r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b7407cc102d62a5acd5e61f8a79bed36
c2f4890a62454e514962b55b7fc14228339c8e90
be282de92da261128a7c8471f3067466aa9930fd0ab2a2cdda8cd2d6ce2bbd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE282DE92DA261128A7C8471F3067466AA9930FD0AB2A2CDDA8CD2D6CE2BBD74"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4936
Expires: Wed, 08 Feb 2023 21:57:20 GMT
Date: Wed, 08 Feb 2023 20:35:04 GMT
Connection: keep-alive
everfi.com/courses/k-12/saveup-saving-money-for-the-future/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https://everfi.com/courses/k-12/saveup-saving-money-for-the-future/
301 Moved Permanently 162 B URL HTTP/1.1 everfi.com/courses/k-12/saveup-saving-money-for-the-future/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https://everfi.com/courses/k-12/saveup-saving-money-for-the-future/
IP
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /courses/k-12/saveup-saving-money-for-the-future/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https://everfi.com/courses/k-12/saveup-saving-money-for-the-future/ HTTP/1.1
Host: everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 08 Feb 2023 20:35:04 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://everfi.com/courses/k-12/saveup-saving-money-for-the-future/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https://everfi.com/courses/k-12/saveup-saving-money-for-the-future/
Permissions-Policy: midi=(), camera=(), microphone=(), payment=()
Referrer-Policy: origin
X-Content-Type-Options: nosniff
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 796726502e2cb521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12369
Expires: Thu, 09 Feb 2023 00:01:13 GMT
Date: Wed, 08 Feb 2023 20:35:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14078
Expires: Thu, 09 Feb 2023 00:29:42 GMT
Date: Wed, 08 Feb 2023 20:35:04 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 20:34:13 GMT
content-type: application/json
age: 51
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: yaeuARnrA+kSyBijEVttA+4SLprfV/Ajt3Tu3xRb/yWnaQNyZtLLuXclbuSkmu5vsR0b+oBLe5s=
x-amz-request-id: 5JGNXDB5KEDR73QZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 19:46:05 GMT
age: 2939
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 20:35:04 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9d30d52c8cca7e516ee1cfe0f650a711
f84af2a5da0fabc74a7cc0fcc0053312c2356072
39a94bce3b0d0a7561e6b403847c0f770a092017ec84813a93212a6d7574b803
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39A94BCE3B0D0A7561E6B403847C0F770A092017EC84813A93212A6D7574B803"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 09 Feb 2023 02:35:04 GMT
Date: Wed, 08 Feb 2023 20:35:04 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 19:51:20 GMT
age: 2624
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3058
Expires: Wed, 08 Feb 2023 21:26:03 GMT
Date: Wed, 08 Feb 2023 20:35:05 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Pe/QVPeJC2deUg+UtV/Q+A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YHddNOWQJlBmnsagMky/9fmCF/o=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9d30d52c8cca7e516ee1cfe0f650a711
f84af2a5da0fabc74a7cc0fcc0053312c2356072
39a94bce3b0d0a7561e6b403847c0f770a092017ec84813a93212a6d7574b803
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39A94BCE3B0D0A7561E6B403847C0F770A092017EC84813A93212A6D7574B803"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21599
Expires: Thu, 09 Feb 2023 02:35:04 GMT
Date: Wed, 08 Feb 2023 20:35:05 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 280 B IP
Hash 4a2793786b1ce1206b70d285bea47b94
11747c77f2ef56d889b5148834faa184be7cfc07
af406b334b4df19c87a6911d78bbab5bc5628dc7ccac9d7d60050908c770fb52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4298
Cache-Control: max-age=90099
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:05 GMT
Etag: "63e2b3a2-118"
Expires: Thu, 09 Feb 2023 21:36:44 GMT
Last-Modified: Tue, 07 Feb 2023 20:25:06 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 325a8a10ce2837a8c6820e30572d181c
195d6189f0f10fcb301fce3af4c27028bbcb9eaa
2f1a0e948582fa64266617acc77e9beb71c5031d9cffe1bed1393a554f259810
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 05add0ef4b365a993018ba69d005451b
3baa55a75a1552fcb02b5df265339404fae81871
33edb82c0b2cb0760caaff0a827635f3c602700a4a6d40d2cdbace97d1a8f971
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4121
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:05 GMT
Last-Modified: Wed, 08 Feb 2023 19:26:24 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
cdnjs.cloudflare.com/ajax/libs/jquery-visible/1.2.0/jquery.visible.min.js?ver=6.1.1
200 OK 382 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-visible/1.2.0/jquery.visible.min.js?ver=6.1.1
IP
File type ASCII text, with very long lines (802)
Hash f2095dd733ec7385989c812e1f476de9
84df5212d2e505e8804d4f658d7ae54ec510bf50
a71c9ced606de75b437126955a4b047518c4575c9d45d7a222c9eada08fd5d0c
GET /ajax/libs/jquery-visible/1.2.0/jquery.visible.min.js?ver=6.1.1 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:05 GMT
content-type: application/javascript; charset=utf-8
content-length: 382
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-323"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 13233879
expires: Mon, 29 Jan 2024 20:35:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D5KJaFV29QmTu%2F5kwNpl8%2F1%2FB1nRNpGY4M7zk%2FZu9mmNSp7Jgse%2BwD%2FE48E%2BG67VZFxPDWNXJNqMVCuq0xys%2FXwC3TFQ4JQxSl0YkSwp1NmtFVhWvBgIUsfbGxQ%2FmQPgQyMyM3Ec"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79672658ca12b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
client-registry.mutinycdn.com/personalize/client/16919262ebbbde25.js
200 OK 25 kB URL HTTP/2 client-registry.mutinycdn.com/personalize/client/16919262ebbbde25.js
IP
File type Unicode text, UTF-8 text, with very long lines (62663)
Hash 049316510e163d6b88900f9815e562be
251514dafc23a8da8953fb29b3beea6179e529b6
cd6b9197721cd7f06771757267e8a0b950d7b7dc84663fe867ce78aa0f2ae6e4
GET /personalize/client/16919262ebbbde25.js HTTP/1.1
Host: client-registry.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: dfTcD5v4GVnt5meukoVWH8+L/o9lp1/uMKe3ndcktMaZDfqOYxifUjY5H9GOeuXoCgbgUQ/YH2Y=
x-amz-request-id: RCVMFYZ8SZ6GC005
last-modified: Fri, 03 Feb 2023 15:36:29 GMT
etag: "25fd2e5eb2496801aefaf20df2d51354"
cache-control: s-maxage=3600, max-age=0
x-amz-version-id: ir1vfqIYFv44S2HxygQRFNk7MjNFu2Zd
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
x-continent-code: EU
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:35:05 GMT
via: 1.1 varnish
age: 1726
x-served-by: cache-bma1620-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675888506.724393,VS0,VE1
vary: X-Continent-Code
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24827
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 4a2793786b1ce1206b70d285bea47b94
11747c77f2ef56d889b5148834faa184be7cfc07
af406b334b4df19c87a6911d78bbab5bc5628dc7ccac9d7d60050908c770fb52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2223
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:05 GMT
Last-Modified: Wed, 08 Feb 2023 19:58:03 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 280
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
200 OK 15 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP
Hash b25b6435475f004b9d859e85ee4ebda2
2d421319ae00272e232759bcd344f911fe3fddb2
7629a173fa276bde80b2ee374f22c00e9eec207397ac6ecd083a86884a6222e7
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:35:05 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "F07657058DF17683383862ECD0918E939DAAF948"
Expires: Thu, 09 Feb 2023 07:00:00 GMT
Last-Modified: Wed, 08 Feb 2023 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2982
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 796726592f4ab52d-OSL
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0333fa3e34f17f01e9829bd8ee662c23
be4c7a8599038facc49c73d6d14451023bc919e7
8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
res.cloudinary.com/everfi/images/c_scale,q_auto,f_auto/v1628246649/fortune-fastcompany-lockup/fortune-fastcompany-lockup.jpg?_i=AA
200 OK 46 kB URL HTTP/2 res.cloudinary.com/everfi/images/c_scale,q_auto,f_auto/v1628246649/fortune-fastcompany-lockup/fortune-fastcompany-lockup.jpg?_i=AA
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 883x566, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a09ee7433450450e6dce7d24002d0953
50f0eba61b837497344c6813dec9c513db2faa9a
ff5429b8fbbf6aeb1a6256a7eb46648abbb8ea5b50aeb42517a972e10738f3d4
GET /everfi/images/c_scale,q_auto,f_auto/v1628246649/fortune-fastcompany-lockup/fortune-fastcompany-lockup.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="fortune-fastcompany-lockup.webp"
content-type: image/webp
etag: "a09ee7433450450e6dce7d24002d0953"
last-modified: Tue, 28 Sep 2021 13:34:01 GMT
date: Wed, 08 Feb 2023 20:35:05 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2023-02-08T20:35:05.773Z;desc=hit,rtt;dur=19
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 46376
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/v1638206913/k12-teal/k12-teal.svg?_i=AA
200 OK 270 B URL HTTP/2 res.cloudinary.com/everfi/images/v1638206913/k12-teal/k12-teal.svg?_i=AA
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (427), with no line terminators
Hash 67df486dbafc056c3585a286c8a5d346
74ec64f9a560e5762cf384377db8936dd218a343
92372af69a92065da1ef81174cbc1a4b6dfdcd277c4bd6ab7e779f477fd7e708
GET /everfi/images/v1638206913/k12-teal/k12-teal.svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: attachment; filename="k12-teal.svg"
content-encoding: br
content-type: image/svg+xml
etag: W/"508005c38ce6fa6b4a9368e6a27dd5ff"
last-modified: Tue, 14 Dec 2021 14:26:39 GMT
date: Wed, 08 Feb 2023 20:35:05 GMT
vary: Accept-Encoding
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=4;cpu=1;start=2023-02-08T20:35:05.773Z;desc=hit,rtt;dur=19
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 270
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206910/k12-blue/k12-blue-svg?_i=AA
200 OK 3.9 kB URL HTTP/2 res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206910/k12-blue/k12-blue-svg?_i=AA
IP
Hash d8512486cbc2298c96eddda504b774b1
de73e777fb262416bc5a98ce62394a465ba563e2
508a48c12fcd39d7a28354f2144c42efbbf38d6cb087674beddabaa643bfec84
GET /everfi/images/f_auto,q_auto/v1638206910/k12-blue/k12-blue-svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="k12-blue.webp"
content-type: image/webp
etag: "a97a03d875b3ef916ee22291e84796d9"
last-modified: Thu, 16 Dec 2021 21:50:26 GMT
date: Wed, 08 Feb 2023 20:35:05 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2023-02-08T20:35:05.773Z;desc=hit,rtt;dur=19
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 3734
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206915/k12-yellow/k12-yellow-svg?_i=AA
200 OK 2.6 kB URL HTTP/2 res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206915/k12-yellow/k12-yellow-svg?_i=AA
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4cd1a8411bd10a551103b6fc1c607fab
d09941e8747ae3c80fe5369aa7f683a6457edb9f
5b0f23dcb7e526029a80c7716ac30700910c33e094c9ee29dfd875b24e970126
GET /everfi/images/f_auto,q_auto/v1638206915/k12-yellow/k12-yellow-svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="k12-yellow.webp"
content-type: image/webp
etag: "4cd1a8411bd10a551103b6fc1c607fab"
last-modified: Thu, 16 Dec 2021 21:48:33 GMT
date: Wed, 08 Feb 2023 20:35:05 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=5;cpu=0;start=2023-02-08T20:35:05.773Z;desc=hit,rtt;dur=19
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 2586
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_fill,g_auto,w_700,h_447/f_auto,q_auto/v1638555867/TurboTax-screenshot.jpg?_i=AA
200 OK 31 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_fill,g_auto,w_700,h_447/f_auto,q_auto/v1638555867/TurboTax-screenshot.jpg?_i=AA
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 700x447, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c97a5e615c7deafe8c6e55fe9c10258f
1731b500db89f4d774cb174e609cf4d12327156c
7cd34de542b2fac55d8e0868b7ca9edd8690537d534a87bae35166cb5440505b
GET /everfi/image/upload/c_fill,g_auto,w_700,h_447/f_auto,q_auto/v1638555867/TurboTax-screenshot.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="TurboTax-screenshot.webp"
content-type: image/webp
etag: "c97a5e615c7deafe8c6e55fe9c10258f"
last-modified: Tue, 14 Dec 2021 14:26:38 GMT
date: Wed, 08 Feb 2023 20:35:05 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2023-02-08T20:35:05.773Z;desc=hit,rtt;dur=19
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 31100
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/v1638215348/pathways_71327522dde/pathways_71327522dde.png?_i=AA
200 OK 163 kB URL HTTP/2 res.cloudinary.com/everfi/images/v1638215348/pathways_71327522dde/pathways_71327522dde.png?_i=AA
IP
File type PNG image data, 638 x 422, 8-bit/color RGBA, non-interlaced\012- data
Size 163 kB (163063 bytes)
Hash b390b802c06f9ebbad2e279c7d419fe5
8f69dd4163abcb0f7355b5bd79c8fcacdf6b915e
01de412f6fffcac3829768ef975074239114527122439ac8f37299659f4ed34b
GET /everfi/images/v1638215348/pathways_71327522dde/pathways_71327522dde.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "b390b802c06f9ebbad2e279c7d419fe5"
last-modified: Mon, 29 Nov 2021 19:49:11 GMT
date: Wed, 08 Feb 2023 20:35:05 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2023-02-08T20:35:05.773Z;desc=hit,rtt;dur=19
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 163063
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/v1642102637/prescription-drug-safety-screenshot_81207837db0/prescription-drug-safety-screenshot_81207837db0-png?_i=AA
200 OK 308 kB URL HTTP/2 res.cloudinary.com/everfi/images/v1642102637/prescription-drug-safety-screenshot_81207837db0/prescription-drug-safety-screenshot_81207837db0-png?_i=AA
IP
Size 308 kB (308133 bytes)
Hash 7f600be451e0f1858a64656fac0c847e
531878fb93c3019917e635e29ae81244362166e6
fa1f62bfd8e9fae6317a5b37837ca04e8ca14a68ed21d11a4a128e127f490709
GET /everfi/images/v1642102637/prescription-drug-safety-screenshot_81207837db0/prescription-drug-safety-screenshot_81207837db0-png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "45febeb90953d7848134db4a89c86db1"
last-modified: Thu, 13 Jan 2022 19:37:20 GMT
date: Wed, 08 Feb 2023 20:35:05 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=3;cpu=1;start=2023-02-08T20:35:05.773Z;desc=hit,rtt;dur=19
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 295542
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 1fc9f8bd2d35f62d49a86c909de873af
2e06de8d92aed8a326fa63123d1eb22c5191ad68
dab6b96c1da9a8f711ae6c8b265e87ec2a082b171ae0f0fcd7bfbd72c7793a2e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=140517
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:05 GMT
Etag: "63e3895e-117"
Expires: Fri, 10 Feb 2023 11:37:02 GMT
Last-Modified: Wed, 08 Feb 2023 11:37:02 GMT
Server: nginx
Content-Length: 279
res.cloudinary.com/everfi/images/v1638206917/k12-red/k12-red.svg?_i=AA
200 OK 207 B URL HTTP/2 res.cloudinary.com/everfi/images/v1638206917/k12-red/k12-red.svg?_i=AA
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (368), with no line terminators
Hash 90af22a6ab173205f6ddaf380b91bf84
cb5e41f97bc9291e36485c55f1200025a343766a
46e8fe814ee052b28b4db7c652a22fdd19e8001dc4db62fe5b721691aaab963e
GET /everfi/images/v1638206917/k12-red/k12-red.svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: attachment; filename="k12-red.svg"
content-encoding: br
content-type: image/svg+xml
etag: W/"4dc972573e7fd439d9545991eb3350cf"
last-modified: Tue, 14 Dec 2021 14:26:39 GMT
date: Wed, 08 Feb 2023 20:35:05 GMT
vary: Accept-Encoding
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=143;cpu=0;start=2023-02-08T20:35:05.773Z;desc=miss,rtt;dur=19,cloudinary;dur=50;start=2023-02-08T20:35:05.821Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 207
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/blackbaud/main/prod/utag.sync.js
200 OK 639 B URL HTTP/2 tags.tiqcdn.com/utag/blackbaud/main/prod/utag.sync.js
IP
Hash 736ac18f73779e02b9ae5943e1887acf
39f640e41813e1b8a41afcd40241d727efdefe17
211a7c7a2e778075e2bb00943250ec4cd648021fef90cf59d0c231338b7800e7
GET /utag/blackbaud/main/prod/utag.sync.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "736ac18f73779e02b9ae5943e1887acf:1675800878.971343"
last-modified: Tue, 07 Feb 2023 20:14:38 GMT
server: AkamaiNetStorage
content-length: 639
cache-control: max-age=300
expires: Wed, 08 Feb 2023 20:40:05 GMT
date: Wed, 08 Feb 2023 20:35:05 GMT
X-Firefox-Spdy: h2
client-registry.mutinycdn.com/personalize/client_data/16919262ebbbde25.json
200 OK 13 kB URL HTTP/2 client-registry.mutinycdn.com/personalize/client_data/16919262ebbbde25.json
IP
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 6105de972d1edb596b6e694c211e84a8
baf4943c7c228d2101310db595e1417189a241a4
c1e98ecbbad17f034ba1edda75fe4f156f8f3a3514e806673ba323310e758958
GET /personalize/client_data/16919262ebbbde25.json HTTP/1.1
Host: client-registry.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: tM2B2LJEZmX0KCW6zkm+No12IavV3v8oWWrUt6MbJBFFD7hVHzua/11DBFpA3nEcCRLqTgOpWYs=
x-amz-request-id: X5CRH4VTF9PAQ9P8
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Fri, 03 Feb 2023 15:36:30 GMT
etag: "4fc316db8a9a049b687b7f77f3b4c049"
cache-control: s-maxage=3600, max-age=0
x-amz-version-id: hc2x_HSxRv3moMEkEwcAH494FLI.GOYQ
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
x-continent-code: EU
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:35:06 GMT
via: 1.1 varnish
age: 3186
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675888506.048112,VS0,VE1
vary: X-Continent-Code
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 13108
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 2.5 kB IP
Hash d34ad658f5f00cb7dbd0065f98e85762
efe8c2090064427ec180d67b2226fc7ba0ff0f83
3485007d4035e6ac8054068c60b0e5acb19c1aed2e17bc6503200e7caf20ff9d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
client.mutinycdn.com/mutiny-client/8.4.1.66.js
200 OK 2.9 kB URL HTTP/2 client.mutinycdn.com/mutiny-client/8.4.1.66.js
IP
File type ASCII text, with very long lines (7567), with no line terminators
Hash 299c3228ebe7d0c6d325c41caa7f7185
1498bc0ef22a32b858929a95f7dbbbf92d92f183
3b32331169c110e59a466bd82bba6acc297d5fac7a8adee0ff47964c817e0ecd
GET /mutiny-client/8.4.1.66.js HTTP/1.1
Host: client.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jSEe85rRZhBwAsZnqLate5blpzkHOvIJbvfzx91XGb+GiFZ0KctMl2c26Xwc4jNNaGeSMRm7ovs=
x-amz-request-id: R5WKTYDRESX2XE46
last-modified: Thu, 02 Feb 2023 17:49:10 GMT
etag: "7038e2abc3c97f0cce472379a93e3a7c"
cache-control: max-age=31536000
x-amz-version-id: msLLnS8hQyu1LXogbSaMmVR3H190CiIQ
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:35:06 GMT
via: 1.1 varnish
age: 77099
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 332
x-timer: S1675888506.103553,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2934
X-Firefox-Spdy: h2
client.mutinycdn.com/mutiny-client/6.4.1.66.js
200 OK 29 kB URL HTTP/2 client.mutinycdn.com/mutiny-client/6.4.1.66.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash ccbb2aec992e6594f48b52c43f042987
f94c382d9eb3426c55837807e71662a018ebc1ca
3cb5ad0932d18132f9a4a23e4a1eff322e905c8dbdb6bcf233360eb11b6ed9ee
GET /mutiny-client/6.4.1.66.js HTTP/1.1
Host: client.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: M+H7pgkUgC3xHT7xrQPH6mevTCD3GwulBhy7xOhQEPitozfH+Vda3G2wjGNYJZ4kflQeSlBd2qc=
x-amz-request-id: FBP3VXNQ03XHSZDP
last-modified: Thu, 02 Feb 2023 17:49:10 GMT
etag: "2856b49355f1e0be01e8b2a9fee73d87"
cache-control: max-age=31536000
x-amz-version-id: gfTw0O4srRCV9_kRbvr78_K.qRJD9Y.E
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:35:06 GMT
via: 1.1 varnish
age: 77083
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 341
x-timer: S1675888506.109060,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 28921
X-Firefox-Spdy: h2
client.mutinycdn.com/mutiny-client/7.4.1.66.js
200 OK 11 kB URL HTTP/2 client.mutinycdn.com/mutiny-client/7.4.1.66.js
IP
File type ASCII text, with very long lines (31369), with no line terminators
Hash 79c7967d9beb1b6d56113b4f540d6774
0d7b1ed508a5449260b60f7e536b9bedaf0523d7
b24aed162f23b744a0684d1d884b629f0f76441883d58bab2dfc0b2cdb5d0d7f
GET /mutiny-client/7.4.1.66.js HTTP/1.1
Host: client.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: HbPDVu88QpXonKMIQxsLX2ks2YEk0wTVN0PFyr2R+qCdTrePAFZbkXVIKVu692EPsVJCaM+HLBk=
x-amz-request-id: RY5T7SYPF01QWT00
last-modified: Thu, 02 Feb 2023 17:49:10 GMT
etag: "12ced8c21cbda605896e0e20d4162dd4"
cache-control: max-age=31536000
x-amz-version-id: 4En9JB3XV_mhPdpf8EabNAfMfS2EjXci
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:35:06 GMT
via: 1.1 varnish
age: 77097
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 336
x-timer: S1675888506.111053,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11412
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q2
200 OK 2.3 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q2
IP
Hash f45cda919de934b8da78104be1782237
3dc47dd577853a70f275a58ea84ae83cf3a39f1e
e2d59dfaba314b0e8ad666a41eaee8b160d50fcc881d480d118a85d5345e9ff3
POST /ca/gsatlasr3dvtlsca2022q2 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:35:06 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "B66EFFBC3B54B77F30B55D9EAD7D88FE60448B53"
Expires: Thu, 09 Feb 2023 07:00:00 GMT
Last-Modified: Wed, 08 Feb 2023 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7967265b7a05b52d-OSL
ocsp.pki.goog/gts1c3
200 OK 3.2 kB IP
Hash 0ad664b90dd967f50bc1055c035e343d
57541ef2c11fecfdf1281c2f4dc0d5396e361227
235831d85aa245618e2368601171de30e8f536f71767f62e1121074bbaec95f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=655ccfc4f9
200 OK 2.6 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=655ccfc4f9
IP
File type ASCII text, with very long lines (27832)
Hash eaaabd3f60063923cd5333eb1d7a20a1
0da69706105e28896a1f6eeaa91d5bec1b82f7f1
f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=655ccfc4f9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:06 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 276735
accept-ranges: bytes
server: cloudflare
cf-ray: 7967265bca97b4e8-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=655ccfc4f9
200 OK 55 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=655ccfc4f9
IP
Hash f888d344447c7ecff5cf38976b530828
0d6bc2e5252bdd029393c11e7687913928bfe366
caaa198f0b9553731858b1960263e53070fc586dab886b9ee25e50385eaab0c5
GET /releases/v5.15.4/css/pro.min.css?token=655ccfc4f9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:06 GMT
content-type: text/css
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 276735
accept-ranges: bytes
server: cloudflare
cf-ray: 7967265bdaadb4e8-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=655ccfc4f9
200 OK 4.2 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=655ccfc4f9
IP
File type ASCII text, with very long lines (26366)
Hash 7fd743485fa194e25e2a207bff6c258a
97c999d752b95ee1ed6271a29aa58109dc17281e
dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc
GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=655ccfc4f9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:06 GMT
content-type: text/css
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 276735
accept-ranges: bytes
server: cloudflare
cf-ray: 7967265bdab1b4e8-OSL
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/vanilla-lazyload@10.19.0/dist/lazyload.min.js
200 OK 3.4 kB URL HTTP/2 cdn.jsdelivr.net/npm/vanilla-lazyload@10.19.0/dist/lazyload.min.js
IP
Hash 8a5310e9ab69e6cd1650b0463920faf0
bd9ac8d5b8c745024c40a200ea4d4e5a1fd1ed24
a9dcd8d943130dbfe1787a5b9c68021c53004acb39ae97518939c4ee44708215
GET /npm/vanilla-lazyload@10.19.0/dist/lazyload.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 10.19.0
x-jsd-version-type: version
etag: W/"157d-7oSTFmgFjdrwSUlzDWmBH9iMXEY"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:35:06 GMT
age: 28034859
x-served-by: cache-fra19154-FRA, cache-bma1681-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2168
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
everfi.com/courses/k-12/saveup-saving-money-for-the-future/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https://everfi.com/courses/k-12/saveup-saving-money-for-the-future/
200 OK 86 kB URL HTTP/2 everfi.com/courses/k-12/saveup-saving-money-for-the-future/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https://everfi.com/courses/k-12/saveup-saving-money-for-the-future/
IP
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Hash 9f42bf5e82c195ee6e52459e4fd9e7b1
1b18179a11fab516ce2235279267880204fe6b0f
1f08d817ad19a3825326191909f5f1bb216ed9bddba3c31259d040f8d1f87f78
GET /courses/k-12/saveup-saving-money-for-the-future/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https://everfi.com/courses/k-12/saveup-saving-money-for-the-future/ HTTP/1.1
Host: everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-powered-by: WP Engine
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
link: <https://everfi.com/wp-json/>; rel="https://api.w.org/", <https://everfi.com/wp-json/wp/v2/offering/1071934>; rel="alternate"; type="application/json", <https://everfi.com/?p=1071934>; rel=shortlink
x-pass-why: custom-args
permissions-policy: midi=(), camera=(), microphone=(), payment=()
referrer-policy: origin
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79672652aa60b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP
Hash 9b9530469460dbf1b64579b9c3bf2e53
cf5d7ccc68001f422f2a733702e01044af99e257
532b48f9dab14b46f160b42d5535cdaca92641d3e0d25b341dd48a4b54a601ec
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:35:06 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "58E98A6761753D3D4819834F3AFAA2C51CE7E33A"
Expires: Thu, 09 Feb 2023 08:00:00 GMT
Last-Modified: Wed, 08 Feb 2023 20:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1297
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7967265c4afcb52d-OSL
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 04:29:08 GMT
expires: Wed, 07 Feb 2024 04:29:08 GMT
cache-control: public, max-age=31536000
age: 144358
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 6.5 kB IP
Hash 4230654aa80a76d7d576f5f90332e7b8
193b616746e0c5cf0cc8ebaf45e33469309f7f49
83740ede33c7a4a4b12aff34027fb147d55f9cbb4d1c10425ce97bbb9d2d231d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2
200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 24408, version 1.0\012- data
Hash efee2d080d7bebdd2e0aeb2e030813a0
f8d38f9f9584e48c2e469877ebd94232265585f1
bca1d88ada544d9c80872d4da27133fab6d347361fa26e932b47ec9559088fd0
GET /s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 21:48:36 GMT
expires: Fri, 02 Feb 2024 21:48:36 GMT
cache-control: public, max-age=31536000
age: 513990
last-modified: Tue, 26 Apr 2022 15:50:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 10:25:03 GMT
expires: Mon, 05 Feb 2024 10:25:03 GMT
cache-control: public, max-age=31536000
age: 295803
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 22504, version 1.0\012- data
Hash 1c6c65523675abc6fcd78e804325bd77
898d9808304dc157f5dcb18ca169ec6e2b96b3d7
08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92
GET /s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 04:28:57 GMT
expires: Wed, 07 Feb 2024 04:28:57 GMT
cache-control: public, max-age=31536000
age: 144369
last-modified: Tue, 26 Apr 2022 16:04:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP
Hash 8cf0b610efac16196b05cb1ca469ff56
23f2e2e5fa1d005c57cf22ab58d82120e2dd55f7
f003ec44ac40d51401723f29ebad80225a40a19ead0922877c814eb756bd8f04
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:35:06 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "D074AA1C337F344B2DFF6341CBB2B39EFB4FDC0D"
Expires: Thu, 09 Feb 2023 07:00:00 GMT
Last-Modified: Wed, 08 Feb 2023 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2981
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7967265c9b57b52d-OSL
ocsp.pki.goog/gts1c3
200 OK 803 B IP
Hash 0dd6ed540fa3b1ff4bb82ec9faab9821
924aa55f6802389c3416fc4cf73a61927f282177
30dc915be49a5768fb3d4c6cf8afd475409f2bc1535f666c27ad4ba5723604e8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
res.cloudinary.com/everfi/image/upload/c_scale,w_732,h_546/f_auto,q_auto/v1615774462/Screen-Shot-2018-06-06-at-4.30.59-PM_201343fd232.jpg?_i=AA
200 OK 23 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_732,h_546/f_auto,q_auto/v1615774462/Screen-Shot-2018-06-06-at-4.30.59-PM_201343fd232.jpg?_i=AA
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 732x546, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e6e3dcbf496bf46b458377be9ad90b24
5d5bfc21753a4c32bfd423bc61ff0ddb1563db54
f586d222cf9f2a5cc305ed1ed5feb74adc68cb3d86e1787de3023fb5674c000d
GET /everfi/image/upload/c_scale,w_732,h_546/f_auto,q_auto/v1615774462/Screen-Shot-2018-06-06-at-4.30.59-PM_201343fd232.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="Screen-Shot-2018-06-06-at-4.30.59-PM_201343fd232.webp"
content-type: image/webp
etag: "e6e3dcbf496bf46b458377be9ad90b24"
last-modified: Tue, 14 Dec 2021 01:44:30 GMT
date: Wed, 08 Feb 2023 20:35:06 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2023-02-08T20:35:06.394Z;desc=hit,rtt;dur=16
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 23314
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_700,h_446/f_auto,q_auto/v1657567290/2022-2023-new-content.png?_i=AA
200 OK 34 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_700,h_446/f_auto,q_auto/v1657567290/2022-2023-new-content.png?_i=AA
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash a96bd57f1ad8c808d8336b9bf67bc45b
15f927db7371c61b930f9b02f34204ee2ba1f1f2
077aad9e98d550ae86833b31f89184394224cecd2530f1f556a85d334c489731
GET /everfi/image/upload/c_scale,w_700,h_446/f_auto,q_auto/v1657567290/2022-2023-new-content.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="2022-2023-new-content.webp"
content-type: image/webp
etag: "a96bd57f1ad8c808d8336b9bf67bc45b"
last-modified: Mon, 11 Jul 2022 19:45:14 GMT
date: Wed, 08 Feb 2023 20:35:06 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;start=2023-02-08T20:35:06.397Z;desc=hit,rtt;dur=16
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 33580
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:300,400,400italic,700,900
200 OK 42 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:300,400,400italic,700,900
IP
Hash fdf76e00454e26cd4a29a6e7e6c9b8bf
682daef5e4020aa2e2907da2b995c91d4e720d94
0973147c2cdc0c7d79349782a52ec6c279dd1d82d3e7c328ae2a5bdfd538d493
GET /css?family=Lato:300,400,400italic,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 20:35:05 GMT
date: Wed, 08 Feb 2023 20:35:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_1270,h_784/f_auto,q_auto/v1653600554/306-feature.jpg?_i=AA
200 OK 139 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_1270,h_784/f_auto,q_auto/v1653600554/306-feature.jpg?_i=AA
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1270x784, components 3\012- data
Size 139 kB (139440 bytes)
Hash a16aae583e4634e743fb443af542fd07
5fc5d0c7b504a9ee454b3d94b0a3eb9f88cce510
945f826d7bc47963fa41b2cf5327daca7b01044e594c655995537c1fc6880543
GET /everfi/image/upload/c_scale,w_1270,h_784/f_auto,q_auto/v1653600554/306-feature.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "a16aae583e4634e743fb443af542fd07"
last-modified: Sat, 14 Jan 2023 06:27:36 GMT
date: Wed, 08 Feb 2023 20:35:06 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=11;cpu=0;start=2023-02-08T20:35:06.392Z;desc=hit,rtt;dur=16
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 139440
X-Firefox-Spdy: h2
info.everfi.com/index.php/form/getForm?munchkinId=410-YCZ-984&form=9079&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&callback=jQuery112401995541712635427_1675888562203&_=1675888562204
200 OK 79 kB URL HTTP/2 info.everfi.com/index.php/form/getForm?munchkinId=410-YCZ-984&form=9079&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&callback=jQuery112401995541712635427_1675888562203&_=1675888562204
IP
Hash e32d7b385dac93133ede35b22a1003a0
942c316a6c18026395dbeedaa1085ee314caeba1
e6261a1b5bbc8ed7a80d6c1fb7961693eefbdeb74b5688aabe325201ed6b5b12
GET /index.php/form/getForm?munchkinId=410-YCZ-984&form=9079&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&callback=jQuery112401995541712635427_1675888562203&_=1675888562204 HTTP/1.1
Host: info.everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: __cf_bm=JU1feGmRctSYBuRzgctUMv9Cy7kDDC4MDsLHkhPD3.4-1675888505-0-AQPKyoHNdrgrF5Y3GA51Wwzvdc/5nbRXaJtKRUwVRgt+TrPJbbs9TvYaAmFTDW3ZcX/PzV95b6pdyRNbYyuYKT0=; mutiny.user.token=e8214ef1-dcf8-4291-b487-6f72c99b7735; mutiny.user.session=ba3b1a35-1f17-4c86-9b5c-1aa0c7bb6756
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:06 GMT
content-type: application/javascript; charset=utf-8
cached: true
vary: Accept-Encoding
server: cloudflare
cf-ray: 7967265c79890b69-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_500,h_336/f_auto,q_auto/v1615811746/Endeavor_Website_preview-e1533064446603.png?_i=AA
200 OK 26 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_500,h_336/f_auto,q_auto/v1615811746/Endeavor_Website_preview-e1533064446603.png?_i=AA
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x336, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e718701be14dfb45e8e70950d88f2e54
3ff84aafe455c94e074eb7e5e2c9eb30ec588e74
589bedc0c2f982eee65a2868782c6e41215eda4222cd3246fa2efab8feee1bf4
GET /everfi/image/upload/c_scale,w_500,h_336/f_auto,q_auto/v1615811746/Endeavor_Website_preview-e1533064446603.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="Endeavor_Website_preview-e1533064446603.webp"
content-type: image/webp
etag: "e718701be14dfb45e8e70950d88f2e54"
last-modified: Tue, 14 Dec 2021 02:23:41 GMT
date: Wed, 08 Feb 2023 20:35:06 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=242;cpu=0;start=2023-02-08T20:35:06.394Z;desc=miss,rtt;dur=16,cloudinary;dur=57;start=2023-02-08T20:35:06.441Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 26104
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 6a01a1cb62e9d8dcf9c746da7d0a69b8
95440ca2785209370ba2394c9466e361735ecb66
7927e64b9d5090d6e757323fd02c1f6058561d731c52de3fe8f6f10ac2bfa024
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=145168
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:06 GMT
Etag: "63e39b8a-118"
Expires: Fri, 10 Feb 2023 12:54:34 GMT
Last-Modified: Wed, 08 Feb 2023 12:54:34 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
200 OK 279 B IP
Hash 59274586b00249f3cbd2ff5dc9071563
76b59ad65277082e1811d339bf03d953037e0a25
7e6c2cd14a5c882d4a742f80bc48f2c9704ea2ca12e2e98f9f144ce230450eb0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4803
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:06 GMT
Last-Modified: Wed, 08 Feb 2023 19:15:04 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 278 B IP
Hash dba40f6ad804f091736898d753428480
09bacfaee2996b419d26e0030ba62bdd11aaa29a
893d4dce599de7fd300233b7d306af3711d5e8396acf9429847521d5330347f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6368
Cache-Control: max-age=130662
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:06 GMT
Etag: "63e34a00-116"
Expires: Fri, 10 Feb 2023 08:52:48 GMT
Last-Modified: Wed, 08 Feb 2023 07:06:40 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 278
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 3665df3873f0b47db79ac8b3e1f2fe9d
84c8cd3fc93b9f126071cee4beb1ae806877a42b
89c1fb6180fe564bb8ea59eca207b9805b7b33230a0a7c775e2882c5a8da6921
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 20:35:06 GMT
Last-Modified: Wed, 08 Feb 2023 18:48:59 GMT
Server: ECS (nyb/1D2A)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2FE5nNPO5YELUR5plPEY-ihx15QyP0fEpKcLQvBlgQugvKnSI5NR8w==
Age: 6367
ob.healthroundprince.com/i/9ebca9e35a6781e1317f22e9acd57b94.js
200 OK 32 kB URL HTTP/2 ob.healthroundprince.com/i/9ebca9e35a6781e1317f22e9acd57b94.js
IP
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash fb7494f64c015f8f4029616ae1f2bcf2
3fcd3d21cba99da8a924223e48fd3bb3fa9f6216
1ba1b1fb427b380bdb44c066ae4d6a98c830b0cd03ecd16eddb72297dfb22456
GET /i/9ebca9e35a6781e1317f22e9acd57b94.js HTTP/1.1
Host: ob.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 31909
content-encoding: gzip
server: Caddy
date: Wed, 08 Feb 2023 11:38:38 GMT
cache-control: max-age=43200
expires: Wed, 08 Feb 2023 23:38:38 GMT
etag: "15758-/t9aj+7Tfi1mOFzpwrZBH1jcGFc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2Ouq54oouVdCTuc6ueLewX2AH7wBorZgCW5eWB_kQITHydxUeveGrQ==
age: 32188
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 1e41d2bb861e28f05f0735ad1b0d035e
a73686fbc5ab7cce5e2925bde0057af5acb0af74
8f477857ad04a959976a41e3f3500cc527f5bee412d6fd0616be96a25b57572a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1350
Cache-Control: max-age=148683
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:06 GMT
Etag: "63e3a3ff-1d7"
Expires: Fri, 10 Feb 2023 13:53:09 GMT
Last-Modified: Wed, 08 Feb 2023 13:30:39 GMT
Server: ECS (amb/6BAB)
X-Cache: HIT
Content-Length: 471
cdn.c212.net/c.min.js
200 OK 747 B IP
File type ASCII text, with very long lines (747), with no line terminators
Hash 9f5634a151b9e5ecb2adec9462f783d6
3d6ac40aed2275277131d462168dac9d27a628f0
10fdc76cd92396525cf18941196d2251aa4d0c05ba2a0a5421e3af99c01503ae
GET /c.min.js HTTP/1.1
Host: cdn.c212.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 747
last-modified: Fri, 24 Jan 2020 19:12:36 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 07:57:30 GMT
etag: "9f5634a151b9e5ecb2adec9462f783d6"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1DgkNfML2UrPbfJQMHuCvDxP77Gy4xVy-IOLDqNgXSq8NjzO2h-56Q==
age: 45470
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 68bd14f44f272890a22261faaab4ee96
030c029e314708bfff74272f6f5b4d93c3ffd786
a3549f81820a426c2806c1fc23bf366983dcc10f6c106bee71ab17193b7458b1
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 20:35:06 GMT
Last-Modified: Wed, 08 Feb 2023 18:46:14 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 10jJ6ZaWWxueO-ND2LLvYLxfvA3Bqs_aDe9Op8kLq3d5su71KBZjqA==
Age: 6532
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C48PVR0E6TN457G0PKCG&lib=ttq
200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C48PVR0E6TN457G0PKCG&lib=ttq
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2298)
Hash b0f3aa92c8ff51d1bb8a8a5cc321942a
07ae0e63fd88492ad0ae9cbecb634795bc8aecae
2ab2dc380f1fae5b02b4a638cc3bf67aa050e7cfe13b6715b529fff3fd4fb43c
GET /i18n/pixel/events.js?sdkid=C48PVR0E6TN457G0PKCG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230208203506942E08E185CB6CA93C13
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb65f445b8bac085270f8e265d29bb59c310afded5b099d24ef9c87781221a92ba4760844757d417fa454d7cb9022ca3b96cc5b93aa054108e25b84fc80427af809c6caf0afebbb4430bd43e0bdb3243c360e92dd491413ca5caa404c1ccd3e4ba3
content-encoding: gzip
content-length: 1133
x-origin-response-time: 6,23.220.104.209
x-akamai-request-id: b2e06ded.3fe8d48
expires: Wed, 08 Feb 2023 20:35:06 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 08 Feb 2023 20:35:06 GMT
x-cache: TCP_MISS from a95-101-10-196.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
vary: Accept-Encoding
set-cookie: _ttp=2LTIB3QrMCRJOnDXOWJse0HTX8R; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-220-104-209.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=103, origin; dur=6, inner; dur=4
x-parent-response-time: 109,95.101.10.196
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12299
Expires: Thu, 09 Feb 2023 00:00:05 GMT
Date: Wed, 08 Feb 2023 20:35:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12299
Expires: Thu, 09 Feb 2023 00:00:05 GMT
Date: Wed, 08 Feb 2023 20:35:06 GMT
Connection: keep-alive
www.googletagmanager.com/gtm.js?id=GTM-WZ264LM
200 OK 503 B URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WZ264LM
IP
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
GET /gtm.js?id=GTM-WZ264LM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 Feb 2023 20:35:06 GMT
expires: Wed, 08 Feb 2023 20:35:06 GMT
cache-control: private, max-age=900
last-modified: Wed, 08 Feb 2023 18:39:10 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 99587
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.optimizely.com/js/22133900366.js
200 OK 83 kB URL HTTP/2 cdn.optimizely.com/js/22133900366.js
IP
File type ASCII text, with very long lines (65468)
Hash c20e5f273bcdb5423220d5f4855ca570
c2d1b70df6993064c9fcf810782d2d212fe39924
99b8f4f9bf46adda4d6f24d574045e73020a85a6e94ae487599b547589849a38
GET /js/22133900366.js HTTP/1.1
Host: cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 5bX3cPO91jkhCdxgjAhpT69jxeJq+oVO3ASdUt6eioJj9WY663bqjCWUAv+irDHpGEaAv2xgLLk=
x-amz-request-id: KCKSKJE0BR705FHT
x-amz-replication-status: COMPLETED
last-modified: Wed, 21 Sep 2022 18:09:24 GMT
etag: "c20e5f273bcdb5423220d5f4855ca570"
x-amz-server-side-encryption: AES256
x-amz-meta-revision: 8
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: zxXHkbanS0Al8Kk6PQ5fj52mV_qPPwri
accept-ranges: bytes
content-type: text/javascript; charset=utf-8
server: AmazonS3
content-length: 82615
vary: Accept-Encoding
cache-control: max-age=120
date: Wed, 08 Feb 2023 20:35:06 GMT
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=16, origin; dur=124, cdn;desc="AkamaiION";dur=0,rtt;desc="18";dur=0,cdnip;desc="23.38.200.155";dur=0,cdnmap;desc="a5048.dsca.akamaiedge.net";dur=0,proto;desc="h2";dur=0, ak_p; desc="465524_388255516_318013073_13975_1366_16_0";dur=1
access-control-max-age: 86400
access-control-expose-headers: x-amz-meta-revision
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MWNiNWY1N2YyMA.js
200 OK 66 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWNiNWY1N2YyMA.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash 6d7a969e359cdd64d60cd7203cd52920
0b21ff1eb4ba1b0d5224f965d37fab7befd4d9ec
d9877c03a25f2f85f577c12d2da58033295dd9c80964a15ab9e692dbb62d1167
GET /i18n/pixel/static/main.MWNiNWY1N2YyMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: _ttp=2LTIB3QrMCRJOnDXOWJse0HTX8R
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 2023020721083048E1C9F8EEF0C7CE1FD0
x-tt-trace-host: 01e2cb5113e80710ff8e1892ebd7a2d475967fc99842c105e3cbc3203a00a402d7431f5e223140367c83accbaadb833f5afcf3f5023d698127621999a993156e2f8560abb5f1644c2bee954e42f435ee2fa35b0f1e415a1afc7887ae5b06d6c4e1
content-encoding: gzip
content-length: 65980
date: Wed, 08 Feb 2023 20:35:06 GMT
x-cache: TCP_HIT from a95-101-10-196.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=156
x-akamai-request-id: 3fe8e62
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg
200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 544181f4aba24fc687a14522dd20f720
2b117270563b8c466ec774acce55271c38f6135b
607c45cc5b4726b92c8507988bbb90ac6a44a3cf22b290030d440266350099a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4961
x-amzn-requestid: c3b9db99-726f-4473-a6b6-9cff0dceb949
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fswe1GeRoAMFiAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db612b-17b52fcd74e374f1104af709;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 07:07:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dSxTM3mmYK8cLOy5_x4o-lew1goEgwT4fBHi0pM-HSK_qBC6rDAlzg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 05:47:57 GMT
age: 53229
etag: "2b117270563b8c466ec774acce55271c38f6135b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12299
Expires: Thu, 09 Feb 2023 00:00:05 GMT
Date: Wed, 08 Feb 2023 20:35:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12299
Expires: Thu, 09 Feb 2023 00:00:05 GMT
Date: Wed, 08 Feb 2023 20:35:06 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 279 B IP
Hash 59274586b00249f3cbd2ff5dc9071563
76b59ad65277082e1811d339bf03d953037e0a25
7e6c2cd14a5c882d4a742f80bc48f2c9704ea2ca12e2e98f9f144ce230450eb0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6333
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:06 GMT
Last-Modified: Wed, 08 Feb 2023 18:49:33 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9c2a9eee923b84d4e06438a8b2acaff
520b122e3ce52220af153fee26bb7067283f9075
9ff4236fdcd05210a9c8bb48ea68179e142b1b05c8b19dd66282590dff69fa22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10058
x-amzn-requestid: 94374454-1e89-4c43-895b-0a90f39b851d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O5vEgcoAMFctg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c50a-0bf11cad4b0818c36188ba91;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qYXu_I4vL00EOopA1nQcxCTMKf4nObKFk9XQozhw6FezKsfTDem3Mw==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:06:35 GMT
etag: "520b122e3ce52220af153fee26bb7067283f9075"
content-type: image/jpeg
age: 80911
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8a3fa4f1ec82d501942f9db3de2cb7d
b91c2aea7f2fb26131c8929b254c5596a1bb25ff
9d246eeab8ba04c775a03fd960c8859934a0accb737e845e89aba40bc573fdaa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6342
x-amzn-requestid: b2b61a71-5326-4fc6-baba-7baad29cf7c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkbHfDIAMF5AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c482-5cc4028d01d05305637af317;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: iIQAy6CQSvnvQ79UJ6ifJbs-0kEqUYe8OyCqPb2HSKxoDoLykOyaLg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:52:28 GMT
age: 81759
etag: "b91c2aea7f2fb26131c8929b254c5596a1bb25ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3ed9aa0-a88e-4b92-a2bb-567735d813b6.jpeg
200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3ed9aa0-a88e-4b92-a2bb-567735d813b6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fbe359ce6fb136add75c8f3d3cc06330
e6584afcf39b6fad21eccbcce95c6645b8e1b3b8
29478bf1b8168dc457bb7d298448a78e1040bd3aa80cbf11cfa37475568590d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3ed9aa0-a88e-4b92-a2bb-567735d813b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8170
x-amzn-requestid: d1ddb47f-3472-4015-8d55-72f435671f03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f5aSPHiroAMFpSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e070da-114975440d70915472cdba2f;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 03:15:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0w6JgtsKSRHLPJ3LyY6YUI8N7PS-gVlLuivQUq9jdyeYYm3STiJJIQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 04:34:33 GMT
age: 57634
etag: "e6584afcf39b6fad21eccbcce95c6645b8e1b3b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
embed.formhq.net/v1/base.js
200 OK 13 kB URL HTTP/2 embed.formhq.net/v1/base.js
IP
File type ASCII text, with very long lines (6384), with no line terminators
Hash e7a19fc6dc00d847c1d0efc997f88ebb
6e2852c6352aca6e2b825067898d23d96d4bc1b6
3d747db1430c603c0a2499cc253fbc320abbb5eab76d81a065e67fe87a0d7346
GET /v1/base.js HTTP/1.1
Host: embed.formhq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:06 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=6385
etag: W/"63612f3e-18f1"
last-modified: Tue, 01 Nov 2022 14:37:50 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: max-age=1800
cf-cache-status: HIT
age: 5224
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=elNOpcZDRSW1Fpw4qa6iMaDaY2uKcDhF1o1k0qPImIbLoJMRpVQJvEpd9q6SIi3PZPHO1Fm6UMvNKpcXc7r2pRnzKf1B2SPtdwNp9ZMEPz85PK%2BqA%2F%2Fhfn1s4O3kiJJOtE4J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7967265f3adb0b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2
marketo.clearbit.com/assets/v1/marketo/forms.js
200 OK 28 kB URL HTTP/2 marketo.clearbit.com/assets/v1/marketo/forms.js
IP
File type Unicode text, UTF-8 text, with very long lines (3400)
Hash bf6aa97d440b453e5d58cd5bcf2e585c
cd59575ea6262fa79890d53880697f82fb251cf0
4063e72c353fcac556ca10a2d6d26666e4b486aaefaa1872585b3f9e88b91adb
GET /assets/v1/marketo/forms.js HTTP/1.1
Host: marketo.clearbit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
last-modified: Fri, 06 Jan 2023 21:26:29 GMT
set-cookie: rack.session=BAh7CUkiD3Nlc3Npb25faWQGOgZFVG86HVJhY2s6OlNlc3Npb246OlNlc3Npb25JZAY6D0BwdWJsaWNfaWRJIkVlZWUyN2VmZTU2MTU4MDg4OTZhMzMyNTA1ODQ1MDE3ZjQxOWVlYzg5OTQxMTM0N2Q1ZjBjNjRhZjU0YmIzNzg4BjsARkkiCWNzcmYGOwBGSSIxd1VpRUtkMnpaVUZ5TFJWbnUxd29ldmhiRGRWQ0hSZEh0RjczV0dtakMxRT0GOwBGSSINdHJhY2tpbmcGOwBGewZJIhRIVFRQX1VTRVJfQUdFTlQGOwBUSSItMTFjZDFkMmEwOWFkM2NjMzM4ZWY4ZDY5NmY1NTdhYmNkZjNjMDNkMAY7AEZJIg5fX0ZMQVNIX18GOwBGewA%3D--62c6cf232ed616dd8f7cb3cf4792f91b85c6c522; path=/; expires=Wed, 15 Feb 2023 20:35:07 GMT; secure; HttpOnly
content-length: 28086
date: Wed, 08 Feb 2023 20:35:06 GMT
server: envoy
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 5ed011033fa864bdcb12a278c34cc61c
cbd91d20ab6a6af6a71edacf0178e63efc7a8bac
22cc4984d25607e73ecf203777e439fd0639755c59d7ca008ed59986d851664c
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 08 Feb 2023 20:35:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 04:36:23 GMT
Expires: Thu, 09 Feb 2023 04:36:23 GMT
ETag: "cbd91d20ab6a6af6a71edacf0178e63efc7a8bac"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
my.hellobar.com/edcdff19ac78bb7a167b2e3617e196453f5eaefa.js
200 OK 34 kB URL HTTP/2 my.hellobar.com/edcdff19ac78bb7a167b2e3617e196453f5eaefa.js
IP
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 25dbc652da8164e852b6751bdd98784e
68e160a15c29e943d637c73ec56ae53dd6b08259
a68342e4dcee47f7d96c4fdd7097165eddc922763e37d36e06170f0542cb3985
GET /edcdff19ac78bb7a167b2e3617e196453f5eaefa.js HTTP/1.1
Host: my.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:07 GMT
content-type: text/javascript
cache-control: max-age=86400, must-revalidate, proxy-revalidate, s-maxage=10
cf-bgj: minify
etag: W/"3a90fde25f285be6d356751480479941"
last-modified: Tue, 07 Feb 2023 23:29:22 GMT
x-amz-id-2: b9LsrUQF9HYMS32EJ1BcmLJ9IX1OEQqME7p/t4ofhjZfis237y9fG88OwmCOhvrIzwi997hc+uI=
x-amz-request-id: WMQKSS1AYXA6VK3Z
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7967265f4cc2b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_5f1fb.js
200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_5f1fb.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6c0c7514093e7b1dddb57107c47ead16
c167c044befc49e42d83c01940635aff4a7d78d4
15aaec1913aa1ce973d363428180001a96e2b2946044d6cdd868ccf3dffa7ac3
GET /i18n/pixel/static/identify_5f1fb.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: _ttp=2LTIB3QrMCRJOnDXOWJse0HTX8R
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 2023020721083148E1C9F8EEF0C7CE2033
x-tt-trace-host: 01e2cb5113e80710ff8e1892ebd7a2d475967fc99842c105e3cbc3203a00a402d7431f5e223140367c83accbaadb833f5a0d207b3e8d025f4e3dd28297e4174826a8101724b261f2fc32b2ddb21563a7fb80c1d893b6fef16c63e64e063b97a44f
content-encoding: gzip
content-length: 30893
date: Wed, 08 Feb 2023 20:35:07 GMT
x-cache: TCP_MEM_HIT from a95-101-10-196.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=1, inner; dur=3
x-akamai-request-id: 3fe8fb6
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/blackbaud/main/prod/utag.9.js?utv=ut4.48.202206141541
200 OK 1.2 kB URL HTTP/2 tags.tiqcdn.com/utag/blackbaud/main/prod/utag.9.js?utv=ut4.48.202206141541
IP
File type ASCII text, with very long lines (995)
Hash cfd5c0a066e7addbdc9778a134b80d9c
9d34e630d703b18e1d48f4dc0c7e2f048b0ec368
ce79520f243faec0d953a70f3ac392ecc8e7936ab7e80bc94212d54af1f5f464
GET /utag/blackbaud/main/prod/utag.9.js?utv=ut4.48.202206141541 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "4ff103aae37a4ed488af34613295b078:1655221329.681708"
last-modified: Tue, 14 Jun 2022 15:42:09 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Thu, 23 Feb 2023 20:35:07 GMT
date: Wed, 08 Feb 2023 20:35:07 GMT
content-length: 1150
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 989
Origin: https://everfi.com
Connection: keep-alive
Cookie: _ttp=2LTIB3QrMCRJOnDXOWJse0HTX8R
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2023020820350778A37DC869D336E7C96F
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb65f445b8bac085270f8e265d29bb59c31ee0bab8a27d5ff119a9c491f8d68c3551a4dcc3287bdac638e13bb8f9728b33b56c599b6b50e0dfe6795f26924afba9726149a6480417f636e125b0a4ed73dbfd0615e493e1a032cf9a80d76a28dd8cb
x-origin-response-time: 27,23.48.215.143
x-akamai-request-id: 10535270.3fe8fc5
expires: Wed, 08 Feb 2023 20:35:07 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 08 Feb 2023 20:35:07 GMT
x-cache: TCP_MISS from a95-101-10-196.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-cache-remote: TCP_MISS from a23-48-215-143.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=104, origin; dur=27, inner; dur=15
x-parent-response-time: 125,95.101.10.196
X-Firefox-Spdy: h2
dx.mountain.com/spx?dxver=4.0.0&shaid=33973&tdr=&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=14217721534132732term=value
200 OK 3.9 kB URL HTTP/1.1 dx.mountain.com/spx?dxver=4.0.0&shaid=33973&tdr=&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=14217721534132732term=value
IP
File type ASCII text, with very long lines (528)
Hash cfd5890aed0d94a0856567401c1928f0
cb767280da51d6480d605ed4c43f09f1c94326ff
625074652d20a68116a9bf7b42c8b867eb881dbef5ae11c20213df887d389cb7
GET /spx?dxver=4.0.0&shaid=33973&tdr=&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=14217721534132732term=value HTTP/1.1
Host: dx.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Wed, 08 Feb 2023 20:35:06 GMT
x-envoy-upstream-service-time: 3
server: istio-envoy
connection: close
transfer-encoding: chunked
ws.zoominfo.com/pixel/uaPMNNWAvRE9GecQvShh
200 OK 2.1 kB URL HTTP/2 ws.zoominfo.com/pixel/uaPMNNWAvRE9GecQvShh
IP
File type ASCII text, with very long lines (5810), with no line terminators
Hash 976fa5d52a3c2c541891468ee35eb06d
21479b7dd5bbe35cc85f0af9047ffd665ba8366b
d3aef3ee1edcc4235f55d4f359995c406524b732faba75569039cafaad38ee14
GET /pixel/uaPMNNWAvRE9GecQvShh HTTP/1.1
Host: ws.zoominfo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:06 GMT
content-type: text/javascript
vary: Accept-Encoding
x-powered-by: Express
x-content-type-options: nosniff
access-control-allow-headers: Content-Type,cf-ipcountry,service-version,x-appengine-user-ip,x-forwarded-for, x-ws-collect-type
access-control-allow-credentials: true
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: visitorId=bab35c5066de5c1d3629be823b37fcf5e3861bb38bcb32f88c3f681db859fac3; Max-Age=31536000; Domain=ws.zoominfo.com; Path=/; Expires=Thu, 08 Feb 2024 20:35:06 GMT; Secure; SameSite=None
__cf_bm=8YxN0kmpaqI4kVDRyL9p8k6e6djVUFXayzRncnBGuNw-1675888506-0-AZF3ix3lB/0d/4B6U8+jICtQOX21/Ce4/B/lEeho1xp4TOHr4E9/HNZdgsHmsAHa1RI9uNH9i3OJ5tGGFSwHNt4=; path=/; expires=Wed, 08-Feb-23 21:05:06 GMT; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
_cfuvid=m2E_wmGSo.Ydfz5gv4HdChFLGgx3MaTy5vVlTKs7mcg-1675888506939-0-604800000; path=/; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7967265f4ef9b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=blackbaud/main/202302072014&cb=1675888563338
200 OK 2 B URL HTTP/2 tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=blackbaud/main/202302072014&cb=1675888563338
IP
File type ASCII text, with no line terminators
Hash 7bc0ee636b3b83484fc3b9348863bd22
ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610
a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb
GET /utag/tiqapp/utag.v.js?a=blackbaud/main/202302072014&cb=1675888563338 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "7bc0ee636b3b83484fc3b9348863bd22:1460653071"
last-modified: Thu, 14 Apr 2016 16:57:51 GMT
server: AkamaiNetStorage
content-length: 2
cache-control: max-age=600
expires: Wed, 08 Feb 2023 20:45:07 GMT
date: Wed, 08 Feb 2023 20:35:07 GMT
X-Firefox-Spdy: h2
a20497791765.cdn.optimizely.com/client_storage/a20497791765.html
200 OK 843 B URL HTTP/2 a20497791765.cdn.optimizely.com/client_storage/a20497791765.html
IP
File type HTML document, ASCII text, with very long lines (1371)
Hash c122a3cab7bc9bab0fed7f26b3334706
35877323b39ff4632ee735d8f8e29e71b4fc4aa9
6015474cec9d8aba396ffac0073f15bf6299ade9f00f709be8ace492388b8c10
GET /client_storage/a20497791765.html HTTP/1.1
Host: a20497791765.cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: akTvBZHS9kSAStWBSLicpC35/ZU6lVtsWWjIlbtOc3HmRsJIEvwTJWlK8bwz0HJKNaX8dLj/Ols=
x-amz-request-id: TNYAV7N5JMPY49FX
x-amz-replication-status: PENDING
last-modified: Mon, 06 Feb 2023 19:47:06 GMT
etag: "28621884f3ecb72e8b12ab992dbdf7e6"
x-amz-server-side-encryption: AES256
x-amz-meta-pci_enabled: False
x-amz-version-id: hgV5znTzEYJtrLxexDzM6fRnO_WjaB9B
accept-ranges: bytes
content-type: text/html; charset=utf-8
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=120
x-akamai-transformed: 9 - 0 pmb=mRUM,2
content-encoding: gzip
date: Wed, 08 Feb 2023 20:35:07 GMT
content-length: 843
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=12, origin; dur=106, cdn;desc="AkamaiION";dur=0,rtt;desc="2";dur=0,cdnip;desc="104.110.8.48";dur=0,cdnmap;desc="a4728.x.akamaiedge.net";dur=0,proto;desc="h2";dur=0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 4db8c5eea8252c02db969bca4905f46d
576390ca9ba16de46c301ed86c841da42a8bea71
f7bc002bcee242228e201a3c4d0edf2a3825629dc221b812b549723397429002
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6238
Cache-Control: max-age=164410
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:07 GMT
Etag: "63e3ce57-117"
Expires: Fri, 10 Feb 2023 18:15:17 GMT
Last-Modified: Wed, 08 Feb 2023 16:31:19 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 471 B IP
Hash 39f72ee961e1afed82fed52212ec6b65
557eae661c60433cfbbe14dbca5df31259e0c59b
b527888545839ca25e30f2fe8d409f3de6ab08d98a974dd14626b728e5ead13c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4275
Cache-Control: max-age=136493
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:07 GMT
Etag: "63e368f5-1d7"
Expires: Fri, 10 Feb 2023 10:30:00 GMT
Last-Modified: Wed, 08 Feb 2023 09:18:45 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
snap.licdn.com/li.lms-analytics/insight.min.js
200 OK 4.8 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13351)
Hash 74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=37129
date: Wed, 08 Feb 2023 20:35:07 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2
munchkin.marketo.net/munchkin.js
200 OK 728 B URL HTTP/1.1 munchkin.marketo.net/munchkin.js
IP
File type ASCII text, with very long lines (521)
Hash 51a92d8c69733d719447dea0416ed039
69f4c1e0b7ebba812bc096708d57627927dff265
cb483c0ea4012ac512bcba6204b37622b388c1aefd4ae9028f60abb965f23d29
GET /munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "92b41a298690c047b0c4602dd843cba4:1662686319.691662"
Last-Modified: Fri, 09 Sep 2022 01:18:39 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 08 Feb 2023 20:35:07 GMT
Content-Length: 728
Connection: keep-alive
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
connect.facebook.net/en_US/fbevents.js
200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: z1eBCpi66RXnf9j3goy4cskXc+uboC6NcfXGmG/pS6C4rnuZtkrvHn9IRHF9XZiPbzyYIoQ1pmBreDlGG055DA==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1904183273
date: Wed, 08 Feb 2023 20:35:07 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
player.vimeo.com/api/player.js
200 OK 6.3 kB URL HTTP/1.1 player.vimeo.com/api/player.js
IP
File type Unicode text, UTF-8 text, with very long lines (21087)
Hash be35514553399a516ec9a8a782341d76
cc471c8a2ad4a645656f72e0833a3cd1a9131b63
ab060007b859a933f8fb7bbc505c9c0a06eef5813ab909d9f09f9656c2d53505
GET /api/player.js HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:35:07 GMT
Content-Type: application/javascript;charset=utf-8
Content-Length: 6272
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: default-src 'none'; style-src 'unsafe-inline'
x-content-type-options: nosniff
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Wed, 08 Feb 2023 20:42:05 GMT
x-host: player-56b544d789-qspv2
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-6
x-backend-proxy: playproxy7
x-bapp-server: player-56b544d789-qspv2
Accept-Ranges: bytes
Age: 1382
X-Served-By: cache-bma1679-BMA
X-Cache: HIT
X-Cache-Hits: 1125
X-Timer: S1675888508.528430,VS0,VE0
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=gi3FPfACvQCE.nSZU0n6TpIL7L_ZFm77zi13mEZPr9U-1675888507-0-Aahm/jX1gMbdN9uPZBYzGzij0gXlt16g52ruOxifj1QF7X4qlalcDOTwxcQl6w3Zb2QKBzKRiDziVT6Wyh5qfMM=; path=/; expires=Wed, 08-Feb-23 21:05:07 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 79672663ffcf0b06-OSL
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 08 Feb 2023 19:45:20 GMT
expires: Wed, 08 Feb 2023 21:45:20 GMT
cache-control: public, max-age=7200
age: 2987
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.7 kB IP
Hash b7afa7a2f493fa13b1fd5aa72a60f4be
249afa3f9c5d39accaf74d2a15cc369ff4ad814a
3e3c0448e5506cdabcaf5751ab1a7b893f8558a38c9bb1368ddafbd2ce5ddca0
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 68
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 08 Feb 2023 20:35:07 GMT
Content-Type: application/ocsp-response
Content-Length: 1731
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 18:57:45 GMT
Expires: Thu, 09 Feb 2023 18:57:45 GMT
ETag: "249afa3f9c5d39accaf74d2a15cc369ff4ad814a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
bat.bing.com/bat.js
200 OK 12 kB IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 3BD6C498A98C4E899D6E1A3007135100 Ref B: OSL30EDGE0406 Ref C: 2023-02-08T20:35:07Z
date: Wed, 08 Feb 2023 20:35:06 GMT
X-Firefox-Spdy: h2
obs.healthroundprince.com/tracker/tc_imp.gif?e=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&cri=GQogdFAPIV&ts=524&cb=1675888563379
200 OK 43 B URL HTTP/2 obs.healthroundprince.com/tracker/tc_imp.gif?e=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&cri=GQogdFAPIV&ts=524&cb=1675888563379
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=37dfbd8ee84e00136debcf3de2428a9a9225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5d16856e2717071a10acf9f29f671cd48adb542a394dff7e7257846fd965c40d615323c607545f35055acfec6d1977be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c2245790f5ef2d82e312900a5ae1a708ef9a67d95e65a721525a3a7a5919b7feacfc248b5038e523b64cbef86a7b376cccee879cf774a91bac3330743b1342dfec90a37b185e427d043bd05e7c7079952cacd60876973c3dc67c526c194b1add8f2be4674a366abeda56b4c70e4867ec6f106f607131ed81b0fc79488c9c2f2da199b7a9489a38745ff716c24857f74bb97814720c6e37fae20e99e5a9033b86b4d765bcb30b41ad398a970bb8c36830bf180e1da64814b4766f8524b7a2d194fe89147b3459d96ba0a98aa66ed9d11f5adcdcf40be97da695437dbad4952d48a08570ee2ebee22a962deae1cacea31ad29e664d7058d0a84f761d84978a1ecd1337c203b1e2b094354fba7d929921ff414081a77afa91280c64d45e3ee80f8a1289ab8f9aac3bceab31e502ee755d2e34b64825f775982321e2e32e471ac771adef992718072a95a99b73e9faa079b671d647110761780d2a68e6a2e17d84d0787d9cba9acd8005d8cbaaf2ece9a327f9892412e75ebcf881078e076c106c044f135894cc9d401afeb41bec2dd8cdc3e36fdea297e906ab4dbe2d84ac5396a527cc07a4942acb1439dae48d893f0cc48ce86842f133147be21b606ac51df9d7bc2771a7553306f7eff5b8886365db167c5a1f72bd1b7078a280fa668092dcc8cb87e388963e99c539f5e651240ae3a3283a9d06dc35f369f8311bf9da3abe344de202c2b149b095f30fcf41e40a878a2a7953f85c1ed105c7aa56f28000cca1152f8dbb76e48990306bac2ed36a9d0c1890630a622f9473c44c6254e63c792401899dce3caf0e642a56bda31867485d65d9a8fad7c6eb0d852c89fa2a09db0af8d461ed3b57e0cc5688000cb0fbda77ee5&cri=GQogdFAPIV&ts=524&cb=1675888563379 HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: cg_uuid=ef9bc66f165c3d6739af0eed00159b6f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Wed, 08 Feb 2023 20:35:07 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 39f72ee961e1afed82fed52212ec6b65
557eae661c60433cfbbe14dbca5df31259e0c59b
b527888545839ca25e30f2fe8d409f3de6ab08d98a974dd14626b728e5ead13c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2115
Cache-Control: max-age=134333
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:07 GMT
Etag: "63e368f5-1d7"
Expires: Fri, 10 Feb 2023 09:54:00 GMT
Last-Modified: Wed, 08 Feb 2023 09:18:45 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
s.pinimg.com/ct/core.js
200 OK 1.1 kB IP
File type ASCII text, with very long lines (1146), with no line terminators
Hash 81cb953fadf9e47b0a9c2ae51c8bfbdd
c3001b3f0e3909a89b5b063eac41299443eb941a
a159e5324ecdf7e5c2fbd27226180b80b96a23a6235df2ffa3d71ca157001672
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "81cb953fadf9e47b0a9c2ae51c8bfbdd"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 5cee7b98e5150c1f893636a54fc4a6a3
a4a5c0b5271d7489985e25bc9c5d912d4e2552d6
695a2faaf6485e37d403123c99b79a6c3cdf768592b487862cc23a10a6ab407e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5790
Cache-Control: max-age=126502
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:07 GMT
Etag: "63e33c03-1d7"
Expires: Fri, 10 Feb 2023 07:43:29 GMT
Last-Modified: Wed, 08 Feb 2023 06:06:59 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=42915A04609D99C00A495C11%40AdobeOrg&d_nsid=0&ts=1675888563354
200 OK 12 kB URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=42915A04609D99C00A495C11%40AdobeOrg&d_nsid=0&ts=1675888563354
IP
Hash 43724dcd5e22212821098a9438b52996
eddd2247f5d1e2ef19b868e6392dcb8c26a4a769
6e2a97bbf6d2639aa2335894f2429e201661627c0ee2ce8ed9b5e0bef05ff1e4
GET /id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=42915A04609D99C00A495C11%40AdobeOrg&d_nsid=0&ts=1675888563354 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://everfi.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v046-0e17db8bb.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=65015280957746905053422269326828743288; Max-Age=15552000; Expires=Mon, 07 Aug 2023 20:35:07 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: f4LmZfQxRnU=
Content-Length: 311
Connection: keep-alive
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LlfGLfVd8KiLLtE9csJT3qn2FmLEVve9YUNZLbkWG9kbogDqF8f1og==
age: 458701
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2
200 OK 25 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 24800, version 331.-31196\012- data
Hash 4abe94f1746789f39110d3ebac7ebd96
bdc3b41f3cc3e5e3e87ca020eeddc2b288f0dd91
299dc8e16be2ab2214e279b5536efd387d17fd3d364f397ce9f1fed602384fea
GET /releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:07 GMT
content-type: font/woff2
content-length: 24800
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae357-60e0"
last-modified: Wed, 04 Aug 2021 18:58:31 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 204527
accept-ranges: bytes
server: cloudflare
cf-ray: 796726661e92b4e8-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2
200 OK 20 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 19784, version 331.-31196\012- data
Hash c7682b8035fc1d1672d6455631813794
9e2955e5e55b3073e229c218724406425862d4a1
1b50aa1d36ea249991fb44f8f6ad2aa74fe360df9cc04c564b5edf3b053b739c
GET /releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:07 GMT
content-type: font/woff2
content-length: 19784
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae35f-4d48"
last-modified: Wed, 04 Aug 2021 18:58:39 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 796726665f16b4e8-OSL
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 9ddbe0aed04183119788e769ff2d4a8c
9c8c36496d8cc5dc2aaf461825c9c190c466f314
0f2252122cc11f4aa4c91ea46fd5dbeca1b42587889cc76f3c1b37495ca6175a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:35:08 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 06 Feb 2023 13:02:17 GMT
Expires: Mon, 13 Feb 2023 13:02:16 GMT
Etag: "9c8c36496d8cc5dc2aaf461825c9c190c466f314"
Cache-Control: max-age=404227,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7967266629ed0b4d-OSL
blackbaud.demdex.net/dest5.html?d_nsid=0
200 OK 2.8 kB URL HTTP/1.1 blackbaud.demdex.net/dest5.html?d_nsid=0
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
GET /dest5.html?d_nsid=0 HTTP/1.1
Host: blackbaud.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Wed, 8 Feb 2023 20:35:08 GMT
DCS: dcs-prod-irl1-1-v046-0674a406d.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Wed, 8 Feb 2023 11:26:59 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: 4IVnI6lCRrE=
Content-Length: 2791
Connection: keep-alive
region1.google-analytics.com/g/collect?v=2&tid=G-W25X31S350>m=45je3260&_p=754125948&cid=1897111968.1675888563&ul=en-us&sr=1280x1024&uaW=1&_s=1&cu=USD&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%208_L_Varo_MMFS_SE_TP%201%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&sid=1675888563&sct=1&seg=0&dt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&en=page_view&_fv=1&_nsi=1&_ss=1&epn.vp_to_body_height_ratio=0.21
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-W25X31S350>m=45je3260&_p=754125948&cid=1897111968.1675888563&ul=en-us&sr=1280x1024&uaW=1&_s=1&cu=USD&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%208_L_Varo_MMFS_SE_TP%201%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&sid=1675888563&sct=1&seg=0&dt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&en=page_view&_fv=1&_nsi=1&_ss=1&epn.vp_to_body_height_ratio=0.21
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-W25X31S350>m=45je3260&_p=754125948&cid=1897111968.1675888563&ul=en-us&sr=1280x1024&uaW=1&_s=1&cu=USD&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%208_L_Varo_MMFS_SE_TP%201%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&sid=1675888563&sct=1&seg=0&dt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&en=page_view&_fv=1&_nsi=1&_ss=1&epn.vp_to_body_height_ratio=0.21 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://everfi.com
date: Wed, 08 Feb 2023 20:35:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
user-data.mutinycdn.com/personalize/user_data/16919262ebbbde25.json?async=true&session_token=ba3b1a35-1f17-4c86-9b5c-1aa0c7bb6756&token=7b73f9362c0ba1bd&visitor_token=e8214ef1-dcf8-4291-b487-6f72c99b7735
200 OK 356 B URL HTTP/2 user-data.mutinycdn.com/personalize/user_data/16919262ebbbde25.json?async=true&session_token=ba3b1a35-1f17-4c86-9b5c-1aa0c7bb6756&token=7b73f9362c0ba1bd&visitor_token=e8214ef1-dcf8-4291-b487-6f72c99b7735
IP
File type JSON data\012- , ASCII text, with very long lines (481), with no line terminators
Hash 1abbff0c1cad22373461af81fbe243b0
241371b5b35ec6c741b864d376128702c9a982f7
e78d873d136d9d422c6d3ab128db3e7c50b98d596cdc670b77656da3075ac5fa
GET /personalize/user_data/16919262ebbbde25.json?async=true&session_token=ba3b1a35-1f17-4c86-9b5c-1aa0c7bb6756&token=7b73f9362c0ba1bd&visitor_token=e8214ef1-dcf8-4291-b487-6f72c99b7735 HTTP/1.1
Host: user-data.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: x-cache, x-cache-hits, age
access-control-max-age: 7200
cache-control: no-store
pragma: no-cache
x-visitor-token: e8214ef1-dcf8-4291-b487-6f72c99b7735
x-async-user-data: true
etag: W/"ace3327dffac1a8474226a41dbd2db75"
x-request-id: e4721bf8-7069-474b-9247-5e70e9c71d95
x-runtime: 0.158076
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:35:08 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1658-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675888508.767160,VS0,VE533
vary: X-Visitor-Token,X-Profile-Token,Fastly-Client-Ip,X-Async-User-Data,Origin,Accept-Encoding
x-connection-speed: broadband
x-continent-code: EU
x-country-code: NO
x-edge-datacenter: BMA
x-edge-region: EU-East
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 356
X-Firefox-Spdy: h2
munchkin.marketo.net/162/munchkin.js
200 OK 4.7 kB URL HTTP/1.1 munchkin.marketo.net/162/munchkin.js
IP
File type ASCII text, with very long lines (606)
Hash 3e9baed982956735f6e0a0e756d97ed9
9223be6a494a10959101a7942419df7b05b84d73
930a508ed0ea6b4861d19c0738360182514010913c4ebfe9352064ae5006f8a1
GET /162/munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "75daf56f6191efe42577301908659c29:1656637152.894482"
Last-Modified: Fri, 01 Jul 2022 00:59:12 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=8640000
Expires: Fri, 19 May 2023 20:35:08 GMT
Date: Wed, 08 Feb 2023 20:35:08 GMT
Content-Length: 4677
Connection: keep-alive
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
script.hotjar.com/modules.14cb8958c3e3566a4606.js
200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.14cb8958c3e3566a4606.js
IP
File type Unicode text, UTF-8 text, with very long lines (48770)
Hash 5331176444d8700436c501005f6a0731
d0f73de83bc0720ec98240ab04878a317491d640
07c3a5946b698fa789f6f4f6924761ffbc6808e145cba46c657092f9b36fee8a
GET /modules.14cb8958c3e3566a4606.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68072
date: Wed, 08 Feb 2023 15:48:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "5331176444d8700436c501005f6a0731"
last-modified: Wed, 08 Feb 2023 15:47:26 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eBxamtrinQU5j5ERq4VN-boEExDPSa5YONMcXMy5DAgHhBtLtZtGYg==
age: 17222
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=25002257&tm=gtm002&Ver=2&mid=9ae4979c-8748-4359-ace0-f6ba643b2274&sid=34b0d5f0a7f011ed9aee75431e950eec&vid=34b0ebc0a7f011edbeba4df5d6ae97b9&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&r=<=2206&evt=pageLoad&sv=1&rn=736897
204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=25002257&tm=gtm002&Ver=2&mid=9ae4979c-8748-4359-ace0-f6ba643b2274&sid=34b0d5f0a7f011ed9aee75431e950eec&vid=34b0ebc0a7f011edbeba4df5d6ae97b9&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&r=<=2206&evt=pageLoad&sv=1&rn=736897
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=25002257&tm=gtm002&Ver=2&mid=9ae4979c-8748-4359-ace0-f6ba643b2274&sid=34b0d5f0a7f011ed9aee75431e950eec&vid=34b0ebc0a7f011edbeba4df5d6ae97b9&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&r=<=2206&evt=pageLoad&sv=1&rn=736897 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=14D3348689746C6A035E263488236D5F; domain=.bing.com; expires=Mon, 04-Mar-2024 20:35:08 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9887AE31402041D9B26B8F78D364A40A Ref B: OSL30EDGE0406 Ref C: 2023-02-08T20:35:08Z
date: Wed, 08 Feb 2023 20:35:07 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=25022015&tm=gtm002&Ver=2&mid=00b2b549-b757-4457-862e-dc5437df76ef&sid=34b0d5f0a7f011ed9aee75431e950eec&vid=34b0ebc0a7f011edbeba4df5d6ae97b9&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&r=<=2206&evt=pageLoad&sv=1&rn=715747
204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=25022015&tm=gtm002&Ver=2&mid=00b2b549-b757-4457-862e-dc5437df76ef&sid=34b0d5f0a7f011ed9aee75431e950eec&vid=34b0ebc0a7f011edbeba4df5d6ae97b9&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&r=<=2206&evt=pageLoad&sv=1&rn=715747
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=25022015&tm=gtm002&Ver=2&mid=00b2b549-b757-4457-862e-dc5437df76ef&sid=34b0d5f0a7f011ed9aee75431e950eec&vid=34b0ebc0a7f011edbeba4df5d6ae97b9&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&r=<=2206&evt=pageLoad&sv=1&rn=715747 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2622E2523DCC68E215A5F0E03C9B6944; domain=.bing.com; expires=Mon, 04-Mar-2024 20:35:08 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 7230A19EE7A8489A913377E4BAE33FBD Ref B: OSL30EDGE0406 Ref C: 2023-02-08T20:35:08Z
date: Wed, 08 Feb 2023 20:35:07 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/25002257.js
204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/25002257.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/25002257.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 329325D9C5284F5B909609CDF260171F Ref B: OSL30EDGE0406 Ref C: 2023-02-08T20:35:08Z
date: Wed, 08 Feb 2023 20:35:07 GMT
X-Firefox-Spdy: h2
s.pinimg.com/ct/lib/main.39a1a5ee.js
200 OK 20 kB URL HTTP/2 s.pinimg.com/ct/lib/main.39a1a5ee.js
IP
File type ASCII text, with very long lines (57032), with no line terminators
Hash aa3ae2cb7b86f08a8eaf0b80a5d59e5d
bf33432e533dd9379f9d75f2b808dc8252127756
417137f3ec6fd9e519921555d898b61a2ea12e3e23835fe87612d6d16c31ad6c
GET /ct/lib/main.39a1a5ee.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "aa3ae2cb7b86f08a8eaf0b80a5d59e5d"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 19691
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
obs.healthroundprince.com/mon
200 OK 0 B URL HTTP/2 obs.healthroundprince.com/mon
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1781
Origin: https://everfi.com
Connection: keep-alive
Cookie: cg_uuid=ef9bc66f165c3d6739af0eed00159b6f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://everfi.com
content-type: application/json
date: Wed, 08 Feb 2023 20:35:08 GMT
content-length: 0
X-Firefox-Spdy: h2
bat.bing.com/p/action/25022015.js
204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/25022015.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/25022015.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 21B9E1BE1FCC4F67A13075FE8261D656 Ref B: OSL30EDGE0406 Ref C: 2023-02-08T20:35:08Z
date: Wed, 08 Feb 2023 20:35:07 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 57e2189e39db1881e2420ddad64a1ca3
4c41ef7ec3b33c2cf4a58420700537c8073c9971
29fa92faf146319bbe2aaacee0a2876045ed5e3d02202db318a500d09fa29534
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=151206
Date: Wed, 08 Feb 2023 20:35:08 GMT
Etag: "63e3ab20-1d7"
Expires: Fri, 10 Feb 2023 14:35:14 GMT
Last-Modified: Wed, 08 Feb 2023 14:01:04 GMT
Server: ECS (nyb/1D34)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: n0v5Nn4VaByheasJI4djFaJH8iVH4tfJP4pNOFRQHhnzSYkflm4UYw==
Age: 2050
sjrtp-cdn.marketo.com/rtp-api/v1/rtp.js?aid=blackbaud1
200 OK 0 B URL HTTP/1.1 sjrtp-cdn.marketo.com/rtp-api/v1/rtp.js?aid=blackbaud1
IP
ASN #1299 Telia Company AB
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtp-api/v1/rtp.js?aid=blackbaud1 HTTP/1.1
Host: sjrtp-cdn.marketo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Jetty(9.4.45.v20220203)
Content-Type: application/x-javascript; charset=UTF-8
Content-Length: 0
Strict-Transport-Security: max-age=63113904
Date: Wed, 08 Feb 2023 20:35:08 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash a8f5028569a98461bd4b2a7f079ff565
2ae41518b785bc40818961332a95f3a1f7c9ac03
c419fedc6516840878ba546175c9285c4049bd1bddf7383ce8534535af1d7b26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1591
Cache-Control: max-age=151827
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:08 GMT
Etag: "63e3af59-1d7"
Expires: Fri, 10 Feb 2023 14:45:35 GMT
Last-Modified: Wed, 08 Feb 2023 14:19:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=1897111968.1675888563&shpt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%221897111968.1675888563%22%2C%22shpt%22%3A%22SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888563.1%22%2C%22dcm_gid%22%3A%22494425677.1675888564%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A3%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888563.1&dcm_gid=494425677.1675888564&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=14217721534132732term%3Dvalue
200 OK 1.3 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=1897111968.1675888563&shpt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%221897111968.1675888563%22%2C%22shpt%22%3A%22SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888563.1%22%2C%22dcm_gid%22%3A%22494425677.1675888564%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A3%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888563.1&dcm_gid=494425677.1675888564&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=14217721534132732term%3Dvalue
IP
File type ASCII text, with very long lines (2582)
Hash e113f59350076377572ebe7a78ce7ecf
afe2aa80b67ce3d32ae9b5b197e268efee05efcd
69c98fc33dc96781c75f703e16c99e50a8a46c5f9ad115521986fbaf6457c947
GET /st?ga_tracking_id=UA-68235542-1&ga_client_id=1897111968.1675888563&shpt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%221897111968.1675888563%22%2C%22shpt%22%3A%22SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888563.1%22%2C%22dcm_gid%22%3A%22494425677.1675888564%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A3%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888563.1&dcm_gid=494425677.1675888564&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=14217721534132732term%3Dvalue HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 08 Feb 2023 20:35:08 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=13f0a17d-a7f0-11ed-8588-49ab61445ba5;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
transfer-encoding: chunked
cm.everesttech.net/cm/dd?d_uuid=65015280957746905053422269326828743288
302 0 B URL HTTP/1.1 cm.everesttech.net/cm/dd?d_uuid=65015280957746905053422269326828743288
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/dd?d_uuid=65015280957746905053422269326828743288 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 08 Feb 2023 20:35:08 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y_QHfAAAAJOSxQOV; Domain=.everesttech.net; Expires=Thu, 08-Feb-2024 20:35:08 GMT; Path=/
everest_session_v2="Y@QHfAAAAJOSxgOV"; Version=1; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=Y_QHfAAAAJOSxQOV
Server: AMO-cookiemap/1.1
ocsp.digicert.com/
200 OK 471 B IP
Hash 44a9bb9e3e9c0925981f83a20f207b2d
7988b17f807345067bfb78fca05012372e681584
efbd8ad5924acdf511455eccc2f648c5781ef04adaa8a0045d35fb435ad6c155
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=91894
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:08 GMT
Etag: "63e2cb72-1d7"
Expires: Thu, 09 Feb 2023 22:06:42 GMT
Last-Modified: Tue, 07 Feb 2023 22:06:42 GMT
Server: nginx
Content-Length: 471
metrics.blackbaud.com/b/ss/blackbaud-global-prod/1/JS-2.22.3/s44355862929459?AQB=1&ndh=1&pf=1&t=8%2F1%2F2023%2020%3A36%3A3%203%200&sdid=67CD59C921FCCB31-76BA53E03A7D6797&mid=58412820336648247302617754146911974187&aamlh=6&ce=UTF-8&cdp=2&pageName=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&g=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&c.&getPercentPageViewed=5.0.1&apl=4.0&.c&cc=USD&ch=courses&server=everfi.com&v0=K12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%7CMarketingCloud%7Cemail%7Cno%20keyword%7Chttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&events=event12%3D1966&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=courses&l1=vertical%3Ak-12&c2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&v2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&l2=default&v3=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&v4=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&v5=not%20available&v6=en-US&v7=courses&v9=1966&v11=anonymous&v13=D%3Dmid&v30=courses&v31=courses%3Ak-12&v35=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&v38=SaveUp%3A%20Saving%20Money%20for%20the%20Future&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=42915A04609D99C00A495C11%40AdobeOrg&AQE=1
200 OK 43 B URL HTTP/2 metrics.blackbaud.com/b/ss/blackbaud-global-prod/1/JS-2.22.3/s44355862929459?AQB=1&ndh=1&pf=1&t=8%2F1%2F2023%2020%3A36%3A3%203%200&sdid=67CD59C921FCCB31-76BA53E03A7D6797&mid=58412820336648247302617754146911974187&aamlh=6&ce=UTF-8&cdp=2&pageName=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&g=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&c.&getPercentPageViewed=5.0.1&apl=4.0&.c&cc=USD&ch=courses&server=everfi.com&v0=K12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%7CMarketingCloud%7Cemail%7Cno%20keyword%7Chttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&events=event12%3D1966&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=courses&l1=vertical%3Ak-12&c2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&v2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&l2=default&v3=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&v4=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&v5=not%20available&v6=en-US&v7=courses&v9=1966&v11=anonymous&v13=D%3Dmid&v30=courses&v31=courses%3Ak-12&v35=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&v38=SaveUp%3A%20Saving%20Money%20for%20the%20Future&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=42915A04609D99C00A495C11%40AdobeOrg&AQE=1
IP
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/blackbaud-global-prod/1/JS-2.22.3/s44355862929459?AQB=1&ndh=1&pf=1&t=8%2F1%2F2023%2020%3A36%3A3%203%200&sdid=67CD59C921FCCB31-76BA53E03A7D6797&mid=58412820336648247302617754146911974187&aamlh=6&ce=UTF-8&cdp=2&pageName=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&g=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&c.&getPercentPageViewed=5.0.1&apl=4.0&.c&cc=USD&ch=courses&server=everfi.com&v0=K12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%7CMarketingCloud%7Cemail%7Cno%20keyword%7Chttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&events=event12%3D1966&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=courses&l1=vertical%3Ak-12&c2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&v2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&l2=default&v3=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&v4=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&v5=not%20available&v6=en-US&v7=courses&v9=1966&v11=anonymous&v13=D%3Dmid&v30=courses&v31=courses%3Ak-12&v35=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&v38=SaveUp%3A%20Saving%20Money%20for%20the%20Future&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=42915A04609D99C00A495C11%40AdobeOrg&AQE=1 HTTP/1.1
Host: metrics.blackbaud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
date: Wed, 08 Feb 2023 20:35:08 GMT
expires: Tue, 07 Feb 2023 20:35:08 GMT
last-modified: Thu, 09 Feb 2023 20:35:08 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3598943166963220480-4619827897143128538
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675888563503&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
302 Found 0 B URL HTTP/1.1 px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675888563503&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=285700&time=1675888563503&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Play
Location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675888563503%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsaveup-saving-money-for-the-future%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12SM_Feb%252B8_L_Varo_MMFS_SE_TP%252B1%2526utm_content%253Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsaveup-saving-money-for-the-future%252F%26liSync%3Dtrue
LinkedIn-Action: 1
content-length: 0
Date: Wed, 08 Feb 2023 20:35:08 GMT
Connection: keep-alive
X-Li-Fabric: prod-lva1
X-Li-Pop: prod-lva1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAX0NjNANfgEq6lnGLTJWg==
Set-Cookie: UserMatchHistory=AQI3dOyIl75E0QAAAYYyvT-cSwgW7Xf_55T1oY7CcbCeqgek-ILGnRWwoOez4mYvsaY6G7f56_O6Cw; Max-Age=2592000; Expires=Fri, 10 Mar 2023 20:35:08 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQLZwiXlkWj3xQAAAYYyvT-c3XCBPujiNmLo9jrbzo87QKzulkslneaDu8n04v5th3_oFf2HD8IuDt_Jq7iSiw; Max-Age=2592000; Expires=Fri, 10 Mar 2023 20:35:08 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
bcookie="v=2&498f2b58-bf39-4e0b-8d36-6287f241d79d"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 08-Feb-2024 20:35:08 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675888508:t=1675974908:v=2:sig=AQHCZ2-eWSEpTqKlxj6XkqvQL52uD68N"; Expires=Thu, 09 Feb 2023 20:35:08 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 4eb05b6b5e5ebdeaa575b76015736f3e
73dcc26acb95261d68e520753769cf5d81d34c7c
2d46f80640eb7a83f99229e6c125b9d07d24bad1deae4b6efc193a5f77e6d5c2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 20:35:08 GMT
Last-Modified: Wed, 08 Feb 2023 18:57:28 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: J8Ah3hhDh3HOHVwaRDUsD_ZnZxxW9h72InAA6AKfFqTmb7rTI8Wdsw==
Age: 5860
logx.optimizely.com/v1/events
204 No Content 0 B URL HTTP/1.1 logx.optimizely.com/v1/events
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/events HTTP/1.1
Host: logx.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 808
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://everfi.com
Access-Control-Expose-Headers: X-Results-Data-Source
Content-Type: text/plain
Date: Wed, 08 Feb 2023 20:35:08 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 350745d8-4723-416f-9b4c-b14288e51048
Connection: keep-alive
dpm.demdex.net/ibs:dpid=411&dpuuid=Y_QHfAAAAJOSxQOV
302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=411&dpuuid=Y_QHfAAAAJOSxQOV
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=411&dpuuid=Y_QHfAAAAJOSxQOV HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v046-0387bcfab.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y_QHfAAAAJOSxQOV
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=30047660249031157224246495972332063870; Max-Age=15552000; Expires=Mon, 07 Aug 2023 20:35:09 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: UcLWIVFcTiM=
Content-Length: 0
Connection: keep-alive
ct.pinterest.com/v3/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2239a1a5ee%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675888564612
200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2239a1a5ee%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675888564612
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2239a1a5ee%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675888564612 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 4746084898600782
date: Wed, 08 Feb 2023 20:35:09 GMT
akamai-grn: 0.274f2417.1675888509.570e58f2
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 0bdb7270303181a8741369fcfa9709e7
e85aa6393d2a1013b0546050c5158a5685c6feb3
23fd96172c8f72d73d8b2a85d29684d36d3037df3247e294f15259724eebcaae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5943
Cache-Control: max-age=151124
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:09 GMT
Etag: "63e39b9a-1d7"
Expires: Fri, 10 Feb 2023 14:33:53 GMT
Last-Modified: Wed, 08 Feb 2023 12:54:50 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ct.pinterest.com/user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675888564611&dep=5%2CEVENT_TAGS_ABSENT
200 OK 378 B URL HTTP/2 ct.pinterest.com/user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675888564611&dep=5%2CEVENT_TAGS_ABSENT
IP
File type JSON data\012- , ASCII text, with very long lines (534), with no line terminators
Hash 6e63eb6af30db692485439f6687cfd3e
8b369c1b024c90a5646b8f7d36ff73e71a949bcd
a35f431d3eec1e88e5356fd6485190f4c4213276c1e046b072bfedb4f00dab19
GET /user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675888564611&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU5UaGxNVGhsT1RZdE1qZG1NUzAwWmpjMUxXSXdObUV0WlRSbFptSTNOakUxTWpCag
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://everfi.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 378
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 6254782807925981
date: Wed, 08 Feb 2023 20:35:09 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675888509.570e590f
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1675888564610&dep=2%2CPAGE_LOAD
200 OK 378 B URL HTTP/2 ct.pinterest.com/user/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1675888564610&dep=2%2CPAGE_LOAD
IP
File type JSON data\012- , ASCII text, with very long lines (534), with no line terminators
Hash 6e63eb6af30db692485439f6687cfd3e
8b369c1b024c90a5646b8f7d36ff73e71a949bcd
a35f431d3eec1e88e5356fd6485190f4c4213276c1e046b072bfedb4f00dab19
GET /user/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1675888564610&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVpqQXlOVFExWmpJdE1EWTJZaTAwWkdRNUxUbGxZemN0TURsa056UTNNR0ZqTW1GbA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://everfi.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 378
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 5048154586033964
date: Wed, 08 Feb 2023 20:35:09 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675888509.570e59a8
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a746d459d4fbc7da99072462ed09b456
6ca7c899101b7ddcc1228f148cdcf16113a805f7
cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=226704524738512&ev=PageView&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&rl=&if=false&ts=1675888564651&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&cs_est=true&fbp=fb.1.1675888564651.757225462&it=1675888563525&coo=false&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=226704524738512&ev=PageView&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&rl=&if=false&ts=1675888564651&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&cs_est=true&fbp=fb.1.1675888564651.757225462&it=1675888563525&coo=false&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=226704524738512&ev=PageView&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&rl=&if=false&ts=1675888564651&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&cs_est=true&fbp=fb.1.1675888564651.757225462&it=1675888563525&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 08 Feb 2023 20:35:09 GMT
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-68235542-1&cid=1897111968.1675888563&jid=363309577&gjid=446413285&_gid=494425677.1675888564&_u=YADAAUAAAAAAACgEK~&z=2135176495
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-68235542-1&cid=1897111968.1675888563&jid=363309577&gjid=446413285&_gid=494425677.1675888564&_u=YADAAUAAAAAAACgEK~&z=2135176495
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-68235542-1&cid=1897111968.1675888563&jid=363309577&gjid=446413285&_gid=494425677.1675888564&_u=YADAAUAAAAAAACgEK~&z=2135176495 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://everfi.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 08 Feb 2023 20:35:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y_QHfAAAAJOSxQOV
200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y_QHfAAAAJOSxQOV
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y_QHfAAAAJOSxQOV HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v046-03617f131.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: djHvJBhORdI=
Content-Length: 59
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a746d459d4fbc7da99072462ed09b456
6ca7c899101b7ddcc1228f148cdcf16113a805f7
cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 931374cc5f548eb980181d61e4278798
40a2c53b550ea44a930892fe9ac7b26225c5e960
46dd369c210c99bbd54512f30facd70dc4012e62f5cbdf329ed3efb80a09f21c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1690
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:09 GMT
Last-Modified: Wed, 08 Feb 2023 20:07:00 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash b7e30f8419d69ce02a1f96b895cabac8
1de1962de5a350f1a905de3c61c01085eae52ec5
e30bea7507c8e32e8b2e7d6f54e9cd86e99d1198a5cb468221ae4cae33ee2085
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 20:35:09 GMT
Last-Modified: Wed, 08 Feb 2023 19:32:52 GMT
Server: ECS (bsa/EB15)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hS7COPnEean56WTh09J2H3-_Fp-ErBKv8TOILKL_1OqqoQNKj0_v2g==
Age: 3737
ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675888565065&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22gtm%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2239a1a5ee%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675888565065&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22gtm%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2239a1a5ee%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675888565065&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22gtm%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2239a1a5ee%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1755991476111689
date: Wed, 08 Feb 2023 20:35:09 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZpbE02U2JYdU9aZ3JzNTVqV2s0VTRERXZCd0lKakVoalNqQy9OVXJ5c0hyRWRnM2FjUk5QenRFODlweGJybVA0SXppbFFEc25oZ20ySmhDU3NCSGhrNVNISDREaFVNMGQ4bkgrTVhZaGpGdz0mNG1kVlRVb1l4bWNuMXkrOElPVE94aHJBcFA0PQ=="; Expires=Thu, 08 Feb 2024 20:35:09 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1675888509.570e625e
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 84889b914548f7820766f27a40699cfa
bc674cdb5819759b5ecd5aabfde47f56127f5d89
e2a69fe4edd028d00a8a744b62ef51dada2aff144da0cd9813efc887a11f70a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 72226fa2f9513f894889fa652cb2a8bf
8a1b4f108db687c34b334a94e6d931544fd7508e
a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=1897111968.1675888563&jid=363309577&_u=YADAAUAAAAAAACgEK~&z=1915965319
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=1897111968.1675888563&jid=363309577&_u=YADAAUAAAAAAACgEK~&z=1915965319
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=1897111968.1675888563&jid=363309577&_u=YADAAUAAAAAAACgEK~&z=1915965319 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 20:35:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=1897111968.1675888563&jid=363309577&_u=YADAAUAAAAAAACgEK~&z=1915965319
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=1897111968.1675888563&jid=363309577&_u=YADAAUAAAAAAACgEK~&z=1915965319
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=1897111968.1675888563&jid=363309577&_u=YADAAUAAAAAAACgEK~&z=1915965319 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 20:35:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
410-ycz-984.mktoresp.com/webevents/visitWebPage?_mchNc=1675888564472&_mchCn=&_mchId=410-YCZ-984&_mchTk=_mch-everfi.com-1675888564472-74747&_mchHo=everfi.com&_mchPo=&_mchRu=%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=42915A04609D99C00A495C11%40AdobeOrg%3A6%3A58412820336648247302617754146911974187&_mchHa=&_mchRe=&_mchQp=vertical%3DK12__-__utm_source%3DMarketingCloud__-__utm_medium%3Demail__-__utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1__-__utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
200 OK 28 B URL HTTP/1.1 410-ycz-984.mktoresp.com/webevents/visitWebPage?_mchNc=1675888564472&_mchCn=&_mchId=410-YCZ-984&_mchTk=_mch-everfi.com-1675888564472-74747&_mchHo=everfi.com&_mchPo=&_mchRu=%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=42915A04609D99C00A495C11%40AdobeOrg%3A6%3A58412820336648247302617754146911974187&_mchHa=&_mchRe=&_mchQp=vertical%3DK12__-__utm_source%3DMarketingCloud__-__utm_medium%3Demail__-__utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1__-__utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
IP
File type ASCII text, with no line terminators
Hash 9dafc521bd59955b4986f0fc3777f77a
5a572b4730d4a2bce2fa35597a0993c649f26c74
e4e90a7b8bacdfe395361149a9fd42f9192b68bdf1497e4454d0ab4c4917f746
POST /webevents/visitWebPage?_mchNc=1675888564472&_mchCn=&_mchId=410-YCZ-984&_mchTk=_mch-everfi.com-1675888564472-74747&_mchHo=everfi.com&_mchPo=&_mchRu=%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=42915A04609D99C00A495C11%40AdobeOrg%3A6%3A58412820336648247302617754146911974187&_mchHa=&_mchRe=&_mchQp=vertical%3DK12__-__utm_source%3DMarketingCloud__-__utm_medium%3Demail__-__utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1__-__utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F HTTP/1.1
Host: 410-ycz-984.mktoresp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 08 Feb 2023 20:35:09 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Request-Id: c49bcee3-a9eb-4f77-be56-5dff347b51ad
Content-Encoding: gzip
Access-Control-Allow-Origin: *
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675888563503%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsaveup-saving-money-for-the-future%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12SM_Feb%252B8_L_Varo_MMFS_SE_TP%252B1%2526utm_content%253Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsaveup-saving-money-for-the-future%252F%26liSync%3Dtrue
302 Found 0 B URL HTTP/1.1 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675888563503%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsaveup-saving-money-for-the-future%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12SM_Feb%252B8_L_Varo_MMFS_SE_TP%252B1%2526utm_content%253Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsaveup-saving-money-for-the-future%252F%26liSync%3Dtrue
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675888563503%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsaveup-saving-money-for-the-future%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12SM_Feb%252B8_L_Varo_MMFS_SE_TP%252B1%2526utm_content%253Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsaveup-saving-money-for-the-future%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Play
Location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675888563503&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&liSync=true
LinkedIn-Action: 1
content-length: 0
Date: Wed, 08 Feb 2023 20:35:09 GMT
Connection: keep-alive
Content-Security-Policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Expect-CT: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
X-Li-Fabric: prod-lva1
Report-To: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
NEL: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-cache, no-store
X-Li-Pop: prod-lva1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAX0NjNHTwXXVvE1L2P+3w==
Set-Cookie: bcookie="v=2&06eb2463-7254-47b7-8951-c9a580abf0e9"; Domain=.linkedin.com; Expires=Thu, 08-Feb-2024 20:35:09 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20230208203509a52d150b-4a4f-4cda-8fae-e8fbbd4adf27AQGDTAVkTWVApHQbPUrLudFqq_I-Ok6b"; Domain=.www.linkedin.com; Expires=Thu, 08-Feb-2024 20:35:09 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzU4ODg1MDk7MjswMjH34Oh6tszEFdFEYE5wMe11eq8wDcLOV2meABRuBd0gmw==; Domain=.linkedin.com; Expires=Mon, 07 Aug 2023 20:35:09 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675888509:t=1675974909:v=2:sig=AQFMb5olg9u2l9enn7AqBWS3VOaURNFW"; Expires=Thu, 09 Feb 2023 20:35:09 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2ccbef7dcf1b1d32956833f5127c1ad5
af220576c82f064130ee7bfa3ea966d033e51707
f6eceec81f5b6deb7005fa9f3855ecb54e4bd6b3159c705decf0921e3a49067d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 44fc0cb48c26edb9ce36736707b9182a
62de7faa3e8171c0d38a2e03a604d2545a3ede7f
9e511ad6ed9e7c5f28f573422e3891d2f4e5c2ba5107f7eda808c529a95931a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:35:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gs.mountain.com/gs
200 OK 144 B IP
File type ASCII text, with no line terminators
Hash 5781639a624d3f312854a1ca5aa194ff
b7a1af8b97535ffa101b282009a7e09934818026
131cc37c6c370154e294da475549358be092cf590f13127e42d430e52e819d68
GET /gs HTTP/1.1
Host: gs.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: guid=13f0a17d-a7f0-11ed-8588-49ab61445ba5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 08 Feb 2023 20:35:09 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: application/javascript;charset=utf-8
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 144
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
in.hotjar.com/api/v2/client/sites/2584703/visit-data?sv=7
200 OK 95 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/2584703/visit-data?sv=7
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 039d32f7359c34eee13f02bae640eff7
7550a24e404da6c533fa8597113eec17a6d55f4c
1874a3ed03bfe4289ca3a8cc3c495a498033ddb248a6fbdcdce02e70065eca54
POST /api/v2/client/sites/2584703/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain; charset=UTF-8
Content-Length: 130
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:09 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
obs.healthroundprince.com/mon
200 OK 0 B URL HTTP/2 obs.healthroundprince.com/mon
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1808
Origin: https://everfi.com
Connection: keep-alive
Cookie: cg_uuid=ef9bc66f165c3d6739af0eed00159b6f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://everfi.com
content-type: application/json
date: Wed, 08 Feb 2023 20:35:09 GMT
content-length: 0
X-Firefox-Spdy: h2
id.rlcdn.com/464526.gif
451 Unavailable For Legal Reasons 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /464526.gif HTTP/1.1
Host: id.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Wed, 08 Feb 2023 20:35:09 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 3d2254db64618fd4b1915e5b6ea2fd4d
542a2a05ce51215616bd7db4332af8ccf4dbc3d9
dc9651e87bd870de66c5024cee6765a8dc32a548da72b5ee1b3998f3d7eba4ce
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:35:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 13:42:55 GMT
Expires: Wed, 15 Feb 2023 13:42:54 GMT
Etag: "542a2a05ce51215616bd7db4332af8ccf4dbc3d9"
Cache-Control: max-age=579464,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 796726718e51b4eb-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash 3d2254db64618fd4b1915e5b6ea2fd4d
542a2a05ce51215616bd7db4332af8ccf4dbc3d9
dc9651e87bd870de66c5024cee6765a8dc32a548da72b5ee1b3998f3d7eba4ce
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:35:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 13:42:55 GMT
Expires: Wed, 15 Feb 2023 13:42:54 GMT
Etag: "542a2a05ce51215616bd7db4332af8ccf4dbc3d9"
Cache-Control: max-age=579464,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7967266ac8010b4d-OSL
px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=1897111968.1675888563&shpt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%221897111968.1675888563%22%2C%22shpt%22%3A%22SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888563.1%22%2C%22dcm_gid%22%3A%22494425677.1675888564%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A3%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888563.1&dcm_gid=494425677.1675888564&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=1675888508688245&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1675888509397
200 OK 450 B URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=1897111968.1675888563&shpt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%221897111968.1675888563%22%2C%22shpt%22%3A%22SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888563.1%22%2C%22dcm_gid%22%3A%22494425677.1675888564%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A3%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888563.1&dcm_gid=494425677.1675888564&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=1675888508688245&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1675888509397
IP
File type ASCII text, with very long lines (1555), with no line terminators
Hash c19529dbd697e469e767194d6631106e
3a76c12cc04c085b983c2c6467046f38dfab2e6f
480b88f9edad2ca12053a09a8145c6de9a42c5369b8c585839abae56f03e0563
GET /st?ga_tracking_id=UA-68235542-1&ga_client_id=1897111968.1675888563&shpt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%221897111968.1675888563%22%2C%22shpt%22%3A%22SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888563.1%22%2C%22dcm_gid%22%3A%22494425677.1675888564%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A3%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888563.1&dcm_gid=494425677.1675888564&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=1675888508688245&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1675888509397 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: guid=13f0a17d-a7f0-11ed-8588-49ab61445ba5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 08 Feb 2023 20:35:10 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: tt=H4sIAAAAAAAAAKtWKlOyMqoFAP609q8HAAAA;Domain=px.mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=13f0a17d-a7f0-11ed-8588-49ab61445ba5;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 13
server: istio-envoy
connection: close
transfer-encoding: chunked
ct.pinterest.com/ct.html
200 OK 323 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 7559610987499225
date: Wed, 08 Feb 2023 20:35:10 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675888510.570e7eba
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
obs.healthroundprince.com/mon
200 OK 0 B URL HTTP/2 obs.healthroundprince.com/mon
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1803
Origin: https://everfi.com
Connection: keep-alive
Cookie: cg_uuid=ef9bc66f165c3d6739af0eed00159b6f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://everfi.com
content-type: application/json
date: Wed, 08 Feb 2023 20:35:10 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash bf0fd5827521576c8b55f90f62db4fe2
daa49326cc39a31de834e384eecaed210789add9
2ef645cc8ba99c0d13cb78f6f395c426898d18b687b682b982c051cd99724eaa
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 20:35:11 GMT
Last-Modified: Wed, 08 Feb 2023 19:30:09 GMT
Server: ECS (nyb/1D2A)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: V6PePia4hjBJZ91bhCNDwK28yuYmdw-OtMfx98urTaphC1nt8BPclg==
Age: 3902
js.driftt.com/core/assets/css/17.22abfce0.chunk.css
200 OK 24 B URL HTTP/2 js.driftt.com/core/assets/css/17.22abfce0.chunk.css
IP
File type ASCII text, with no line terminators
Hash 0c5dad92482d9a7c7c253510f5082465
534b458f99b4d0bb90c2cf2c4bb3703ef44a52bf
5dbaf0a4ff0f8ac8c1b67550eee84390b089604ffaf71183e417636c7e183ac5
GET /core/assets/css/17.22abfce0.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888561399
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 24
server: istio-envoy
date: Thu, 26 Jan 2023 20:13:51 GMT
last-modified: Tue, 11 Oct 2022 19:09:27 GMT
etag: "0c5dad92482d9a7c7c253510f5082465"
x-amz-server-side-encryption: AES256
x-amz-version-id: eR0JFDWwyA3gsnd_XajqmmtDUbC85CBL
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 22
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A0XTP-Fl6fjhg-bC0zBEDJqJULwWRhxco5saOvXLURco_1SXYwLYQA==
age: 1124480
X-Firefox-Spdy: h2
js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=3c101224-df20-464d-b3e1-39ce46010d0b&sessionStarted=1675888567.217&campaignRefreshToken=1b0249e5-1a6c-4883-bdf3-e5f2a97c2d32&hideController=false&pageLoadStartTime=1675888561399&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
200 OK 13 kB URL HTTP/2 js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=3c101224-df20-464d-b3e1-39ce46010d0b&sessionStarted=1675888567.217&campaignRefreshToken=1b0249e5-1a6c-4883-bdf3-e5f2a97c2d32&hideController=false&pageLoadStartTime=1675888561399&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
IP
Hash beacf97d3954c42fa5d18be066e3f9f3
dd9abacfd26000af2866a70c72d4b3a43840f9e8
452324f5acdcce2c7c492e2ca782b7b944e220969778fa5783179c154efc823c
GET /core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=3c101224-df20-464d-b3e1-39ce46010d0b&sessionStarted=1675888567.217&campaignRefreshToken=1b0249e5-1a6c-4883-bdf3-e5f2a97c2d32&hideController=false&pageLoadStartTime=1675888561399&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: istio-envoy
last-modified: Wed, 08 Feb 2023 19:00:19 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: anVnAvkfgn5J6cuZXMyTKehe9MUtP13K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
x-envoy-upstream-service-time: 13
date: Wed, 08 Feb 2023 20:35:11 GMT
cache-control: no-cache
etag: W/"91bbc65a16f226622a581aaaf53cafa1"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MpykdvWKGgSUBA-mYU3NZcHS5pWGCshFIFli7MvGCx1WNLZRNbpv2Q==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/30.57dfb56c.chunk.js
200 OK 7.7 kB URL HTTP/2 js.driftt.com/core/assets/js/30.57dfb56c.chunk.js
IP
Hash bafc2502ef579f37de2f17fa38091663
967d84cda8400971ab2a1aee86ba19e1051b2939
fb5e0858c82b9eba395cb98b257862338dee900868da3f3e62d19c3a4404ad06
GET /core/assets/js/30.57dfb56c.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888561399
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"b8addee34a5cd2241740a2e3094039b3"
x-amz-server-side-encryption: AES256
x-amz-version-id: PRu.RNHym52TA_hlIcQB1Vv5VUA1vVKS
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: diWD6sSdG0RFb9hEJP_XpLkMjwQMb5yQqAW64VN5oGcPFp0fj_x3xA==
age: 1048215
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/17.938ddc32.chunk.js
200 OK 22 kB URL HTTP/2 js.driftt.com/core/assets/js/17.938ddc32.chunk.js
IP
Hash 29934162fd57afca1ab83862fcaeede5
a3669c895e497afad6f1b5518d1bdc924da982e3
88d74f4d352f9541c1017a9a6cfea8a11d2055727157fd9f60f6f1e35d9dcea0
GET /core/assets/js/17.938ddc32.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888561399
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 07 Feb 2023 19:52:13 GMT
last-modified: Tue, 07 Feb 2023 18:24:51 GMT
etag: W/"6e1f76499cde58fd41e91c5a37d51f07"
x-amz-server-side-encryption: AES256
x-amz-version-id: DcqAdrJmepmz_M9pKA9h2j5OvJGa2cKf
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ttBT3LhdxGlqzHYE0jWd2fX3ACPlXkgyho8wHfAmLCEvjbWhj7Q6nA==
age: 88978
X-Firefox-Spdy: h2
obs.healthroundprince.com/mon
200 OK 0 B URL HTTP/2 obs.healthroundprince.com/mon
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1803
Origin: https://everfi.com
Connection: keep-alive
Cookie: cg_uuid=ef9bc66f165c3d6739af0eed00159b6f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://everfi.com
content-type: application/json
date: Wed, 08 Feb 2023 20:35:12 GMT
content-length: 0
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/28.01a0fe87.chunk.js
200 OK 9.9 kB URL HTTP/2 js.driftt.com/core/assets/js/28.01a0fe87.chunk.js
IP
Hash 3e9c64beeebc4c9d5cfdcda2cb0e7ec1
d596087d39e2337785a9226cb0d35b1c7268b68e
194541e633316dd30e1fc34307e03de3eb4d924d1bf6f9d50a8b4d6c1eec1421
GET /core/assets/js/28.01a0fe87.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=3c101224-df20-464d-b3e1-39ce46010d0b&sessionStarted=1675888567.217&campaignRefreshToken=1b0249e5-1a6c-4883-bdf3-e5f2a97c2d32&hideController=false&pageLoadStartTime=1675888561399&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"0ad089f0617a0fa8014a23c2afa90ddd"
x-amz-server-side-encryption: AES256
x-amz-version-id: oCx9yWccW.dlty4hHqWiey7h_DwTeEBh
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 22
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pGpAHQ1jBIJcRfIRY4uBhZRITye43rfilfdpPT2f_DooN2cc-1qTyg==
age: 1048214
X-Firefox-Spdy: h2
api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&page_title=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI
200 OK 14 kB URL HTTP/2 api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&page_title=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI
IP
Hash 62f1e854f11c9698a0c0262cf0e8df90
0a40c484dc35e578e21277ecef554dc505635e94
3f4e4356c787758b836dfc42e49c6f979de9be74303469dc447f21a5ed90f729
POST /api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&page_title=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI HTTP/1.1
Host: api.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 63
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json;charset=utf-8
date: Wed, 08 Feb 2023 20:35:08 GMT
server: nginx
access-control-allow-origin: https://everfi.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
api-version: v2
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
identification-source: CENTRAL
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Tue, 07 Feb 2023 20:35:08 GMT
vary: Accept-Encoding, Origin
content-encoding: gzip
request-id: 802bb7b4-b134-4749-960f-71a9d028ac89
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZW252VRATJ8o3K7klrhn-dzwnaJ8fh3RiGdZi1aM5Lt0KEFjNenG6A==
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/widget/init/v2
200 OK 13 B URL HTTP/2 metrics.api.drift.com/monitoring/metrics/widget/init/v2
IP
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /monitoring/metrics/widget/init/v2 HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:12 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift1a5f6ac4878823ef543d3145b8a
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
api-v2.mutinyhq.io/v2/b
201 Created 24 kB IP
Hash 6edd438b610a671fd9aeee81959d4248
f2661ae1fd0ddface2dca6feba23c3fe1980f515
c0cb5a330bfd57846f33365da35726fc0d283bc4bc7a4b6d21f1f1431133c4dc
POST /v2/b HTTP/1.1
Host: api-v2.mutinyhq.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 4225
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 201 Created
date: Wed, 08 Feb 2023 20:35:11 GMT
content-type: text/plain
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: x-cache, x-cache-hits, age
access-control-max-age: 7200
vary: Origin,Accept-Encoding
etag: W/"565339bc4d33d72817b583024112eb7f"
cache-control: max-age=0, private, must-revalidate
x-request-id: 3312df89-5896-4a74-8cc1-fc22591c97d0
x-runtime: 0.008794
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/25.22647a55.chunk.js
200 OK 45 kB URL HTTP/2 js.driftt.com/core/assets/js/25.22647a55.chunk.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash efb86152b8ccfe7df1d6c77948bc9347
37d725096d81ad487794586be4c894c24f80bb95
307f9c90cf0d35f95fa2b75defd2d0b41e513d973994da9c942e6d476ccabe9d
GET /core/assets/js/25.22647a55.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888561399
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"2ce6c446f71a395ff41647c9ba4b9c19"
x-amz-server-side-encryption: AES256
x-amz-version-id: 3Dq5XEj76miHFBtzwx_L1gh4_UbdDQYk
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rrzWHsu2QMxdtdbjeSRlYWqSU7KhQ0gdTY2GpW69PCS1FchUCs7KMg==
age: 1048214
X-Firefox-Spdy: h2
embed.formhq.net/v1/platforms/bWFya2V0bw.js
200 OK 0 B URL HTTP/2 embed.formhq.net/v1/platforms/bWFya2V0bw.js
IP
GET /v1/platforms/bWFya2V0bw.js HTTP/1.1
Host: embed.formhq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:06 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=423
etag: W/"62e92e06-1a7"
last-modified: Tue, 02 Aug 2022 14:00:38 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: max-age=1800
cf-cache-status: HIT
age: 1720
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uCTJNG%2BIAWVJmPKcn4hZUTQZ6mnBOtHH4KLKtmZUCgxsyg4FwOKV%2FDbpJP9H0%2Bbo%2BM72jK6v6k0rDBVcsgbz0fcoVOsKEOx0H8Xe%2FM2dfq1I%2F0z5oFQK8T6FeJngoyqd1s2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7967265f7b3a0b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.optimizely.com/js/21287320532.js
200 OK 0 B URL HTTP/2 cdn.optimizely.com/js/21287320532.js
IP
GET /js/21287320532.js HTTP/1.1
Host: cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: tPmtWyv12/ySoEk7UcUkbzlYtduvwDHZTuHTK0am9LEEmkdwNA84fHzS5HG+ppLBjAIyz3ZH/24=
x-amz-request-id: GNE11C6PPXHBD25K
x-amz-replication-status: COMPLETED
last-modified: Mon, 06 Feb 2023 19:47:16 GMT
etag: "fd2aaecd742ecef122512301c046b928"
x-amz-server-side-encryption: AES256
x-amz-meta-revision: 1031
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: 0loNKruLy.brV8feqiS93pXHIUA54i.8
accept-ranges: bytes
content-type: text/javascript; charset=utf-8
server: AmazonS3
content-length: 96962
vary: Accept-Encoding
cache-control: max-age=120
date: Wed, 08 Feb 2023 20:35:07 GMT
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=12, origin; dur=104, cdn;desc="AkamaiION";dur=0,rtt;desc="2";dur=0,cdnip;desc="23.38.200.155";dur=0,cdnmap;desc="a5048.dsca.akamaiedge.net";dur=0,proto;desc="h2";dur=0, ak_p; desc="465524_388255516_318014979_11584_1358_2_0";dur=1
access-control-max-age: 86400
access-control-expose-headers: x-amz-meta-revision
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
js.driftt.com/include/1675888800000/ebs64edsgr5y.js
200 OK 0 B URL HTTP/2 js.driftt.com/include/1675888800000/ebs64edsgr5y.js
IP
GET /include/1675888800000/ebs64edsgr5y.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 20:35:10 GMT
last-modified: Wed, 08 Feb 2023 19:00:37 GMT
etag: W/"35f0d0262832a8a44cb80d6b93f49b1e"
x-amz-server-side-encryption: AES256
x-amz-version-id: M4dLytCbVJlfY.O0vg3Ja12ujbZHwmlt
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache
x-envoy-upstream-service-time: 44
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SO0fAcitM_s4ITWPuoIIrRQnah7-eumld-IlSytesb7toMIuthbiKg==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/26.5f645a85.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/26.5f645a85.chunk.js
IP
GET /core/assets/js/26.5f645a85.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888561399
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 19:00:18 GMT
last-modified: Wed, 08 Feb 2023 18:35:26 GMT
etag: W/"5609cee09879a7d8df8c020e751c4c9d"
x-amz-server-side-encryption: AES256
x-amz-version-id: LXU20jDKZmjlR53NMIdEuloBcrFHQHyo
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 21
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xcLyJdW0UCxM5WmNvlyCzBmpz9OkOZsic0jT90NOtBu7Zw7NmRcyDw==
age: 5693
X-Firefox-Spdy: h2
kit.fontawesome.com/655ccfc4f9.js?ver=6.1.1
200 OK 0 B URL HTTP/2 kit.fontawesome.com/655ccfc4f9.js?ver=6.1.1
IP
GET /655ccfc4f9.js?ver=6.1.1 HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:05 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: FzlzA0Wly4PKVLnujNbB
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 79672658efc8b4f3-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/285700/domain/everfi.com/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/285700/domain/everfi.com/token
IP
GET /partner/285700/domain/everfi.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Wed, 08 Feb 2023 19:49:37 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: exwSE4prkZb1F1Fcldv1MgqyIjiqIt6TwJ8q3cTS4kypTU0O0lvYwQ==
age: 2731
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/27.f44ab9c1.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/27.f44ab9c1.chunk.js
IP
GET /core/assets/js/27.f44ab9c1.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888561399
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"768714622a8a2db20ece85777ba47642"
x-amz-server-side-encryption: AES256
x-amz-version-id: wrgwLo8Ut7GsYvCwhzW617Km3EuBTw6K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 24
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: X-Q9qPnG7KDJvvKVjVBMuAOY51rQRJJ4Edi7SDStf5ttwMK6Ww48Rw==
age: 1048214
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/23.80529f14.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/23.80529f14.chunk.js
IP
GET /core/assets/js/23.80529f14.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888561399
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"97c3ca9aaa6fb76a1426ad11ca2061f7"
x-amz-server-side-encryption: AES256
x-amz-version-id: f7GnPSzVZVNA1fDLl2EjAyXSbixH0oiD
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ccvkv-PQGt6XxVJOTt51L9xB_IZjK8Mr-Rm0IpLaQsnt6XESVZ_I8A==
age: 1048213
X-Firefox-Spdy: h2
info.everfi.com/js/forms2/js/forms2.min.js
200 OK 0 B URL HTTP/2 info.everfi.com/js/forms2/js/forms2.min.js
IP
GET /js/forms2/js/forms2.min.js HTTP/1.1
Host: info.everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:05 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 20:56:20 GMT
etag: "481ebc-33e51-5f217594de500"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1751
expires: Thu, 09 Feb 2023 00:35:05 GMT
cache-control: public, max-age=14400
set-cookie: __cf_bm=JU1feGmRctSYBuRzgctUMv9Cy7kDDC4MDsLHkhPD3.4-1675888505-0-AQPKyoHNdrgrF5Y3GA51Wwzvdc/5nbRXaJtKRUwVRgt+TrPJbbs9TvYaAmFTDW3ZcX/PzV95b6pdyRNbYyuYKT0=; path=/; expires=Wed, 08-Feb-23 21:05:05 GMT; domain=.info.everfi.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7967265a2eb70b69-OSL
X-Firefox-Spdy: h2
my.hellobar.com/modules.js
200 OK 0 B URL HTTP/2 my.hellobar.com/modules.js
IP
GET /modules.js HTTP/1.1
Host: my.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:35:07 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=260615
etag: W/"ee85f3aa09f4f82ddd1d0df2fd1af30f"
last-modified: Fri, 23 Dec 2022 05:10:46 GMT
x-amz-id-2: FbKu5nSSamqqutaqGylcNdcI5O5SDGopg0GxPftEg1ygWGh7Rvcz4B73tCzUOVDlgYROQFCF8SM=
x-amz-request-id: 2W5YNVHZ8P90QP0P
cache-control: max-age=14400
cf-cache-status: HIT
age: 2664
vary: Accept-Encoding
server: cloudflare
cf-ray: 79672661980eb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/19.8e79a39a.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/19.8e79a39a.chunk.js
IP
GET /core/assets/js/19.8e79a39a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888561399
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"c478a5bb4d7885e2b9250c6beeb4fd6d"
x-amz-server-side-encryption: AES256
x-amz-version-id: uwUNfVtyHdRKYycXgamRNBkk5aCRrwjq
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VVVdsNXbBdhxlet2J5u2SUr-UZVeBhuZ3LxNLlzTS_R_nzIoLZQ-6Q==
age: 1048215
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/10.33fd2576.chunk.js
200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/10.33fd2576.chunk.js
IP
GET /core/assets/js/10.33fd2576.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888561399
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 19:00:18 GMT
last-modified: Wed, 08 Feb 2023 18:35:25 GMT
etag: W/"8c4bb27fba945df0bdfe8d25049c6d28"
x-amz-server-side-encryption: AES256
x-amz-version-id: IVJsPh8FSYTZvAmmR6w9_4RI7KWYSk3e
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 24
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DRlSJOoAjruczdHqztrfIKUGXTKtehLwW6nxkdpt-bPRBmdKw3XrMA==
age: 5693
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/blackbaud/main/prod/utag.js
200 OK 0 B URL HTTP/2 tags.tiqcdn.com/utag/blackbaud/main/prod/utag.js
IP
GET /utag/blackbaud/main/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d032e3a8158d91ddc57322c298785838:1675800878.604444"
last-modified: Tue, 07 Feb 2023 20:14:38 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Wed, 08 Feb 2023 20:40:06 GMT
date: Wed, 08 Feb 2023 20:35:06 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A700&ver=6.1.1
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A700&ver=6.1.1
IP
GET /css?family=Lato%3A700&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 20:35:05 GMT
date: Wed, 08 Feb 2023 20:35:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tag.demandbase.com/89bf928e3008d78e.min.js
200 OK 0 B URL HTTP/2 tag.demandbase.com/89bf928e3008d78e.min.js
IP
GET /89bf928e3008d78e.min.js HTTP/1.1
Host: tag.demandbase.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Fri, 03 Feb 2023 22:29:38 GMT
x-amz-version-id: ZENMp.PG0_SCBKlA3gMuRbJ6iQODQlwL
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 20:35:07 GMT
cache-control: public, max-age=3600
etag: W/"d26c8daf51a6b52d2a4c1d1e2834c17f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bj-1a9pKxMeXBMXaCvDqTOeV0IJR5FO_sOXDq6YvrMFNW1C11FzdOA==
age: 3497
strict-transport-security: max-age=63072000; includeSubDomains; preload
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=()
X-Firefox-Spdy: h2
api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&page_title=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI
200 OK 0 B URL HTTP/2 api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&page_title=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI
IP
POST /api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&page_title=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI HTTP/1.1
Host: api.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 63
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json;charset=utf-8
date: Wed, 08 Feb 2023 20:35:08 GMT
server: nginx
access-control-allow-origin: https://everfi.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
api-version: v2
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
identification-source: CENTRAL
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Tue, 07 Feb 2023 20:35:08 GMT
vary: Accept-Encoding, Origin
content-encoding: gzip
request-id: ab62d20d-c03b-4e72-91f0-c7c38c964633
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9Ag7V4Yv33ETz74jdaLEwz3-AdF2Ea-Mqnb5iJf17aN1jB6ZDUSpbg==
X-Firefox-Spdy: h2
js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888561399
200 OK 0 B URL HTTP/2 js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888561399
IP
GET /core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888561399 HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: istio-envoy
last-modified: Wed, 08 Feb 2023 19:00:19 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: anVnAvkfgn5J6cuZXMyTKehe9MUtP13K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
x-envoy-upstream-service-time: 16
date: Wed, 08 Feb 2023 20:35:11 GMT
cache-control: no-cache
etag: W/"91bbc65a16f226622a581aaaf53cafa1"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: O73QXC5G0GE4x1UB9RVZmct_kZ-2jR9Oj9a2Kong6LpuCgraxiGNig==
X-Firefox-Spdy: h2
141.193.213.21
162.159.138.60
34.251.149.144
13.37.25.97
23.53.48.147
23.38.200.197
18.135.18.21