firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 31 Aug 2022 20:22:19 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1HTmjD6YKTB9HcxXXRjNtEZqFta4uSf3PKf1dNJaVqMxxrscAn21zA==
Age: 597
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 517693963cc46e7a35a054296d0edfd5
11dfcd7e118e5f8d31e664e56ac29c57f973b8b3
ece269e8b9be8a5839d75c1343823d68b96930c593c2e3e8d522999176ee3149
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7184
Expires: Wed, 31 Aug 2022 22:32:00 GMT
Date: Wed, 31 Aug 2022 20:32:16 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 31 Aug 2022 02:27:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lvxmDKdBiVvlE4QlYrigHVfdKvr1jLjSBPJgkeObxkuyLtEDI-KakA==
age: 65112
X-Firefox-Spdy: h2
www.visiblecollege.education/unsubscribe-wil.html
199.34.228.71301 Moved Permanently 474 B URL HTTP/1.1 www.visiblecollege.education/unsubscribe-wil.html
IP 199.34.228.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ed5d13b99f3ccbfe769f3fb3a81edd13
3790c91575d6fb6e6821b70a2cfdca0f30e7c512
cfa1de0eb7fdbea7ea24f3d32170d19a8a42cfd4430a3c009d97869fd77c9217
Analyzer Verdict Alert fortinet Phishing
GET /unsubscribe-wil.html HTTP/1.1
Host: www.visiblecollege.education
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 31 Aug 2022 20:32:16 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=www.visiblecollege.education
Vary: X-W-SSL,User-Agent
Location: https://www.visiblecollege.education/unsubscribe-wil.html
X-Host: grn14.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 474
Keep-Alive: timeout=10, max=54
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 20:32:16 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 31 Aug 2022 20:17:12 GMT
Expires: Wed, 31 Aug 2022 20:48:21 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: O-6mXwjuN1iNijFpNgWrijLPewVgL7dO97oW25pdRXFL30GYgPQHyg==
Age: 904
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8f824b3ce85b5f5f98c95948c4e5e18a
30b716f51028b62aae27aa84db24e6863504759d
de73314335511c83ca151b9759dd17ddec83bac46594e87d7b52ced4a7f5a19d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE73314335511C83CA151B9759DD17DDEC83BAC46594E87D7B52CED4A7F5A19D"
Last-Modified: Wed, 31 Aug 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 01 Sep 2022 02:32:16 GMT
Date: Wed, 31 Aug 2022 20:32:16 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83be4ca2ebb87af44323dd073807bc9e
3ef0ca2b0c351c7d1eb1b7f4daeba6453a632fc6
1ba9c4dbdbd577bf443bc6499ab1edb2e0ea3b382f529fdc2d98021276a3158b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6311
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:17 GMT
Last-Modified: Wed, 31 Aug 2022 18:47:06 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
www.visiblecollege.education/unsubscribe-wil.html
199.34.228.71200 OK 7.1 kB URL HTTP/1.1 www.visiblecollege.education/unsubscribe-wil.html
IP 199.34.228.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1663), with CRLF, LF line terminators
Hash b8841ab7828ae833424f322e69df1a49
aa4cebdad264f875f0b72f85a9946df61458f5ed
6be9944719969ebcf4a0120041954f5fb8c12e82367a54e66cc7ba6bc09ead69
Analyzer Verdict Alert fortinet Phishing
GET /unsubscribe-wil.html HTTP/1.1
Host: www.visiblecollege.education
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 20:32:17 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.visiblecollege.education
language=en; expires=Wed, 14-Sep-2022 20:32:17 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"546e8b3e7a334ff6a727112fb13181dc-gzip"
Content-Encoding: gzip
X-Host: grn94.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 7133
Keep-Alive: timeout=10, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
52.41.252.32101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.252.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HxcvBvG4EMQ7t8tQvP39Ow==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WUNWl0CLmPhREkV6K/S44WTu61U=
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1660841976&
151.101.85.46200 OK 33 kB URL HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1660841976&
IP 151.101.85.46:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (64997)
Hash 40ee71f2f2de93b9561845efa9a0cbbc
13451e3fb165d1ad524d9863d8344eab4a2fe353
41a33daf28fc89ce06f3c6a6029d078c20a0f42f07d6ec3dc7127d206dcec5fe
GET /js/lang/en/stl.js?buildTime=1660841976& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Thu, 18 Aug 2022 16:12:50 GMT
etag: "62fe6502-2c44e"
expires: Thu, 01 Sep 2022 17:02:47 GMT
cache-control: max-age=1209600
x-host: grn94.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 Aug 2022 20:32:17 GMT
age: 1135770
x-served-by: cache-sjc10075-SJC, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 17
x-timer: S1661977937.386488,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 32802
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 888b942029507a51149d121a3240e9d6
93590a3ac3a943506798dba597335cb144a5795d
7d358a347c38b06733ae7e7eae5a02f583d0d3db2a241bf427dff2588d7c6c1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn2.editmysite.com/css/old/fancybox.css?1660841976
151.101.85.46200 OK 1.2 kB URL HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1660841976
IP 151.101.85.46:0
File type ASCII text, with very long lines (3910)
Hash b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
GET /css/old/fancybox.css?1660841976 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 18 Aug 2022 16:13:51 GMT
etag: "62fe653f-f47"
expires: Thu, 01 Sep 2022 17:02:52 GMT
cache-control: max-age=1209600
x-host: grn102.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 Aug 2022 20:32:17 GMT
age: 1135765
x-served-by: cache-sjc10033-SJC, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661977937.389026,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1218
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a7aab826beb3533ba03cfe6bab46f240
000c9a63535a3c7c9cadaea7630f1f1443399d56
5fc3e2785f52dbe5fa0e7bbe8d9bfa8476b574a3357df2374ea991e049a1d73b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 888b942029507a51149d121a3240e9d6
93590a3ac3a943506798dba597335cb144a5795d
7d358a347c38b06733ae7e7eae5a02f583d0d3db2a241bf427dff2588d7c6c1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn2.editmysite.com/css/social-icons.css?buildtime=1660841976
151.101.85.46200 OK 1.6 kB URL HTTP/2 cdn2.editmysite.com/css/social-icons.css?buildtime=1660841976
IP 151.101.85.46:0
File type ASCII text, with very long lines (13080)
Hash 39cb05482eb7a521b7f33e903c3513d0
daae3865f4a23e458d105382b31cc4590db22660
cc716af36ce198342cd167222052c31d770acae89acd54189c6c72d57d2cda57
GET /css/social-icons.css?buildtime=1660841976 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 18 Aug 2022 16:13:45 GMT
etag: W/"62fe6539-3319"
expires: Thu, 01 Sep 2022 17:02:48 GMT
cache-control: max-age=1209600
x-host: grn64.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 Aug 2022 20:32:17 GMT
age: 1135768
x-served-by: cache-sjc10041-SJC, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1661977937.393723,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1638
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1660841976
151.101.85.46200 OK 159 kB URL HTTP/2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1660841976
IP 151.101.85.46:0
File type ASCII text, with very long lines (32007)
Size 159 kB (158930 bytes)
Hash f740fdfbcf394f270a9b176029fa6f37
5f20c49627104282744508eb0278d7185128532e
3021f0f944c9bd7c6e995601f25b3d970e0bd41f9a411f08b2871bb5415a8707
Analyzer Verdict Alert fortinet Malware
GET /js/site/main-customer-accounts-site.js?buildTime=1660841976 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Thu, 18 Aug 2022 16:14:12 GMT
etag: "62fe6554-8250f"
expires: Thu, 01 Sep 2022 17:02:47 GMT
cache-control: max-age=1209600
x-host: grn117.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 Aug 2022 20:32:17 GMT
age: 1135769
x-served-by: cache-sjc10079-SJC, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661977937.390833,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 158930
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
142.250.74.74200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP 142.250.74.74:0
File type ASCII text, with very long lines (65483)
Hash a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 Aug 2022 09:37:50 GMT
expires: Sun, 27 Aug 2023 09:37:50 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 384867
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 888b942029507a51149d121a3240e9d6
93590a3ac3a943506798dba597335cb144a5795d
7d358a347c38b06733ae7e7eae5a02f583d0d3db2a241bf427dff2588d7c6c1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.visiblecollege.education/files/theme/MutationObserver.js
199.34.228.71200 OK 6.8 kB URL HTTP/1.1 www.visiblecollege.education/files/theme/MutationObserver.js
IP 199.34.228.71:0
Hash a502a64ac17dab318a72b5c6f667e5d6
9b623c5cdc2c288649ff13504131ea2c382e700d
b0d53c00940847c4638accf26f204ef4569affa4a686ebcc5d3cc87d1697aa9d
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/MutationObserver.js HTTP/1.1
Host: www.visiblecollege.education
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-wil.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 20:32:17 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 17 May 2022 14:16:26 GMT
x-rgw-object-type: Normal
ETag: W/"e52201e96af18dd02c85eb627c843491"
x-amz-request-id: tx000000000000001c7191d-0062848adb-b9fbc63-sfo1
X-Storage-Bucket: z3974
X-Storage-Object: 397452d9f6a2ea6a2135b45c9e40139c68ac6661f3bab4413e7299586ccb408a
X-Host: grn79.sf2p.intern.weebly.net
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 888b942029507a51149d121a3240e9d6
93590a3ac3a943506798dba597335cb144a5795d
7d358a347c38b06733ae7e7eae5a02f583d0d3db2a241bf427dff2588d7c6c1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a7aab826beb3533ba03cfe6bab46f240
000c9a63535a3c7c9cadaea7630f1f1443399d56
5fc3e2785f52dbe5fa0e7bbe8d9bfa8476b574a3357df2374ea991e049a1d73b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc8ab005623fccad97ec544c1b7ff472
afb4a818db5137fc07b986aa4e5a62ff0032096b
20e90eaeefc4c5e091fd10088cbd47d7774010d1ec9bfa9e00b023919ff47c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-P3L37W
142.250.74.72200 OK 79 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-P3L37W
IP 142.250.74.72:0
File type ASCII text, with very long lines (61276)
Hash 8096239562cf8da340f99eba913c88f9
593eb768c77bdc2dfd841ad108f36cd9ddb5520a
bbb5daed79d887e84e0ccec480be77d212ccca3f007293a96260e0ed4efc37ae
GET /gtm.js?id=GTM-P3L37W HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 31 Aug 2022 20:32:17 GMT
expires: Wed, 31 Aug 2022 20:32:17 GMT
cache-control: private, max-age=900
last-modified: Wed, 31 Aug 2022 19:24:48 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79165
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc8ab005623fccad97ec544c1b7ff472
afb4a818db5137fc07b986aa4e5a62ff0032096b
20e90eaeefc4c5e091fd10088cbd47d7774010d1ec9bfa9e00b023919ff47c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.visiblecollege.education/files/theme/plugins.js?1654106271
199.34.228.71200 OK 16 kB URL HTTP/1.1 www.visiblecollege.education/files/theme/plugins.js?1654106271
IP 199.34.228.71:0
Hash 0f7b71024ebd304696e6b1f295e8793d
d4a273b8009009285b394cdc9f5b8baf6d1c8e1b
e4c4bad96ca6be1f0ac691edab1fa9b51dc2f84fdc32cf1a665b4c71784c2cba
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/plugins.js?1654106271 HTTP/1.1
Host: www.visiblecollege.education
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-wil.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 20:32:17 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 24 Mar 2022 16:13:47 GMT
x-rgw-object-type: Normal
ETag: W/"d86674e2fb0fe652cbe72550ff705154"
x-amz-request-id: tx00000000000000218c261-006284ddd3-b9fbc63-sfo1
X-Storage-Bucket: z191b
X-Storage-Object: 191b89e359f86e713b98445e983013d20d8130d001444e0c99098d219a0853f5
X-Host: grn139.sf2p.intern.weebly.net
Content-Encoding: gzip
www.visiblecollege.education/files/theme/custom-1.js?1654106271
199.34.228.71200 OK 4.1 kB URL HTTP/1.1 www.visiblecollege.education/files/theme/custom-1.js?1654106271
IP 199.34.228.71:0
Hash 7960b13ef773e1c8965d668d5b212834
35f276ab77c975720b8cfa8eeb0ca8cc297725ed
1f897564d4aacb23ab3203c848e47b42417156d404d065c1e81d6c3bca0cccc4
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/custom-1.js?1654106271 HTTP/1.1
Host: www.visiblecollege.education
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-wil.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 20:32:17 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 03 Dec 2021 02:31:47 GMT
x-rgw-object-type: Normal
ETag: W/"beb222c03c3fdd6af710530b7df1c408"
x-amz-request-id: tx000000000000001dfa612-006284a5eb-b9fbc64-sfo1
X-Storage-Bucket: z6fce
X-Storage-Object: 6fceda9df3549c1857609bca8bb9bd132aaef3ec76adeb82b0a62c698cae0011
X-Host: grn84.sf2p.intern.weebly.net
Content-Encoding: gzip
www.visiblecollege.education/files/main_style.css?1661010972
199.34.228.71200 OK 7.6 kB URL HTTP/1.1 www.visiblecollege.education/files/main_style.css?1661010972
IP 199.34.228.71:0
File type assembler source, ASCII text, with very long lines (815)
Hash c642338b15c7917d49b6c0e6e5c97c7c
31b297149ee74acf06f6a74f9375e1f90b580b81
ab6c49656ac60ee1850255e148033ff914a04e303835c694da54da227284486d
Analyzer Verdict Alert fortinet Phishing
GET /files/main_style.css?1661010972 HTTP/1.1
Host: www.visiblecollege.education
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-wil.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 20:32:17 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu134.sf2p.intern.weebly.net
Content-Encoding: gzip
www.visiblecollege.education/files/templateArtifacts.js?1661010972
199.34.228.71200 OK 1.6 kB URL HTTP/1.1 www.visiblecollege.education/files/templateArtifacts.js?1661010972
IP 199.34.228.71:0
File type exported SGML document, ASCII text, with very long lines (1630)
Hash e0836e8203c22b8e4086f27e91e86f5a
28235e77f5a895c8cd411aff4a6ef4e6f7d419c2
32dbc4a2eeca39a57d35670f00e2cf59e03c279521e47506c56c5c36d8b664b6
Analyzer Verdict Alert fortinet Phishing
GET /files/templateArtifacts.js?1661010972 HTTP/1.1
Host: www.visiblecollege.education
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-wil.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 20:32:17 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu71.sf2p.intern.weebly.net
Content-Encoding: gzip
www.visiblecollege.education/files/theme/jquery.trend.js?1654106271
199.34.228.71200 OK 3.8 kB URL HTTP/1.1 www.visiblecollege.education/files/theme/jquery.trend.js?1654106271
IP 199.34.228.71:0
Hash 4beccebe0a060b2b2c43de5c2d4512ef
250a779dd017877b9f360b264cf072d9e87974ff
446f48f512ecc0b771af3c21a3036de3a1c5740d1e6bdbb61448834326d0c738
GET /files/theme/jquery.trend.js?1654106271 HTTP/1.1
Host: www.visiblecollege.education
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-wil.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 20:32:17 GMT
Content-Type: application/javascript
Content-Length: 3775
Connection: keep-alive
Last-Modified: Thu, 10 Feb 2022 08:22:06 GMT
x-rgw-object-type: Normal
ETag: "4beccebe0a060b2b2c43de5c2d4512ef"
x-amz-request-id: tx000000000000001ab0c70-0062847889-b9fbc77-sfo1
X-Storage-Bucket: z446f
X-Storage-Object: 446f48f512ecc0b771af3c21a3036de3a1c5740d1e6bdbb61448834326d0c738
X-Host: blu134.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.visiblecollege.education/files/theme/jquery.pxuMenu.js?1654106271
199.34.228.71200 OK 3.7 kB URL HTTP/1.1 www.visiblecollege.education/files/theme/jquery.pxuMenu.js?1654106271
IP 199.34.228.71:0
File type HTML document, ASCII text
Hash ac373d716afe4270df40f60417b0f418
aba148148c771bb66b0b4aeab6eac8eb40352745
f75570c56743e8c705cb06f5f1f9b1f8f2cc13119f5e2acda2f3bb8d987de94a
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/jquery.pxuMenu.js?1654106271 HTTP/1.1
Host: www.visiblecollege.education
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-wil.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 20:32:17 GMT
Content-Type: application/javascript
Content-Length: 3697
Connection: keep-alive
Last-Modified: Mon, 25 Apr 2022 13:50:18 GMT
x-rgw-object-type: Normal
ETag: "ac373d716afe4270df40f60417b0f418"
x-amz-request-id: tx000000000000001b8b3f3-0062847bc3-b9fbc29-sfo1
X-Storage-Bucket: zf755
X-Storage-Object: f75570c56743e8c705cb06f5f1f9b1f8f2cc13119f5e2acda2f3bb8d987de94a
X-Host: grn127.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.visiblecollege.education/files/theme/jquery.revealer.js?1654106271
199.34.228.71200 OK 2.8 kB URL HTTP/1.1 www.visiblecollege.education/files/theme/jquery.revealer.js?1654106271
IP 199.34.228.71:0
Hash c22ab67199a33d876512504cda4ff55b
36e96eae4644b6028532974fe5186a072792cb37
c4cd233d3d6b0f184e99d5017e521b4c6f9106d3e546864a8ba516189b934311
GET /files/theme/jquery.revealer.js?1654106271 HTTP/1.1
Host: www.visiblecollege.education
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-wil.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 20:32:17 GMT
Content-Type: application/javascript
Content-Length: 2828
Connection: keep-alive
Last-Modified: Tue, 26 Oct 2021 13:57:33 GMT
x-rgw-object-type: Normal
ETag: "c22ab67199a33d876512504cda4ff55b"
x-amz-request-id: tx0000000000000000443b0-006258b624-4d62951-las
X-Storage-Bucket: zc4cd
X-Storage-Object: c4cd233d3d6b0f184e99d5017e521b4c6f9106d3e546864a8ba516189b934311
X-Host: blu25.sf2p.intern.weebly.net
Accept-Ranges: bytes
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.85.46200 OK 26 kB URL HTTP/2 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (2512)
Hash 234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 17 Aug 2022 21:50:22 GMT
etag: "62fd629e-124fe"
expires: Thu, 01 Sep 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: grn5.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 Aug 2022 20:32:18 GMT
age: 1166017
x-served-by: cache-sjc10027-SJC, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 12498
x-timer: S1661977938.110900,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2
www.visiblecollege.education/uploads/1/4/1/4/141422211/published/vm-semi-stacked-logo-2.png?1649639724
199.34.228.71200 OK 4.1 kB URL HTTP/1.1 www.visiblecollege.education/uploads/1/4/1/4/141422211/published/vm-semi-stacked-logo-2.png?1649639724
IP 199.34.228.71:0
File type PNG image data, 202 x 51, 8-bit gray+alpha, non-interlaced\012- data
Hash 66c352d49cce98a2eaeed0ab566c5d46
d491ffee50e644643cd6938387c9fd742b7c9a68
37f9029e6eccd6bfc5a89b408930554ed5c20cc1b18a4dc55c4e6ac89c7e27aa
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/1/4/141422211/published/vm-semi-stacked-logo-2.png?1649639724 HTTP/1.1
Host: www.visiblecollege.education
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-wil.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 20:32:18 GMT
Content-Type: image/png
Content-Length: 4137
Connection: keep-alive
Last-Modified: Mon, 11 Apr 2022 01:15:33 GMT
x-rgw-object-type: Normal
ETag: "66c352d49cce98a2eaeed0ab566c5d46"
x-amz-request-id: tx000000000000002d8782d-0062c45ca3-c0351c8-sfo1
X-Storage-Bucket: z37f9
X-Storage-Object: 37f9029e6eccd6bfc5a89b408930554ed5c20cc1b18a4dc55c4e6ac89c7e27aa
X-Host: grn127.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.visiblecollege.education/uploads/1/4/1/4/141422211/published/vm-semi-stacked-logo-2.png?1649639734
199.34.228.71200 OK 4.1 kB URL HTTP/1.1 www.visiblecollege.education/uploads/1/4/1/4/141422211/published/vm-semi-stacked-logo-2.png?1649639734
IP 199.34.228.71:0
File type PNG image data, 202 x 51, 8-bit gray+alpha, non-interlaced\012- data
Hash 66c352d49cce98a2eaeed0ab566c5d46
d491ffee50e644643cd6938387c9fd742b7c9a68
37f9029e6eccd6bfc5a89b408930554ed5c20cc1b18a4dc55c4e6ac89c7e27aa
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/4/1/4/141422211/published/vm-semi-stacked-logo-2.png?1649639734 HTTP/1.1
Host: www.visiblecollege.education
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-wil.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 20:32:18 GMT
Content-Type: image/png
Content-Length: 4137
Connection: keep-alive
Last-Modified: Mon, 11 Apr 2022 01:15:33 GMT
x-rgw-object-type: Normal
ETag: "66c352d49cce98a2eaeed0ab566c5d46"
x-amz-request-id: tx000000000000002c0fad4-0062c42ed6-bfe27ea-sfo1
X-Storage-Bucket: z37f9
X-Storage-Object: 37f9029e6eccd6bfc5a89b408930554ed5c20cc1b18a4dc55c4e6ac89c7e27aa
X-Host: blu27.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 1.0 kB IP 142.250.74.3:0
File type gzip compressed data, max compression\012- data
Hash f6631e09ea64d711fb61d07bdc41a895
ef9bc9f9c48946610d9b3f40a0b01d0a985c1119
31b490a665246b8b89b7e5379b2244ee00257df1b57ad50081b10178f1322b13
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e1a93e8c1857c6d3b244d14ff166ad5f
b85467e5e77a51099b6f25527c9885c75aeef344
8978f8d4b0ab30408ef69c42dcb528422b7bbabc2a87971d5aeb6b3080fafb4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/cabin/v26/u-4X0qWljRw-PfU81xCKCpdpbgZJl6XFpfEd7eA9BIxxkV2EH7alxw.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/cabin/v26/u-4X0qWljRw-PfU81xCKCpdpbgZJl6XFpfEd7eA9BIxxkV2EH7alxw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15476, version 1.0\012- data
Hash 083f5cafe748b8ac91823b36986d7fda
0d763699e5bce633aa6adc03370b8630b87c1b31
a3d8afcbc68d3ae65312e50ce252f5eb4cb817d3fe39452bd37a76f896ab5921
GET /s/cabin/v26/u-4X0qWljRw-PfU81xCKCpdpbgZJl6XFpfEd7eA9BIxxkV2EH7alxw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15476
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 19:58:33 GMT
expires: Wed, 30 Aug 2023 19:58:33 GMT
cache-control: public, max-age=31536000
age: 88425
last-modified: Fri, 24 Jun 2022 18:41:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2
142.250.74.163200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 10172, version 1.0\012- data
Hash 58e5c92fd1a1fc89b8ca6d74ce4793b8
337771c465778aeed6de18195e0cbe9d9098d299
6e059f38d9d643cd149fa02dfd97d6844f9b106198e027f55e2fe1e9a1428acf
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10172
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 21:13:38 GMT
expires: Tue, 29 Aug 2023 21:13:38 GMT
cache-control: public, max-age=31536000
age: 170320
last-modified: Mon, 18 Jul 2022 19:23:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.visiblecollege.education/uploads/1/4/1/4/141422211/editor/zschool-logo_3.png
199.34.228.71200 OK 2.6 kB URL HTTP/1.1 www.visiblecollege.education/uploads/1/4/1/4/141422211/editor/zschool-logo_3.png
IP 199.34.228.71:0
File type PNG image data, 93 x 47, 8-bit/color RGBA, non-interlaced\012- data
Hash beeed01200a56489dbdb427baa446265
9636c0f125aa00527b77c2861051a39768de3800
c01fd7d4ccca14aeef12e3fc93be4a48d5b060032907f4431869b2292656038b
GET /uploads/1/4/1/4/141422211/editor/zschool-logo_3.png HTTP/1.1
Host: www.visiblecollege.education
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-wil.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 20:32:18 GMT
Content-Type: image/png
Content-Length: 2600
Connection: keep-alive
Last-Modified: Tue, 18 Jan 2022 19:27:37 GMT
x-rgw-object-type: Normal
ETag: "beeed01200a56489dbdb427baa446265"
x-amz-request-id: tx00000000000000204c078-006284cf8e-b9fbc7f-sfo1
X-Storage-Bucket: zc01f
X-Storage-Object: c01fd7d4ccca14aeef12e3fc93be4a48d5b060032907f4431869b2292656038b
X-Host: blu24.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e1a93e8c1857c6d3b244d14ff166ad5f
b85467e5e77a51099b6f25527c9885c75aeef344
8978f8d4b0ab30408ef69c42dcb528422b7bbabc2a87971d5aeb6b3080fafb4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sc-static.net/scevent.min.js
54.230.82.240200 OK 7.9 kB URL HTTP/2 sc-static.net/scevent.min.js
IP 54.230.82.240:0
File type ASCII text, with very long lines (22702), with no line terminators
Hash 8017b8af70af76a9e0d8249a8e360db4
f1a1b2fa8d6ca01469cdee79ebc8f8d91bb03a54
1ecf4b2988b08fb2daecfd7c318f60b4a7aaf1463f846a448ac96242aefd182d
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 7905
server: CloudFront
date: Wed, 31 Aug 2022 20:32:18 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Thu, 01 Sep 2022 19:51:07 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UXpnz5fL4bOIaDh-hJUYceljHAqDi3aR8pK5y-q-GowxfCaP3AhpUg==
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22af27f8b6812d36e3530cdf732500a2
e161cb30fdeadf905de0e3ee136b62d700fa6858
3334eea94c127c78d4e731a18fab051ee378c9422a83ddfa19791c1b6315c815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3334EEA94C127C78D4E731A18FAB051EE378C9422A83DDFA19791C1B6315C815"
Last-Modified: Tue, 30 Aug 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9660
Expires: Wed, 31 Aug 2022 23:13:18 GMT
Date: Wed, 31 Aug 2022 20:32:18 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 71e5b9bf68ecc27211f5598597b84c97
6e37c4d8ef2bd08dd0df2fdfc47620b02d82fb40
d325b14e8a1461472b9d7f1a078187d349e100415ddb3ade7ada80159ef1441c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
siteimproveanalytics.com/js/siteanalyze_66356305.js
172.67.128.109200 OK 9.0 kB URL HTTP/2 siteimproveanalytics.com/js/siteanalyze_66356305.js
IP 172.67.128.109:0
File type ASCII text, with very long lines (27082), with no line terminators
Hash 5b30c591bbcda88bf5386496e77866c6
4abbcfa6116aaab64e2408eba886e79f1e7032fe
9ae07b2b38d2c9735423d244c8cd7edd5f1e8c8a344a215a415420c8cdc5c370
GET /js/siteanalyze_66356305.js HTTP/1.1
Host: siteimproveanalytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 20:32:18 GMT
content-type: application/javascript; charset=utf-8
content-length: 8986
x-amz-id-2: cxOa+ilAR08D8n2bEdIHoiwtxr0XWLNVk8uOHVrapKMmr8kL0J1JHnmluFj5BrEiFE5OQzIF2eI=
x-amz-request-id: ZPHFX9SJNZH0KPNH
cache-control: max-age=86400, no-transform
content-encoding: gzip
last-modified: Wed, 06 Jul 2022 13:38:43 GMT
etag: "5b30c591bbcda88bf5386496e77866c6"
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OeazeUtUYG77J9hdWED5Fmf3BHgL8a6NeNTQbLDvtV757N0Bv%2FalunlBpE2ZAjO08IUrmMMJ%2BERph4n1N6OM9bgm%2BlBDHPqQJWyN2G0LsPzK43cz3YCmeMHcNNGAuZ4PQU1fEcwb92OBljA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743888e279ddb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83733c6c649932b543b8daa7fef24485
67d1d6a7ac3aef1f31d2976ba7850e26592d4719
e6351e87ae437c87d64167c5e7abbf3993e32d88bbf25f4aee0a24a138343a72
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2970
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:18 GMT
Last-Modified: Wed, 31 Aug 2022 19:42:48 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83733c6c649932b543b8daa7fef24485
67d1d6a7ac3aef1f31d2976ba7850e26592d4719
e6351e87ae437c87d64167c5e7abbf3993e32d88bbf25f4aee0a24a138343a72
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2970
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:18 GMT
Last-Modified: Wed, 31 Aug 2022 19:42:48 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
9188115.fls.doubleclick.net/activityi;src=9188115;type=invmedia;cat=georg0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=6874465348675.873?
142.250.74.70200 OK 403 B URL HTTP/2 9188115.fls.doubleclick.net/activityi;src=9188115;type=invmedia;cat=georg0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=6874465348675.873?
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (533), with no line terminators
Hash 13772a667d62f7b8028cea9ea509d45d
89169d1ca378dbd7095266dfe3fee331c91551c2
bdcab36de7b5b7b1a7befac39b9f55ae223184aefc461c7b416525b2750216d2
GET /activityi;src=9188115;type=invmedia;cat=georg0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=6874465348675.873? HTTP/1.1
Host: 9188115.fls.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 31 Aug 2022 20:32:18 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 403
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 31-Aug-2022 20:47:18 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14348
Expires: Thu, 01 Sep 2022 00:31:26 GMT
Date: Wed, 31 Aug 2022 20:32:18 GMT
Connection: keep-alive
tr.snapchat.com/cm/i?pid=5574edef-da44-408c-96f2-796f6a84a753&u_scsid=eef59b41-fd36-4643-9f57-93a11ac4642e&u_sclid=8e803abd-7184-481c-a475-3d5bdb89226e
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/cm/i?pid=5574edef-da44-408c-96f2-796f6a84a753&u_scsid=eef59b41-fd36-4643-9f57-93a11ac4642e&u_sclid=8e803abd-7184-481c-a475-3d5bdb89226e
IP 35.190.43.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/i?pid=5574edef-da44-408c-96f2-796f6a84a753&u_scsid=eef59b41-fd36-4643-9f57-93a11ac4642e&u_sclid=8e803abd-7184-481c-a475-3d5bdb89226e HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 20:32:18 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.snapchat.com/p
35.190.43.134200 OK 68 B IP 35.190.43.134:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
POST /p HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 471
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 20:32:18 GMT
access-control-allow-origin: https://www.visiblecollege.education
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBgQ0AIAgDsItInBBg5yjyBcfbskmjtjytEsuCZHuIcS8/8It7ZuAORlBz1gc8SDFZMgAAAA==;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14348
Expires: Thu, 01 Sep 2022 00:31:26 GMT
Date: Wed, 31 Aug 2022 20:32:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6b2c036e67f8c39c136f6c69b0922eb1
98e27f0dafd7b1b49e159ee038b41a811096a2d0
9dc9e00e6f63a22dd85f54ba26326a9733f6c1d7a19c7b1636f14fca2722e6eb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8009
x-amzn-requestid: 6d716dae-efa3-449a-a505-fb5f3d99c2df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XsvlaFEaoAMFwDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e92ef-708228ce7e1fb3cb770cb490;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 22:45:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 03y3JoF38R7gjBYS3gHyOsivob68ykKlwvAIFEwiat2FjYfKWh-afA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 00:33:08 GMT
age: 71950
etag: "98e27f0dafd7b1b49e159ee038b41a811096a2d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14348
Expires: Thu, 01 Sep 2022 00:31:26 GMT
Date: Wed, 31 Aug 2022 20:32:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9843fcd5eb49c75b942e3dd042f3a931
ff6de19656bc0ee5649c1367448116a9576a690a
8e9679e05e1b2194e44a962a19f226793b5d7fc2334df64f8dd560498532ad3a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6266
x-amzn-requestid: 82231f45-328a-479a-b346-108fe6a0c190
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjU6bEP5IAMFaGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630acea8-6545154a39b44bb04d3bc18c;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 02:10:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P_a-E2SVJUpYrlOzoX9kDtHoAeyEpcqEXau-5wDupR-9AAk3gQgaHQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 06:17:12 GMT
age: 51306
etag: "ff6de19656bc0ee5649c1367448116a9576a690a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F136de3c9-bb24-461a-b29f-fe7b7336b28c.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F136de3c9-bb24-461a-b29f-fe7b7336b28c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db8548465788b6e73fc19c63575f7d32
0502c55da685e6a5bd3506b55cd96d639346ed82
c125a0828629e46996832fd04555f503e62c0dc0e8506f069487ba8ebb2db4a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F136de3c9-bb24-461a-b29f-fe7b7336b28c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7582
x-amzn-requestid: 65712628-13c0-42e2-a090-b21fde8bd026
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xg0rgE_hIAMF1ng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309ce49-5feadfad6c342ae96a5a26d7;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 07:56:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: AaCY2PsUVPfvdDwb7itAqcRV9NZPkDxFs1QEiYZ_FjTNp9sH4bn5rg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 05:43:06 GMT
age: 53352
etag: "0502c55da685e6a5bd3506b55cd96d639346ed82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F97b6b2d0-435f-4820-aacb-843f0a7a375e.png
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F97b6b2d0-435f-4820-aacb-843f0a7a375e.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5f4b18b62ff275079a412349f454f66c
3638ba3ef38c4aaeb31a12bb61aaf90034915954
d825ce440863c9a53cee3a8d0f2ca2d41e2e9176ee1234d3dd0ae861f047b031
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F97b6b2d0-435f-4820-aacb-843f0a7a375e.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11115
x-amzn-requestid: 11b741c1-55f5-4c28-bbf9-bd828ed204b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xkns8G8cIAMFRAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b531f-1d56c9401b90dc206b010d08;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 11:35:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4CIqSMm5XXWISAncsk_wwHBlIO6Ll4BH3FT6tN7qEM1EDtFLr7_RLA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 04:03:58 GMT
age: 59300
etag: "3638ba3ef38c4aaeb31a12bb61aaf90034915954"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 414ff8012191c933c8e899d8747fc7e4
e27ebe1c5805da5ad35c3c2103080eecde9324ac
2d7821e987f1cc3049d4d9454091f26ca2e1b3de886a8b12fde553de902c6ab4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 71e5b9bf68ecc27211f5598597b84c97
6e37c4d8ef2bd08dd0df2fdfc47620b02d82fb40
d325b14e8a1461472b9d7f1a078187d349e100415ddb3ade7ada80159ef1441c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4a0e321-c414-4af7-9075-ed1965872194.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4a0e321-c414-4af7-9075-ed1965872194.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 084c7b9f1244ec72236ab517787af1e2
18d7ffa17365f5f43f3ed702ef2ba80d9a7a12cb
2ea7697ebc332bec201ffeaed54a738869b6c64784916574db2c7e6a7990fb3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4a0e321-c414-4af7-9075-ed1965872194.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5911
x-amzn-requestid: ff3b12df-1798-40bb-bf02-ad198710da96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XdcGHFGYoAMFw_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630873c0-00cd86e97d0687c702a49ecb;Sampled=0
x-amzn-remapped-date: Fri, 26 Aug 2022 07:18:24 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: G0AjEjILxGDk5d7Vj_VpTvQ5wnjh4bNOl_ogtsJlDYSa3ZxfOlF78Q==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 18:11:34 GMT
age: 8444
etag: "18d7ffa17365f5f43f3ed702ef2ba80d9a7a12cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c3b7580a37e6eb7e5bd18491f1d4dd6
288b82ad8f924eb9570ae1c55da84d041f862366
046d1ef76448c53446068ef5f8315b7299484996cdebfd9d1e749b4ded9c7d3c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5079
x-amzn-requestid: 3b19c77a-2e9b-499f-890b-36fc4ee72ba7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XslOVEtZIAMFv1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e825b-01b7b71617b59f7414a0e5e5;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 21:34:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: zYT0vF7Bxa5m84D12jI2w_A-MzR3wIMBOb0ubTEdNMlpYUes5aYdlQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:48:04 GMT
age: 81854
etag: "288b82ad8f924eb9570ae1c55da84d041f862366"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83733c6c649932b543b8daa7fef24485
67d1d6a7ac3aef1f31d2976ba7850e26592d4719
e6351e87ae437c87d64167c5e7abbf3993e32d88bbf25f4aee0a24a138343a72
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2970
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:18 GMT
Last-Modified: Wed, 31 Aug 2022 19:42:48 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
region1.google-analytics.com/g/collect?v=2&tid=G-VY2RPVKG9S>m=2oe8t0&_p=1256559583&cid=1180514187.1661977938&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1661977937&sct=1&seg=0&dl=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-wil.html&dt=Unsubscribe%20-%20WIL%20-%20Visible%20Music%20College&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-VY2RPVKG9S>m=2oe8t0&_p=1256559583&cid=1180514187.1661977938&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1661977937&sct=1&seg=0&dl=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-wil.html&dt=Unsubscribe%20-%20WIL%20-%20Visible%20Music%20College&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-VY2RPVKG9S>m=2oe8t0&_p=1256559583&cid=1180514187.1661977938&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1661977937&sct=1&seg=0&dl=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-wil.html&dt=Unsubscribe%20-%20WIL%20-%20Visible%20Music%20College&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.visiblecollege.education
date: Wed, 31 Aug 2022 20:32:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/i/src=9188115;type=invmedia;cat=georg0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=6874465348675.873;~oref=https://www.visiblecollege.education/
142.250.74.130200 OK 402 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=9188115;type=invmedia;cat=georg0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=6874465348675.873;~oref=https://www.visiblecollege.education/
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (532), with no line terminators
Hash e8a7ea45fe94c49d6c0881bd82be6e69
096c16571f60c90b558ae4b3974163071d7f2ed1
20161d80ab853ed4c769b0097e4a4e5be4c28e4348c32638be08b880b3629953
GET /ddm/fls/i/src=9188115;type=invmedia;cat=georg0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=6874465348675.873;~oref=https://www.visiblecollege.education/ HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9188115.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 31 Aug 2022 20:32:18 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 402
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 414ff8012191c933c8e899d8747fc7e4
e27ebe1c5805da5ad35c3c2103080eecde9324ac
2d7821e987f1cc3049d4d9454091f26ca2e1b3de886a8b12fde553de902c6ab4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.tiktok.com/i18n/pixel/config.js?sdkid=C44PDBJR2IL96OOAVENG&hostname=www.visiblecollege.education
104.84.152.241200 OK 373 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=C44PDBJR2IL96OOAVENG&hostname=www.visiblecollege.education
IP 104.84.152.241:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (321)
Hash dbf8b8b528034d6f3f76563139979b80
8e804266bbd5141ecb3750a7a6e697566a137224
e46115a1ec3cd38a5c284668d3a42e42cc3c2f3eef6c75724e7e0826ca02b0a8
GET /i18n/pixel/config.js?sdkid=C44PDBJR2IL96OOAVENG&hostname=www.visiblecollege.education HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20220831203218EFB9BA481E7FF8B5C409
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61e38a0d78b3a2a780a7134bf39a63bb315324454148d86d560fdd4164616ecf1ce4b08a25bc4d2191c5ad20e7be3df6ab674b7a275bee37d6cb74815964598c482da3e5a909b9108088adbff827105e6dc
content-encoding: gzip
content-length: 373
x-origin-response-time: 11,23.222.0.206
x-akamai-request-id: e112db09.5fb74bf
expires: Wed, 31 Aug 2022 20:32:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 31 Aug 2022 20:32:18 GMT
x-cache: TCP_MISS from a104-84-152-237.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
vary: Accept-Encoding
set-cookie: _ttp=2E8WxZt2y4J3oZp4sDpgUoo1ADL; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-222-0-206.deploy.akamaitechnologies.com (AkamaiGHost/10.9.2-43303399) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=102, origin; dur=11, inner; dur=3
x-parent-response-time: 112,104.84.152.237
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a903e9e44a7d33edea89855b8eb81cc0
7de6f45551976c234c93be2a4966c5ee7832e4ea
e622e37b64b87dc7c04e43c424a030a9d09be1e77066d4b22d57743e91007d57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 9af5f97c7f5bdbf8e7a9dfa05d1e8502
a30d2da5d42bd660c4790aa39c27486aaecd8051
f3f0798d2c835f0bf952172c2afe1cada32fa865833ed9162684a0d86d5c43e9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 31 Aug 2022 20:32:18 GMT
Last-Modified: Wed, 31 Aug 2022 19:57:51 GMT
Server: ECS (nyb/1D0D)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XoEmArr29-i_PtThnrVcRrLLbtoENfblpsaA-fjJRuWRGe5jWkHLCw==
Age: 2067
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 9d6ba82f42c212238e1be4df85732907
aa39dbdf4429591a538e09baf843c054d69211f1
4d67391a1389f4d7300970a16f3340a3cce592d472a01e2bb265c186ea039ddb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 31 Aug 2022 20:32:18 GMT
Last-Modified: Wed, 31 Aug 2022 19:14:22 GMT
Server: ECS (nyb/1DCD)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5zZ70zzdWc79gxu11k1VFIhmeZUCMrI3FY7lXGvnSTxe1n6e3uce9w==
Age: 4676
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 9af5f97c7f5bdbf8e7a9dfa05d1e8502
a30d2da5d42bd660c4790aa39c27486aaecd8051
f3f0798d2c835f0bf952172c2afe1cada32fa865833ed9162684a0d86d5c43e9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 31 Aug 2022 20:32:18 GMT
Last-Modified: Wed, 31 Aug 2022 19:57:51 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8zugNS_M2qRkVXc4YGB8_k6TcYKIa60tjI45_Y50MO02hd2eeSpAcQ==
Age: 2067
adservice.google.no/ddm/fls/i/src=9188115;type=invmedia;cat=georg0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=6874465348675.873;~oref=https://www.visiblecollege.education/
172.217.21.162200 OK 177 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=9188115;type=invmedia;cat=georg0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=6874465348675.873;~oref=https://www.visiblecollege.education/
IP 172.217.21.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 9393b28661a65a763699c108887882eb
c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
GET /ddm/fls/i/src=9188115;type=invmedia;cat=georg0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=6874465348675.873;~oref=https://www.visiblecollege.education/ HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 31 Aug 2022 20:32:18 GMT
expires: Wed, 31 Aug 2022 20:32:18 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 8079252f2e0f41f882c593e2c9ce04d0
06595eda2b87e250d066f42c6dbd39d6a644cdc5
900285dc259c620b0005d27f795c86e148507f6d763e1d9dd9eda3c3458e8f8c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 31 Aug 2022 20:32:18 GMT
Last-Modified: Wed, 31 Aug 2022 20:02:28 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tmkFIxmL3WLRyYORVSSI9a75nTU3skcbuszXUJGO-V_Ja5SV0EZQZA==
Age: 1790
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a903e9e44a7d33edea89855b8eb81cc0
7de6f45551976c234c93be2a4966c5ee7832e4ea
e622e37b64b87dc7c04e43c424a030a9d09be1e77066d4b22d57743e91007d57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
66356305.global.siteimproveanalytics.io/image.aspx?url=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-wil.html&title=Unsubscribe%20-%20WIL%20-%20Visible%20Music%20College&res=1280x1024&accountid=66356305&rt=2480&prev=74bab5b9-c393-8279-5bfd-35a63d1d488b&luid=8a85f0ef-e330-42cf-799e-50498377f01e&rnd=28450
52.58.29.12200 OK 34 B URL HTTP/1.1 66356305.global.siteimproveanalytics.io/image.aspx?url=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-wil.html&title=Unsubscribe%20-%20WIL%20-%20Visible%20Music%20College&res=1280x1024&accountid=66356305&rt=2480&prev=74bab5b9-c393-8279-5bfd-35a63d1d488b&luid=8a85f0ef-e330-42cf-799e-50498377f01e&rnd=28450
IP 52.58.29.12:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash a82ba3a9d42148e9cf209df13d8c3f3d
dba80835d31175bdcf0bcad1abafefb06d86e304
1e85ec81b9800b4c443d39caca0d0926089a3ac201120db1ceb45b93789480b8
GET /image.aspx?url=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-wil.html&title=Unsubscribe%20-%20WIL%20-%20Visible%20Music%20College&res=1280x1024&accountid=66356305&rt=2480&prev=74bab5b9-c393-8279-5bfd-35a63d1d488b&luid=8a85f0ef-e330-42cf-799e-50498377f01e&rnd=28450 HTTP/1.1
Host: 66356305.global.siteimproveanalytics.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, no-cache="set-cookie"
Content-Type: image/gif
Date: Wed, 31 Aug 2022 20:32:18 GMT
Expires: Wed, 31 Aug 2022 20:32:18 UTC
Set-Cookie: AWSELB=1BF185CB12C799AC7E8F30E4356ECAB670474BBE58234E1749C0C8D9A92211750FA6F721F8E2D3F69F3A551DB2BAFD6CE8195FE27542029CF1A24ECE2DEC01625DB7FC442F;PATH=/
AWSELBCORS=1BF185CB12C799AC7E8F30E4356ECAB670474BBE58234E1749C0C8D9A92211750FA6F721F8E2D3F69F3A551DB2BAFD6CE8195FE27542029CF1A24ECE2DEC01625DB7FC442F;PATH=/;SECURE;SAMESITE=None
Content-Length: 34
Connection: keep-alive
discover.georgiasouthern.edu/ping
34.198.122.35200 OK 598 B URL HTTP/1.1 discover.georgiasouthern.edu/ping
IP 34.198.122.35:0
File type ASCII text, with very long lines (998), with no line terminators
Hash c5d28b3dff7a47775fc36d0d363e4dcb
cda92c1939cf0945af67ee37a3921f517bf652b9
7f6f8f892455cbeff2d2c4a721817b748a9cc9ce680275d5dfd2d26b23a798c9
GET /ping HTTP/1.1
Host: discover.georgiasouthern.edu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: application/javascript; charset=utf-8
Content-Encoding: gzip
Expires: Wed, 31 Aug 2022 21:02:18 GMT
Set-Cookie: _hash=20bb4080-d90d-4b47-86fa-5d9cd57d10a9; path=/; secure; HttpOnly; SameSite=None
_hash=20bb4080-d90d-4b47-86fa-5d9cd57d10a9; expires=Tue, 31-Aug-2027 04:00:00 GMT; path=/; secure; HttpOnly; SameSite=None
_hashV=202208/1; path=/; secure; HttpOnly; SameSite=None
_hashV=202208/1; expires=Tue, 31-Aug-2027 04:00:00 GMT; path=/; secure; HttpOnly; SameSite=None
_node=218106378.47873.0000; path=/; Httponly; Secure
TS01e84c7d=01370406faa5189b59645a6558f3732590144896288383b5e202438eccb38594dda2cb415d64bf267d1d40486f69330af9a1874c5f; Path=/; HTTPOnly
Strict-Transport-Security: max-age=31536000
Referrer-Policy: origin-when-cross-origin
Date: Wed, 31 Aug 2022 20:32:18 GMT
Content-Length: 598
analytics.tiktok.com/api/v2/pixel
104.84.152.241200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 104.84.152.241:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 705
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Cookie: _ttp=2E8WxZt2y4J3oZp4sDpgUoo1ADL
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2022083120321834A2E61E065054B98E95
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61ea9100f488fbe968d3522ee3004f5959066552d1a7eeaa038c795181b8787f3a6cf54e54bec94ea04dc1574375b2f4af4a34be4da5352df93d69d7788b08b3e30
expires: Wed, 31 Aug 2022 20:32:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 31 Aug 2022 20:32:18 GMT
x-cache: TCP_MISS from a104-84-152-237.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=11, cdn-cache; desc=MISS, edge; dur=2, origin; dur=109
x-origin-response-time: 109,104.84.152.237
x-akamai-request-id: 5fb75f2
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
104.84.152.241200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 104.84.152.241:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 703
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Cookie: _ttp=2E8WxZt2y4J3oZp4sDpgUoo1ADL
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20220831203218E905A8E7753A03A6CD83
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61e38a0d78b3a2a780a7134bf39a63bb315f2a1a06bce40627b614c1636529d04091ab9c2c0d93e364bd8acd73bea1f8f8b33139849b24c21b5196d7087867787127275212f33184f42dfcfc5c9a86fac01
x-origin-response-time: 22,23.222.0.201
x-akamai-request-id: 13cca27b.5fb75fb
expires: Wed, 31 Aug 2022 20:32:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 31 Aug 2022 20:32:18 GMT
x-cache: TCP_MISS from a104-84-152-237.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-cache-remote: TCP_MISS from a23-222-0-201.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=102, origin; dur=22, inner; dur=14
x-parent-response-time: 123,104.84.152.237
X-Firefox-Spdy: h2
mx.technolutions.net/ping?id=bef102ba-14f4-ed87-e020-5c2c1773bae3&sid=qZsN758jV_3tvHAED79xLUulcXKoOwH5FmsJd4g8RIUvbtmlN3-yuBOrFDcKne_TA0DI6_SerUb9VWiqS05HLgJPdSEDxjq7e5ah2A11vZSy4_38qETCj-rQ1MmrnhHU&hid=132fbac1-d9ea-d9b4-44df-9145493ea829
143.204.55.72200 OK 4.5 kB URL HTTP/2 mx.technolutions.net/ping?id=bef102ba-14f4-ed87-e020-5c2c1773bae3&sid=qZsN758jV_3tvHAED79xLUulcXKoOwH5FmsJd4g8RIUvbtmlN3-yuBOrFDcKne_TA0DI6_SerUb9VWiqS05HLgJPdSEDxjq7e5ah2A11vZSy4_38qETCj-rQ1MmrnhHU&hid=132fbac1-d9ea-d9b4-44df-9145493ea829
IP 143.204.55.72:0
Hash fd2dceb4ea7bc980d6834253c6327d45
6ab5d9df39dac992b2e988ded0a97dd22523a984
c64a3f6e6549a4fcd4386852e7949fe052e8099335653eb1351427bb4bf70287
GET /ping?id=bef102ba-14f4-ed87-e020-5c2c1773bae3&sid=qZsN758jV_3tvHAED79xLUulcXKoOwH5FmsJd4g8RIUvbtmlN3-yuBOrFDcKne_TA0DI6_SerUb9VWiqS05HLgJPdSEDxjq7e5ah2A11vZSy4_38qETCj-rQ1MmrnhHU&hid=132fbac1-d9ea-d9b4-44df-9145493ea829 HTTP/1.1
Host: mx.technolutions.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 4469
server: CloudFront
date: Wed, 31 Aug 2022 20:32:18 GMT
cache-control: private, max-age=86400
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: vpXU1-C5Ii7AKaAqNI4sS3jCZjTvHrBoaab99Zy6YyNG-Sa2yiK2nA==
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.238.88.40200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.238.88.40:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.visiblecollege.education/
Origin: https://www.visiblecollege.education
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 20:32:18 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.visiblecollege.education
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2
collector-5081.tvsquared.com/tv2track.php?action_name=Unsubscribe%20-%20WIL%20-%20Visible%20Music%20College&idsite=TV-45901881-1&rec=1&r=137083&h=20&m=32&s=18&url=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-wil.html&_id=f19608340d9af29b&_idts=1661977939&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=260
3.136.148.72200 OK 42 B URL HTTP/1.1 collector-5081.tvsquared.com/tv2track.php?action_name=Unsubscribe%20-%20WIL%20-%20Visible%20Music%20College&idsite=TV-45901881-1&rec=1&r=137083&h=20&m=32&s=18&url=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-wil.html&_id=f19608340d9af29b&_idts=1661977939&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=260
IP 3.136.148.72:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 00657dd79637a8daf5e6196ca17f1887
3e064855d1fe7c6eac52981a646ec5840ba7efb5
f0c71e3da5b3fcab3c66af1cf0cdbf262c97b9330b7b37116f1ae2ab18bdc660
GET /tv2track.php?action_name=Unsubscribe%20-%20WIL%20-%20Visible%20Music%20College&idsite=TV-45901881-1&rec=1&r=137083&h=20&m=32&s=18&url=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-wil.html&_id=f19608340d9af29b&_idts=1661977939&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=260 HTTP/1.1
Host: collector-5081.tvsquared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Wed, 31 Aug 2022 20:32:18 GMT
P3p: CP='OTI DSP COR NID STP UNI OTPa OUR'
Request-Id: 7c516328-0773-48f3-8b32-c098f026aa3c
Server: nginx
Content-Length: 42
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 33d92cf88426e560ba62e4251c5b3b24
8c6c21ec420eb67c4b3266311d905f65201ea660
788ae7eb8ff517128bd143500c8b994746f3ecd083eb13b5c9fc64d6e46dd4af
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 31 Aug 2022 20:32:18 GMT
Last-Modified: Wed, 31 Aug 2022 20:11:15 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mbWqDHPDytw6EOk_HZOhgls3oHCoo-TS08QILPviSJnqULz26k9B7Q==
Age: 1264
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.238.88.40200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.238.88.40:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1865
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 20:32:18 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=5a76037c-5bfb-4e6b-9226-6d369705e4f5; Expires=Thu, 31 Aug 2023 20:32:18 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.visiblecollege.education
access-control-allow-credentials: true
X-Firefox-Spdy: h2
exploregrad.georgiasouthern.edu/ping
34.198.122.35200 OK 426 B URL HTTP/1.1 exploregrad.georgiasouthern.edu/ping
IP 34.198.122.35:0
File type ASCII text, with very long lines (644), with no line terminators
Hash b45a5f5bbbd53c3f0ef510f55fe3d1b2
5ceb95696b93528867335b10e4c0dc4543e3daa5
739a144f67caf0c3dc57e8093295d9ad52be1a660e6149ce5c44adf21ead6ecb
GET /ping HTTP/1.1
Host: exploregrad.georgiasouthern.edu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: application/javascript; charset=utf-8
Content-Encoding: gzip
Expires: Wed, 31 Aug 2022 21:02:19 GMT
Set-Cookie: _hash=c76b305a-e773-48d0-b12a-2e1188f96cc5; path=/; secure; HttpOnly; SameSite=None
_hash=c76b305a-e773-48d0-b12a-2e1188f96cc5; expires=Tue, 31-Aug-2027 04:00:00 GMT; path=/; secure; HttpOnly; SameSite=None
_hashV=202208/1; path=/; secure; HttpOnly; SameSite=None
_hashV=202208/1; expires=Tue, 31-Aug-2027 04:00:00 GMT; path=/; secure; HttpOnly; SameSite=None
_node=3472951818.47873.0000; path=/; Httponly; Secure
TS01e84c7d=01370406fa3cfb525a43b6ab4230ba50407014283deaced50b4e134512b09683003f7847c321ebb500ac5c3020a761091a47a31005; Path=/; HTTPOnly
Strict-Transport-Security: max-age=31536000
Referrer-Policy: origin-when-cross-origin
Date: Wed, 31 Aug 2022 20:32:18 GMT
Content-Length: 426
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4673d14fa3941ac20e3115309c222c79
2346eda9baf844a0c02c52f5c58ce4c77038c765
566bbe824c8b7afed67c84f7a5fde82a2073d4f2fcfaddbb5f812b1d9fa7bc3d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3015
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:19 GMT
Last-Modified: Wed, 31 Aug 2022 19:42:04 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Wed, 31 Aug 2022 18:41:12 GMT
expires: Wed, 31 Aug 2022 20:41:12 GMT
cache-control: public, max-age=7200
age: 6667
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5856d9c265d032d574d6d1c6d91d735c
f5f8cd36ce5debc4655817da8b0a37ba2f0c7033
22b3a9f9f3f9fe975b933d20cd17006b49c6a75950041a39d6d73a8544c13abf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 3886a53246a3dfaac5f51aade9081703
3b5d9435d9630584c20a57aac39e497d8eace989
aa1df43802d0b9cd71d4f1beb49efdfe2e6f4665862c2510d90ddeb0ca7453c8
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: +mKyieXUb8RyWW2/ZbsyKFRLaKz4DbUI90DcPt32ViQMXzGNt3MwbgwX3GtXsKb3RJZycOD1h1gI8ev72uqcJA==
content-length: 26683
x-fb-trip-id: 1904183273
date: Wed, 31 Aug 2022 20:32:19 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ssl.google-analytics.com/ga.js
216.58.207.200200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 216.58.207.200:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Wed, 31 Aug 2022 20:17:11 GMT
expires: Wed, 31 Aug 2022 22:17:11 GMT
cache-control: public, max-age=7200
age: 908
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4673d14fa3941ac20e3115309c222c79
2346eda9baf844a0c02c52f5c58ce4c77038c765
566bbe824c8b7afed67c84f7a5fde82a2073d4f2fcfaddbb5f812b1d9fa7bc3d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3015
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:19 GMT
Last-Modified: Wed, 31 Aug 2022 19:42:04 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/plugins/ua/linkid.js
142.250.74.174200 OK 859 B URL HTTP/2 www.google-analytics.com/plugins/ua/linkid.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1335)
Hash 904463ce35aee800847ab85ec948aaf6
904e4d2647466c7f7e0f7412019984e3b2ccfb24
057b4d29359dfe2536a2ec40243bdfa7b151222efcc1eb358608994a14c34237
GET /plugins/ua/linkid.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 859
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 20:24:09 GMT
expires: Wed, 31 Aug 2022 21:24:09 GMT
cache-control: public, max-age=3600
age: 490
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5856d9c265d032d574d6d1c6d91d735c
f5f8cd36ce5debc4655817da8b0a37ba2f0c7033
22b3a9f9f3f9fe975b933d20cd17006b49c6a75950041a39d6d73a8544c13abf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.visiblecollege.education/favicon.ico
199.34.228.71200 OK 4.3 kB URL HTTP/1.1 www.visiblecollege.education/favicon.ico
IP 199.34.228.71:0
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 4846aa7e88346c58ca13b59bc135600f
62c0a7a8efe41d33106e4d6f355da79624328eac
5163fb6e037aa0fb771cae695787e0cc9fb85a0bde33ce8114380c9158a7dd85
GET /favicon.ico HTTP/1.1
Host: www.visiblecollege.education
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-wil.html
Cookie: is_mobile=0; language=en; _gcl_au=1.1.190716909.1661977937; _ga_VY2RPVKG9S=GS1.1.1661977937.1.0.1661977937.0.0.0; _ga=GA1.1.1180514187.1661977938; _snow_ses.e20b=*; _snow_id.e20b=f3e870eb-2a4d-4b73-ad13-753a05e9de1b.1661977938.1.1661977938.1661977938.913804ff-a915-4fdd-810d-d53283e53b9a; _scid=e9312fea-fbb4-4a71-b65b-179da4c9e19e; nmstat=74bab5b9-c393-8279-5bfd-35a63d1d488b; MGX_UC=JTdCJTIyTUdYX1AlMjIlM0ElN0IlMjJ2JTIyJTNBJTIyM2E2MjFhYTAtNGM2Zi00ZDQ4LTkyMzYtZTBmYzA5N2ExN2U1JTIyJTJDJTIyZSUyMiUzQTE2NjI1MDM1Mzg1MDclN0QlMkMlMjJNR1hfUFglMjIlM0ElN0IlMjJ2JTIyJTNBJTIyYWM0ODkyNjUtZDcyZS00NjkwLTg1MGItNWRlYjViNjA1OWJiJTIyJTJDJTIycyUyMiUzQXRydWUlMkMlMjJlJTIyJTNBMTY2MTk3OTczODUxMCU3RCUyQyUyMk1HWF9DSUQlMjIlM0ElN0IlMjJ2JTIyJTNBJTIyNGJmNjI0NWItNTFmNi00MjE0LTg4OGQtMzI4M2I5ZTI0YTUxJTIyJTJDJTIyZSUyMiUzQTE2NjI1MDM1Mzg1MTAlN0QlN0Q=; _tq_id.TV-45901881-1.93e4=f19608340d9af29b.1661977939.0.1661977939..
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 20:32:19 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Mon, 11 Apr 2022 01:14:55 GMT
x-rgw-object-type: Normal
ETag: "4846aa7e88346c58ca13b59bc135600f"
x-amz-request-id: tx000000000000019904a4a-0062e96d7b-c0351c8-sfo1
X-Storage-Bucket: z5163
X-Storage-Object: 5163fb6e037aa0fb771cae695787e0cc9fb85a0bde33ce8114380c9158a7dd85
X-Host: grn139.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.visiblecollege.education/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
199.34.228.71200 OK 348 B URL HTTP/1.1 www.visiblecollege.education/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP 199.34.228.71:0
File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Hash a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
Analyzer Verdict Alert fortinet Phishing
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: www.visiblecollege.education
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-wil.html
Cookie: is_mobile=0; language=en; _gcl_au=1.1.190716909.1661977937; _ga_VY2RPVKG9S=GS1.1.1661977937.1.0.1661977937.0.0.0; _ga=GA1.1.1180514187.1661977938; _snow_ses.e20b=*; _snow_id.e20b=f3e870eb-2a4d-4b73-ad13-753a05e9de1b.1661977938.1.1661977938.1661977938.913804ff-a915-4fdd-810d-d53283e53b9a; _scid=e9312fea-fbb4-4a71-b65b-179da4c9e19e; nmstat=74bab5b9-c393-8279-5bfd-35a63d1d488b; MGX_UC=JTdCJTIyTUdYX1AlMjIlM0ElN0IlMjJ2JTIyJTNBJTIyM2E2MjFhYTAtNGM2Zi00ZDQ4LTkyMzYtZTBmYzA5N2ExN2U1JTIyJTJDJTIyZSUyMiUzQTE2NjI1MDM1Mzg1MDclN0QlMkMlMjJNR1hfUFglMjIlM0ElN0IlMjJ2JTIyJTNBJTIyYWM0ODkyNjUtZDcyZS00NjkwLTg1MGItNWRlYjViNjA1OWJiJTIyJTJDJTIycyUyMiUzQXRydWUlMkMlMjJlJTIyJTNBMTY2MTk3OTczODUxMCU3RCUyQyUyMk1HWF9DSUQlMjIlM0ElN0IlMjJ2JTIyJTNBJTIyNGJmNjI0NWItNTFmNi00MjE0LTg4OGQtMzI4M2I5ZTI0YTUxJTIyJTJDJTIyZSUyMiUzQTE2NjI1MDM1Mzg1MTAlN0QlN0Q=; _tq_id.TV-45901881-1.93e4=f19608340d9af29b.1661977939.0.1661977939..
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 20:32:19 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu106.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=58
Connection: Keep-Alive
Content-Type: application/json
www.facebook.com/tr/?id=442225499993182&ev=PageView&dl=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-wil.html&rl=&if=false&ts=1661977939141&sw=1280&sh=1024&v=2.9.78&r=stable&ec=0&o=30&fbp=fb.1.1661977939140.1263101146&it=1661977938976&coo=false&rqm=GET
31.13.72.36200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=442225499993182&ev=PageView&dl=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-wil.html&rl=&if=false&ts=1661977939141&sw=1280&sh=1024&v=2.9.78&r=stable&ec=0&o=30&fbp=fb.1.1661977939140.1263101146&it=1661977938976&coo=false&rqm=GET
IP 31.13.72.36:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=442225499993182&ev=PageView&dl=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-wil.html&rl=&if=false&ts=1661977939141&sw=1280&sh=1024&v=2.9.78&r=stable&ec=0&o=30&fbp=fb.1.1661977939140.1263101146&it=1661977938976&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Wed, 31 Aug 2022 20:32:19 GMT
expires: Wed, 31 Aug 2022 20:32:19 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash a852894d4d86627bef066f0832ee718f
6e814a3b5f5d41b34c1e50a63d34a375089aef17
a58448df1700e5d090e6c291fad7666253473392fc415209a6d1d923db504268
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 31 Aug 2022 20:32:19 GMT
Last-Modified: Wed, 31 Aug 2022 19:11:42 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AityG0RS0BToTltqJyKZCNKxb67OpmnBYwrWpCMKYny_pV9VjOlSIg==
Age: 4837
api.datasteam.io/v1/C/RawData/A02686A39F7C?v=3a621aa0-4c6f-4d48-9236-e0fc097a17e5&se=ac489265-d72e-4690-850b-5deb5b6059bb&d=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%3D&callback=cb1a05ef96dd05b8
34.197.14.179200 OK 209 B URL HTTP/1.1 api.datasteam.io/v1/C/RawData/A02686A39F7C?v=3a621aa0-4c6f-4d48-9236-e0fc097a17e5&se=ac489265-d72e-4690-850b-5deb5b6059bb&d=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%3D&callback=cb1a05ef96dd05b8
IP 34.197.14.179:0
File type ASCII text, with no line terminators
Hash 4a5f8dcc8b1f69a7a31a6e1335b5ca10
115ca68afd8ae9418c08973704c9635a8c7dc1e5
ad627eff853b8ae2011c0b14237b581f5a98f193baa97e0f5032c59e969b2858
GET /v1/C/RawData/A02686A39F7C?v=3a621aa0-4c6f-4d48-9236-e0fc097a17e5&se=ac489265-d72e-4690-850b-5deb5b6059bb&d=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%3D&callback=cb1a05ef96dd05b8 HTTP/1.1
Host: api.datasteam.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 20:32:19 GMT
Server: Kestrel
Set-Cookie: MGX_U=4291d47d-72a7-4a1e-a2d5-d8075ac1b149; expires=Thu, 31 Aug 2023 20:32:19 GMT; domain=.datasteam.io; path=/; secure; samesite=none
MGX_A02686A39F7C=3a621aa0-4c6f-4d48-9236-e0fc097a17e5; expires=Thu, 31 Aug 2023 20:32:19 GMT; domain=.datasteam.io; path=/; secure; samesite=none
MGX_PX_A02686A39F7C=ac489265-d72e-4690-850b-5deb5b6059bb; expires=Wed, 31 Aug 2022 21:02:19 GMT; domain=.datasteam.io; path=/; secure; samesite=none
Content-Length: 209
Connection: keep-alive
forms.zohopublic.com/admissions44/form/Wearesorrytoseeyougo98/formperma/m_LrLdA-to_dVmL5xYfU7RWawhMH01Nl5thdfzmGdQ8
136.143.190.97200 21 kB URL HTTP/1.1 forms.zohopublic.com/admissions44/form/Wearesorrytoseeyougo98/formperma/m_LrLdA-to_dVmL5xYfU7RWawhMH01Nl5thdfzmGdQ8
IP 136.143.190.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (18662)
Hash 1dadbed50976fb97b03796d34438934a
98d532452697d7bf46357d290db235951ee2dd38
7e07a92ece86d968f9aadfcfae531fd25ac93a84d91e3e8f0c3399d970e8c068
GET /admissions44/form/Wearesorrytoseeyougo98/formperma/m_LrLdA-to_dVmL5xYfU7RWawhMH01Nl5thdfzmGdQ8 HTTP/1.1
Host: forms.zohopublic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: ZGS
Date: Wed, 31 Aug 2022 20:32:19 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: 383aeadb58=1b5f58873a9007ab79efd25117bfdf05; Path=/
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
vary: accept-encoding
Content-Encoding: gzip
Content-Language: en-US
Strict-Transport-Security: max-age=63072000
status.rapidssl.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1186857ff84e126ae0e38be93cf99845
26de6dd04ca96e45297f448b22bd40f6f8b1308c
d7b0ed8072d46484bbc51ca5edfc403b0ce072a09a5a6eef289bc06a538dabe4
POST / HTTP/1.1
Host: status.rapidssl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5451
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:19 GMT
Last-Modified: Wed, 31 Aug 2022 19:01:28 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
status.rapidssl.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1186857ff84e126ae0e38be93cf99845
26de6dd04ca96e45297f448b22bd40f6f8b1308c
d7b0ed8072d46484bbc51ca5edfc403b0ce072a09a5a6eef289bc06a538dabe4
POST / HTTP/1.1
Host: status.rapidssl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2659
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:19 GMT
Last-Modified: Wed, 31 Aug 2022 19:48:00 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash c903d6e0cbb3d800da63cd83d1c1dfee
0326a596c8f1abbd9dbd06a4dfe1268ea095d389
bd21f1f5031407b2005367ac12e86fccb313b882fdcb60ea164f1aea5bb4019f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 20:32:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 31 Aug 2022 04:47:59 GMT
Expires: Wed, 07 Sep 2022 04:47:58 GMT
Etag: "0326a596c8f1abbd9dbd06a4dfe1268ea095d389"
Cache-Control: max-age=547538,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 743888ec4ead0b51-OSL
aa.agkn.com/adscores/g.jsonp?sid=9202274878&userid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5
54.171.98.27200 OK 82 B URL HTTP/2 aa.agkn.com/adscores/g.jsonp?sid=9202274878&userid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5
IP 54.171.98.27:0
File type ASCII text, with no line terminators
Hash ae708136e46f5ab7a3be5d2a6ff558ac
cfddee7c8aaf2245d3a531efb187df16cf35c751
9e446e75dc20b6dc693b247aaf7704112e55ef434588368aa0761fc76b3a29a5
GET /adscores/g.jsonp?sid=9202274878&userid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 20:32:19 GMT
content-type: application/json
content-length: 82
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3AorNs%2F3oAHiMFCQcxgHV5DeghTOn7pujx; Path=/; Domain=.agkn.com; Expires=Thu, 31-Aug-2023 20:32:19 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash c903d6e0cbb3d800da63cd83d1c1dfee
0326a596c8f1abbd9dbd06a4dfe1268ea095d389
bd21f1f5031407b2005367ac12e86fccb313b882fdcb60ea164f1aea5bb4019f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 20:32:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 31 Aug 2022 04:47:59 GMT
Expires: Wed, 07 Sep 2022 04:47:58 GMT
Etag: "0326a596c8f1abbd9dbd06a4dfe1268ea095d389"
Cache-Control: max-age=547538,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 743888ec6f59b512-OSL
forms.zohopublic.com/formstatic/fonts?family=Open+Sans:400,700i,700,600i,600,400i,300i,300
136.143.190.97200 220 B URL HTTP/1.1 forms.zohopublic.com/formstatic/fonts?family=Open+Sans:400,700i,700,600i,600,400i,300i,300
IP 136.143.190.97:0
Hash 9a28d1179664ba6bc299429fa6ad2ffc
75e6c37130a729665af1b3255889f1d7bc9f6b50
c3c5f38d3b34298da17c03f724f13edbfc2a0b91f0f6638501b34b17da8219a8
GET /formstatic/fonts?family=Open+Sans:400,700i,700,600i,600,400i,300i,300 HTTP/1.1
Host: forms.zohopublic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/admissions44/form/Wearesorrytoseeyougo98/formperma/m_LrLdA-to_dVmL5xYfU7RWawhMH01Nl5thdfzmGdQ8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200
Server: ZGS
Date: Wed, 31 Aug 2022 20:32:19 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: 383aeadb58=280479ea15bf81fc9c754cc68b20a917; Path=/
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
X-Frame-Options: DENY
vary: accept-encoding
Content-Encoding: gzip
Content-Language: en-US
Strict-Transport-Security: max-age=63072000
static.zohocdn.com/forms/css/formsthirdparty.2755260429cd02c98112dac6f4b5b8ce.css
185.20.209.147200 OK 12 kB URL HTTP/2 static.zohocdn.com/forms/css/formsthirdparty.2755260429cd02c98112dac6f4b5b8ce.css
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (65440)
Hash a338608fc2b539683c6cccb5717cf0aa
e9a5f68ee4fe0972da9cf6ce40df9e170e217b87
6a43f0b04d96257c7b01e2564e33b5e780582a1d1cceb31678d5e101b3a834bd
GET /forms/css/formsthirdparty.2755260429cd02c98112dac6f4b5b8ce.css HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Wed, 31 Aug 2022 20:32:19 GMT
content-type: text/css;charset=UTF-8
content-length: 11641
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "a338608fc2b539683c6cccb5717cf0aa"
content-language: en-US
last-modified: Wed, 19 May 2021 11:03:01 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: c66109d553662bf61b9e002dc4950085
z-origin-id: ex1-df244bf0eeca4dc1b76dac21db7a694e
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/js/formsthirdpartylivejs.fa80d21e90eb2a92193fc45ef5617573.js
185.20.209.147200 OK 37 kB URL HTTP/2 static.zohocdn.com/forms/js/formsthirdpartylivejs.fa80d21e90eb2a92193fc45ef5617573.js
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash 519d10234a6e863f26825a7305cb746c
b1dbdc7b42c01f843ac8bb952aa41aedda86deda
cc63dff891f38e2246bd46f551780ebcbefef78dc9deba4070dc48cff295fc5f
GET /forms/js/formsthirdpartylivejs.fa80d21e90eb2a92193fc45ef5617573.js HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ZGS
date: Wed, 31 Aug 2022 20:32:19 GMT
content-type: application/javascript;charset=UTF-8
content-length: 37358
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "519d10234a6e863f26825a7305cb746c"
content-language: en-US
last-modified: Wed, 19 May 2021 11:03:03 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 5d3a5503bbe6bd2eac43b2573639ec69
z-origin-id: ex1-c42f49944681497f9b64f671102e272c
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/css/themes/media/customMedia.bdbbc9b6f964ee4f4c1d1debd83b0068.css
185.20.209.147200 OK 86 kB URL HTTP/2 static.zohocdn.com/forms/css/themes/media/customMedia.bdbbc9b6f964ee4f4c1d1debd83b0068.css
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
Hash 3211bcd941977ba5fbf01ee818db230d
fa8935578cd1922e32e2b149dae215413b85da58
5c610c1fcf86c732f4d31c3871522b32c6ddae89c94b93b5fe9a27b5de8ab039
GET /forms/css/themes/media/customMedia.bdbbc9b6f964ee4f4c1d1debd83b0068.css HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Wed, 31 Aug 2022 20:32:19 GMT
content-type: text/css;charset=UTF-8
content-length: 193
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "daa87951fc446e172d1546a8e9bc1f48"
content-language: en-US
last-modified: Wed, 19 May 2021 11:02:52 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: f4482111e8feaa9687e059c68d4e9dd4
z-origin-id: ex1-4741233d6e384617a168d21437c82995
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/js/formscommonlive.dea81c3e49aff957271db2ddafbf39c3.js
185.20.209.147200 OK 26 kB URL HTTP/2 static.zohocdn.com/forms/js/formscommonlive.dea81c3e49aff957271db2ddafbf39c3.js
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash 731c18a8a838ac09538d261c9083149d
94af8ee839eb234a393ff5b28a00fabc5efa63a9
929ca0c182ca188fe9ac6ebb8f19c5347d197af152c7f3ee3d26dc24ec56a3c7
GET /forms/js/formscommonlive.dea81c3e49aff957271db2ddafbf39c3.js HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ZGS
date: Wed, 31 Aug 2022 20:32:19 GMT
content-type: application/javascript;charset=UTF-8
content-length: 25486
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "731c18a8a838ac09538d261c9083149d"
content-language: en-US
last-modified: Thu, 04 Aug 2022 07:29:54 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 02fc6c5aead0ad4c5bc67e6af9a5349f
z-origin-id: ex1-19cc5496d8dc4dd7b7f35e3e44975cfa
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
aa.agkn.com/adscores/g.pixel?sid=9202283468&_userID=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&_takID=A02686A39F7C
54.171.98.27302 Found 207 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9202283468&_userID=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&_takID=A02686A39F7C
IP 54.171.98.27:0
File type ASCII text, with no line terminators
Hash 33b14355a80db79409707cd2e77e877c
b398ff4d0cefc7b79c4ba1f64bae3b42d6cfdfc5
e9f6e914a34dbef30b940be2ba1d056ed87f371f527ea4d21862cee2a025f9f3
GET /adscores/g.pixel?sid=9202283468&_userID=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&_takID=A02686A39F7C HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 31 Aug 2022 20:32:19 GMT
location: https://api.dtstmio.com/v1/visitaction/nspx?segment=000&userID=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&takID=A02686A39F7C&seg1=
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3A533JzPfk4KgFCQcxgHV5DZ4oeLKhXIlX; Path=/; Domain=.agkn.com; Expires=Thu, 31-Aug-2023 20:32:19 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
static.zohocdn.com/forms/js/formslive.d31c65d8033d17c99f606fa7fedc1469.js
185.20.209.147200 OK 107 kB URL HTTP/2 static.zohocdn.com/forms/js/formslive.d31c65d8033d17c99f606fa7fedc1469.js
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (65433)
Size 107 kB (106716 bytes)
Hash e972700a1ac8a24f93c5b9a8e5f95e26
19587654ff82fa45ed40e391885fd4d63815b505
63abe4c5e1208740a023c6872844f2ea039adb0c6f7c537e138069d9d35707b8
GET /forms/js/formslive.d31c65d8033d17c99f606fa7fedc1469.js HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ZGS
date: Wed, 31 Aug 2022 20:32:19 GMT
content-type: application/javascript;charset=UTF-8
content-length: 106716
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "e972700a1ac8a24f93c5b9a8e5f95e26"
content-language: en-US
last-modified: Tue, 23 Aug 2022 09:32:35 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: b3fce0c05f954c3f8b511b63421f29ea
z-origin-id: ex1-c2429c05c0244737b53244c8f37043c5
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/js/formstplivejs.5598e1e583c1d09fc270b76b7bc87fed.js
185.20.209.147200 OK 30 kB URL HTTP/2 static.zohocdn.com/forms/js/formstplivejs.5598e1e583c1d09fc270b76b7bc87fed.js
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 545c72fc1816fa5e467e58efd4d47adb
de21bdceadd7365dd432fb5179a5b9f4ac853b92
1a2edd219fb3224cb0045ef280499f1e951f3a393c069efe88449807721735d6
GET /forms/js/formstplivejs.5598e1e583c1d09fc270b76b7bc87fed.js HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Wed, 31 Aug 2022 20:32:19 GMT
content-type: application/javascript;charset=UTF-8
content-length: 30037
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "545c72fc1816fa5e467e58efd4d47adb"
content-language: en-US
last-modified: Wed, 19 May 2021 11:03:04 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: bc14013f7f33695b76d7bac48ceb00e2
z-origin-id: ex1-6b10760054b04ff5a29a2730aaac7932
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/images/warning-info.607d397302b1f344f8d8df1258004046.png
185.20.209.147200 OK 613 B URL HTTP/2 static.zohocdn.com/forms/images/warning-info.607d397302b1f344f8d8df1258004046.png
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type PNG image data, 70 x 69, 8-bit colormap, non-interlaced\012- data
Hash 795e63fefb59c2bff5f31b157b6d01e9
3ee71d25fe4f55464cd8a8444a5cb377b443bc4d
5e1c9c77a6d4cb7a4e0c844a0855b7372dfe6a835ad22015dd2429d035349993
GET /forms/images/warning-info.607d397302b1f344f8d8df1258004046.png HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ZGS
date: Wed, 31 Aug 2022 20:32:19 GMT
content-type: image/png
content-length: 613
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "795e63fefb59c2bff5f31b157b6d01e9"
content-language: en-US
last-modified: Wed, 19 May 2021 11:02:20 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: b244757604f09666a32e183c54d0e450
z-origin-id: ex1-1e6cc70eaea848c1be365e5be3da68c8
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/images/loader.79de1b954774690fff0e7345d82faa25.gif
185.20.209.147200 OK 2.6 kB URL HTTP/2 static.zohocdn.com/forms/images/loader.79de1b954774690fff0e7345d82faa25.gif
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type GIF image data, version 89a, 24 x 24\012- data
Hash 8f3d3ae8228ea0894bbcba2f0dc68375
807d493a6b66eaa5a2c32f5c1588f2a22b371276
ae88234e6373f222a729d38c75dc250f4928e61cde23148267551d517cba42d5
GET /forms/images/loader.79de1b954774690fff0e7345d82faa25.gif HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ZGS
date: Wed, 31 Aug 2022 20:32:19 GMT
content-type: image/gif
content-length: 2558
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "8f3d3ae8228ea0894bbcba2f0dc68375"
content-language: en-US
last-modified: Wed, 19 May 2021 11:02:33 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 6254077b692c026afd82a1b0efbc944a
z-origin-id: ex1-55b29f08091d441e908edef82109d40e
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/images/check-mark-outline.e44509047a0a79fb604be98bb10ec5bc.png
185.20.209.147200 OK 4.6 kB URL HTTP/2 static.zohocdn.com/forms/images/check-mark-outline.e44509047a0a79fb604be98bb10ec5bc.png
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Hash dad0f95db26f4856b486ad2e685c98dd
2cd05580ee6671c1d1658c6119ee675d7f6ec452
84fd3c918b8ed33805a1fc5df510ebb1ae10020b9bdfa88fab6c0e3d7476b0b1
GET /forms/images/check-mark-outline.e44509047a0a79fb604be98bb10ec5bc.png HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ZGS
date: Wed, 31 Aug 2022 20:32:19 GMT
content-type: image/png
content-length: 4599
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "dad0f95db26f4856b486ad2e685c98dd"
content-language: en-US
last-modified: Wed, 19 May 2021 11:02:37 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: f6fb28338796b6a2f588446f0f26579c
z-origin-id: ex1-c8fe46a3f4004251a045b7140bd5c514
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
tr.snapchat.com/collector/is_enabled?pids=5574edef-da44-408c-96f2-796f6a84a753&tld=education
35.190.43.134200 OK 573 B URL HTTP/2 tr.snapchat.com/collector/is_enabled?pids=5574edef-da44-408c-96f2-796f6a84a753&tld=education
IP 35.190.43.134:0
Hash f8c0eb606e486e0e6b2ac82b836a4597
26509526c865cd93ffcc951fd6b864f8c8ed4c32
6fd5240fc83c8f3fbbdc2d0a0f85e5e9088d8eaa1556ea1fcd4717d7f43485e1
GET /collector/is_enabled?pids=5574edef-da44-408c-96f2-796f6a84a753&tld=education HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Origin: https://www.visiblecollege.education
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 20:32:18 GMT
access-control-allow-origin: https://www.visiblecollege.education
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash c903d6e0cbb3d800da63cd83d1c1dfee
0326a596c8f1abbd9dbd06a4dfe1268ea095d389
bd21f1f5031407b2005367ac12e86fccb313b882fdcb60ea164f1aea5bb4019f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 20:32:20 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 31 Aug 2022 04:47:59 GMT
Expires: Wed, 07 Sep 2022 04:47:58 GMT
Etag: "0326a596c8f1abbd9dbd06a4dfe1268ea095d389"
Cache-Control: max-age=547537,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 743888ec4a41b51e-OSL
static.zohocdn.com/forms/css/themes/media.39339956c202c136a11c5e49e29b909e.css
185.20.209.147200 OK 5.6 kB URL HTTP/2 static.zohocdn.com/forms/css/themes/media.39339956c202c136a11c5e49e29b909e.css
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
Hash 22ac534e0ef19e0059c5fb948d8c19b4
8c0707de1cd88cfbe53cbd076af841c739ab558a
e25f8b6067e27b99568f9ff0b48bb6e52d9585d1ca299c1592e6cd6d71d64bb0
GET /forms/css/themes/media.39339956c202c136a11c5e49e29b909e.css HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Wed, 31 Aug 2022 20:32:20 GMT
content-type: text/css;charset=UTF-8
content-length: 5590
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "22ac534e0ef19e0059c5fb948d8c19b4"
content-language: en-US
last-modified: Thu, 09 Jun 2022 09:28:48 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 20f6d370a843f15f9ba6af2ea1102726
z-origin-id: ex1-fc7118ca07a74dd98e69556b86c00409
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/css/themes/custom.188b5c3635ff5b5d96f7f360387fe751.css
185.20.209.147200 OK 12 kB URL HTTP/2 static.zohocdn.com/forms/css/themes/custom.188b5c3635ff5b5d96f7f360387fe751.css
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (454)
Hash 1314cc1a858f1948b93bef9027c9bb57
c9842d9085084f326871be17bb974468641bc807
6a084dc59332e9b5afce1895118892bd55770de71f4e7b33e23067341cce8a6b
GET /forms/css/themes/custom.188b5c3635ff5b5d96f7f360387fe751.css HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Wed, 31 Aug 2022 20:32:20 GMT
content-type: text/css;charset=UTF-8
content-length: 12324
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "1314cc1a858f1948b93bef9027c9bb57"
content-language: en-US
last-modified: Mon, 16 May 2022 07:44:34 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: d7e0755cc298bd255a50c77d5f46c838
z-origin-id: ex1-b23cd9c36c3f429d9107d4d399009450
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
static.zohocdn.com/forms/css/formslive.e7801e17ac81844b540cbcfc983da6a9.css
185.20.209.147200 OK 46 kB URL HTTP/2 static.zohocdn.com/forms/css/formslive.e7801e17ac81844b540cbcfc983da6a9.css
IP 185.20.209.147:0
ASN #41913 Computerline GmbH
File type ASCII text, with very long lines (65430)
Hash cfcf52dfb5a3fc3f78e761bc2393cdce
a97a00f53e7bf9adcdac2a6a33748d88113061e7
e71d038ced57dd1894721e1d2703c223bc2655b4ad43cd085bce2d5a34ed5666
GET /forms/css/formslive.e7801e17ac81844b540cbcfc983da6a9.css HTTP/1.1
Host: static.zohocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ZGS
date: Wed, 31 Aug 2022 20:32:20 GMT
content-type: text/css;charset=UTF-8
content-length: 46343
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "cfcf52dfb5a3fc3f78e761bc2393cdce"
content-language: en-US
last-modified: Tue, 23 Aug 2022 09:32:35 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 5ed3c1bf9340564e66e8755f175098aa
z-origin-id: ex1-4202e46c2cf740569b2920a4ccde9226
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2
api.datasteam.io/v1/C/RawData/A02686A39F7C?v=3a621aa0-4c6f-4d48-9236-e0fc097a17e5&se=ac489265-d72e-4690-850b-5deb5b6059bb&d=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%3D%3D&callback=cb114ac4e5d634e
34.197.14.179200 OK 208 B URL HTTP/1.1 api.datasteam.io/v1/C/RawData/A02686A39F7C?v=3a621aa0-4c6f-4d48-9236-e0fc097a17e5&se=ac489265-d72e-4690-850b-5deb5b6059bb&d=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%3D%3D&callback=cb114ac4e5d634e
IP 34.197.14.179:0
File type ASCII text, with no line terminators
Hash 74733da4aae118a8dde553daffb2e792
bd1ebfabe32229dd534ec129e6529f3d06871308
93f76bd92901fe85e2c3f65bead2f9d521258fa29d8499796f78b422c985d178
GET /v1/C/RawData/A02686A39F7C?v=3a621aa0-4c6f-4d48-9236-e0fc097a17e5&se=ac489265-d72e-4690-850b-5deb5b6059bb&d=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%3D%3D&callback=cb114ac4e5d634e HTTP/1.1
Host: api.datasteam.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Cookie: MGX_U=4291d47d-72a7-4a1e-a2d5-d8075ac1b149; MGX_A02686A39F7C=3a621aa0-4c6f-4d48-9236-e0fc097a17e5; MGX_PX_A02686A39F7C=ac489265-d72e-4690-850b-5deb5b6059bb
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 20:32:19 GMT
Server: Kestrel
Set-Cookie: MGX_U=4291d47d-72a7-4a1e-a2d5-d8075ac1b149; expires=Thu, 31 Aug 2023 20:32:20 GMT; domain=.datasteam.io; path=/; secure; samesite=none
MGX_A02686A39F7C=3a621aa0-4c6f-4d48-9236-e0fc097a17e5; expires=Thu, 31 Aug 2023 20:32:20 GMT; domain=.datasteam.io; path=/; secure; samesite=none
MGX_PX_A02686A39F7C=ac489265-d72e-4690-850b-5deb5b6059bb; expires=Wed, 31 Aug 2022 21:02:20 GMT; domain=.datasteam.io; path=/; secure; samesite=none
Content-Length: 208
Connection: keep-alive
i.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5
44.196.254.254303 See Other 0 B URL HTTP/1.1 i.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5
IP 44.196.254.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5 HTTP/1.1
Host: i.liadm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 303 See Other
Date: Wed, 31 Aug 2022 20:32:20 GMT
Content-Length: 0
Connection: keep-alive
Location: /s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&_li_chk=true&previous_uuid=807ed135a1ce4997b4787601dbd9308b
Set-Cookie: lidid=807ed135-a1ce-4997-b478-7601dbd9308b; Max-Age=63072000; Expires=Fri, 30 Aug 2024 20:32:20 GMT; SameSite=None; Path=/; Domain=liadm.com; Secure
Strict-Transport-Security: max-age=31536000; includeSubDomains
webfonts.zohowebstatic.com/opensans/font.woff2
143.204.55.34200 OK 51 kB URL HTTP/2 webfonts.zohowebstatic.com/opensans/font.woff2
IP 143.204.55.34:0
File type Web Open Font Format (Version 2), TrueType, length 51084, version 1.6554\012- data
Hash ed0d14764bbe7e7ae8cd093af6c12c5b
74ef71b6a0b867d772a639179ad55233659c4ee2
5ceec82f9678fbbb7630f682842efddfff95f8a1c4e913b3c236a22ef8cac959
GET /opensans/font.woff2 HTTP/1.1
Host: webfonts.zohowebstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forms.zohopublic.com
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 51084
server: ZGS
date: Sun, 03 Jul 2022 05:02:18 GMT
last-modified: Wed, 28 Jul 2021 13:35:31 GMT
etag: "61015d23-c78c"
expires: Mon, 03 Jul 2023 05:02:18 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IDX1sTiCtEkM2RZtr9NMBy-5c-aJVgX6G2r-NhdDDuHHIry2o--Qew==
age: 5153402
X-Firefox-Spdy: h2
webfonts.zohowebstatic.com/opensansitalic/font.woff
143.204.55.34200 OK 65 kB URL HTTP/2 webfonts.zohowebstatic.com/opensansitalic/font.woff
IP 143.204.55.34:0
File type Web Open Font Format, TrueType, length 65140, version 0.0\012- data
Hash d03b5f6162242a2684e82f4817866d74
6a213ba96ecc80c0819a17a637c0f0227aa6e607
0563263549f5b1b03297da7100d9acf32a4df025f936c347181619e8fdaf72ea
GET /opensansitalic/font.woff HTTP/1.1
Host: webfonts.zohowebstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forms.zohopublic.com
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/font-woff
content-length: 65140
server: ZGS
date: Sun, 05 Jun 2022 04:22:11 GMT
last-modified: Wed, 28 Jul 2021 13:35:35 GMT
etag: "61015d27-fe74"
expires: Mon, 05 Jun 2023 04:22:11 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ugMdHkOeNu2GyZt7cFqNnQQ1avM75nF7nda6uQ_cRye2pdO9BlEWBg==
age: 7575009
X-Firefox-Spdy: h2
webfonts.zohowebstatic.com/opensansbold/font.woff
143.204.55.34200 OK 70 kB URL HTTP/2 webfonts.zohowebstatic.com/opensansbold/font.woff
IP 143.204.55.34:0
File type Web Open Font Format, TrueType, length 70128, version 0.0\012- data
Hash 0369ece0ad8891e7aaf14abc4294e5ae
6fbc2965b490b558702ee6af2facaae41a5e13b5
77180141da496f33b3a6a909ae063e620a6bebd83d228c19d2064b261dfdb751
GET /opensansbold/font.woff HTTP/1.1
Host: webfonts.zohowebstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forms.zohopublic.com
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/font-woff
content-length: 70128
server: ZGS
date: Thu, 11 Aug 2022 22:29:17 GMT
last-modified: Wed, 28 Jul 2021 13:35:26 GMT
etag: "61015d1e-111f0"
expires: Fri, 11 Aug 2023 22:29:17 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ADIZ8KOGrcrQqGgnfkTP5zwLEaieXUoyM0fhke0PhXd35uemiFHQ1A==
age: 1720983
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 79914bc18b2a8055900677cba3edc394
ca6bddc9418f6998c02863ad14e74eebbc139a63
dc722cee412e1824363aca40ec2b6d755531673ee6df522d1d3aa1bd0a6331aa
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 31 Aug 2022 20:32:20 GMT
Etag: "630e96b5-1d7"
Last-Modified: Wed, 31 Aug 2022 19:40:32 GMT
Server: ECS (dcb/7EA6)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GdU5_N8MmyQF29tfN2E6vPvPCwGB-i76O587defW25A1fTgIJ-vVFw==
Age: 3108
i.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&_li_chk=true&previous_uuid=807ed135a1ce4997b4787601dbd9308b
44.196.254.254303 See Other 0 B URL HTTP/1.1 i.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&_li_chk=true&previous_uuid=807ed135a1ce4997b4787601dbd9308b
IP 44.196.254.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&_li_chk=true&previous_uuid=807ed135a1ce4997b4787601dbd9308b HTTP/1.1
Host: i.liadm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 303 See Other
Date: Wed, 31 Aug 2022 20:32:20 GMT
Content-Length: 0
Connection: keep-alive
Location: https://i6.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5
Set-Cookie: _li_ss=MgkI_____wcQkRM; Max-Age=2592000; Expires=Fri, 30 Sep 2022 20:32:20 GMT; SameSite=None; Path=/s; Secure
lidid=fd5a3ef6-911d-4005-bd1f-21afbf4ae7fa; Max-Age=63072000; Expires=Fri, 30 Aug 2024 20:32:20 GMT; SameSite=None; Path=/; Domain=liadm.com; Secure
Strict-Transport-Security: max-age=31536000; includeSubDomains
api.dtstmio.com/v1/visitaction/nspx?segment=000&userID=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&takID=A02686A39F7C&seg1=
44.196.219.118302 Found 0 B URL HTTP/1.1 api.dtstmio.com/v1/visitaction/nspx?segment=000&userID=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&takID=A02686A39F7C&seg1=
IP 44.196.219.118:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/visitaction/nspx?segment=000&userID=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&takID=A02686A39F7C&seg1= HTTP/1.1
Host: api.dtstmio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 31 Aug 2022 20:32:19 GMT
Location: https://api.datasteam.io/v1/visitaction/nspx?segment=000&userID=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&takID=A02686A39F7C&seg1=
Server: Kestrel
Set-Cookie: MGX_EID_A02686A39F7C=ns_seg_000; expires=Thu, 01 Sep 2022 20:32:20 GMT; domain=api.dtstmio.com; path=/; secure; samesite=none
Content-Length: 0
Connection: keep-alive
api.datasteam.io/v1/visitaction/nspx?segment=000&userID=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&takID=A02686A39F7C&seg1=
34.197.14.179302 Found 0 B URL HTTP/1.1 api.datasteam.io/v1/visitaction/nspx?segment=000&userID=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&takID=A02686A39F7C&seg1=
IP 34.197.14.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/visitaction/nspx?segment=000&userID=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&takID=A02686A39F7C&seg1= HTTP/1.1
Host: api.datasteam.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Cookie: MGX_U=4291d47d-72a7-4a1e-a2d5-d8075ac1b149; MGX_A02686A39F7C=3a621aa0-4c6f-4d48-9236-e0fc097a17e5; MGX_PX_A02686A39F7C=ac489265-d72e-4690-850b-5deb5b6059bb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 31 Aug 2022 20:32:20 GMT
Location: https://i.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5
Server: Kestrel
Set-Cookie: MGX_EID_A02686A39F7C=ns_seg_000; expires=Thu, 01 Sep 2022 20:32:20 GMT; domain=.datasteam.io; path=/; secure; samesite=none
Content-Length: 0
Connection: keep-alive
i.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5
44.196.254.254303 See Other 0 B URL HTTP/1.1 i.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5
IP 44.196.254.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5 HTTP/1.1
Host: i.liadm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 303 See Other
Date: Wed, 31 Aug 2022 20:32:20 GMT
Content-Length: 0
Connection: keep-alive
Location: /s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&_li_chk=true&previous_uuid=7ecced11691f45f7803ef8346adbcc61
Set-Cookie: lidid=7ecced11-691f-45f7-803e-f8346adbcc61; Max-Age=63072000; Expires=Fri, 30 Aug 2024 20:32:20 GMT; SameSite=None; Path=/; Domain=liadm.com; Secure
Strict-Transport-Security: max-age=31536000; includeSubDomains
i.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&_li_chk=true&previous_uuid=7ecced11691f45f7803ef8346adbcc61
44.196.254.254303 See Other 0 B URL HTTP/1.1 i.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&_li_chk=true&previous_uuid=7ecced11691f45f7803ef8346adbcc61
IP 44.196.254.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5&_li_chk=true&previous_uuid=7ecced11691f45f7803ef8346adbcc61 HTTP/1.1
Host: i.liadm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 303 See Other
Date: Wed, 31 Aug 2022 20:32:20 GMT
Content-Length: 0
Connection: keep-alive
Location: https://i6.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5
Set-Cookie: _li_ss=MgkI_____wcQkRM; Max-Age=2592000; Expires=Fri, 30 Sep 2022 20:32:20 GMT; SameSite=None; Path=/s; Secure
lidid=6118649a-86c5-4028-8183-2c094ef99802; Max-Age=63072000; Expires=Fri, 30 Aug 2024 20:32:20 GMT; SameSite=None; Path=/; Domain=liadm.com; Secure
Strict-Transport-Security: max-age=31536000; includeSubDomains
i6.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5
18.210.153.197200 OK 43 B URL HTTP/1.1 i6.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5
IP 18.210.153.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb02f374b8f73825415db1bccd4bd76d
b103aa629cacdd90b39538a7561da7f8e49ad73f
caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5 HTTP/1.1
Host: i6.liadm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 20:32:20 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store
Strict-Transport-Security: max-age=31536000; includeSubDomains
i6.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5
18.210.153.197200 OK 43 B URL HTTP/1.1 i6.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5
IP 18.210.153.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb02f374b8f73825415db1bccd4bd76d
b103aa629cacdd90b39538a7561da7f8e49ad73f
caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-3A621AA0-4C6F-4D48-9236-E0FC097A17E5 HTTP/1.1
Host: i6.liadm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 20:32:20 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store
Strict-Transport-Security: max-age=31536000; includeSubDomains
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ed0d982177205beee7fe2a874d759219
86649dcfb3b756df526a4ee83445884902a709eb
ad0c07211b6d2c5f157e4f878bfe57ed6d9a094cf3925f3401b6bdd44ee0fce9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-44517167-1&cid=1180514187.1661977938&jid=2025321498&gjid=1641285282&_gid=511646429.1661977939&_u=aCDACEAiBAAAAC~&z=387095843
142.251.1.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-44517167-1&cid=1180514187.1661977938&jid=2025321498&gjid=1641285282&_gid=511646429.1661977939&_u=aCDACEAiBAAAAC~&z=387095843
IP 142.251.1.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-44517167-1&cid=1180514187.1661977938&jid=2025321498&gjid=1641285282&_gid=511646429.1661977939&_u=aCDACEAiBAAAAC~&z=387095843 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.visiblecollege.education
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 31 Aug 2022 20:32:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ed0d982177205beee7fe2a874d759219
86649dcfb3b756df526a4ee83445884902a709eb
ad0c07211b6d2c5f157e4f878bfe57ed6d9a094cf3925f3401b6bdd44ee0fce9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1b4a73637dd140aa2a59daa477faa306
7375e688e33e8398841e96d1d8d5a80885a7f744
95be73fc23236be733bc5de76f214a6c9efddf515d7479e1391e95ee1c09441c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-44517167-1&cid=1180514187.1661977938&jid=2025321498&_u=aCDACEAiBAAAAC~&z=1123182990
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-44517167-1&cid=1180514187.1661977938&jid=2025321498&_u=aCDACEAiBAAAAC~&z=1123182990
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-44517167-1&cid=1180514187.1661977938&jid=2025321498&_u=aCDACEAiBAAAAC~&z=1123182990 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 31 Aug 2022 20:32:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-44517167-1&cid=1180514187.1661977938&jid=2025321498&_u=aCDACEAiBAAAAC~&z=1123182990
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-44517167-1&cid=1180514187.1661977938&jid=2025321498&_u=aCDACEAiBAAAAC~&z=1123182990
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-44517167-1&cid=1180514187.1661977938&jid=2025321498&_u=aCDACEAiBAAAAC~&z=1123182990 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 31 Aug 2022 20:32:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1145866c536ee429cd1062cf67702ce1
7a6539548ef7146a32f8375f0c4b549561ea3f54
d20925f628903a9c88f8cf350448ed265d03e2a7ff24221dda6797501cf58a90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 20:32:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Cabin:400,700,400italic,700italic&subset=latin,latin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Cabin:400,700,400italic,700italic&subset=latin,latin-ext
IP 142.250.74.10:0
GET /css?family=Cabin:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 31 Aug 2022 20:32:17 GMT
date: Wed, 31 Aug 2022 20:32:17 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C44PDBJR2IL96OOAVENG&lib=ttq
104.84.152.241200 OK 0 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C44PDBJR2IL96OOAVENG&lib=ttq
IP 104.84.152.241:0
ASN #20940 Akamai International B.V.
GET /i18n/pixel/events.js?sdkid=C44PDBJR2IL96OOAVENG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20220831203218D6B3B7C35EE4C9CC26D8
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61ea9100f488fbe968d3522ee3004f59590455b7ccfea789ffd9dd82a0f3cdc28a08e3d631b193b6593eb0e65767c8cbbaf437bad6ecafba01b0c67e3cff4d91413
content-encoding: gzip
expires: Wed, 31 Aug 2022 20:32:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 31 Aug 2022 20:32:18 GMT
x-cache: TCP_MISS from a104-84-152-237.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=2, cdn-cache; desc=MISS, edge; dur=1, origin; dur=102
x-origin-response-time: 103,104.84.152.237
x-akamai-request-id: 5fb7329
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/sites.css?buildTime=1660841976
151.101.85.46200 OK 0 B URL HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1660841976
IP 151.101.85.46:0
GET /css/sites.css?buildTime=1660841976 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 18 Aug 2022 16:13:45 GMT
etag: W/"62fe6539-347ac"
expires: Thu, 01 Sep 2022 17:02:47 GMT
cache-control: max-age=1209600
x-host: grn41.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 Aug 2022 20:32:17 GMT
age: 1135770
x-served-by: cache-sjc10054-SJC, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 72
x-timer: S1661977937.388003,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 29746
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main.js?buildTime=1660841976
151.101.85.46200 OK 0 B URL HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1660841976
IP 151.101.85.46:0
GET /js/site/main.js?buildTime=1660841976 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Thu, 18 Aug 2022 16:14:12 GMT
etag: "62fe6554-74804"
expires: Thu, 01 Sep 2022 17:02:47 GMT
cache-control: max-age=1209600
x-host: grn117.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 31 Aug 2022 20:32:17 GMT
age: 1135769
x-served-by: cache-sjc10037-SJC, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661977937.402296,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 146400
X-Firefox-Spdy: h2
cdn.datasteam.io/js/D2A02686A39F7C.js
143.204.55.20200 OK 0 B URL HTTP/2 cdn.datasteam.io/js/D2A02686A39F7C.js
IP 143.204.55.20:0
GET /js/D2A02686A39F7C.js HTTP/1.1
Host: cdn.datasteam.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Mon, 18 Jul 2022 20:18:05 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 31 Aug 2022 03:21:27 GMT
cache-control: max-age=600,s-maxage=86400
etag: W/"9fc031330761f7e2da55de0eba6cd93d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -MueAZkxiAsswvG6Ju9t64-Wq4AQprfT4ozaf2NWuf0APnfZCh_DPg==
age: 61852
X-Firefox-Spdy: h2
tr.snapchat.com/init?pids=5574edef-da44-408c-96f2-796f6a84a753
35.190.43.134200 OK 0 B URL HTTP/2 tr.snapchat.com/init?pids=5574edef-da44-408c-96f2-796f6a84a753
IP 35.190.43.134:0
GET /init?pids=5574edef-da44-408c-96f2-796f6a84a753 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Origin: https://www.visiblecollege.education
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 20:32:18 GMT
access-control-allow-origin: https://www.visiblecollege.education
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2