C%22consents%22:[]}; _evga_2114={%22uuid%22:%22b6698df2acd745b0%22}; _schn=_wif1lr; _scid=a51167cc-eaea-43e0-b63a-06be6b34c735; _tq_id.TV-7281635418-1.6370=c81541090d786644.1669305302.0.1669305302..
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:02 GMT
content-type: image/png
content-length: 859
server: Pagely-ARES/1.10.15
x-gateway-request-id: b30f5c15437c751a42e898b1076a4d37
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "35b-5cd37a02a7ea1"
expires: Sat, 24 Dec 2022 12:39:51 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/images/apple-icon-touch.png
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iccu.com/template/favicon.png
54.214.206.138200 OK 4.6 kB URL HTTP/2 www.iccu.com/template/favicon.png
IP 54.214.206.138:0
File type PNG image data, 100 x 94, 8-bit/color RGBA, non-interlaced\012- data
Hash 02f5f86808d0fd3b59a9fcdb88e3ad02
2d849bd67e68f1f0d635bf074584c31d33c78ed8
16a37dc19eb0dcf637799a0c6f93165a0c239ab22073a817e6338cc4eea340ba
GET /template/favicon.png HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj; _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301; _sfid_4bb8={%22anonymousId%22:%22b6698df2acd745b0%22%2C%22consents%22:[]}; _evga_2114={%22uuid%22:%22b6698df2acd745b0%22}; _schn=_wif1lr; _scid=a51167cc-eaea-43e0-b63a-06be6b34c735; _tq_id.TV-7281635418-1.6370=c81541090d786644.1669305302.0.1669305302..
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:02 GMT
content-type: image/png
content-length: 4568
server: Pagely-ARES/1.10.15
x-gateway-request-id: 0c8d362b7dd038aef2e2060dd5be9ae9
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: "11d8-5cd37a029f201"
expires: Fri, 23 Dec 2022 18:16:36 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/favicon.png
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b6e7c5faf2d24e0d958ab10ee95f6791
16b68ad4b4a2776571697dff8edc9369a3c5c451
1431771f6fd4ad8c028d53a7489acc16b829e32e01d92df5e8c923723024b75a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4755
Cache-Control: max-age=85724
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:03 GMT
Etag: "637e2d20-1d7"
Expires: Fri, 25 Nov 2022 15:43:47 GMT
Last-Modified: Wed, 23 Nov 2022 14:24:32 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b6a795cdfedb5c954b3000dbb2dc7f90
b17bb97d224d89bc8227cddf5a8386e100751cda
78c411d16c1be2d8da51fc409cb45ec2aca8d32b77ab4d1a1a1fe5d1a33552e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 00bc34515708820916035c6e1e44f6f4
9f04488d444f8f8aa1ce37044736deff84e38c2e
de95e9ade9e71e0604828d7d2e0e177e6460280c6d65c0281df8d1bdb7e39a88
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133608
Date: Thu, 24 Nov 2022 15:55:03 GMT
Etag: "637eef2f-1d7"
Expires: Sat, 26 Nov 2022 05:01:51 GMT
Last-Modified: Thu, 24 Nov 2022 04:12:31 GMT
Server: ECS (dcb/7F5F)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mV9aRPG_YK3LNguXs9oO8uivJdr0ldUFTaTLaMIH4fN5FQbGy4X9-g==
Age: 2960
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f7801fe8b983652ae788bc952856c2ed
f3898da21792b146a9f856e87ed3520d76277fb8
faa1bc8a9887e2dc694ff645546ea16cb96ac4bd1b0c460aef95f2cced100d6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tags.srv.stackadapt.com/events.js
3.216.203.91200 OK 5.4 kB URL HTTP/1.1 tags.srv.stackadapt.com/events.js
IP 3.216.203.91:0
File type ASCII text, with very long lines (16677)
Hash 2d72ea85b7ec01af3b527e532569294e
3c2793e968e45acd6238333d4b34dcaa9564af96
482d63bb93e7dc7459bd65c9330bf7b4aff3915da324de39ac159a9ec283cac0
GET /events.js HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: max-age=5
Content-Encoding: gzip
Content-Type: text/javascript
Date: Thu, 24 Nov 2022 15:55:03 GMT
Set-Cookie: sa-user-id=s%3A0-a25bb75d-07bb-439c-6544-92e0723c2a48.VeYTgixJGmb6JK6dCBIw7akFgOmrk3Pb6PrezEiyFds; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3Aolu3XQe7Q5xlRJLgcjwqSFtaKpo.XScffMDmnr5g2RsQLSqc7rJHuQXl3xqUy6LUwsixeoA; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
transfer-encoding: chunked
Connection: keep-alive
www.google.com/pagead/1p-user-list/922652299/?random=1669305301805&cv=11&fst=1669302000000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.iccu.com%2F&tiba=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&fmt=3&is_vtc=1&random=3675221662&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/922652299/?random=1669305301805&cv=11&fst=1669302000000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.iccu.com%2F&tiba=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&fmt=3&is_vtc=1&random=3675221662&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/922652299/?random=1669305301805&cv=11&fst=1669302000000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.iccu.com%2F&tiba=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&fmt=3&is_vtc=1&random=3675221662&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 15:55:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=14005490&tm=gtm002&Ver=2&mid=2cb97699-e29d-4b4d-b0b3-5ebc77c041ea&sid=5b7073d06c1011ed85a17dae53da443b&vid=5b705b706c1011eda0bb831b4209234b&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&p=https%3A%2F%2Fwww.iccu.com%2F&r=<=3781&evt=pageLoad&sv=1&rn=714078
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=14005490&tm=gtm002&Ver=2&mid=2cb97699-e29d-4b4d-b0b3-5ebc77c041ea&sid=5b7073d06c1011ed85a17dae53da443b&vid=5b705b706c1011eda0bb831b4209234b&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&p=https%3A%2F%2Fwww.iccu.com%2F&r=<=3781&evt=pageLoad&sv=1&rn=714078
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=14005490&tm=gtm002&Ver=2&mid=2cb97699-e29d-4b4d-b0b3-5ebc77c041ea&sid=5b7073d06c1011ed85a17dae53da443b&vid=5b705b706c1011eda0bb831b4209234b&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&p=https%3A%2F%2Fwww.iccu.com%2F&r=<=3781&evt=pageLoad&sv=1&rn=714078 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=36E16A1C00D76FB813E7787A01226E8D; domain=.bing.com; expires=Tue, 19-Dec-2023 15:55:03 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2E2CB0B1998F45229FF0EEA634F855F5 Ref B: OSL30EDGE0210 Ref C: 2022-11-24T15:55:03Z
date: Thu, 24 Nov 2022 15:55:02 GMT
X-Firefox-Spdy: h2
www.clarity.ms/eus2/s/0.6.43/clarity.js
13.107.219.53200 OK 55 kB URL HTTP/2 www.clarity.ms/eus2/s/0.6.43/clarity.js
IP 13.107.219.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (55029)
Hash 441723b72633b1ac9757ad7c63168005
806166ca9ebb5839dd90a5e5c9335e3e0b18c169
cc8a16ce849d72f106bd67187e4b60c20da3093375202bf0b53f23e8f40a8b11
GET /eus2/s/0.6.43/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-length: 55116
content-type: application/javascript;charset=utf-8
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8fceb15c2864c"
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-cache: CONFIG_NOCACHE
x-azure-ref: 015N/YwAAAACeq+yoxmWjRoowyITDEYkCT1NMMjMxMDUwMjA0MDE5ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Thu, 24 Nov 2022 15:55:03 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/14005490.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/14005490.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/14005490.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=17722A5CCD5B6227090C383ACCAE63EC; domain=.bing.com; expires=Tue, 19-Dec-2023 15:55:03 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8532658EDDA744028E5A84958C3B9436 Ref B: OSL30EDGE0210 Ref C: 2022-11-24T15:55:03Z
date: Thu, 24 Nov 2022 15:55:02 GMT
X-Firefox-Spdy: h2
tags.srv.stackadapt.com/sa.css
3.216.203.91200 OK 27 B URL HTTP/1.1 tags.srv.stackadapt.com/sa.css
IP 3.216.203.91:0
Hash 83f5ba33314db5f218488a5a51da1455
87a21689afa235c4c65437334085be4bf5cca170
3f100e5e6ff270dadb43b44878f0118a2389dee0d844acc102b5179d70a824dc
GET /sa.css HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: only-if-cached, no-transform, private, max-age=7776000
Content-Type: text/css
Date: Thu, 24 Nov 2022 15:55:03 GMT
Content-Length: 27
Connection: keep-alive
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDMJCTRC77U9BMO6V730&lib=ttq
23.36.79.17200 OK 43 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CDMJCTRC77U9BMO6V730&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 7fb4e3633df7919574b30c9c024d496c
11bd58b4cd10044f52f9d60d912a0eae3906e50b
f01754930efb631b0cab25d097ae5f3d810b69a62985fa66ad34e32d948d5b92
GET /i18n/pixel/events.js?sdkid=CDMJCTRC77U9BMO6V730&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211241555022F22336EC2F7635A10FA
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b534f281a7694e1dbd136fadd86c50a0e5094bc350d2518fa71606b486f688eaf0bd505351e3b7bce7f2d83a5c72ed3107f102a429b457a935d49884ad7837e7a5
content-encoding: gzip
x-origin-response-time: 16,23.218.220.145
x-akamai-request-id: 516bdf67.6b1f9b36
expires: Thu, 24 Nov 2022 15:55:02 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 24 Nov 2022 15:55:02 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-218-220-145.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=99, origin; dur=16, inner; dur=2
x-parent-response-time: 115,23.36.79.13
X-Firefox-Spdy: h2
tags.srv.stackadapt.com/sa.jpeg
3.216.203.91200 OK 651 B URL HTTP/1.1 tags.srv.stackadapt.com/sa.jpeg
IP 3.216.203.91:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1x1, components 3\012- data
Hash c1857c2cb75b8b4170279e5ce14d8f7f
7886f0b642e84f8bfaef4f79ad1c5fcace9b6b3f
efe1a644f95980b40f45c97946c0e00cee2f3d83b3889c03ab2ed9cd18480743
GET /sa.jpeg HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: only-if-cached, no-transform, private, max-age=7776000
Content-Type: image/jpeg
Date: Thu, 24 Nov 2022 15:55:03 GMT
Content-Length: 651
Connection: keep-alive
www.facebook.com/tr/?id=1599075523726654&ev=PageView&dl=https%3A%2F%2Fwww.iccu.com%2F&rl=&if=false&ts=1669305303373&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.1.1669305303372.1480791224&it=1669305302799&coo=false&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1599075523726654&ev=PageView&dl=https%3A%2F%2Fwww.iccu.com%2F&rl=&if=false&ts=1669305303373&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.1.1669305303372.1480791224&it=1669305302799&coo=false&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1599075523726654&ev=PageView&dl=https%3A%2F%2Fwww.iccu.com%2F&rl=&if=false&ts=1669305303373&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=28&fbp=fb.1.1669305303372.1480791224&it=1669305302799&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 24 Nov 2022 15:55:03 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=398312224211246&ev=PageView&dl=https%3A%2F%2Fwww.iccu.com%2F&rl=&if=false&ts=1669305303377&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669305303372.1480791224&it=1669305302799&coo=false&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=398312224211246&ev=PageView&dl=https%3A%2F%2Fwww.iccu.com%2F&rl=&if=false&ts=1669305303377&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669305303372.1480791224&it=1669305302799&coo=false&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=398312224211246&ev=PageView&dl=https%3A%2F%2Fwww.iccu.com%2F&rl=&if=false&ts=1669305303377&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669305303372.1480791224&it=1669305302799&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 24 Nov 2022 15:55:03 GMT
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 715
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.iccu.com
access-control-allow-credentials: true
date: Thu, 24 Nov 2022 15:55:03 GMT
X-Firefox-Spdy: h2
tags.srv.stackadapt.com/saq_pxl?uid=SkL_wkqmNrMxibbUXomuNA&is_js=true&landing_url=https%3A%2F%2Fwww.iccu.com%2F&t=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&tip=-svZuGI58nmlw3R0V1O-2kNVMFgUBy63rTimwY_T6eQ&host=https://www.iccu.com&sa-user-id-v2=s%253Aolu3XQe7Q5xlRJLgcjwqSFtaKpo.XScffMDmnr5g2RsQLSqc7rJHuQXl3xqUy6LUwsixeoA&sa-user-id=s%253A0-a25bb75d-07bb-439c-6544-92e0723c2a48.VeYTgixJGmb6JK6dCBIw7akFgOmrk3Pb6PrezEiyFds
3.216.203.91200 OK 116 B URL HTTP/1.1 tags.srv.stackadapt.com/saq_pxl?uid=SkL_wkqmNrMxibbUXomuNA&is_js=true&landing_url=https%3A%2F%2Fwww.iccu.com%2F&t=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&tip=-svZuGI58nmlw3R0V1O-2kNVMFgUBy63rTimwY_T6eQ&host=https://www.iccu.com&sa-user-id-v2=s%253Aolu3XQe7Q5xlRJLgcjwqSFtaKpo.XScffMDmnr5g2RsQLSqc7rJHuQXl3xqUy6LUwsixeoA&sa-user-id=s%253A0-a25bb75d-07bb-439c-6544-92e0723c2a48.VeYTgixJGmb6JK6dCBIw7akFgOmrk3Pb6PrezEiyFds
IP 3.216.203.91:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 03e193f03f71be34743e8e1838deaede
0f310a13c8ca8b5990e23692651c36fed43c860f
d2670c49e889736cf1400cfa758194e1a3fe5d6e81dba3536baae1f7aab75013
GET /saq_pxl?uid=SkL_wkqmNrMxibbUXomuNA&is_js=true&landing_url=https%3A%2F%2Fwww.iccu.com%2F&t=Idaho%20Central%20Credit%20Union%20%7C%20Idaho%27s%20Premier%20Credit%20Union&tip=-svZuGI58nmlw3R0V1O-2kNVMFgUBy63rTimwY_T6eQ&host=https://www.iccu.com&sa-user-id-v2=s%253Aolu3XQe7Q5xlRJLgcjwqSFtaKpo.XScffMDmnr5g2RsQLSqc7rJHuQXl3xqUy6LUwsixeoA&sa-user-id=s%253A0-a25bb75d-07bb-439c-6544-92e0723c2a48.VeYTgixJGmb6JK6dCBIw7akFgOmrk3Pb6PrezEiyFds HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: https://www.iccu.com
Content-Type: text/plain; charset=utf-8
Date: Thu, 24 Nov 2022 15:55:03 GMT
Content-Length: 116
Connection: keep-alive
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 82201
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.iccu.com
access-control-allow-credentials: true
date: Thu, 24 Nov 2022 15:55:03 GMT
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=8D33B46D76814196961D6B558F3C5E75&RedC=c.clarity.ms&MXFR=319E15A9A05B6FBD1C3C07CFA45B61B0
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=319E15A9A05B6FBD1C3C07CFA45B61B0; domain=.clarity.ms; expires=Tue, 19-Dec-2023 15:55:05 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Thu, 24 Nov 2022 15:55:05 GMT
content-length: 0
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=8D33B46D76814196961D6B558F3C5E75&RedC=c.clarity.ms&MXFR=319E15A9A05B6FBD1C3C07CFA45B61B0
13.107.21.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=8D33B46D76814196961D6B558F3C5E75&RedC=c.clarity.ms&MXFR=319E15A9A05B6FBD1C3C07CFA45B61B0
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=8D33B46D76814196961D6B558F3C5E75&RedC=c.clarity.ms&MXFR=319E15A9A05B6FBD1C3C07CFA45B61B0 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=8D33B46D76814196961D6B558F3C5E75&MUID=38334941F54D61F304055B27F4B8609F
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=38334941F54D61F304055B27F4B8609F; domain=c.bing.com; expires=Tue, 19-Dec-2023 15:55:05 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0618C42A418944D4AD659C25E49DD345 Ref B: OSL30EDGE0210 Ref C: 2022-11-24T15:55:05Z
date: Thu, 24 Nov 2022 15:55:04 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2e91edb411b891624b978a6471c90ac1
9e1e9d3e84146a75689b0f8b944b21956909ee53
6626f00143d295b88b9b3fcd22ea5ca591fdd10ff9175e287afb5106e9834f0c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2955
Cache-Control: max-age=123214
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 15:55:05 GMT
Etag: "637ec69c-1d7"
Expires: Sat, 26 Nov 2022 02:08:39 GMT
Last-Modified: Thu, 24 Nov 2022 01:19:24 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
c.clarity.ms/c.gif?CtsSyncId=8D33B46D76814196961D6B558F3C5E75&MUID=38334941F54D61F304055B27F4B8609F
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=8D33B46D76814196961D6B558F3C5E75&MUID=38334941F54D61F304055B27F4B8609F
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=8D33B46D76814196961D6B558F3C5E75&MUID=38334941F54D61F304055B27F4B8609F HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iccu.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Thu, 13 Oct 2022 20:07:05 GMT
accept-ranges: bytes
etag: "40db785d3fdfd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Thu, 24-Nov-2022 16:05:05 GMT; path=/; SameSite=None; Secure;
date: Thu, 24 Nov 2022 15:55:05 GMT
content-length: 42
X-Firefox-Spdy: h2
vmss.boldchat.com/aid/885055130827083336/bc.vms4/vms.js
35.160.120.77200 OK 18 kB URL HTTP/1.1 vmss.boldchat.com/aid/885055130827083336/bc.vms4/vms.js
IP 35.160.120.77:0
File type ASCII text, with very long lines (53979), with no line terminators
Hash 4113927a177d567c16ad555f70da7004
05998965d6c354e360def5fde9ed26df3158a343
5dea531896ed6c464701c29be8ecb864e2c33427577aa5b8f384f415c5e8150e
GET /aid/885055130827083336/bc.vms4/vms.js HTTP/1.1
Host: vmss.boldchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Origin-Agent-Cluster: ?0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM", policyref="http://my.boldchat.com/w3c/p3p.xml"
Set-Cookie: bc-visitor-id=0=0; Domain=.boldchat.com; Expires=Fri, 24-Nov-2023 15:55:05 GMT; Path=/; HttpOnly; SameSite=None
Cache-Control: max-age=7200, public
ETag: "4113927A177D567C16AD555F70DA7004"
Content-Encoding: gzip
Content-Type: text/javascript;charset=UTF-8
Content-Length: 18147
Date: Thu, 24 Nov 2022 15:55:04 GMT
Server: BoldChat/8006
X-Content-Type-Options: nosniff
visitor-services.boldchat.com/visitor-token-service/visitor-token
18.197.58.119200 OK 38 B URL HTTP/2 visitor-services.boldchat.com/visitor-token-service/visitor-token
IP 18.197.58.119:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9b3fef5ae4c1c9b85cad758e7c3a2fcf
64f8535e4f01abfb7c289e7f4a48997f680849d6
1ed9ec1d474f24b26a104289a202fc3617cd7cae4534a74face0ce8dd3c7ff5d
GET /visitor-token-service/visitor-token HTTP/1.1
Host: visitor-services.boldchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:05 GMT
content-type: application/json; charset=utf-8
content-length: 38
vary: Origin
access-control-allow-origin: https://www.iccu.com
access-control-allow-credentials: true
set-cookie: bc.visitor_token=7001573921633140736; Path=/; Expires=Sat, 23-Nov-2024 15:55:05 GMT; Domain=.boldchat.com; SameSite=none; Secure; HttpOnly
x-correlation-id: 9090e6a3-4d18-45a0-989a-8df8618d7166
x-response-time: 0.178034ms
X-Firefox-Spdy: h2
vms.boldchat.com/aid/885055130827083336/api/v1/extendedvisitorinfo/setup
52.41.198.141200 OK 24 B URL HTTP/1.1 vms.boldchat.com/aid/885055130827083336/api/v1/extendedvisitorinfo/setup
IP 52.41.198.141:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d6fa3b603d3108c572b293e686d0d3a9
cdc0dcbc559841aa539b5f141dfa0df70f2d5c51
ab23e5ef2389cf1539e1ad4dc3ff1cbd09a452482157ee899fd27f83239d9360
GET /aid/885055130827083336/api/v1/extendedvisitorinfo/setup HTTP/1.1
Host: vms.boldchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Origin-Agent-Cluster: ?0
Access-Control-Allow-Origin: *
Content-Type: application/json;charset=UTF-8
Content-Length: 24
Date: Thu, 24 Nov 2022 15:55:05 GMT
Server: BoldChat/8006
X-Content-Type-Options: nosniff
vms.boldchat.com/aid/885055130827083336/bc.pv?script=true&securevm=true&&blur=false&vm=true&poll=65000&swidth=1280&sheight=1024&sdpi=96&url=https%3A%2F%2Fwww.iccu.com%2F&wdid=877059778254640396&1669305305563&tabIdentifier=4451417031505030677&clientScheme=https&visitorTrackingAllowed=true&visitorToken=7001573921633140736&_bcvm_vrid_=true&_bcvm_vid_combined=1669305305565Sundefined&_bcvm_vrid_combined=1669305305565Sundefined&&hasbutton=false&fcbdid=878631552904021173&tcwdid=0.38032303841028603,878631542303705341,1910685051822057888,
52.41.198.141200 OK 1.4 kB URL HTTP/1.1 vms.boldchat.com/aid/885055130827083336/bc.pv?script=true&securevm=true&&blur=false&vm=true&poll=65000&swidth=1280&sheight=1024&sdpi=96&url=https%3A%2F%2Fwww.iccu.com%2F&wdid=877059778254640396&1669305305563&tabIdentifier=4451417031505030677&clientScheme=https&visitorTrackingAllowed=true&visitorToken=7001573921633140736&_bcvm_vrid_=true&_bcvm_vid_combined=1669305305565Sundefined&_bcvm_vrid_combined=1669305305565Sundefined&&hasbutton=false&fcbdid=878631552904021173&tcwdid=0.38032303841028603,878631542303705341,1910685051822057888,
IP 52.41.198.141:0
File type ASCII text, with very long lines (551)
Hash 2658cd7e9a976b2e8bbe350786d078c5
8d70b8e4409be50843cb4a87ab66af2e8ee6d6ef
746822e972b9eb36142e41d71515a90a67635381fca720e788d8fd21f898a29b
GET /aid/885055130827083336/bc.pv?script=true&securevm=true&&blur=false&vm=true&poll=65000&swidth=1280&sheight=1024&sdpi=96&url=https%3A%2F%2Fwww.iccu.com%2F&wdid=877059778254640396&1669305305563&tabIdentifier=4451417031505030677&clientScheme=https&visitorTrackingAllowed=true&visitorToken=7001573921633140736&_bcvm_vrid_=true&_bcvm_vid_combined=1669305305565Sundefined&_bcvm_vrid_combined=1669305305565Sundefined&&hasbutton=false&fcbdid=878631552904021173&tcwdid=0.38032303841028603,878631542303705341,1910685051822057888, HTTP/1.1
Host: vms.boldchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Cookie: bc.visitor_token=7001573921633140736
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Origin-Agent-Cluster: ?0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM", policyref="http://my.boldchat.com/w3c/p3p.xml"
Set-Cookie: bc-visitor-id=877059778254640396=879569674123031871TA8145AD3719FEA18833CBAA07CA50BA229E870E900014362E91A57FE3195913FD586D6204A9C62419735CC1D274E610D4D440E2DAE3A851393D14069F1D006FF; Domain=.boldchat.com; Expires=Fri, 24-Nov-2023 15:55:06 GMT; Path=/; Secure; HttpOnly; SameSite=None
bc-visit-id=877059778254640396=879569674495705351TF193B67A637A9B0F422F1A99C23123844EC9398A67F0790CE62641CFB1BE101F638E3AACCB726AC1AB4000FD2A4BC6BBBA7C44E7CEF8E03748E3123FB8473F6E; Domain=.boldchat.com; Path=/; Secure; HttpOnly; SameSite=None
X-Boldcenter-PageViewID: 879569674325331102
X-Boldcenter-VisitID: 879569674495705351
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Date: Thu, 24 Nov 2022 15:55:05 GMT
Server: BoldChat/8006
X-Content-Type-Options: nosniff
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dc118bae963b381ce5450890130ecf15
9355a16a81b11e024dd2c5c0024aba1121fff925
cb5bc2cc49e05c133434eeb725690b3e32a0d3c6b75074582f941eee3bf7e1c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9828
x-amzn-requestid: bf2f8429-416d-40d4-a237-7593ee26c27a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEv0KHywIAMFvtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e934d-349e1dcc595b1be906a83577;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bQcpPUgu6eN6PQeLMGWwBlf01iHj77_aXHjKmh8SH7HsWlUX6kipDg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:15:49 GMT
age: 63557
etag: "9355a16a81b11e024dd2c5c0024aba1121fff925"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 58a5f0c6e6b413091f1ffbf2bba6cb24
1b0ceded86b7596779729112aa5060a57756f6e0
ab910e7cd6c17af920a0ff679b62170e81e1c76894defe40d09cc5c8c7fac578
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=163386
Date: Thu, 24 Nov 2022 15:55:06 GMT
Etag: "637f62b2-1d7"
Expires: Sat, 26 Nov 2022 13:18:12 GMT
Last-Modified: Thu, 24 Nov 2022 12:25:22 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2VSQtXfGfExkMQBAKukyD_ltTBcLQutjaJ60CFQhub_8gql6kGIvng==
Age: 3170
s3.amazonaws.com/ps.projects/ICCU/sidebutton.png
52.216.241.182200 OK 3.1 kB URL HTTP/1.1 s3.amazonaws.com/ps.projects/ICCU/sidebutton.png
IP 52.216.241.182:0
File type PNG image data, 42 x 145, 8-bit/color RGBA, non-interlaced\012- data
Hash 1f479ca8e010b47d0c0e3c99fe34b634
96126d5b5c9727d69d57a5062e5dfbe9bbe096bb
49c466aaaa377fd22b50aacae04bd146a2198b639d67b5fd8f4bdcbba9d4a8f1
GET /ps.projects/ICCU/sidebutton.png HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: m42RCIP1Ph8zfGEJgQPAh9IfSjtw7N2i4+qelCXjiNIh6y7EbDSX6hvnBhb4JV3n2nv9OnTlheM=
x-amz-request-id: 9WRE2J60SF3VQVQ7
Date: Thu, 24 Nov 2022 15:55:07 GMT
Last-Modified: Thu, 23 Jan 2020 17:38:25 GMT
ETag: "1f479ca8e010b47d0c0e3c99fe34b634"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3094
tr.snapchat.com/collector/is_enabled?pids=4f35f424-49c8-4fe3-8e39-57f403fa9f72&tld=com
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/collector/is_enabled?pids=4f35f424-49c8-4fe3-8e39-57f403fa9f72&tld=com
IP 35.190.43.134:0
GET /collector/is_enabled?pids=4f35f424-49c8-4fe3-8e39-57f403fa9f72&tld=com HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.iccu.com
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:02 GMT
access-control-allow-origin: https://www.iccu.com
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.iccu.com/template/library/images/down-arrow.svg
54.214.206.138200 OK 0 B URL HTTP/2 www.iccu.com/template/library/images/down-arrow.svg
IP 54.214.206.138:0
GET /template/library/images/down-arrow.svg HTTP/1.1
Host: www.iccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/template/library/css/redolive.css?v=2022.4.12.1246
Cookie: PHPSESSID=ich2rtv6ee8vc0uf7dob914suj; _gcl_au=1.1.445993807.1669305301; _ga_37JPF553KD=GS1.1.1669305301.1.0.1669305301.60.0.0; _ga=GA1.1.1533794799.1669305301
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 15:55:01 GMT
content-type: image/svg+xml
vary: Accept-Encoding
server: Pagely-ARES/1.10.15
x-gateway-request-id: 95a31ca5a7c270c5acbf302648684ba4
last-modified: Thu, 30 Sep 2021 14:54:37 GMT
etag: W/"257-5cd37a02a8e41"
expires: Fri, 23 Dec 2022 18:16:35 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-gateway-cache-key: 1669227391.172||https|www.iccu.com|||/template/library/images/down-arrow.svg
x-gateway-cache-status: HIT
x-gateway-skip-cache: 0
content-encoding: gzip
X-Firefox-Spdy: h2
www.clarity.ms/tag/51qugbww3f
13.107.219.53200 OK 0 B URL HTTP/2 www.clarity.ms/tag/51qugbww3f
IP 13.107.219.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /tag/51qugbww3f HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iccu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=555b9212e74d4947983bc76d7db61f22.20221124.20231124; expires=Fri, 24 Nov 2023 15:55:03 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
x-cache: CONFIG_NOCACHE
x-azure-ref: 015N/YwAAAAB0R3R+bUNFSINrHPg4w5CuT1NMMjMxMDUwMjA0MDE5ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Thu, 24 Nov 2022 15:55:02 GMT
X-Firefox-Spdy: h2
iccuauth-pay.com/e48735b9e26f3452d86ce86d4cb4eb08/login.php?user=true
176.123.0.55302 Found 0 B URL HTTP/2 iccuauth-pay.com/e48735b9e26f3452d86ce86d4cb4eb08/login.php?user=true
IP 176.123.0.55:0
Analyzer Verdict Alert quad9 Sinkholed
GET /e48735b9e26f3452d86ce86d4cb4eb08/login.php?user=true HTTP/1.1
Host: iccuauth-pay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Thu, 24 Nov 2022 15:54:55 GMT
content-type: text/html; charset=UTF-8
location: https://href.li/?https://iccu.com/
x-powered-by: PHP/7.3.33
x-xss-protection: 1; mode=block, 1; mode=block
x-content-type-options: nosniff, nosniff
x-nginx-upstream-cache-status: BYPASS
x-server-powered-by: Engintron
X-Firefox-Spdy: h2
href.li/?https://iccu.com/
192.0.78.26200 OK 0 B URL HTTP/2 href.li/?https://iccu.com/
IP 192.0.78.26:0
GET /?https://iccu.com/ HTTP/1.1
Host: href.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 15:54:58 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-encoding: br
x-ac: 3.arn _dca BYPASS
X-Firefox-Spdy: h2