Report - creditunioncolorado.org

Report Overview

Submitted URL
creditunioncolorado.org
IP
216.239.32.21
ASN
#15169 GOOGLE
Submitted
2022-11-14 23:30:51
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
alpixtrack.com	12040	2020-07-30T23:01:22Z	2023-03-08T22:29:57Z	573 B	269 B	130.211.141.45
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-10T07:09:08Z	480 B	694 B	142.250.74.3
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	551 B	349 B	31.13.72.36
bam.nr-data.net	630	2015-02-10T01:06:27Z	2023-03-10T09:26:43Z	889 B	603 B	162.247.241.14
platform.fonolo.com	661201			809 B	627 B	3.137.31.241
static.addtoany.com	4091	2012-05-21T14:58:18Z	2023-03-10T09:37:19Z	710 B	1.2 kB	104.22.71.197
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	782 B	2.4 kB	34.102.187.140
www.cuofco.org	unknown			12 kB	705 kB	23.185.0.2
api.glia.com	30061	2020-06-03T03:36:19Z	2023-03-06T22:50:36Z	816 B	27 kB	54.230.111.39
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	1.5 kB	108 kB	216.58.207.195
js.poshdevelopment.com	130435	2019-05-13T22:42:01Z	2023-02-23T10:39:57Z	337 B	668 B	54.230.111.64
client-logger.salemove.com	15340	2017-05-15T14:35:18Z	2023-03-06T22:50:40Z	418 B	301 B	35.173.161.29
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-10T13:35:34Z	337 B	21 kB	142.250.74.174
js.alpixtrack.com	16529	2020-09-25T21:24:23Z	2023-03-08T22:29:55Z	352 B	5.3 kB	130.211.141.45
pubsub.salemove.com	15427	2018-06-15T13:12:49Z	2023-03-06T22:50:37Z	1.2 kB	231 B	44.193.189.104
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-10T12:41:09Z	569 B	87 kB	142.250.150.155
www.redditstatic.com	1440	2012-06-30T14:33:28Z	2023-03-10T11:40:01Z	333 B	8.5 kB	151.101.85.140
js-agent.newrelic.com	378	2018-06-22T06:15:37Z	2023-03-10T05:27:57Z	336 B	15 kB	151.101.86.137
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.8 kB	81 kB	34.120.237.76
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	3.1 kB	7.1 kB	93.184.220.29
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	4.1 kB	8.4 kB	142.250.74.3
sc-static.net	1183	2017-09-05T20:35:04Z	2023-03-09T18:13:08Z	328 B	13 kB	54.230.82.240
tr.snapchat.com	978	2017-04-26T08:25:03Z	2023-03-10T12:37:30Z	1.4 kB	1.8 kB	35.190.43.134
status.geotrust.com	3662	2017-12-01T09:55:31Z	2023-03-10T05:15:32Z	343 B	762 B	93.184.220.29
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-10T13:03:15Z	346 B	68 kB	142.250.74.168
api.salemove.com	18122	2014-11-30T05:43:38Z	2023-03-06T22:50:38Z	449 B	11 kB	54.230.111.22
alb.reddit.com	1521	2017-06-15T07:33:56Z	2023-03-10T11:40:01Z	747 B	276 B	151.101.85.140
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	700 B	2.0 kB	54.230.245.100
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	35.163.62.5
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	395 B	64 kB	142.250.74.10
www.google.com	7	2015-05-10T13:11:19Z	2023-03-10T12:19:40Z	481 B	694 B	142.250.74.164
creditunioncolorado.org	unknown			355 B	436 B	216.239.38.21
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	1.7 kB	4.4 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
libs.salemove.com	22528	2018-08-28T20:19:24Z	2023-03-10T06:40:24Z	1.5 kB	204 kB	54.230.111.71

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (31)

	URL	Size	First Seen	Last Seen
	www.cuofco.org/sites/default/files/js/js_k-O2P03ZL-0kx0yxpxTIZujVYSK_yHW93ugh6xzfbd4.js	74 kB	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/sites/default/files/js/js_k-O2P03ZL-0kx0yxpxTIZujVYSK_yHW93ugh6xzfbd4.js IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 12:29:56 Times Seen1 Hash e195395f0015de4807c1caebce0757c2 9812e6899cdb1b61693aa4b32c146e6a5d5a096e 93e3b63f4dd92fed24c74cb1a714c866e8d56122bfc875bddee821eb1cdf6dde Loading...

	www.cuofco.org/	347 B	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/ IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 12:08:51 Times Seen1 Hash 45bb055256df92aeac0a9835453c2fbe 088ccf8ee88ce29387f0d99342301082bbab24d6 33e05e4888ac542818622201869dfdeb94761bd78d69630dd3501768b610eb7e Loading...

	libs.salemove.com/visitor/webcomponents_es5-e15fab19d.js	936 B	2023-03-07	2024-04-21
Pretty URL libs.salemove.com/visitor/webcomponents_es5-e15fab19d.js IP 54.230.111.71 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:12:12 Last Seen2024-04-21 20:25:16 Times Seen160 Hash f86098c5208655efb405300993461936 a0a5b6aea7bbb6a51940f8c874aee109477c7b56 832dbd199f70ade357e88a3f5d32920c8c63e69258dc173d3b261686320895db Loading...

	www.cuofco.org/	111 B	2023-03-07	2024-04-18
Pretty URL www.cuofco.org/ IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:02 Last Seen2024-04-18 14:42:31 Times Seen467 Hash 4231b05de229152526005f65e4a09598 03cbe1a3cd9acbd1c9d05d75b84d17eeb8d65918 7b73ac4c7d0a21474adef7963b6089f500f114d819e1f4cfb91b0de66923ef25 Loading...

	www.cuofco.org/	423 B	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/ IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 289a8bc5c81d30b8552a806e9e5720d5 8a8aef9a05615ea85e911267b78019de87dc04dd 8e024ef89c1f07c0feadaeef8b21158a5579c01cdf0ce255ac3360d6acc65b08 Loading...

	unknown	0 B	2023-03-07	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-23 13:24:49 Times Seen37019680 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	static.addtoany.com/menu/page.js	3.0 kB	2023-03-10	2023-09-30
Pretty URL static.addtoany.com/menu/page.js IP 104.22.71.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:47:42 Last Seen2023-09-30 00:56:47 Times Seen5 Hash 55ebdd15c058123020e659e0fd68ee33 8b1f24c6c9e86fd4175e5a65d9c2e53aed396618 f73b286de67c4d1b452d1e95b2070c8d987d910332b1d830439b6952a781e70d Loading...

	www.googletagmanager.com/gtm.js?id=GTM-M4MHC6S	195 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-M4MHC6S IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 12:08:51 Times Seen1 Hash 42cc5b0952ebb10535854c8f773ccb9a 8459123f66c221f06a8cced03badf50a2c28e2b9 e5e7e2b4c9bc40814694c051d287d8f55056d9b45f96ab5dcd0bd45a9ba5bdba Loading...

	sc-static.net/scevent.min.js	28 kB	2023-03-10	2023-07-27
Pretty URL sc-static.net/scevent.min.js IP 54.230.82.240 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 19:48:57 Last Seen2023-07-27 21:36:27 Times Seen34 Hash 280c4812510c03fdfb8b97c63410979c ba12b78f3a4e2cc55ea8c954db329cb9c609e319 1076991f3e548c844051c4aaf033a77668e636282ca8b7aef054f01667866e32 Loading...

	connect.facebook.net/signals/config/1310725552451853?v=2.9.89&r=stable	300 kB	2023-03-11	2023-03-11
Pretty URL connect.facebook.net/signals/config/1310725552451853?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 531e8d77ead7224aed36900136652b71 b8c7e5cce10bb676e0b92dfa32fc24dc308676f1 68be17bbcb24f1f448440d72f73dfc02da96e01f8f59f6f8d4ce1bd314286c03 Loading...

	bam.nr-data.net/1/NRJS-3105bae7edcf5b778ec?a=311710469&v=1216.487a282&to=ZF1RMEUADxAEBkNRVl0XcgdDCA4NSiFFTUlSVG8KWAUEPyYKWUxLXFRfAUU9LwwBAGFRXER7XApDEw4PCQBFFQdFUVYT&rst=3564&ck=1&ref=https://www.cuofco.org/&ap=3857&be=1123&fe=3498&dc=1745&perf=%7B%22timing%22:%7B%22of%22:1668468638930,%22n%22:0,%22f%22:368,%22dn%22:391,%22dne%22:520,%22c%22:521,%22s%22:532,%22ce%22:715,%22rq%22:715,%22rp%22:1089,%22rpe%22:1089,%22dl%22:1098,%22di%22:1738,%22ds%22:1744,%22de%22:1866,%22dc%22:3496,%22l%22:3496,%22le%22:3499%7D,%22navigation%22:%7B%7D%7D&fcp=1613&at=SBpSRg0aHB4%3D&jsonp=NREUM.setToken	49 B	2023-03-07	2023-07-30
Pretty URL bam.nr-data.net/1/NRJS-3105bae7edcf5b778ec?a=311710469&v=1216.487a282&to=ZF1RMEUADxAEBkNRVl0XcgdDCA4NSiFFTUlSVG8KWAUEPyYKWUxLXFRfAUU9LwwBAGFRXER7XApDEw4PCQBFFQdFUVYT&rst=3564&ck=1&ref=https://www.cuofco.org/&ap=3857&be=1123&fe=3498&dc=1745&perf=%7B%22timing%22:%7B%22of%22:1668468638930,%22n%22:0,%22f%22:368,%22dn%22:391,%22dne%22:520,%22c%22:521,%22s%22:532,%22ce%22:715,%22rq%22:715,%22rp%22:1089,%22rpe%22:1089,%22dl%22:1098,%22di%22:1738,%22ds%22:1744,%22de%22:1866,%22dc%22:3496,%22l%22:3496,%22le%22:3499%7D,%22navigation%22:%7B%7D%7D&fcp=1613&at=SBpSRg0aHB4%3D&jsonp=NREUM.setToken IP 162.247.241.14 ASN #23467 NEWRELIC-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:56 Last Seen2023-07-30 22:07:50 Times Seen563 Hash b8b9dc20ec73bc71d24c07ed557c27bf f27a0c9366eaafcf17b81cc50d32660637d0ee57 b91234b576455d66e12dd661a2539eb2418a831078ecef9ebc7f4bbd4e580d9c Loading...

	api.glia.com/salemove_integration.js	8.9 kB	2023-03-11	2023-03-11
Pretty URL api.glia.com/salemove_integration.js IP 54.230.111.39 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:47:08 Last Seen2023-03-11 12:08:51 Times Seen1 Hash f5441d7ee457cd90ed6a1e65d020d6b7 5fa3e31d7b5159a247b1bd5639f13c691d5bf6ec 51483252a1c732f5a8d193bb051607b57545f31387e53345faf8066683bb822a Loading...

	www.cuofco.org/	307 B	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/ IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash b8f319ebfaac488058f2d60ef1947bd2 9609b0bcf90d1e4ae2f382ebfb20fe0c732913b8 20ffc86256469e3490c80e77cc5a0a3d41bdbf8f942093afed92cda5bbfc56f5 Loading...

	static.addtoany.com/menu/sm.23.html#type=core&event=load	615 B	2023-03-07	2023-03-26
Pretty URL static.addtoany.com/menu/sm.23.html#type=core&event=load IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:19 Last Seen2023-03-26 01:07:12 Times Seen2 Hash b78383014e25cac539cb1e9b0abd98b9 0ebdaa7673003db9c63de5b46fcb02dd8943a3e0 3f18e7672858e9f6c7ce394f9d26d558efcb8f2dd505881599933d37a87ff692 Loading...

	libs.salemove.com/visitor/bootstrapper-e15fab19d.js	674 kB	2023-03-11	2023-03-11
Pretty URL libs.salemove.com/visitor/bootstrapper-e15fab19d.js IP 54.230.111.71 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:47:08 Last Seen2023-03-11 12:08:51 Times Seen1 Hash bf9a8f0110c81c14eb097edcd542a811 0b0360f90268d77ffa165083224f139f2f50fc5e 0cf04635cdbf58e3cdaeb44e34b94b97b76bff4ad907670862584de63a491951 Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-08	2023-11-28
Pretty URL connect.facebook.net/en_US/fbevents.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-11-28 17:55:58 Times Seen32 Hash a6ef7927128284961f4cadd572969f09 57e21033749687e69de710a0be6d4244edf1fe51 d5c905d7ce4679b183eb11f7c6811682ddffbf0f037590360ae2b1a84a51ef1b Loading...

	js.alpixtrack.com/alphpixel.js?cust=1453609-751-KUSA	4.9 kB	2023-03-07	2024-04-16
Pretty URL js.alpixtrack.com/alphpixel.js?cust=1453609-751-KUSA IP 130.211.141.45 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:12:12 Last Seen2024-04-16 09:57:33 Times Seen76 Hash c8b925eed53ccf4d111fc3f73c73c1a2 b426b9d0ace2b45daee6c24ddc2599eaafa03ed3 26b1fa79351edf039f381c8d30f0d0861746042f076c8de57179d822b8d7eacd Loading...

	js-agent.newrelic.com/nr-1216.min.js	39 kB	2023-03-07	2023-12-02
Pretty URL js-agent.newrelic.com/nr-1216.min.js IP 151.101.86.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:59 Last Seen2023-12-02 09:02:29 Times Seen204 Hash 9f533d8cd24b2c5e3b4dc886ecbd43e8 4aaad79f222fbcf885679bb30ac0cb6c14ec06eb 6f973e7d75a7e6f6e59708f19631c8890034db5debb4d04f189deb53c114e708 Loading...

	static.addtoany.com/menu/modules/core.c4ad588e.js	72 kB	2023-03-10	2023-09-30
Pretty URL static.addtoany.com/menu/modules/core.c4ad588e.js IP 104.22.71.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:47:42 Last Seen2023-09-30 00:56:47 Times Seen6 Hash e3633b6a2cb3c50cfecb58ea642c847d 68cf90483e0cbd3e892e68ecd69dab556ca25cf8 a90d2b9a8ef6ca85a8d21190509cb54bade6eff7f48379eaa77980b9428fd5bb Loading...

	platform.fonolo.com/v2	11 kB	2023-03-11	2023-03-11
Pretty URL platform.fonolo.com/v2 IP 3.137.31.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash afb2e4fb872f43363131a47198f52b60 4fabf4f868cbdb45976eca253c1a1ba3c54912c3 353741cc2c29f68c1df6291a75f2a20a55a16f35f75c299cfbd7d8330374a91d Loading...

	www.cuofco.org/	520 B	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/ IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 6f30337a035f6399c0016121d3f2bd9c 09a460c564e8ec85ab59e8721919ae4cdec44fe0 bcb1619a707f2e5fe4007544d1691119c96ba7f39357d83858fd404489148421 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-20
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-20 17:36:09 Times Seen1522 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	www.cuofco.org/sites/default/files/js/js_lOFzYsPtmBZVoJAzjXIULAG9phd5ZvD5_s0u7TkTN1w.js	106 kB	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/sites/default/files/js/js_lOFzYsPtmBZVoJAzjXIULAG9phd5ZvD5_s0u7TkTN1w.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 12:29:56 Times Seen1 Hash b019fbfa3547a77ddf084fd21ff474b9 3940c5fbd8149d4368f38cbb6863fe1a36f5f49a 94e17362c3ed981655a090338d72142c01bda6177966f0f9fecd2eed3913375c Loading...

	www.cuofco.org/	498 B	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/ IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 0a2a9e26819344da8a29264228798c2d 87454d98be0e5156317948d41669d9421ae199b3 27d782fa7003841a09eb345c050ef50a12efd32a6a8f316610d1f248f9dcb9a3 Loading...

	www.cuofco.org/sites/default/files/google_tag/primary/google_tag.script.js?rl8xmo	348 B	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/sites/default/files/google_tag/primary/google_tag.script.js?rl8xmo IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 24089d13e568dff997e0119d6f88185e 3f24e8b568ffe872aaad945c547a9d8313d8677a 559423c599dc281f074626811ef26de88962951b41024f129d2da4d216da72ef Loading...

	www.cuofco.org/	435 B	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/ IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 1abe672091afd539e15c715c436c40a4 4e325b9f37168b117d6ee6b38167a17cd14dde8c 7a26f85f5599538b8f84e21c5ebf95a01a1162667aaa411ce54d2a3cce512d5d Loading...

	www.redditstatic.com/ads/pixel.js	25 kB	2023-03-08	2023-12-01
Pretty URL www.redditstatic.com/ads/pixel.js IP 151.101.85.140 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:55 Last Seen2023-12-01 19:12:11 Times Seen28 Hash c1c34430d39fb43c9612aebe7ab8a9db 4d7f5cb7b29685a3a5a51c140288465e9553a0a7 4b4e80032e1c164685d3ff6eb4c606785ebaebaa648d3984478b0cc8d114190b Loading...

	platform.fonolo.com/v2/callback/CP0009fdcb5f4e548df585e7396ceb12b1/?c=fonolo_widget&u=https://www.cuofco.org/&s=&tz=0&input[name]=Test%20User&input[account]=12345&t=embedded	228 B	2023-03-11	2023-03-11
Pretty URL platform.fonolo.com/v2/callback/CP0009fdcb5f4e548df585e7396ceb12b1/?c=fonolo_widget&u=https://www.cuofco.org/&s=&tz=0&input[name]=Test%20User&input[account]=12345&t=embedded IP 3.137.31.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 12:08:51 Times Seen1 Hash e9b3a9df12d75ae5ef485193412f72b5 b51daf263c9a6fe4d8a0b94ac484b4c642b0ff54 2cdf85356c8f8f4cef2711eeae8759faf6408a7dc7dcfd1e45155ba257f21c21 Loading...

	www.cuofco.org/	10 kB	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/ IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 578b614364cd92dd401012456a89bc85 865293e10fb441adc26f25722b96a0e81e329a58 640972ca877b21926ea31b65bf4e764153df1be086118c076cbc39fcbc8cb849 Loading...

	www.cuofco.org/sites/default/files/js/js_7HLXQ8i36ht8YRil25oWniakG9KJcpZ-pv1fh8sfrLk.js	7.5 kB	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/sites/default/files/js/js_7HLXQ8i36ht8YRil25oWniakG9KJcpZ-pv1fh8sfrLk.js IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 8758b2e6b6fa3461b6d5f2e36d8c70a0 cfd92d2d6bf0aa01de5689c0a3796dff905f518d ec72d743c8b7ea1b7c6118a5db9a169e26a41bd28972967ea6fd5f87cb1facb9 Loading...

	www.cuofco.org/sites/default/files/js/js_fbQgiEDJsofKksuF7gxcK-LmzEWSDGgpQnzdg_6a5nc.js	2.1 kB	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/sites/default/files/js/js_fbQgiEDJsofKksuF7gxcK-LmzEWSDGgpQnzdg_6a5nc.js IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 84a80177aac8ce1ea0d6c221615605ef 775fafe423dd2fd91f880bc285e59f6d7c8012b3 7db4208840c9b287ca92cb85ee0c5c2be2e6cc45920c6829427cdd83fe9ae677 Loading...

HTTP Transactions (104)

	URL	IP	Response	Size
	creditunioncolorado.org/	216.239.38.21	302 Found	220 B
URL HTTP/1.1 creditunioncolorado.org/ IP 216.239.38.21:0 ASN #15169 GOOGLE File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators Size 220 B (220 bytes) Hash 472491d19c26c926d19862d9d92d945c 73adfc06de081b872b3397791e0fa56eab857b65 7022ed30e73db5fdbea37ba64b2dd3b3923e97ac1a767177bac9fabec32b0184 HTTP Headers `GET / HTTP/1.1 Host: creditunioncolorado.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 302 Found Location: https://www.cuofco.org/ Date: Mon, 14 Nov 2022 23:30:39 GMT Content-Type: text/html; charset=UTF-8 Server: ghs Content-Length: 220 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7786cd9bd97e024b3a1d16215defaad2 786ddbb74b0b6bd9270622dbe0258d6caee407c1 9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0" Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4307 Expires: Tue, 15 Nov 2022 00:42:26 GMT Date: Mon, 14 Nov 2022 23:30:39 GMT Connection: keep-alive`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 832aecaba9f06ee2d39d4d4bea65f13c 7195d6ffadfdbc6fc8e92c63ae28d4a3038a72dc a437509314a97065de6c7b9e5e2b4b61f0234b45f5f5bf2649cbdf499577bfd3 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5614 Cache-Control: max-age=131652 Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:39 GMT Etag: "637218f5-1d7" Expires: Wed, 16 Nov 2022 12:04:51 GMT Last-Modified: Mon, 14 Nov 2022 10:31:17 GMT Server: ECS (ska/F715) X-Cache: HIT Content-Length: 471`

	firefox.settings.services.mozilla.com/v1/	34.102.187.140	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 34.102.187.140:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 4736bac84ca28f2b1e961159fb4ea098 1319612979f53896fcfeacd4215c2715d4951e4c 5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Mon, 14 Nov 2022 22:44:35 GMT cache-control: public,max-age=3600 content-type: application/json age: 2764 alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8c15cef160d1514fc977ed4c4e97086c ffe4ce3199658a1fc7a45d1607df40ef3911621d db1a82d8a2bacc0257b87efec0c365c1b769700fa27ce928321e082505f1d72a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "DB1A82D8A2BACC0257B87EFEC0C365C1B769700FA27CE928321E082505F1D72A" Last-Modified: Sun, 13 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8194 Expires: Tue, 15 Nov 2022 01:47:13 GMT Date: Mon, 14 Nov 2022 23:30:39 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: aDXXD449OxEuKymfvHaxGZ31gyIpNjvAlvp1JDaPEIjxPOkYRxJfL6xrvJsI3prQGWi+8lE1cK4= x-amz-request-id: PWT8NZSY531FYDBD content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Mon, 14 Nov 2022 23:14:02 GMT age: 997 last-modified: Fri, 30 Sep 2022 18:50:55 GMT etag: "67d5a988edcda47bc3b3b3f65d32b4b6" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Mon, 14 Nov 2022 23:30:39 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f64a4be138930ed8c382faa7ff7964d0 1a36fd7c37b7dae8a6a70921e804a620f150d0a4 5e212e06c883f0faf2018f95b4a85adc9cce46b0ffe91d396357f66dd7d97c7d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "5E212E06C883F0FAF2018F95B4A85ADC9CCE46B0FFE91D396357F66DD7D97C7D" Last-Modified: Sat, 12 Nov 2022 22:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21583 Expires: Tue, 15 Nov 2022 05:30:22 GMT Date: Mon, 14 Nov 2022 23:30:39 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	34.102.187.140	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 34.102.187.140:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Cache-Control, Pragma, Retry-After, ETag, Alert, Expires, Backoff, Content-Type, Last-Modified content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Mon, 14 Nov 2022 22:44:48 GMT cache-control: public,max-age=3600 age: 2751 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 3200044057cb585f1a435c0efece61c8 8305d5b5891288aa9996b4b4ca6fce2265413194 df45704534a24928e7659a6d8cd1b5ac9ffa9b224b02b34a2d6aed5ef69fd586 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2750 Cache-Control: max-age=123731 Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:40 GMT Etag: "63720535-1d7" Expires: Wed, 16 Nov 2022 09:52:51 GMT Last-Modified: Mon, 14 Nov 2022 09:07:01 GMT Server: ECS (ska/F715) X-Cache: HIT Content-Length: 471`

	www.cuofco.org/	23.185.0.2	200 OK	42 kB
URL HTTP/2 www.cuofco.org/ IP 23.185.0.2:0 ASN #54113 FASTLY File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10251) Size 42 kB (41693 bytes) Hash c8ebd6417c9fb61ba1825c6b0e3a7414 b7e61915f546488aaa87535b1aacb0e40f3d2ce1 704714511576d47d3b33c3d5dd9ed55b0240190dd30fe9b26b11d42df07b1d8e HTTP Headers `GET / HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK cache-control: max-age=2764800, public content-encoding: gzip content-language: en content-security-policy-report-only: default-src .cuofco.org:; script-src .cuofco.org static.addtoany.com api.glia.com js.poshdevelopment.com .googletagmanager.com 'unsafe-inline' bam.nr-data.net connect.facebook.net libs.salemove.com js-agent.newrelic.com .google-analytics.com js.alpixtrack.com embed.signalintent.com cdn.segment.com www.googleadservices.com maps.googleapis.com .googleadservices.com 'unsafe-eval' applicationtest.cuofco.org platform.fonolo.com; object-src self; style-src .cuofco.org fonts.googleapis.com 'unsafe-inline' libs.salemove.com embed.signalintent.com; img-src .cuofco.org .facebook.com alpixtrack.com .google.com .google-analytics.com data: www.googletagmanager.com uploads.salemove.com .google.com maps.gstatic.com maps.googleapis.com khms0.googleapis.com; media-src .cuofco.org libs.salemove.com; frame-src .cuofco.org static.addtoany.com embed.fleeq.io batchgeo.com maps.googleapis.com maps.google.com platform.fonolo.com; frame-ancestors ; child-src .cuofco.org; font-src .cuofco.org fonts.gstatic.com fonts.googleapis.com themes.googleusercontent.com data: embed.signalintent.com; connect-src .cuofco.org bam.nr-data.net pubsub.salemove.com .google-analytics.com stats.g.doubleclick.net client-logger.salemove.com api.glia.com wss://pubsub.salemove.com api.salemove.com js.alpixtrack.com .facebook.com alpixtrack.com signal-intent-production-back.herokuapp.com cdn.segment.com api.segment.io kluster.salemove.com wss://kluster.salemove.com adservice.google.com applicationtest.cuofco.org; report-uri /report-csp-violation content-type: text/html; charset=UTF-8 etag: W/"1668275535" expires: Sun, 19 Nov 1978 05:00:00 GMT last-modified: Sat, 12 Nov 2022 17:52:15 GMT link: <https://www.cuofco.org/>; rel="canonical", <https://www.cuofco.org/>; rel="shortlink" permissions-policy: interest-cohort=() referrer-policy: no-referrer server: nginx strict-transport-security: max-age=15768000 x-content-type-options: nosniff x-drupal-cache: MISS x-drupal-dynamic-cache: UNCACHEABLE x-frame-options: SAMEORIGIN x-generator: Drupal 9 (https://www.drupal.org) x-pantheon-styx-hostname: styx-fe2-b-fffb9c8f-jjjqg x-styx-req-id: be17c9af-62b2-11ed-9b63-ba37a2e9e043 x-ua-compatible: IE=edge x-xss-protection: 1; mode=block date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-kigq8000025-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 22, 1 x-timer: S1668468640.669371,VS0,VE366 vary: Accept-Encoding, Cookie, Cookie, Cookie age: 193101 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 41693 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/google_tag/primary/google_tag.script.js?rl8xmo	23.185.0.2	200 OK	283 B
URL HTTP/2 www.cuofco.org/sites/default/files/google_tag/primary/google_tag.script.js?rl8xmo IP 23.185.0.2:0 ASN #54113 FASTLY File type ASCII text, with very long lines (348), with no line terminators Size 283 B (283 bytes) Hash b1901a7d80d8a6609db0b941d7fe1bf6 ddd95cbf55f2d71fbe3b30d9a2e7e1e2f1bc7833 ad468d36570d6e8b1aba4d1eadccf60317864575c94dc66b9e055d4dadd10ae6 HTTP Headers `GET /sites/default/files/google_tag/primary/google_tag.script.js?rl8xmo HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: application/x-javascript etag: W/"636fdd45-15c" expires: Mon, 13 Nov 2023 17:52:19 GMT last-modified: Sat, 12 Nov 2022 17:52:05 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-58c69d767c-dqs5c x-styx-req-id: c07c87d2-62b2-11ed-9f9b-8ed7d43b2b76 date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-klot8100121-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 4, 1 x-timer: S1668468640.142513,VS0,VE1 vary: Accept-Encoding age: 193102 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 283 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/css/css_2tDrDwuGOCSh0gBJSK7RAn-_BY6w1Wt2ihzpIL8G4Xk.css	23.185.0.2	200 OK	2.7 kB
URL HTTP/2 www.cuofco.org/sites/default/files/css/css_2tDrDwuGOCSh0gBJSK7RAn-_BY6w1Wt2ihzpIL8G4Xk.css IP 23.185.0.2:0 ASN #54113 FASTLY File type assembler source, ASCII text, with very long lines (1297) Size 2.7 kB (2686 bytes) Hash dd6fd196cfc187f6cae16e7f3cc1f885 4a1c9e50a20de60d2aafd9bef7607337e657df8e 9316943cfd3b761ab434c40134381a4bb3f2c2cfb51d38e8540b798793e856a9 HTTP Headers `GET /sites/default/files/css/css_2tDrDwuGOCSh0gBJSK7RAn-_BY6w1Wt2ihzpIL8G4Xk.css HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: text/css etag: W/"63644439-232e" expires: Wed, 08 Nov 2023 14:35:17 GMT last-modified: Thu, 03 Nov 2022 22:44:09 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-5f4bdb78d6-nhfvb x-styx-req-id: 661a892d-5ea9-11ed-8df2-0e683d78ebf6 date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-kigq8000145-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668468640.142809,VS0,VE1 vary: Accept-Encoding age: 193094 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 2686 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/css/css_U2i0raCgV46jcvXxoGRlzeHsCjUH1wrJWQg-wyctksU.css	23.185.0.2	200 OK	2.9 kB
URL HTTP/2 www.cuofco.org/sites/default/files/css/css_U2i0raCgV46jcvXxoGRlzeHsCjUH1wrJWQg-wyctksU.css IP 23.185.0.2:0 ASN #54113 FASTLY File type ASCII text, with very long lines (1856) Size 2.9 kB (2866 bytes) Hash 61b8e4c26aff8d285ec404df381d5803 a2449b6e7acf588c394259dec6bbd153a9ede279 d7139d0e18927f736598e36d870e89cd934305d7ec90d1d370d1cbf23517c905 HTTP Headers `GET /sites/default/files/css/css_U2i0raCgV46jcvXxoGRlzeHsCjUH1wrJWQg-wyctksU.css HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: text/css etag: W/"6364443a-234d" expires: Thu, 09 Nov 2023 16:27:27 GMT last-modified: Thu, 03 Nov 2022 22:44:10 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-57469859c9-cjrfg x-styx-req-id: 3c27fa79-5f82-11ed-a4ae-2a842bba4b66 date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-kigq8000130-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668468640.143999,VS0,VE1 vary: Accept-Encoding age: 193094 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 2866 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/css/css_nJh1pGM46_OTmBTmfxgMiYFXJWVYm0IMBuAh4uJjAlo.css	23.185.0.2	200 OK	23 kB
URL HTTP/2 www.cuofco.org/sites/default/files/css/css_nJh1pGM46_OTmBTmfxgMiYFXJWVYm0IMBuAh4uJjAlo.css IP 23.185.0.2:0 ASN #54113 FASTLY File type assembler source, Unicode text, UTF-8 text, with very long lines (51561) Size 23 kB (23366 bytes) Hash fb6945671ca2e485528d1cb538cff938 78e74d75423e77068d4be6c8b1964854c26a2969 5de59edad5ed5332f718a295200f93523076a9eb05aa162e4d32bf300ab8b8d6 HTTP Headers `GET /sites/default/files/css/css_nJh1pGM46_OTmBTmfxgMiYFXJWVYm0IMBuAh4uJjAlo.css HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: text/css etag: W/"6364443a-2313b" expires: Sat, 04 Nov 2023 22:44:17 GMT last-modified: Thu, 03 Nov 2022 22:44:10 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-64f84fb45c-8n887 x-styx-req-id: 0c4d0d86-5bc9-11ed-9360-0a1201bbc1bc date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-klot8100124-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668468640.144606,VS0,VE1 vary: Accept-Encoding age: 193094 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 23366 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/css/css_hyjKx2w1_4AYDLtpyFC2VtpBnlx8YkMuetIyMlURAO4.css	23.185.0.2	200 OK	11 kB
URL HTTP/2 www.cuofco.org/sites/default/files/css/css_hyjKx2w1_4AYDLtpyFC2VtpBnlx8YkMuetIyMlURAO4.css IP 23.185.0.2:0 ASN #54113 FASTLY File type assembler source, Unicode text, UTF-8 text, with very long lines (25350) Size 11 kB (10881 bytes) Hash 7522335f28de7a727f98de423b966158 9c26b032120f596dfccf0891f823f3708935fe6e da5a57103e0803c0958ff60696a9f68ae391aeda805e365ea4e2888479763c3a HTTP Headers `GET /sites/default/files/css/css_hyjKx2w1_4AYDLtpyFC2VtpBnlx8YkMuetIyMlURAO4.css HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: text/css etag: W/"6364443b-12d0a" expires: Sat, 04 Nov 2023 22:44:17 GMT last-modified: Thu, 03 Nov 2022 22:44:11 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-777f5c79d9-9gtmx x-styx-req-id: 0c4c108d-5bc9-11ed-a409-9a653ad35aa2 date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-kigq8000027-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668468640.144927,VS0,VE1 vary: Accept-Encoding age: 193094 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 10881 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/js/js_7HLXQ8i36ht8YRil25oWniakG9KJcpZ-pv1fh8sfrLk.js	23.185.0.2	200 OK	3.4 kB
URL HTTP/2 www.cuofco.org/sites/default/files/js/js_7HLXQ8i36ht8YRil25oWniakG9KJcpZ-pv1fh8sfrLk.js IP 23.185.0.2:0 ASN #54113 FASTLY File type ASCII text, with very long lines (7080) Size 3.4 kB (3351 bytes) Hash 7af8089047d1124a8e123bcaf6cb2a47 b47f8953d5e8d4ae713b67218f311577a073646d bc2e3fabd77c1f6277dacdd7db133962439529a4406028a8e2b26fc24f4b5116 HTTP Headers `GET /sites/default/files/js/js_7HLXQ8i36ht8YRil25oWniakG9KJcpZ-pv1fh8sfrLk.js HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: application/x-javascript etag: W/"6364443d-1d6a" expires: Sat, 04 Nov 2023 22:44:17 GMT last-modified: Thu, 03 Nov 2022 22:44:13 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-64f84fb45c-8n887 x-styx-req-id: 0c4c02c5-5bc9-11ed-9360-0a1201bbc1bc date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-kigq8000154-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 33, 1 x-timer: S1668468640.146118,VS0,VE1 vary: Accept-Encoding age: 193094 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 3351 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/js/js_fbQgiEDJsofKksuF7gxcK-LmzEWSDGgpQnzdg_6a5nc.js	23.185.0.2	200 OK	932 B
URL HTTP/2 www.cuofco.org/sites/default/files/js/js_fbQgiEDJsofKksuF7gxcK-LmzEWSDGgpQnzdg_6a5nc.js IP 23.185.0.2:0 ASN #54113 FASTLY File type ASCII text, with very long lines (608) Size 932 B (932 bytes) Hash 963000222a1b2c690c2602ec31ca238c 086bdbc79d6abc0ee28718c5621692ce2c3359b3 deba41a7c76afcbdb0a73effd2632d0b2c461b5d7f584ba60ca6f3e7ff54cacc HTTP Headers `GET /sites/default/files/js/js_fbQgiEDJsofKksuF7gxcK-LmzEWSDGgpQnzdg_6a5nc.js HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: application/x-javascript etag: W/"6364443e-84b" expires: Sat, 04 Nov 2023 22:44:17 GMT last-modified: Thu, 03 Nov 2022 22:44:14 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-64f84fb45c-kzxdq x-styx-req-id: 0c4bf5da-5bc9-11ed-9c25-5287c35236c2 date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-kigq8000055-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668468640.146660,VS0,VE1 vary: Accept-Encoding age: 193094 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 932 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/css/css_VJc0d_OV2KemVWVvixG1xi4wAX7AFM7NDURqyDkH640.css	23.185.0.2	200 OK	6.7 kB
URL HTTP/2 www.cuofco.org/sites/default/files/css/css_VJc0d_OV2KemVWVvixG1xi4wAX7AFM7NDURqyDkH640.css IP 23.185.0.2:0 ASN #54113 FASTLY File type ASCII text, with very long lines (14047) Size 6.7 kB (6725 bytes) Hash acf7d348e1a93cc13b03450c68ac4715 2ff708e3c442dbee840cfa500968c542ef2a1f66 665a4946cdbd7d0014f6d5c306a1cfcc65b1742fd218f65bbb6a67e8e4e88873 HTTP Headers `GET /sites/default/files/css/css_VJc0d_OV2KemVWVvixG1xi4wAX7AFM7NDURqyDkH640.css HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: text/css etag: W/"63644439-74c4" expires: Fri, 10 Nov 2023 10:52:35 GMT last-modified: Thu, 03 Nov 2022 22:44:09 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-58c69d767c-p68hd x-styx-req-id: 9e5939b4-601c-11ed-91a5-ded1d350bb20 date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-kigq8000174-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668468640.142946,VS0,VE9 vary: Accept-Encoding age: 193094 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 6725 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/styles/icon/public/image/2020-07/footer-foundation.png?itok=X6z8qia2	23.185.0.2	200 OK	3.9 kB
URL HTTP/2 www.cuofco.org/sites/default/files/styles/icon/public/image/2020-07/footer-foundation.png?itok=X6z8qia2 IP 23.185.0.2:0 ASN #54113 FASTLY File type PNG image data, 41 x 56, 8-bit/color RGBA, non-interlaced\012- data Size 3.9 kB (3891 bytes) Hash 1656411d2862d9ba4308ded057b8b992 53921c87a72f276c8e5dc2a03d2e9a5eab8d61de b7b5ddb2db485919ae33058ba2b2858af0dd14e815491308933b0575c25999c6 HTTP Headers `GET /sites/default/files/styles/icon/public/image/2020-07/footer-foundation.png?itok=X6z8qia2 HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/png etag: "5fa2a6e1-f33" expires: Fri, 20 Oct 2023 17:22:09 GMT last-modified: Wed, 04 Nov 2020 13:04:33 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-cfb5d9d8b-llkz9 x-styx-req-id: 8fd42f06-4fd2-11ed-bd63-9a47f356f923 date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-kigq8000120-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 33, 1 x-timer: S1668468640.150218,VS0,VE1 age: 193094 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 3891 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/CUofCO_Horz_wht.png	23.185.0.2	200 OK	6.0 kB
URL HTTP/2 www.cuofco.org/sites/default/files/CUofCO_Horz_wht.png IP 23.185.0.2:0 ASN #54113 FASTLY File type PNG image data, 289 x 84, 8-bit/color RGBA, interlaced\012- data Size 6.0 kB (5994 bytes) Hash 7095289d4b2f687915f35b112c50159e e9050c16402505df3efd3974e646d7f031e44d48 91efcf6048955344e63ed925d73e7761ace8aa129ae2faa196ccec933b44688d HTTP Headers `GET /sites/default/files/CUofCO_Horz_wht.png HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/png etag: "62e195ab-176a" expires: Thu, 19 Oct 2023 16:09:06 GMT last-modified: Wed, 27 Jul 2022 19:44:43 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-cfb5d9d8b-nwlqn x-styx-req-id: 31256fd6-4eff-11ed-ad22-6a7404969741 date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-klot8100079-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 34, 1 x-timer: S1668468640.147496,VS0,VE4 age: 193094 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 5994 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/styles/x_large_hq/public/2022-09/Autumn%20Homepage%20Image%20%282%29.jpg?itok=8bqPIoCT	23.185.0.2	200 OK	228 kB
URL HTTP/2 www.cuofco.org/sites/default/files/styles/x_large_hq/public/2022-09/Autumn%20Homepage%20Image%20%282%29.jpg?itok=8bqPIoCT IP 23.185.0.2:0 ASN #54113 FASTLY File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 1920x1080, components 3\012- data Size 228 kB (227834 bytes) Hash f326ac2c07f23fa768a10ece2ed6968e 438af1fb2a53ce8287b6ebe88d39f9726a5eee37 cc21580af145c6031a936dc9ffc63d9410272da8165dbd8625034aab800cfea0 HTTP Headers `GET /sites/default/files/styles/x_large_hq/public/2022-09/Autumn%20Homepage%20Image%20%282%29.jpg?itok=8bqPIoCT HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/jpeg etag: "6334b502-379fa" expires: Sat, 28 Oct 2023 18:52:09 GMT last-modified: Wed, 28 Sep 2022 20:56:34 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-9b5b677f8-r6f9z x-styx-req-id: 75ec7471-5628-11ed-9852-26cd2e83c6f4 date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-klot8100074-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668468640.148010,VS0,VE2 age: 193094 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 227834 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/styles/small_hq/public/image/2021-12/CUofCO-01.png?itok=OYRyswjZ	23.185.0.2	200 OK	74 kB
URL HTTP/2 www.cuofco.org/sites/default/files/styles/small_hq/public/image/2021-12/CUofCO-01.png?itok=OYRyswjZ IP 23.185.0.2:0 ASN #54113 FASTLY File type PNG image data, 640 x 445, 8-bit/color RGBA, non-interlaced\012- data Size 74 kB (74283 bytes) Hash a8ec3641536da30d0ddad9474aaf2b46 bf78fbb88a4af3d5793d3e205b90d2682e43333a d31e355c54aa8ecd80d1ad1a2b400c329e13872b4bdff3ee6e8691fb524573c7 HTTP Headers `GET /sites/default/files/styles/small_hq/public/image/2021-12/CUofCO-01.png?itok=OYRyswjZ HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/png etag: "61a8ed98-1222b" expires: Thu, 09 Nov 2023 14:25:36 GMT last-modified: Thu, 02 Dec 2021 16:00:24 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-57469859c9-82wsv x-styx-req-id: 367098b8-5f71-11ed-adf5-eaf6e84fad32 date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-kigq8000063-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668468640.150251,VS0,VE2 age: 193085 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 74283 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/js/js_k-O2P03ZL-0kx0yxpxTIZujVYSK_yHW93ugh6xzfbd4.js	23.185.0.2	200 OK	22 kB
URL HTTP/2 www.cuofco.org/sites/default/files/js/js_k-O2P03ZL-0kx0yxpxTIZujVYSK_yHW93ugh6xzfbd4.js IP 23.185.0.2:0 ASN #54113 FASTLY File type Unicode text, UTF-8 text, with very long lines (18314) Size 22 kB (22421 bytes) Hash f63650d748cc1cbac26a0567216a1154 eee262bbf0d65c6eb14ffed2a2b65038b8b9e284 962e49a4a03411087143b843f504a5fe5db20fb04b3876b0f766266f4e30e0f2 HTTP Headers `GET /sites/default/files/js/js_k-O2P03ZL-0kx0yxpxTIZujVYSK_yHW93ugh6xzfbd4.js HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: application/x-javascript etag: W/"6364443f-11ef1" expires: Sat, 04 Nov 2023 22:44:17 GMT last-modified: Thu, 03 Nov 2022 22:44:15 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-777f5c79d9-9gtmx x-styx-req-id: 0c541713-5bc9-11ed-a409-9a653ad35aa2 date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-klot8100148-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668468640.153583,VS0,VE1 vary: Accept-Encoding age: 193094 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 22421 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/styles/small_hq/public/image/2022-10/highland%20ranch%20mural%20rev_0.jpg?itok=ZK6bPO7z	23.185.0.2	200 OK	112 kB
URL HTTP/2 www.cuofco.org/sites/default/files/styles/small_hq/public/image/2022-10/highland%20ranch%20mural%20rev_0.jpg?itok=ZK6bPO7z IP 23.185.0.2:0 ASN #54113 FASTLY File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 640x640, components 3\012- data Size 112 kB (111558 bytes) Hash 0882c888f47f6551245373bd88e1dadf 44e3c081cee163b314c2a67676b6fef93107c54a cb3d591511f9c33217586f4f14f37f00f9f93a0742949c6cbfa26e7ffa01ad9c HTTP Headers `GET /sites/default/files/styles/small_hq/public/image/2022-10/highland%20ranch%20mural%20rev_0.jpg?itok=ZK6bPO7z HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/jpeg etag: "634f4e7a-1b3c6" expires: Fri, 20 Oct 2023 01:10:19 GMT last-modified: Wed, 19 Oct 2022 01:10:18 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-cfb5d9d8b-mk4cq x-styx-req-id: cc355d1b-4f4a-11ed-b873-3a7a170c8516 date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-klot8100020-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668468640.150267,VS0,VE2 age: 193085 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 111558 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/js/js__2jJZDKda2j5vGac7VYYRFZAYG4fgo9a6je9RItlFO8.js	23.185.0.2	200 OK	72 kB
URL HTTP/2 www.cuofco.org/sites/default/files/js/js__2jJZDKda2j5vGac7VYYRFZAYG4fgo9a6je9RItlFO8.js IP 23.185.0.2:0 ASN #54113 FASTLY File type Unicode text, UTF-8 text, with very long lines (17692), with LF, NEL line terminators Size 72 kB (72529 bytes) Hash ebb934a8e5029085ae2fb37dbafdbbd9 dc6ab73778fc475ebd0c2724ad4f57a0de298d1e 5a9bd2c8e39c8f96262d06d934c0e18148d52f55d4a72ed306a849149296f43d HTTP Headers `GET /sites/default/files/js/js__2jJZDKda2j5vGac7VYYRFZAYG4fgo9a6je9RItlFO8.js HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: application/x-javascript etag: W/"63644440-2f659" expires: Sun, 05 Nov 2023 10:03:26 GMT last-modified: Thu, 03 Nov 2022 22:44:16 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-68bb57c467-x5bxx x-styx-req-id: ecd1538b-5c27-11ed-93ea-2aab0a8f587a date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-klot8100024-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 2, 1 x-timer: S1668468640.154487,VS0,VE2 vary: Accept-Encoding age: 193094 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 72529 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/js/js_tTsM-zMos8XIhtwc3X4zmiV8v-08KB6uxB0ZSMWmBSg.js	23.185.0.2	200 OK	37 kB
URL HTTP/2 www.cuofco.org/sites/default/files/js/js_tTsM-zMos8XIhtwc3X4zmiV8v-08KB6uxB0ZSMWmBSg.js IP 23.185.0.2:0 ASN #54113 FASTLY File type ASCII text, with very long lines (28999) Size 37 kB (36969 bytes) Hash 1c73831961260422140115ff73654c23 67a83518bac95499fe3c104299c6348c80bb6e07 eb9de5106281ed4c6a5c406a4e80b3069b1be33680f329b5d4ad1cab4df5cba0 HTTP Headers `GET /sites/default/files/js/js_tTsM-zMos8XIhtwc3X4zmiV8v-08KB6uxB0ZSMWmBSg.js HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: application/x-javascript etag: W/"63644440-1ed29" expires: Sat, 11 Nov 2023 15:15:18 GMT last-modified: Thu, 03 Nov 2022 22:44:16 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-fffb9c8f-hq85b x-styx-req-id: 7c486ca9-610a-11ed-9d3f-d22764532de6 date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-klot8100137-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668468640.156661,VS0,VE15 vary: Accept-Encoding age: 193094 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 36969 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash b2d6aeeb303eaefc4cc6900e30da3b1b 4c3c027013211aa1b987006d0eb6c72f18c6a657 f542eab7c032d6c5f59710ee8993a01537e0fa2bf3882a6a699de85bba020999 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash b2d6aeeb303eaefc4cc6900e30da3b1b 4c3c027013211aa1b987006d0eb6c72f18c6a657 f542eab7c032d6c5f59710ee8993a01537e0fa2bf3882a6a699de85bba020999 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.sca1b.amazontrust.com/	54.230.245.100	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.100:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 9de7aaea166bfe1e82a036bbd975ca1a 6444cc8b0bb5b9669a9e0f1d276e44cd3398addf 88f52d987802f8e02700090e7234ffbb41a49271924ea37d0e79361dd3a26e5d HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=115134 Date: Mon, 14 Nov 2022 23:30:40 GMT Etag: "6371d6e0-1d7" Expires: Wed, 16 Nov 2022 07:29:34 GMT Last-Modified: Mon, 14 Nov 2022 05:49:20 GMT Server: ECS (bsa/EB22) X-Cache: Miss from cloudfront Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: bOerfZBl3agxQz1Dl5Pe7whDkThU8ugZ8z-UJzeDvKFdaJM5oLaMSQ== Age: 6014

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 35ad471bf7f157abedbe322e59bb00ae 6f8c57f1c20377b6a1f74fd06849705a6370e291 b51251f347677a52f08a4a7c0d9ff0effed121992b6dc7fa709e33c400042e63 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	api.glia.com/salemove_integration.js	54.230.111.39	200 OK	8.9 kB
URL HTTP/2 api.glia.com/salemove_integration.js IP 54.230.111.39:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (8939), with no line terminators Size 8.9 kB (8939 bytes) Hash f5441d7ee457cd90ed6a1e65d020d6b7 5fa3e31d7b5159a247b1bd5639f13c691d5bf6ec 51483252a1c732f5a8d193bb051607b57545f31387e53345faf8066683bb822a HTTP Headers `GET /salemove_integration.js HTTP/1.1 Host: api.glia.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript content-length: 8939 last-modified: Mon, 14 Nov 2022 10:13:18 GMT accept-ranges: bytes server: AmazonS3 strict-transport-security: max-age=63072000; includeSubdomains; preload date: Mon, 14 Nov 2022 23:20:15 GMT etag: "f5441d7ee457cd90ed6a1e65d020d6b7" vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin x-cache: Hit from cloudfront via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: PoxGO8iTbYjG1WBc41oUMBKrYthG8m95eEuTns6Eqv2liVAiv8XmUg== age: 810 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2	216.58.207.195	200 OK	45 kB
URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data Size 45 kB (45300 bytes) Hash 5fe660c3a23b871807b0e1d3ee973d23 62a9dd423b30b6ee3ab3dd40d573545d579af10a e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d HTTP Headers `GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.cuofco.org Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 45300 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 09 Nov 2022 18:51:03 GMT expires: Thu, 09 Nov 2023 18:51:03 GMT cache-control: public, max-age=31536000 last-modified: Wed, 27 Apr 2022 16:11:08 GMT content-type: font/woff2 age: 448777 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	push.services.mozilla.com/	35.163.62.5	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 35.163.62.5:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: OjhBVUcitc4hktEHlQtcoA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: WZjRbUJ4k9nQEQ5cUFHETmHiZ9I=`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 35ad471bf7f157abedbe322e59bb00ae 6f8c57f1c20377b6a1f74fd06849705a6370e291 b51251f347677a52f08a4a7c0d9ff0effed121992b6dc7fa709e33c400042e63 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/sanchez/v13/Ycm2sZJORluHnXbIfmlR_Q.woff2	216.58.207.195	200 OK	13 kB
URL HTTP/2 fonts.gstatic.com/s/sanchez/v13/Ycm2sZJORluHnXbIfmlR_Q.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 12820, version 1.0\012- data Size 13 kB (12820 bytes) Hash a7cd4a7063b4e69d369db4108e91c76d ca27b92eb2727d77709b5a11ff9fded87c9fa4ec 2d941417893befb28cadc12d09da90e8f4974f0f3cf08340c88fbc718162c414 HTTP Headers `GET /s/sanchez/v13/Ycm2sZJORluHnXbIfmlR_Q.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.cuofco.org Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 12820 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 09 Nov 2022 18:55:02 GMT expires: Thu, 09 Nov 2023 18:55:02 GMT cache-control: public, max-age=31536000 last-modified: Wed, 27 Apr 2022 15:38:24 GMT content-type: font/woff2 age: 448538 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2	216.58.207.195	200 OK	47 kB
URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 47048, version 1.0\012- data Size 47 kB (47048 bytes) Hash 87a1556b696ae2cb1a726bd8c4584a2f 1be0f6f39e0cf316f9827f945eeeaef8294cc37b 141f0c53e457585d4ac7426eb3d757666d250ee6fbf0e9c0878128e4c627f0b1 HTTP Headers `GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.cuofco.org Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 47048 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 11 Nov 2022 22:54:23 GMT expires: Sat, 11 Nov 2023 22:54:23 GMT cache-control: public, max-age=31536000 age: 261377 last-modified: Wed, 27 Apr 2022 16:55:54 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	54.230.245.100	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.100:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 5f0bae530226e00e28276ff59d276088 8e71531939e7d8c6deb43e5e0afd68952d94cd1c df7b93f32a4cd2a3c97930ed90510f3cc2964ea8d61500579b270e56d1dba341 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=87157 Date: Mon, 14 Nov 2022 23:30:40 GMT Etag: "63718115-1d7" Expires: Tue, 15 Nov 2022 23:43:17 GMT Last-Modified: Sun, 13 Nov 2022 23:43:17 GMT Server: nginx X-Cache: Miss from cloudfront Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: ZaxWm-VempzS1Crem8eHwE3wL6PNwl83Svg7rm-rku4GB_ol9GcS2Q==`

	fonts.googleapis.com/css2?family=PT+Sans:wght@400;700&family=Sanchez&display=swap	142.250.74.10	200 OK	63 kB
URL HTTP/2 fonts.googleapis.com/css2?family=PT+Sans:wght@400;700&family=Sanchez&display=swap IP 142.250.74.10:0 ASN #15169 GOOGLE File type data Size 63 kB (62831 bytes) Hash 0ad76a1491dcbed432f1923b83afdfe1 c841d1e87fe16ee84ee3c422a3ce0984e98683cd fc160b9c619e6e254222e1559024f27031571954ce7ed96435f7e78e5573369c HTTP Headers `GET /css2?family=PT+Sans:wght@400;700&family=Sanchez&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 14 Nov 2022 23:30:40 GMT date: Mon, 14 Nov 2022 23:30:40 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	www.cuofco.org/themes/custom/themekit/dist/724efb8000977c9a81483c022cb31227.png	23.185.0.2	200 OK	16 kB
URL HTTP/2 www.cuofco.org/themes/custom/themekit/dist/724efb8000977c9a81483c022cb31227.png IP 23.185.0.2:0 ASN #54113 FASTLY File type PNG image data, 1076 x 723, 8-bit/color RGBA, non-interlaced\012- data Size 16 kB (15909 bytes) Hash 724efb8000977c9a81483c022cb31227 d8f216c187acc82a44e3de93ecfc1ce22807b07c cefa8778a78b3d36b5ada2fa121902929ba09e3162f9d0d43df0bfbd66daa30c HTTP Headers GET /themes/custom/themekit/dist/724efb8000977c9a81483c022cb31227.png HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.cuofco.org/sites/default/files/css/css_nJh1pGM46_OTmBTmfxgMiYFXJWVYm0IMBuAh4uJjAlo.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/png etag: "636e0f05-3e25" expires: Mon, 13 Nov 2023 17:52:27 GMT last-modified: Fri, 11 Nov 2022 08:59:49 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-fffb9c8f-kwx9c x-styx-req-id: c55c48db-62b2-11ed-98f2-32ed7fae5635 date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-kigq8000176-CHI, cache-bma1672-BMA x-cache: HIT, MISS x-cache-hits: 3, 0 x-timer: S1668468640.498341,VS0,VE103 age: 193093 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 15909 X-Firefox-Spdy: h2

	www.cuofco.org/themes/custom/themekit/dist/fonts/icomoon/fonts/icomoon.woff2	23.185.0.2	200 OK	4.7 kB
URL HTTP/2 www.cuofco.org/themes/custom/themekit/dist/fonts/icomoon/fonts/icomoon.woff2 IP 23.185.0.2:0 ASN #54113 FASTLY File type Web Open Font Format (Version 2), TrueType, length 4708, version 1.0\012- data Size 4.7 kB (4708 bytes) Hash 8c0a8891969fa6e6a923101a08099a1d 61abaa8af1e1b4c40f5fcaf15e3029f3173eb44a 0d1b585d16ae272e418920b11f975f71e6f6dbab157302d9fbcf8b3ccdf0d8e6 HTTP Headers GET /themes/custom/themekit/dist/fonts/icomoon/fonts/icomoon.woff2 HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://www.cuofco.org/sites/default/files/css/css_nJh1pGM46_OTmBTmfxgMiYFXJWVYm0IMBuAh4uJjAlo.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK access-control-allow-origin: * cache-control: max-age=31622400 content-type: font/woff2 etag: "636fa80e-1264" expires: Wed, 15 Nov 2023 19:39:47 GMT last-modified: Sat, 12 Nov 2022 14:05:02 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-8698d47bfb-r6cxj x-styx-req-id: 190941da-6454-11ed-b9f4-0e42057539be date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-kigq8000136-CHI, cache-bma1672-BMA x-cache: HIT, MISS x-cache-hits: 1, 0 x-timer: S1668468641.510546,VS0,VE105 age: 13853 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 4708 X-Firefox-Spdy: h2

	status.geotrust.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 status.geotrust.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash c86f40a4587141fa0244f9126b8c52bd ee75208ebf2ba6226a279c5e441a152f58c5a7b3 ef1cc811d5e471c09bb2c13eb9d0d7a90f537170b404bf47047c7799df327229 HTTP Headers `POST / HTTP/1.1 Host: status.geotrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=85714 Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:40 GMT Etag: "63717b72-1d7" Expires: Tue, 15 Nov 2022 23:19:14 GMT Last-Modified: Sun, 13 Nov 2022 23:19:14 GMT Server: nginx Content-Length: 471`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 1af800aa2b326e8af0f2640db68a7a0d 4c617814f5c705737bf4bf111c53bf40bb932af5 594f573b6e73b1d385ae75a518c18a0bb833ac4a3f894fcea377096c756f8cc1 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtm.js?id=GTM-M4MHC6S	142.250.74.168	200 OK	67 kB
URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M4MHC6S IP 142.250.74.168:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (21377) Size 67 kB (67038 bytes) Hash 8ff8e3593fd32bc8f8dc1cbdd15853f5 e543cb4c273f49b554fd4a7856b20858e6212436 a3efc90aaf1e03c9a44127a833fdf2f3963594c6034c0610dd340d41f66a7053 HTTP Headers `GET /gtm.js?id=GTM-M4MHC6S HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Mon, 14 Nov 2022 23:30:40 GMT expires: Mon, 14 Nov 2022 23:30:40 GMT cache-control: private, max-age=900 last-modified: Mon, 14 Nov 2022 22:32:10 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 67038 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 1af800aa2b326e8af0f2640db68a7a0d 4c617814f5c705737bf4bf111c53bf40bb932af5 594f573b6e73b1d385ae75a518c18a0bb833ac4a3f894fcea377096c756f8cc1 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	sc-static.net/scevent.min.js	54.230.82.240	200 OK	12 kB
URL HTTP/2 sc-static.net/scevent.min.js IP 54.230.82.240:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (27626), with no line terminators Size 12 kB (11952 bytes) Hash 035ae7d8997231fd2bf263fda3301a2e 5bb59971bb5b00c731b1b6d63ff62d3d15ed3e01 3d692a6509f8e07ecd55a04baeb315df58e4fd15fc92182889d3de5c25e58e60 HTTP Headers `GET /scevent.min.js HTTP/1.1 Host: sc-static.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript;charset=utf-8 content-length: 11952 server: CloudFront date: Mon, 14 Nov 2022 23:30:40 GMT content-encoding: gzip access-control-allow-origin: * access-control-allow-headers: Content-Type cache-control: private, s-maxage=0, max-age=600 set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Tue, 15 Nov 2022 21:20:58 GMT;Path=/scevent.min.js; Secure; SameSite=None x-cache: LambdaGeneratedResponse from cloudfront via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: UvZpI6jnV2fMTGieDToLy63oNe84WW_nofbXjp_rzjQZ-knrENFFKw== X-Firefox-Spdy: h2

	www.redditstatic.com/ads/pixel.js	151.101.85.140	200 OK	7.7 kB
URL HTTP/2 www.redditstatic.com/ads/pixel.js IP 151.101.85.140:0 ASN #54113 FASTLY File type ASCII text, with very long lines (25224) Size 7.7 kB (7722 bytes) Hash 3528fd00b652f61a266eb584d96f4fcc d89e16aa1323c6c4f1ed3941122020684a599361 77efa9f2ddfdca7a45df37bbcd22fdaeb7b97161a2acd87e21eb78bdeaad1332 HTTP Headers `GET /ads/pixel.js HTTP/1.1 Host: www.redditstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK last-modified: Mon, 07 Nov 2022 16:45:46 GMT etag: "3528fd00b652f61a266eb584d96f4fcc" cache-control: public, max-age=60 content-encoding: gzip content-type: application/javascript via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Mon, 14 Nov 2022 23:30:40 GMT vary: Accept-Encoding,Origin server: snooserv report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]} nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02} content-length: 7722 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash a2fcbece8cafb1ba2116f7036a0e7cb1 cea0bc30cba66d3058a289afdab6de603ed0249a 269b7af5e3ffaabab50d90a14b76bbf4bcc8c51caa1c091954f2cc455534d490 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6173 Cache-Control: max-age=118883 Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:41 GMT Etag: "6371e4e7-1d7" Expires: Wed, 16 Nov 2022 08:32:04 GMT Last-Modified: Mon, 14 Nov 2022 06:49:11 GMT Server: ECS (ska/F715) X-Cache: HIT Content-Length: 471`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash a2fcbece8cafb1ba2116f7036a0e7cb1 cea0bc30cba66d3058a289afdab6de603ed0249a 269b7af5e3ffaabab50d90a14b76bbf4bcc8c51caa1c091954f2cc455534d490 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6173 Cache-Control: max-age=118883 Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:41 GMT Etag: "6371e4e7-1d7" Expires: Wed, 16 Nov 2022 08:32:04 GMT Last-Modified: Mon, 14 Nov 2022 06:49:11 GMT Server: ECS (ska/F715) X-Cache: HIT Content-Length: 471`

	tr.snapchat.com/cm/i?pid=3e513984-0c3d-4f3e-866e-64c50d47f06b&u_scsid=309736a9-4cfa-4a99-b5f1-fc6331e2968e&u_sclid=488c24a7-b903-4937-91a0-3ed09242aec1	35.190.43.134	200 OK	0 B
URL HTTP/2 tr.snapchat.com/cm/i?pid=3e513984-0c3d-4f3e-866e-64c50d47f06b&u_scsid=309736a9-4cfa-4a99-b5f1-fc6331e2968e&u_sclid=488c24a7-b903-4937-91a0-3ed09242aec1 IP 35.190.43.134:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /cm/i?pid=3e513984-0c3d-4f3e-866e-64c50d47f06b&u_scsid=309736a9-4cfa-4a99-b5f1-fc6331e2968e&u_sclid=488c24a7-b903-4937-91a0-3ed09242aec1 HTTP/1.1 Host: tr.snapchat.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site `HTTP/2 200 OK date: Mon, 14 Nov 2022 23:30:41 GMT content-type: text/html strict-transport-security: max-age=31536000; includeSubDomains; preload content-length: 0 x-envoy-upstream-service-time: 0 server: API Gateway via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2`

	www.cuofco.org/report-csp-violation	23.185.0.2	200 OK	20 B
URL HTTP/2 www.cuofco.org/report-csp-violation IP 23.185.0.2:0 ASN #54113 FASTLY File type data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `POST /report-csp-violation HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 2394 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: must-revalidate, no-cache, private content-encoding: gzip content-language: en content-security-policy-report-only: default-src .cuofco.org:; script-src .cuofco.org static.addtoany.com api.glia.com js.poshdevelopment.com .googletagmanager.com 'unsafe-inline' bam.nr-data.net connect.facebook.net libs.salemove.com js-agent.newrelic.com .google-analytics.com js.alpixtrack.com embed.signalintent.com cdn.segment.com www.googleadservices.com maps.googleapis.com .googleadservices.com 'unsafe-eval' applicationtest.cuofco.org platform.fonolo.com; object-src self; style-src .cuofco.org fonts.googleapis.com 'unsafe-inline' libs.salemove.com embed.signalintent.com; img-src .cuofco.org .facebook.com alpixtrack.com .google.com .google-analytics.com data: www.googletagmanager.com uploads.salemove.com .google.com maps.gstatic.com maps.googleapis.com khms0.googleapis.com; media-src .cuofco.org libs.salemove.com; frame-src .cuofco.org static.addtoany.com embed.fleeq.io batchgeo.com maps.googleapis.com maps.google.com platform.fonolo.com; frame-ancestors ; child-src .cuofco.org; font-src .cuofco.org fonts.gstatic.com fonts.googleapis.com themes.googleusercontent.com data: embed.signalintent.com; connect-src .cuofco.org bam.nr-data.net pubsub.salemove.com .google-analytics.com stats.g.doubleclick.net client-logger.salemove.com api.glia.com wss://pubsub.salemove.com api.salemove.com js.alpixtrack.com .facebook.com alpixtrack.com signal-intent-production-back.herokuapp.com cdn.segment.com api.segment.io kluster.salemove.com wss://kluster.salemove.com adservice.google.com applicationtest.cuofco.org; report-uri /report-csp-violation content-type: text/html; charset=UTF-8 expires: Sun, 19 Nov 1978 05:00:00 GMT permissions-policy: interest-cohort=() referrer-policy: no-referrer server: nginx strict-transport-security: max-age=15768000 x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-generator: Drupal 9 (https://www.drupal.org) x-pantheon-styx-hostname: styx-fe2-b-7c467dd958-tdp22 x-styx-req-id: 5a27e1bd-6474-11ed-9b6e-d6aa300066ad x-ua-compatible: IE=edge x-xss-protection: 1; mode=block date: Mon, 14 Nov 2022 23:30:41 GMT x-served-by: cache-chi-klot8100133-CHI, cache-bma1672-BMA x-cache: MISS, MISS x-cache-hits: 0, 0 x-timer: S1668468641.932329,VS0,VE159 vary: Accept-Encoding, Cookie, Cookie age: 0 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 20 X-Firefox-Spdy: h2

	www.cuofco.org/report-csp-violation	23.185.0.2	200 OK	20 B
URL HTTP/2 www.cuofco.org/report-csp-violation IP 23.185.0.2:0 ASN #54113 FASTLY File type data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `POST /report-csp-violation HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 2389 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: must-revalidate, no-cache, private content-encoding: gzip content-language: en content-security-policy-report-only: default-src .cuofco.org:; script-src .cuofco.org static.addtoany.com api.glia.com js.poshdevelopment.com .googletagmanager.com 'unsafe-inline' bam.nr-data.net connect.facebook.net libs.salemove.com js-agent.newrelic.com .google-analytics.com js.alpixtrack.com embed.signalintent.com cdn.segment.com www.googleadservices.com maps.googleapis.com .googleadservices.com 'unsafe-eval' applicationtest.cuofco.org platform.fonolo.com; object-src self; style-src .cuofco.org fonts.googleapis.com 'unsafe-inline' libs.salemove.com embed.signalintent.com; img-src .cuofco.org .facebook.com alpixtrack.com .google.com .google-analytics.com data: www.googletagmanager.com uploads.salemove.com .google.com maps.gstatic.com maps.googleapis.com khms0.googleapis.com; media-src .cuofco.org libs.salemove.com; frame-src .cuofco.org static.addtoany.com embed.fleeq.io batchgeo.com maps.googleapis.com maps.google.com platform.fonolo.com; frame-ancestors ; child-src .cuofco.org; font-src .cuofco.org fonts.gstatic.com fonts.googleapis.com themes.googleusercontent.com data: embed.signalintent.com; connect-src .cuofco.org bam.nr-data.net pubsub.salemove.com .google-analytics.com stats.g.doubleclick.net client-logger.salemove.com api.glia.com wss://pubsub.salemove.com api.salemove.com js.alpixtrack.com .facebook.com alpixtrack.com signal-intent-production-back.herokuapp.com cdn.segment.com api.segment.io kluster.salemove.com wss://kluster.salemove.com adservice.google.com applicationtest.cuofco.org; report-uri /report-csp-violation content-type: text/html; charset=UTF-8 expires: Sun, 19 Nov 1978 05:00:00 GMT permissions-policy: interest-cohort=() referrer-policy: no-referrer server: nginx strict-transport-security: max-age=15768000 x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-generator: Drupal 9 (https://www.drupal.org) x-pantheon-styx-hostname: styx-fe2-b-7c467dd958-gr7hh x-styx-req-id: 5a285d78-6474-11ed-bfb2-3a4894d806be x-ua-compatible: IE=edge x-xss-protection: 1; mode=block date: Mon, 14 Nov 2022 23:30:41 GMT x-served-by: cache-chi-klot8100143-CHI, cache-bma1672-BMA x-cache: MISS, MISS x-cache-hits: 0, 0 x-timer: S1668468641.932661,VS0,VE164 vary: Accept-Encoding, Cookie, Cookie age: 0 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 20 X-Firefox-Spdy: h2

	tr.snapchat.com/p	35.190.43.134	200 OK	68 B
URL HTTP/2 tr.snapchat.com/p IP 35.190.43.134:0 ASN #15169 GOOGLE File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data Size 68 B (68 bytes) Hash c4a2b870062c2bb98c500bc1526c0498 528666ccdb12997358077bc8fcdbfb6b825c7788 2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11 HTTP Headers `POST /p HTTP/1.1 Host: tr.snapchat.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 457 Origin: null Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Mon, 14 Nov 2022 23:30:41 GMT access-control-allow-origin: * cache-control: no-cache, no-transform set-cookie: sc_at=v2\|H4sIAAAAAAAAAA3KyQ0AMQgDwIqQADlep5xcWwXFJ/MeiRgbbiNyGpp+6640ejtYX848vSpIga9G+QV3Byn5MgAAAA==;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure content-type: text/html strict-transport-security: max-age=31536000; includeSubDomains; preload content-length: 68 x-envoy-upstream-service-time: 4 server: API Gateway via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash a2fcbece8cafb1ba2116f7036a0e7cb1 cea0bc30cba66d3058a289afdab6de603ed0249a 269b7af5e3ffaabab50d90a14b76bbf4bcc8c51caa1c091954f2cc455534d490 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6173 Cache-Control: max-age=118883 Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:41 GMT Etag: "6371e4e7-1d7" Expires: Wed, 16 Nov 2022 08:32:04 GMT Last-Modified: Mon, 14 Nov 2022 06:49:11 GMT Server: ECS (ska/F715) X-Cache: HIT Content-Length: 471`

	www.cuofco.org/report-csp-violation	23.185.0.2	200 OK	20 B
URL HTTP/2 www.cuofco.org/report-csp-violation IP 23.185.0.2:0 ASN #54113 FASTLY File type data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `POST /report-csp-violation HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 2427 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: must-revalidate, no-cache, private content-encoding: gzip content-language: en content-security-policy-report-only: default-src .cuofco.org:; script-src .cuofco.org static.addtoany.com api.glia.com js.poshdevelopment.com .googletagmanager.com 'unsafe-inline' bam.nr-data.net connect.facebook.net libs.salemove.com js-agent.newrelic.com .google-analytics.com js.alpixtrack.com embed.signalintent.com cdn.segment.com www.googleadservices.com maps.googleapis.com .googleadservices.com 'unsafe-eval' applicationtest.cuofco.org platform.fonolo.com; object-src self; style-src .cuofco.org fonts.googleapis.com 'unsafe-inline' libs.salemove.com embed.signalintent.com; img-src .cuofco.org .facebook.com alpixtrack.com .google.com .google-analytics.com data: www.googletagmanager.com uploads.salemove.com .google.com maps.gstatic.com maps.googleapis.com khms0.googleapis.com; media-src .cuofco.org libs.salemove.com; frame-src .cuofco.org static.addtoany.com embed.fleeq.io batchgeo.com maps.googleapis.com maps.google.com platform.fonolo.com; frame-ancestors ; child-src .cuofco.org; font-src .cuofco.org fonts.gstatic.com fonts.googleapis.com themes.googleusercontent.com data: embed.signalintent.com; connect-src .cuofco.org bam.nr-data.net pubsub.salemove.com .google-analytics.com stats.g.doubleclick.net client-logger.salemove.com api.glia.com wss://pubsub.salemove.com api.salemove.com js.alpixtrack.com .facebook.com alpixtrack.com signal-intent-production-back.herokuapp.com cdn.segment.com api.segment.io kluster.salemove.com wss://kluster.salemove.com adservice.google.com applicationtest.cuofco.org; report-uri /report-csp-violation content-type: text/html; charset=UTF-8 expires: Sun, 19 Nov 1978 05:00:00 GMT permissions-policy: interest-cohort=() referrer-policy: no-referrer server: nginx strict-transport-security: max-age=15768000 x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-generator: Drupal 9 (https://www.drupal.org) x-pantheon-styx-hostname: styx-fe2-b-7c467dd958-f5nh9 x-styx-req-id: 5a347be5-6474-11ed-8a51-0e94415b3f2d x-ua-compatible: IE=edge x-xss-protection: 1; mode=block date: Mon, 14 Nov 2022 23:30:41 GMT x-served-by: cache-chi-klot8100055-CHI, cache-bma1672-BMA x-cache: MISS, MISS x-cache-hits: 0, 0 x-timer: S1668468641.014230,VS0,VE154 vary: Accept-Encoding, Cookie, Cookie age: 0 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 20 X-Firefox-Spdy: h2

	www.cuofco.org/report-csp-violation	23.185.0.2	200 OK	20 B
URL HTTP/2 www.cuofco.org/report-csp-violation IP 23.185.0.2:0 ASN #54113 FASTLY File type data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `POST /report-csp-violation HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 2768 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: must-revalidate, no-cache, private content-encoding: gzip content-language: en content-security-policy-report-only: default-src .cuofco.org:; script-src .cuofco.org static.addtoany.com api.glia.com js.poshdevelopment.com .googletagmanager.com 'unsafe-inline' bam.nr-data.net connect.facebook.net libs.salemove.com js-agent.newrelic.com .google-analytics.com js.alpixtrack.com embed.signalintent.com cdn.segment.com www.googleadservices.com maps.googleapis.com .googleadservices.com 'unsafe-eval' applicationtest.cuofco.org platform.fonolo.com; object-src self; style-src .cuofco.org fonts.googleapis.com 'unsafe-inline' libs.salemove.com embed.signalintent.com; img-src .cuofco.org .facebook.com alpixtrack.com .google.com .google-analytics.com data: www.googletagmanager.com uploads.salemove.com .google.com maps.gstatic.com maps.googleapis.com khms0.googleapis.com; media-src .cuofco.org libs.salemove.com; frame-src .cuofco.org static.addtoany.com embed.fleeq.io batchgeo.com maps.googleapis.com maps.google.com platform.fonolo.com; frame-ancestors ; child-src .cuofco.org; font-src .cuofco.org fonts.gstatic.com fonts.googleapis.com themes.googleusercontent.com data: embed.signalintent.com; connect-src .cuofco.org bam.nr-data.net pubsub.salemove.com .google-analytics.com stats.g.doubleclick.net client-logger.salemove.com api.glia.com wss://pubsub.salemove.com api.salemove.com js.alpixtrack.com .facebook.com alpixtrack.com signal-intent-production-back.herokuapp.com cdn.segment.com api.segment.io kluster.salemove.com wss://kluster.salemove.com adservice.google.com applicationtest.cuofco.org; report-uri /report-csp-violation content-type: text/html; charset=UTF-8 expires: Sun, 19 Nov 1978 05:00:00 GMT permissions-policy: interest-cohort=() referrer-policy: no-referrer server: nginx strict-transport-security: max-age=15768000 x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-generator: Drupal 9 (https://www.drupal.org) x-pantheon-styx-hostname: styx-fe2-a-8698d47bfb-r6cxj x-styx-req-id: 5a35294d-6474-11ed-b9f4-0e42057539be x-ua-compatible: IE=edge x-xss-protection: 1; mode=block date: Mon, 14 Nov 2022 23:30:41 GMT x-served-by: cache-chi-klot8100175-CHI, cache-bma1672-BMA x-cache: MISS, MISS x-cache-hits: 0, 0 x-timer: S1668468641.019043,VS0,VE152 vary: Accept-Encoding, Cookie, Cookie age: 0 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 20 X-Firefox-Spdy: h2

	api.glia.com/visitor_config?referrer=https%3A%2F%2Fwww.cuofco.org%2F&	54.230.111.39	200 OK	17 kB
URL HTTP/2 api.glia.com/visitor_config?referrer=https%3A%2F%2Fwww.cuofco.org%2F& IP 54.230.111.39:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (16699), with no line terminators Size 17 kB (16699 bytes) Hash c3e7e060c820bd970bfe4455d088d8e7 1c9fc849c0102a6b1b5e9849471149f00852b8c0 0f835537f3b23b0f24b698996fe6937a26bd831d9a559228faff2fd0e5d6522b HTTP Headers `POST /visitor_config?referrer=https%3A%2F%2Fwww.cuofco.org%2F& HTTP/1.1 Host: api.glia.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 0 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: application/json content-length: 16699 date: Mon, 14 Nov 2022 23:30:41 GMT access-control-allow-origin: https://www.cuofco.org access-control-allow-methods: ["GET, POST, PUT, PATCH, OPTIONS, HEAD, DELETE"] access-control-expose-headers: access-control-max-age: 7200 access-control-allow-headers: Content-Type, Accept, Authorization strict-transport-security: max-age=15724800; includeSubDomains x-content-type-options: nosniff x-site-visitor-config: true access-control-allow-credentials: true cache-control: no-cache, no-store, must-revalidate, max-age=0 set-cookie: session_id=d22ec982-b019-46ca-8be7-f895aacb2ec5; path=/; expires=Tue, 14 Nov 2023 23:30:41 -0000; secure; HttpOnly; SameSite=None incompat_session_id=d22ec982-b019-46ca-8be7-f895aacb2ec5; path=/; expires=Tue, 14 Nov 2023 23:30:41 -0000; secure; HttpOnly vary: Origin x-cache: Miss from cloudfront via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: gJlCdWuK__Cz2Mr7hmjp3aqur2WiwA2-4HpLrBElaXBvFi1TAYPHNg== X-Firefox-Spdy: h2

	www.cuofco.org/report-csp-violation	23.185.0.2	200 OK	20 B
URL HTTP/2 www.cuofco.org/report-csp-violation IP 23.185.0.2:0 ASN #54113 FASTLY File type data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `POST /report-csp-violation HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 2357 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: must-revalidate, no-cache, private content-encoding: gzip content-language: en content-security-policy-report-only: default-src .cuofco.org:; script-src .cuofco.org static.addtoany.com api.glia.com js.poshdevelopment.com .googletagmanager.com 'unsafe-inline' bam.nr-data.net connect.facebook.net libs.salemove.com js-agent.newrelic.com .google-analytics.com js.alpixtrack.com embed.signalintent.com cdn.segment.com www.googleadservices.com maps.googleapis.com .googleadservices.com 'unsafe-eval' applicationtest.cuofco.org platform.fonolo.com; object-src self; style-src .cuofco.org fonts.googleapis.com 'unsafe-inline' libs.salemove.com embed.signalintent.com; img-src .cuofco.org .facebook.com alpixtrack.com .google.com .google-analytics.com data: www.googletagmanager.com uploads.salemove.com .google.com maps.gstatic.com maps.googleapis.com khms0.googleapis.com; media-src .cuofco.org libs.salemove.com; frame-src .cuofco.org static.addtoany.com embed.fleeq.io batchgeo.com maps.googleapis.com maps.google.com platform.fonolo.com; frame-ancestors ; child-src .cuofco.org; font-src .cuofco.org fonts.gstatic.com fonts.googleapis.com themes.googleusercontent.com data: embed.signalintent.com; connect-src .cuofco.org bam.nr-data.net pubsub.salemove.com .google-analytics.com stats.g.doubleclick.net client-logger.salemove.com api.glia.com wss://pubsub.salemove.com api.salemove.com js.alpixtrack.com .facebook.com alpixtrack.com signal-intent-production-back.herokuapp.com cdn.segment.com api.segment.io kluster.salemove.com wss://kluster.salemove.com adservice.google.com applicationtest.cuofco.org; report-uri /report-csp-violation content-type: text/html; charset=UTF-8 expires: Sun, 19 Nov 1978 05:00:00 GMT permissions-policy: interest-cohort=() referrer-policy: no-referrer server: nginx strict-transport-security: max-age=15768000 x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-generator: Drupal 9 (https://www.drupal.org) x-pantheon-styx-hostname: styx-fe2-a-8698d47bfb-6rzjg x-styx-req-id: 5a3efaa5-6474-11ed-914d-963005217c21 x-ua-compatible: IE=edge x-xss-protection: 1; mode=block date: Mon, 14 Nov 2022 23:30:41 GMT x-served-by: cache-chi-kigq8000087-CHI, cache-bma1672-BMA x-cache: MISS, MISS x-cache-hits: 0, 0 x-timer: S1668468641.083064,VS0,VE150 vary: Accept-Encoding, Cookie, Cookie age: 0 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 20 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 0f51a4efc7b43562164a21fac2f92dc3 ddeb9f8256d698f43e662029986c9032da79db9f c60ba648b021d2c754eba4a6ace4758bb5a2c2b651586a6952128d0ad78045b2 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3601 Cache-Control: max-age=108375 Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:41 GMT Etag: "6371c5e7-1d7" Expires: Wed, 16 Nov 2022 05:36:56 GMT Last-Modified: Mon, 14 Nov 2022 04:36:55 GMT Server: ECS (ska/F70A) X-Cache: HIT Content-Length: 471`

	libs.salemove.com/visitor/webcomponents_es5-e15fab19d.js	54.230.111.71	200 OK	936 B
URL HTTP/2 libs.salemove.com/visitor/webcomponents_es5-e15fab19d.js IP 54.230.111.71:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (390) Size 936 B (936 bytes) Hash f86098c5208655efb405300993461936 a0a5b6aea7bbb6a51940f8c874aee109477c7b56 832dbd199f70ade357e88a3f5d32920c8c63e69258dc173d3b261686320895db HTTP Headers `GET /visitor/webcomponents_es5-e15fab19d.js HTTP/1.1 Host: libs.salemove.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: application/javascript content-length: 936 date: Tue, 08 Nov 2022 10:35:43 GMT last-modified: Mon, 07 Nov 2022 14:53:19 GMT etag: "f86098c5208655efb405300993461936" x-amz-meta-s3cmd-attrs: md5:f86098c5208655efb405300993461936 cache-control: max-age=31536000 accept-ranges: bytes server: AmazonS3 strict-transport-security: max-age=63072000; includeSubdomains; preload vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin x-cache: Hit from cloudfront via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: OR4gMAxwlb-cysNxE7rNjykjQlSwpGrz_SZlpnUjo_Za1Mg9LCiD2w== age: 564899 X-Firefox-Spdy: h2

	www.google-analytics.com/analytics.js	142.250.74.174	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 142.250.74.174:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1325) Size 20 kB (20039 bytes) Hash 47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20039 date: Mon, 14 Nov 2022 22:41:09 GMT expires: Tue, 15 Nov 2022 00:41:09 GMT cache-control: public, max-age=7200 age: 2972 last-modified: Tue, 27 Sep 2022 22:01:05 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 29b1503232a9cf0843bd9f0d01c0a9a5 620b3b98a58cd32175d40534dca81ef4a26d880f 1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8" Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4953 Expires: Tue, 15 Nov 2022 00:53:14 GMT Date: Mon, 14 Nov 2022 23:30:41 GMT Connection: keep-alive`

	libs.salemove.com/visitor/bootstrapper-e15fab19d.js	54.230.111.71	200 OK	200 kB
URL HTTP/2 libs.salemove.com/visitor/bootstrapper-e15fab19d.js IP 54.230.111.71:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (59928) Size 200 kB (200211 bytes) Hash 2ef1042c269bd3379e576104ba69d809 57df5af9614be773b11947b5b13685209630577e 93792b7e1649f62a2393901ef3360b9fa896099460e6f1205238c06bdd478cfa HTTP Headers `GET /visitor/bootstrapper-e15fab19d.js HTTP/1.1 Host: libs.salemove.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript date: Mon, 07 Nov 2022 15:50:02 GMT last-modified: Mon, 07 Nov 2022 14:53:17 GMT etag: W/"bf9a8f0110c81c14eb097edcd542a811" x-amz-meta-s3cmd-attrs: md5:bf9a8f0110c81c14eb097edcd542a811 cache-control: max-age=31536000 server: AmazonS3 strict-transport-security: max-age=63072000; includeSubdomains; preload content-encoding: gzip vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method,Origin x-cache: Hit from cloudfront via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: QtAkv3GQy_8rgQaeiJK8_sZ3n6MvBpkDEO9DSnLRim6QKE38Brvuqg== age: 632440 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash fede4c2605c7256403a0c8ae99d220f4 a2b47ceff01425646c53da15a02fb74bfed89e31 4de15f4a64a06702836c3dd94bd11738f4bb228e6ccc5527045984a3bba62a62 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=96502 Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:41 GMT Etag: "6371a597-1d7" Expires: Wed, 16 Nov 2022 02:19:03 GMT Last-Modified: Mon, 14 Nov 2022 02:19:03 GMT Server: nginx Content-Length: 471`

	www.cuofco.org/sites/default/files/faviconmountain_0.ico	23.185.0.2	200 OK	3.2 kB
URL HTTP/2 www.cuofco.org/sites/default/files/faviconmountain_0.ico IP 23.185.0.2:0 ASN #54113 FASTLY File type MS Windows icon resource - 3 icons, 48x48, 8 bits/pixel, 32x32, 8 bits/pixel\012- data Size 3.2 kB (3161 bytes) Hash 3d723fdd606e84fecafbca0a0b950e99 80d8f4779420fffc5dc1ed5d14f86bc9afc64e75 40cc7ed29311eac31994f24bdaa7eb7fceb83e19fba6a92fe7e686198f4a73eb HTTP Headers GET /sites/default/files/faviconmountain_0.ico HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: _gcl_au=1.1.1819688313.1668468641; _scid=b0707c7b-3f22-4dea-89e5-4d34cfd0e74f; _rdt_uuid=1668468640991.65a6a4ee-4294-4631-91ad-dd263b14b221; fonolo_widget=ff78d0c31b05c09e98f376e2626fb74b Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/x-icon etag: "62e2b4b8-1cee" expires: Sat, 28 Oct 2023 16:53:03 GMT last-modified: Thu, 28 Jul 2022 16:09:28 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-5b97d994c5-ws889 x-styx-req-id: d280fccd-5617-11ed-acc5-ce6a8181dff3 content-encoding: gzip date: Mon, 14 Nov 2022 23:30:41 GMT x-served-by: cache-chi-klot8100117-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 4, 1 x-timer: S1668468641.388865,VS0,VE105 vary: Accept-Encoding age: 193071 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 3161 X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ebd0ec1-1a89-43e0-9cc8-b4c4aaba9a26.jpeg	34.120.237.76	200 OK	16 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ebd0ec1-1a89-43e0-9cc8-b4c4aaba9a26.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 16 kB (15691 bytes) Hash fccbaa99a6af77d187d488b8ed6c6222 1643214231f459de7e20981676f630bb903d085d b4991dcb0b29478e88487bf2c3bb91a90d94511048ecba4a20138dd8fd4b7672 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ebd0ec1-1a89-43e0-9cc8-b4c4aaba9a26.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 15691 x-amzn-requestid: bbe43af8-ed97-4181-9872-e94f9386596b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bUNEqG7foAMFosw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-636b2884-6f66158464e027a30d50a797;Sampled=0 x-amzn-remapped-date: Wed, 09 Nov 2022 04:11:48 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: iQdP63-UZ0nIQvtJRnpF-szecnotfVbElbxnF6cQ3lo3i6JMz0xqGg== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google date: Mon, 14 Nov 2022 04:15:25 GMT age: 69316 etag: "1643214231f459de7e20981676f630bb903d085d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 29b1503232a9cf0843bd9f0d01c0a9a5 620b3b98a58cd32175d40534dca81ef4a26d880f 1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8" Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4953 Expires: Tue, 15 Nov 2022 00:53:14 GMT Date: Mon, 14 Nov 2022 23:30:41 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11715 bytes) Hash cd5bdc050716bb76afe8090fc81617e7 5109c156b180727767fc03c411190ccc0d3fb5fc 9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11715 x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bdMhUHkpIAMFfJg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0 x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: Lp5eW92D8SbFtcQLk-LRSaSKNMNFYCW7XTALdNdrJxN6ebgdH8_1Dw== via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google date: Mon, 14 Nov 2022 21:52:43 GMT age: 5878 etag: "5109c156b180727767fc03c411190ccc0d3fb5fc" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd744cf1f-bbfc-4306-bf3d-5e1e6b8b1c90.jpeg	34.120.237.76	200 OK	7.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd744cf1f-bbfc-4306-bf3d-5e1e6b8b1c90.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.9 kB (7873 bytes) Hash edc9d97a2396dfc326736cb9b2b3b474 2c5a98ad27133575ef4fa48a8ff379ee5ad51490 a89e1e9a13b72b0a826ed77a71ec92ac5548a996f6c17b11a4c002480a429333 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd744cf1f-bbfc-4306-bf3d-5e1e6b8b1c90.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7873 x-amzn-requestid: 4a968a3c-c6ca-4d18-83b4-6a1d42e85fee x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bef9SFIMoAMFYuw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-636f46bb-2cd01e7d191b3eda7d743866;Sampled=0 x-amzn-remapped-date: Sat, 12 Nov 2022 07:09:47 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: jjir5UM8aqq3T3akiZx_aAcsWL5GDKBnaPA_cDlM2e9Ce6oi-wGEQA== via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google date: Mon, 14 Nov 2022 08:21:23 GMT age: 54558 etag: "2c5a98ad27133575ef4fa48a8ff379ee5ad51490" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50ad5043-e51e-4766-8f6a-d0782645cc84.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50ad5043-e51e-4766-8f6a-d0782645cc84.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (11290 bytes) Hash 49fc9477e5982c76b5205fe284f50848 2ca4915631ddcda64c1cb70674f4b1379e288050 496e4e4317538bd34bc6bc28f0c772b7afaf0edac6d2a8686f5e6c4f44331bb4 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50ad5043-e51e-4766-8f6a-d0782645cc84.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11290 x-amzn-requestid: e56e4731-696e-4c63-9b48-1be184b32098 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bhPzMHOEoAMFVJg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63706014-22c49f066ed90cf35d5bba3d;Sampled=0 x-amzn-remapped-date: Sun, 13 Nov 2022 03:10:12 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 4GdlXHpFADt-b7aq-JhGnU4derYUx0ta39dEXO3ywma3_J0L3D1fug== via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google date: Mon, 14 Nov 2022 04:13:15 GMT age: 69446 etag: "2ca4915631ddcda64c1cb70674f4b1379e288050" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b12e479-a09c-431c-aecf-6e63c60a01f1.jpeg	34.120.237.76	200 OK	5.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b12e479-a09c-431c-aecf-6e63c60a01f1.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.9 kB (5882 bytes) Hash fe4f5dc12e097182fed4de0161bc5b8a 746804d683bea55f44d5f6456a7e69d0048e4f58 d8a2095cd57455bab301ae68b7478997f3db056039886d85301eb85d7d196cf4 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b12e479-a09c-431c-aecf-6e63c60a01f1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5882 x-amzn-requestid: a9d913e4-c9c1-4054-a9ff-c5ff5287c854 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bhQZ2H2loAMFsmQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6370610b-63cf663851f2e04b7f2cb70a;Sampled=0 x-amzn-remapped-date: Sun, 13 Nov 2022 03:14:19 GMT x-amz-cf-pop: SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: 0DjdK2du8K9O1d0rcWaDO6yqWBuHYSSiEJmscryUraTH73vwcwubNg== via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google date: Mon, 14 Nov 2022 03:32:26 GMT age: 71895 etag: "746804d683bea55f44d5f6456a7e69d0048e4f58" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	api.salemove.com/visitor_app/7662df5d/sites/0e1d06dc-39ca-478f-8a62-c6db0387c309/custom_locales/en-US-Chat/cee7882a0babed	54.230.111.22	200 OK	10 kB
URL HTTP/2 api.salemove.com/visitor_app/7662df5d/sites/0e1d06dc-39ca-478f-8a62-c6db0387c309/custom_locales/en-US-Chat/cee7882a0babed IP 54.230.111.22:0 ASN #16509 AMAZON-02 File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (10144), with no line terminators Size 10 kB (10146 bytes) Hash 29a3c877c369424e0f97d928179c7ae5 3c46c5b79e0c1890df6b02bc20bad2db6c72b6a8 8364dc6dc75bf59db071fa0a282436d85ebaf3dac4ce374682852754db94133e HTTP Headers `GET /visitor_app/7662df5d/sites/0e1d06dc-39ca-478f-8a62-c6db0387c309/custom_locales/en-US-Chat/cee7882a0babed HTTP/1.1 Host: api.salemove.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/json content-length: 10146 date: Thu, 10 Nov 2022 09:49:33 GMT access-control-allow-origin: https://www.cuofco.org access-control-allow-methods: GET, POST, PUT, PATCH, OPTIONS, HEAD, DELETE access-control-expose-headers: access-control-max-age: 7200 access-control-allow-headers: Content-Type, Accept, Authorization cache-control: public, max-age=31536000 x-content-type-options: nosniff strict-transport-security: max-age=15724800; includeSubDomains vary: Origin x-cache: Hit from cloudfront via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: v65jP-xjVU5qAQotnH5VHavqmMP1a4UJeiDoicgieCmwjT2lbd-AsQ== age: 394868 X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c0c0f21-d8ce-4a68-96de-3d9fe7f62af1.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c0c0f21-d8ce-4a68-96de-3d9fe7f62af1.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (12049 bytes) Hash d8a88adfc74554dbc851f24a004ec884 e4e4d9c1fd4c32b7ce7a9b14fbe132ef91214c46 99bfddf63d54da3cb418fb5bfe97f20b18ac62c49eb26fa9b1f67e122b5abc13 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c0c0f21-d8ce-4a68-96de-3d9fe7f62af1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12049 x-amzn-requestid: f62fd1a1-7dea-48ca-b174-c0f56a33b400 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bOAeRGLAoAMFW4w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6368adf4-62d5d59331ce02cf7376c3d3;Sampled=0 x-amzn-remapped-date: Mon, 07 Nov 2022 07:04:20 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 2xZgikE54j2V5eCSmx7WBtR3w1SCOKZgkUMQAn58UvWZaoofg6YZug== via: 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google date: Mon, 14 Nov 2022 04:29:30 GMT age: 68471 etag: "e4e4d9c1fd4c32b7ce7a9b14fbe132ef91214c46" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 0f51a4efc7b43562164a21fac2f92dc3 ddeb9f8256d698f43e662029986c9032da79db9f c60ba648b021d2c754eba4a6ace4758bb5a2c2b651586a6952128d0ad78045b2 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3601 Cache-Control: max-age=108375 Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:41 GMT Etag: "6371c5e7-1d7" Expires: Wed, 16 Nov 2022 05:36:56 GMT Last-Modified: Mon, 14 Nov 2022 04:36:55 GMT Server: ECS (ska/F70A) X-Cache: HIT Content-Length: 471`

	www.cuofco.org/report-csp-violation	23.185.0.2	200 OK	20 B
URL HTTP/2 www.cuofco.org/report-csp-violation IP 23.185.0.2:0 ASN #54113 FASTLY File type data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `POST /report-csp-violation HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 2399 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/2 200 OK cache-control: must-revalidate, no-cache, private content-encoding: gzip content-language: en content-security-policy-report-only: default-src .cuofco.org:; script-src .cuofco.org static.addtoany.com api.glia.com js.poshdevelopment.com .googletagmanager.com 'unsafe-inline' bam.nr-data.net connect.facebook.net libs.salemove.com js-agent.newrelic.com .google-analytics.com js.alpixtrack.com embed.signalintent.com cdn.segment.com www.googleadservices.com maps.googleapis.com .googleadservices.com 'unsafe-eval' applicationtest.cuofco.org platform.fonolo.com; object-src self; style-src .cuofco.org fonts.googleapis.com 'unsafe-inline' libs.salemove.com embed.signalintent.com; img-src .cuofco.org .facebook.com alpixtrack.com .google.com .google-analytics.com data: www.googletagmanager.com uploads.salemove.com .google.com maps.gstatic.com maps.googleapis.com khms0.googleapis.com; media-src .cuofco.org libs.salemove.com; frame-src .cuofco.org static.addtoany.com embed.fleeq.io batchgeo.com maps.googleapis.com maps.google.com platform.fonolo.com; frame-ancestors ; child-src .cuofco.org; font-src .cuofco.org fonts.gstatic.com fonts.googleapis.com themes.googleusercontent.com data: embed.signalintent.com; connect-src .cuofco.org bam.nr-data.net pubsub.salemove.com .google-analytics.com stats.g.doubleclick.net client-logger.salemove.com api.glia.com wss://pubsub.salemove.com api.salemove.com js.alpixtrack.com .facebook.com alpixtrack.com signal-intent-production-back.herokuapp.com cdn.segment.com api.segment.io kluster.salemove.com wss://kluster.salemove.com adservice.google.com applicationtest.cuofco.org; report-uri /report-csp-violation content-type: text/html; charset=UTF-8 expires: Sun, 19 Nov 1978 05:00:00 GMT permissions-policy: interest-cohort=() referrer-policy: no-referrer server: nginx strict-transport-security: max-age=15768000 x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-generator: Drupal 9 (https://www.drupal.org) x-pantheon-styx-hostname: styx-fe2-a-8698d47bfb-wdz7q x-styx-req-id: 5a70ea2d-6474-11ed-84ba-621337defab1 x-ua-compatible: IE=edge x-xss-protection: 1; mode=block date: Mon, 14 Nov 2022 23:30:41 GMT x-served-by: cache-chi-klot8100144-CHI, cache-bma1620-BMA x-cache: MISS, MISS x-cache-hits: 0, 0 x-timer: S1668468641.041223,VS0,VE527 vary: Accept-Encoding, Cookie, Cookie age: 0 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 20 X-Firefox-Spdy: h2

	js.alpixtrack.com/alphpixel.js?cust=1453609-751-KUSA	130.211.141.45	200 OK	4.9 kB
URL HTTP/1.1 js.alpixtrack.com/alphpixel.js?cust=1453609-751-KUSA IP 130.211.141.45:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type ASCII text Size 4.9 kB (4913 bytes) Hash c8b925eed53ccf4d111fc3f73c73c1a2 b426b9d0ace2b45daee6c24ddc2599eaafa03ed3 26b1fa79351edf039f381c8d30f0d0861746042f076c8de57179d822b8d7eacd HTTP Headers `GET /alphpixel.js?cust=1453609-751-KUSA HTTP/1.1 Host: js.alpixtrack.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Server: nginx/1.20.0 Date: Mon, 14 Nov 2022 23:30:41 GMT Content-Type: application/javascript Content-Length: 4913 Last-Modified: Wed, 07 Jul 2021 09:31:25 GMT Connection: keep-alive ETag: "60e5746d-1331" Expires: Tue, 15 Nov 2022 23:30:41 GMT Cache-Control: max-age=86400, public, no-transform Access-Control-Allow-Origin: * Accept-Ranges: bytes`

	pubsub.salemove.com/notifications/websocket?access_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImVkMThkM2UxLTRlMGUtNDI5Mi05OTgwLTVkMzNkYzhkMjM4NyJ9.eyJpYXQiOjE2Njg0Njg2NDEsImV4cCI6MTY2OTY3ODI0MSwiaXNzIjoiR2xpYSBTaXRlIFZpc2l0b3IgQ29uZmlnIiwic3ViIjoidmlzaXRvcjpkMjllYjU1OC1mZGZkLTQ3NDYtOTM3Ni0zYTdjYjdiMjY4MWYiLCJyb2xlcyI6W3sidHlwZSI6InZpc2l0b3IiLCJ2aXNpdG9yX2lkIjoiZDI5ZWI1NTgtZmRmZC00NzQ2LTkzNzYtM2E3Y2I3YjI2ODFmIn0seyJ0eXBlIjoic2l0ZV92aXNpdG9yIiwic2l0ZV9pZCI6IjBlMWQwNmRjLTM5Y2EtNDc4Zi04YTYyLWM2ZGIwMzg3YzMwOSIsImVuZ2FnZW1lbnRfc2l0ZV9pZHMiOlsiMGUxZDA2ZGMtMzljYS00NzhmLThhNjItYzZkYjAzODdjMzA5Il19XX0.BFcaBn0FSqtg1NPbttKsdH1MIJmj7yRzBQFT55lqvUF5wLxPWfSXJBHYvbvA5QRFwRUQ0FQDSpoqaMFWx6qL4w&priority=low&vsn=2.0.0	44.193.189.104	101 Switching Protocols	0 B
URL HTTP/1.1 pubsub.salemove.com/notifications/websocket?access_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImVkMThkM2UxLTRlMGUtNDI5Mi05OTgwLTVkMzNkYzhkMjM4NyJ9.eyJpYXQiOjE2Njg0Njg2NDEsImV4cCI6MTY2OTY3ODI0MSwiaXNzIjoiR2xpYSBTaXRlIFZpc2l0b3IgQ29uZmlnIiwic3ViIjoidmlzaXRvcjpkMjllYjU1OC1mZGZkLTQ3NDYtOTM3Ni0zYTdjYjdiMjY4MWYiLCJyb2xlcyI6W3sidHlwZSI6InZpc2l0b3IiLCJ2aXNpdG9yX2lkIjoiZDI5ZWI1NTgtZmRmZC00NzQ2LTkzNzYtM2E3Y2I3YjI2ODFmIn0seyJ0eXBlIjoic2l0ZV92aXNpdG9yIiwic2l0ZV9pZCI6IjBlMWQwNmRjLTM5Y2EtNDc4Zi04YTYyLWM2ZGIwMzg3YzMwOSIsImVuZ2FnZW1lbnRfc2l0ZV9pZHMiOlsiMGUxZDA2ZGMtMzljYS00NzhmLThhNjItYzZkYjAzODdjMzA5Il19XX0.BFcaBn0FSqtg1NPbttKsdH1MIJmj7yRzBQFT55lqvUF5wLxPWfSXJBHYvbvA5QRFwRUQ0FQDSpoqaMFWx6qL4w&priority=low&vsn=2.0.0 IP 44.193.189.104:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /notifications/websocket?access_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImVkMThkM2UxLTRlMGUtNDI5Mi05OTgwLTVkMzNkYzhkMjM4NyJ9.eyJpYXQiOjE2Njg0Njg2NDEsImV4cCI6MTY2OTY3ODI0MSwiaXNzIjoiR2xpYSBTaXRlIFZpc2l0b3IgQ29uZmlnIiwic3ViIjoidmlzaXRvcjpkMjllYjU1OC1mZGZkLTQ3NDYtOTM3Ni0zYTdjYjdiMjY4MWYiLCJyb2xlcyI6W3sidHlwZSI6InZpc2l0b3IiLCJ2aXNpdG9yX2lkIjoiZDI5ZWI1NTgtZmRmZC00NzQ2LTkzNzYtM2E3Y2I3YjI2ODFmIn0seyJ0eXBlIjoic2l0ZV92aXNpdG9yIiwic2l0ZV9pZCI6IjBlMWQwNmRjLTM5Y2EtNDc4Zi04YTYyLWM2ZGIwMzg3YzMwOSIsImVuZ2FnZW1lbnRfc2l0ZV9pZHMiOlsiMGUxZDA2ZGMtMzljYS00NzhmLThhNjItYzZkYjAzODdjMzA5Il19XX0.BFcaBn0FSqtg1NPbttKsdH1MIJmj7yRzBQFT55lqvUF5wLxPWfSXJBHYvbvA5QRFwRUQ0FQDSpoqaMFWx6qL4w&priority=low&vsn=2.0.0 HTTP/1.1 Host: pubsub.salemove.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://www.cuofco.org Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 9JFccupfE6vCqbs27K21Hg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols cache-control: max-age=0, private, must-revalidate connection: Upgrade date: Mon, 14 Nov 2022 23:30:41 GMT sec-websocket-accept: DNK2H4vhrh6X7L2+i10OFqOsuaA= server: envoy upgrade: websocket`

	alb.reddit.com/rp.gif?ts=1668468640991&id=t2_aeb8zd93&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=65a6a4ee-4294-4631-91ad-dd263b14b221&aaid=&em=0000000000000000000000000000000000000000000000000000000000000000&external_id=6871144572570a76b42cd0909194f75b69c2dc968d5edc4bcfe96fb94dc65121&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8	151.101.85.140	200 OK	42 B
URL HTTP/2 alb.reddit.com/rp.gif?ts=1668468640991&id=t2_aeb8zd93&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=65a6a4ee-4294-4631-91ad-dd263b14b221&aaid=&em=0000000000000000000000000000000000000000000000000000000000000000&external_id=6871144572570a76b42cd0909194f75b69c2dc968d5edc4bcfe96fb94dc65121&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 IP 151.101.85.140:0 ASN #54113 FASTLY File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /rp.gif?ts=1668468640991&id=t2_aeb8zd93&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=65a6a4ee-4294-4631-91ad-dd263b14b221&aaid=&em=0000000000000000000000000000000000000000000000000000000000000000&external_id=6871144572570a76b42cd0909194f75b69c2dc968d5edc4bcfe96fb94dc65121&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 HTTP/1.1 Host: alb.reddit.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK server: Varnish retry-after: 0 cross-origin-resource-policy: cross-origin content-type: image/gif accept-ranges: bytes date: Mon, 14 Nov 2022 23:30:41 GMT via: 1.1 varnish content-length: 42 X-Firefox-Spdy: h2`

	www.facebook.com/tr/?id=1310725552451853&ev=PageView&dl=https%3A%2F%2Fwww.cuofco.org%2F&rl=&if=false&ts=1668468641860&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668468641859.1186479433&it=1668468641502&coo=false&rqm=GET	31.13.72.36	200 OK	0 B
URL HTTP/2 www.facebook.com/tr/?id=1310725552451853&ev=PageView&dl=https%3A%2F%2Fwww.cuofco.org%2F&rl=&if=false&ts=1668468641860&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668468641859.1186479433&it=1668468641502&coo=false&rqm=GET IP 31.13.72.36:0 ASN #32934 FACEBOOK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tr/?id=1310725552451853&ev=PageView&dl=https%3A%2F%2Fwww.cuofco.org%2F&rl=&if=false&ts=1668468641860&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668468641859.1186479433&it=1668468641502&coo=false&rqm=GET HTTP/1.1 Host: www.facebook.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK content-type: text/plain access-control-allow-origin: access-control-allow-credentials: true strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin content-length: 0 server: proxygen-bolt alt-svc: h3=":443"; ma=86400 date: Mon, 14 Nov 2022 23:30:42 GMT X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 68a04663a52ab4272c25f5afcc09a92d 48b0722227353d06cb1dfd4480b644be6e6fc030 892ba18611f372b6bf390d3628b66efc4a721f0f2bde61ae22546a0948935b7e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-55836619-1&cid=1119361901.1668468641&jid=1295978947&gjid=499421219&_gid=2101406947.1668468641&_u=YEBAAEAAAAAAACAAI~&z=833924720	142.250.150.155	200 OK	86 kB
URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-55836619-1&cid=1119361901.1668468641&jid=1295978947&gjid=499421219&_gid=2101406947.1668468641&_u=YEBAAEAAAAAAACAAI~&z=833924720 IP 142.250.150.155:0 ASN #15169 GOOGLE File type gzip compressed data, from Unix\012- data Size 86 kB (86016 bytes) Hash 220e125e3a6dfd6202fdbc85bb1b6bac 9f090db96bf9dbeb99b5601ee6a90b8a8fd482e4 1bb403231ff93f7750cbae1eb2e7378e64f89d7e5850e9e344d7cca859010438 HTTP Headers POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-55836619-1&cid=1119361901.1668468641&jid=1295978947&gjid=499421219&_gid=2101406947.1668468641&_u=YEBAAEAAAAAAACAAI~&z=833924720 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://www.cuofco.org strict-transport-security: max-age=10886400; includeSubDomains; preload date: Mon, 14 Nov 2022 23:30:42 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 4 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c1abc90e3b0a3418b27aa617d9e6f6eb ec09eabd2f48a4013c6ae13d0145d5cd5823aa96 57905b7c1951f7340d51107297e02bd848abecfcf701ea8bc1befa105ee0178f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.cuofco.org/report-csp-violation	23.185.0.2	200 OK	20 B
URL HTTP/2 www.cuofco.org/report-csp-violation IP 23.185.0.2:0 ASN #54113 FASTLY File type data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `POST /report-csp-violation HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 2503 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: must-revalidate, no-cache, private content-encoding: gzip content-language: en content-security-policy-report-only: default-src .cuofco.org:; script-src .cuofco.org static.addtoany.com api.glia.com js.poshdevelopment.com .googletagmanager.com 'unsafe-inline' bam.nr-data.net connect.facebook.net libs.salemove.com js-agent.newrelic.com .google-analytics.com js.alpixtrack.com embed.signalintent.com cdn.segment.com www.googleadservices.com maps.googleapis.com .googleadservices.com 'unsafe-eval' applicationtest.cuofco.org platform.fonolo.com; object-src self; style-src .cuofco.org fonts.googleapis.com 'unsafe-inline' libs.salemove.com embed.signalintent.com; img-src .cuofco.org .facebook.com alpixtrack.com .google.com .google-analytics.com data: www.googletagmanager.com uploads.salemove.com .google.com maps.gstatic.com maps.googleapis.com khms0.googleapis.com; media-src .cuofco.org libs.salemove.com; frame-src .cuofco.org static.addtoany.com embed.fleeq.io batchgeo.com maps.googleapis.com maps.google.com platform.fonolo.com; frame-ancestors ; child-src .cuofco.org; font-src .cuofco.org fonts.gstatic.com fonts.googleapis.com themes.googleusercontent.com data: embed.signalintent.com; connect-src .cuofco.org bam.nr-data.net pubsub.salemove.com .google-analytics.com stats.g.doubleclick.net client-logger.salemove.com api.glia.com wss://pubsub.salemove.com api.salemove.com js.alpixtrack.com .facebook.com alpixtrack.com signal-intent-production-back.herokuapp.com cdn.segment.com api.segment.io kluster.salemove.com wss://kluster.salemove.com adservice.google.com applicationtest.cuofco.org; report-uri /report-csp-violation content-type: text/html; charset=UTF-8 expires: Sun, 19 Nov 1978 05:00:00 GMT permissions-policy: interest-cohort=() referrer-policy: no-referrer server: nginx strict-transport-security: max-age=15768000 x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-generator: Drupal 9 (https://www.drupal.org) x-pantheon-styx-hostname: styx-fe2-a-8698d47bfb-6rzjg x-styx-req-id: 5ae7b6fe-6474-11ed-914d-963005217c21 x-ua-compatible: IE=edge x-xss-protection: 1; mode=block date: Mon, 14 Nov 2022 23:30:42 GMT x-served-by: cache-chi-klot8100062-CHI, cache-bma1672-BMA x-cache: MISS, MISS x-cache-hits: 0, 0 x-timer: S1668468642.189214,VS0,VE153 vary: Accept-Encoding, Cookie, Cookie age: 0 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 20 X-Firefox-Spdy: h2

	alpixtrack.com/ad/ord=1668468641807?prd=web&cust=1453609-751-KUSA&event_type=visit&version=0.1.2&utm_source=unk&utm_mdm=unk&url=https%3A%2F%2Fwww.cuofco.org%2F&title=Homepage%20%7C%20Credit%20Union%20of%20Colorado&sess_status=st&sess=1668468728130&ref=	130.211.141.45	200 OK	35 B
URL HTTP/1.1 alpixtrack.com/ad/ord=1668468641807?prd=web&cust=1453609-751-KUSA&event_type=visit&version=0.1.2&utm_source=unk&utm_mdm=unk&url=https%3A%2F%2Fwww.cuofco.org%2F&title=Homepage%20%7C%20Credit%20Union%20of%20Colorado&sess_status=st&sess=1668468728130&ref= IP 130.211.141.45:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type GIF image data, version 87a, 1 x 1\012- data Size 35 B (35 bytes) Hash 87aec5a94c94ec7a5dd1c0839eb0182b d6bff0d70b60442d004c0affe6c1ab890615046a 3992b901546ef4e2685680badcd372d0834724caf9b1c95ea0f1e7c4ce6e5bc8 HTTP Headers GET /ad/ord=1668468641807?prd=web&cust=1453609-751-KUSA&event_type=visit&version=0.1.2&utm_source=unk&utm_mdm=unk&url=https%3A%2F%2Fwww.cuofco.org%2F&title=Homepage%20%7C%20Credit%20Union%20of%20Colorado&sess_status=st&sess=1668468728130&ref= HTTP/1.1 Host: alpixtrack.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Server: nginx/1.20.0 Date: Mon, 14 Nov 2022 23:30:42 GMT Content-Type: image/gif Content-Length: 35 Connection: keep-alive ETag: "560c609e-23" Access-Control-Allow-Origin: * Vary: Origin Accept-Ranges: bytes`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 3ed64b41b0a432ed6f8763fb24643390 a706034f8eaca414f20e2bde40ff84dde5509515 f5486847b03849b009bebe64683cd107ac2427ffbf109786938be5e06e620aea HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 8094f6d66cd067b92b99cc3c1ec916c6 cdb6d27ace38846e7a770dafce189f90a30db886 f07248933eddbab19c1153daaece5a2c3bcb421598bfab2c4b0f4c547d75e817 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-55836619-1&cid=1119361901.1668468641&jid=1295978947&_u=YEBAAEAAAAAAACAAI~&z=645545959	142.250.74.3	200 OK	42 B
URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-55836619-1&cid=1119361901.1668468641&jid=1295978947&_u=YEBAAEAAAAAAACAAI~&z=645545959 IP 142.250.74.3:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers `GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-55836619-1&cid=1119361901.1668468641&jid=1295978947&_u=YEBAAEAAAAAAACAAI~&z=645545959 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Mon, 14 Nov 2022 23:30:42 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-55836619-1&cid=1119361901.1668468641&jid=1295978947&_u=YEBAAEAAAAAAACAAI~&z=645545959	142.250.74.164	200 OK	42 B
URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-55836619-1&cid=1119361901.1668468641&jid=1295978947&_u=YEBAAEAAAAAAACAAI~&z=645545959 IP 142.250.74.164:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers `GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-55836619-1&cid=1119361901.1668468641&jid=1295978947&_u=YEBAAEAAAAAAACAAI~&z=645545959 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Mon, 14 Nov 2022 23:30:42 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 3ed64b41b0a432ed6f8763fb24643390 a706034f8eaca414f20e2bde40ff84dde5509515 f5486847b03849b009bebe64683cd107ac2427ffbf109786938be5e06e620aea HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 96c9e6a333b1f0fddf32f24e7b965151 647fee1eb0d6839e30115edebe8d0840e6152cdb a2ac4ddc863a9d641d91d504db389e0116cf1699322d2391f17d5785bf5bc538 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	js-agent.newrelic.com/nr-1216.min.js	151.101.86.137	200 OK	14 kB
URL HTTP/2 js-agent.newrelic.com/nr-1216.min.js IP 151.101.86.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (32022) Size 14 kB (14391 bytes) Hash b7c09cc097b2847f9edc784adba62dcb 5aa648623cf5e3b4b215fe5d068a7904c59f2925 6da450b6a3ba53bdab36f6529e987a245cdfca9a37b77790f06dfd8d5797bdaa HTTP Headers `GET /nr-1216.min.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: Vf9xsFZHH0UI6bmTnW+KeBzegICGOxvtMLIWtbljNKoJtdkUEk/MfmbYPFui+bgtiUf/4lC5dk8= x-amz-request-id: 4AV5AVKCCR961CNG last-modified: Thu, 14 Apr 2022 16:45:57 GMT etag: "9f533d8cd24b2c5e3b4dc886ecbd43e8" x-amz-version-id: mHHzJIqOizHibcYt0xqAszRr0gQRiNYy content-type: application/javascript server: AmazonS3 cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Mon, 14 Nov 2022 23:30:42 GMT via: 1.1 varnish x-served-by: cache-bma1651-BMA x-cache: HIT x-cache-hits: 1730 x-timer: S1668468642.486263,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 14391 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 90ecb2e435ea12d9dfccd7399a28ec30 163d1dd17a8369430671df1577349f5c198dd9c6 c843c85f6173a0cf64d143406a102b18d0b4a9a9e7f9b34e00d805a915658d49 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6140 Cache-Control: max-age=88975 Content-Type: application/ocsp-response Date: Mon, 14 Nov 2022 23:30:42 GMT Etag: "63717035-1d7" Expires: Wed, 16 Nov 2022 00:13:37 GMT Last-Modified: Sun, 13 Nov 2022 22:31:17 GMT Server: ECS (ska/F715) X-Cache: HIT Content-Length: 471`

	bam.nr-data.net/1/NRJS-3105bae7edcf5b778ec?a=311710469&v=1216.487a282&to=ZF1RMEUADxAEBkNRVl0XcgdDCA4NSiFFTUlSVG8KWAUEPyYKWUxLXFRfAUU9LwwBAGFRXER7XApDEw4PCQBFFQdFUVYT&rst=3564&ck=1&ref=https://www.cuofco.org/&ap=3857&be=1123&fe=3498&dc=1745&perf=%7B%22timing%22:%7B%22of%22:1668468638930,%22n%22:0,%22f%22:368,%22dn%22:391,%22dne%22:520,%22c%22:521,%22s%22:532,%22ce%22:715,%22rq%22:715,%22rp%22:1089,%22rpe%22:1089,%22dl%22:1098,%22di%22:1738,%22ds%22:1744,%22de%22:1866,%22dc%22:3496,%22l%22:3496,%22le%22:3499%7D,%22navigation%22:%7B%7D%7D&fcp=1613&at=SBpSRg0aHB4%3D&jsonp=NREUM.setToken	162.247.241.14	200 OK	73 B
URL HTTP/1.1 bam.nr-data.net/1/NRJS-3105bae7edcf5b778ec?a=311710469&v=1216.487a282&to=ZF1RMEUADxAEBkNRVl0XcgdDCA4NSiFFTUlSVG8KWAUEPyYKWUxLXFRfAUU9LwwBAGFRXER7XApDEw4PCQBFFQdFUVYT&rst=3564&ck=1&ref=https://www.cuofco.org/&ap=3857&be=1123&fe=3498&dc=1745&perf=%7B%22timing%22:%7B%22of%22:1668468638930,%22n%22:0,%22f%22:368,%22dn%22:391,%22dne%22:520,%22c%22:521,%22s%22:532,%22ce%22:715,%22rq%22:715,%22rp%22:1089,%22rpe%22:1089,%22dl%22:1098,%22di%22:1738,%22ds%22:1744,%22de%22:1866,%22dc%22:3496,%22l%22:3496,%22le%22:3499%7D,%22navigation%22:%7B%7D%7D&fcp=1613&at=SBpSRg0aHB4%3D&jsonp=NREUM.setToken IP 162.247.241.14:0 ASN #23467 NEWRELIC-AS-1 File type ASCII text, with no line terminators Size 73 B (73 bytes) Hash 516a128bb6000ca8154792678f4333fb 41d0257bea96afd36c6f3e40fcfdc9ca247f8e01 9fa62b52f24b87a40410fe842cb9be494abed114a2eac2eb406c8b4a4d372d10 HTTP Headers GET /1/NRJS-3105bae7edcf5b778ec?a=311710469&v=1216.487a282&to=ZF1RMEUADxAEBkNRVl0XcgdDCA4NSiFFTUlSVG8KWAUEPyYKWUxLXFRfAUU9LwwBAGFRXER7XApDEw4PCQBFFQdFUVYT&rst=3564&ck=1&ref=https://www.cuofco.org/&ap=3857&be=1123&fe=3498&dc=1745&perf=%7B%22timing%22:%7B%22of%22:1668468638930,%22n%22:0,%22f%22:368,%22dn%22:391,%22dne%22:520,%22c%22:521,%22s%22:532,%22ce%22:715,%22rq%22:715,%22rp%22:1089,%22rpe%22:1089,%22dl%22:1098,%22di%22:1738,%22ds%22:1744,%22de%22:1866,%22dc%22:3496,%22l%22:3496,%22le%22:3499%7D,%22navigation%22:%7B%7D%7D&fcp=1613&at=SBpSRg0aHB4%3D&jsonp=NREUM.setToken HTTP/1.1 Host: bam.nr-data.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Date: Mon, 14 Nov 2022 23:30:43 GMT Content-Type: text/javascript Transfer-Encoding: chunked Connection: keep-alive CF-Ray: 76a38957e935b505-OSL Access-Control-Allow-Origin: * Set-Cookie: JSESSIONID=b1b622271bfc6d5f; Path=/; Domain=.nr-data.net; Secure; SameSite=None CF-Cache-Status: DYNAMIC access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS Cross-Origin-Resource-Policy: cross-origin Vary: Accept-Encoding Server: cloudflare Content-Encoding: gzip

	client-logger.salemove.com/	35.173.161.29	204 No Content	0 B
URL HTTP/1.1 client-logger.salemove.com/ IP 35.173.161.29:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST / HTTP/1.1 Host: client-logger.salemove.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Origin: https://www.cuofco.org Content-Length: 8529 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/1.1 204 No Content access-control-allow-origin: * access-control-allow-methods: POST access-control-expose-headers: access-control-max-age: 7200 strict-transport-security: max-age=31536000 vary: Origin x-envoy-upstream-service-time: 2 date: Mon, 14 Nov 2022 23:30:44 GMT server: envoy`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82dd8907-ad5b-4fb4-8332-723bcde2ae7a.jpeg	34.120.237.76	200 OK	8.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82dd8907-ad5b-4fb4-8332-723bcde2ae7a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.8 kB (8814 bytes) Hash 9aacb6df5831d597738a5d5b7ffba383 e20cf704cb5a12385d19d045cd221fdf3f913236 b990cc44ba753b916cf74f7b950833e58551dad0bcd380f1de311f54444f32bc HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82dd8907-ad5b-4fb4-8332-723bcde2ae7a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK server: nginx content-length: 8814 x-amzn-requestid: 5227b724-752f-49df-845b-eb3d75d293f4 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bOA9SFawIAMF5lQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6368aebb-18843b2a043aa9f22513cc89;Sampled=0 x-amzn-remapped-date: Mon, 07 Nov 2022 07:07:39 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: khdO_i0cqNZyQ2alFFNv3NWHloig26Q-18vGLUuJtR3g3SzVT2eJag== via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google date: Mon, 14 Nov 2022 03:32:33 GMT age: 71895 etag: "e20cf704cb5a12385d19d045cd221fdf3f913236" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/styles/small_hq/public/image/2021-09/DB_Desktop-Screeen-and-Phone.png?itok=fLkBDU5N	23.185.0.2	200 OK	0 B
URL HTTP/2 www.cuofco.org/sites/default/files/styles/small_hq/public/image/2021-09/DB_Desktop-Screeen-and-Phone.png?itok=fLkBDU5N IP 23.185.0.2:0 ASN #54113 FASTLY File type Size 0 B (0 bytes) Hash HTTP Headers `GET /sites/default/files/styles/small_hq/public/image/2021-09/DB_Desktop-Screeen-and-Phone.png?itok=fLkBDU5N HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/png etag: "61421ee5-350e5" expires: Thu, 26 Oct 2023 13:25:26 GMT last-modified: Wed, 15 Sep 2021 16:27:17 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-68b654c78d-dx8k6 x-styx-req-id: 7cffcf3a-5468-11ed-a00a-2e476fb6d4a3 date: Mon, 14 Nov 2022 23:30:40 GMT x-served-by: cache-chi-kigq8000138-CHI, cache-bma1672-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668468640.150241,VS0,VE2 age: 193085 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 217317 X-Firefox-Spdy: h2

	platform.fonolo.com/v2	3.137.31.241	200 OK	0 B
URL HTTP/2 platform.fonolo.com/v2 IP 3.137.31.241:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /v2 HTTP/1.1 Host: platform.fonolo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Mon, 14 Nov 2022 23:30:40 GMT content-type: text/javascript;charset=utf-8 access-control-allow-origin: * x-xss-protection: 1; mode=block expires: Tue, 15 Nov 2022 00:30:40 GMT content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	tr.snapchat.com/collector/is_enabled?pids=3e513984-0c3d-4f3e-866e-64c50d47f06b&tld=org	35.190.43.134	200 OK	0 B
URL HTTP/2 tr.snapchat.com/collector/is_enabled?pids=3e513984-0c3d-4f3e-866e-64c50d47f06b&tld=org IP 35.190.43.134:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /collector/is_enabled?pids=3e513984-0c3d-4f3e-866e-64c50d47f06b&tld=org HTTP/1.1 Host: tr.snapchat.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 14 Nov 2022 23:30:41 GMT access-control-allow-origin: https://www.cuofco.org content-type: application/json strict-transport-security: max-age=31536000; includeSubDomains; preload x-envoy-upstream-service-time: 0 content-encoding: gzip vary: Accept-Encoding server: API Gateway access-control-allow-credentials: true via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	libs.salemove.com/visitor-app.7662df5d.min.js	54.230.111.71	200 OK	0 B
URL HTTP/2 libs.salemove.com/visitor-app.7662df5d.min.js IP 54.230.111.71:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /visitor-app.7662df5d.min.js HTTP/1.1 Host: libs.salemove.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: application/javascript date: Wed, 09 Nov 2022 09:48:34 GMT last-modified: Wed, 09 Nov 2022 07:01:42 GMT etag: W/"4b0ce403a707c12fd0418009194d3591" x-amz-meta-s3cmd-attrs: md5:4b0ce403a707c12fd0418009194d3591 cache-control: max-age=31536000 server: AmazonS3 strict-transport-security: max-age=63072000; includeSubdomains; preload content-encoding: gzip vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method,Origin x-cache: Hit from cloudfront via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 6J-SJNkUs4h2IsHKNN6e7qSgAWE3rsvJZA2cLlxNM-gnJJAbnvGBdg== age: 481328 X-Firefox-Spdy: h2

	static.addtoany.com/menu/page.js	104.22.71.197	200 OK	0 B
URL HTTP/2 static.addtoany.com/menu/page.js IP 104.22.71.197:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /menu/page.js HTTP/1.1 Host: static.addtoany.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 14 Nov 2022 23:30:40 GMT content-type: application/javascript; charset=utf-8 cache-control: public, max-age=172800 cf-bgj: minify access-control-allow-origin: * age: 82805 etag: W/"bb9-5ec71e264ddf8" last-modified: Wed, 02 Nov 2022 00:25:57 GMT vary: Accept-Encoding via: e1s x-content-type-options: nosniff cf-cache-status: HIT strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 76a3894a0c4e95e2-ARN content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	static.addtoany.com/menu/modules/core.c4ad588e.js	104.22.71.197	200 OK	0 B
URL HTTP/2 static.addtoany.com/menu/modules/core.c4ad588e.js IP 104.22.71.197:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /menu/modules/core.c4ad588e.js HTTP/1.1 Host: static.addtoany.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 14 Nov 2022 23:30:40 GMT content-type: application/javascript; charset=utf-8 cache-control: max-age=315360000, immutable cf-bgj: minify access-control-allow-origin: * age: 8774 etag: W/"117b8-5ec71e25ea438" last-modified: Wed, 02 Nov 2022 00:25:56 GMT vary: Accept-Encoding via: e2s x-content-type-options: nosniff cf-cache-status: HIT strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 76a3894bbda1168d-ARN content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	libs.salemove.com/visitor-app.7662df5d.default.css	54.230.111.71	200 OK	0 B
URL HTTP/2 libs.salemove.com/visitor-app.7662df5d.default.css IP 54.230.111.71:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /visitor-app.7662df5d.default.css HTTP/1.1 Host: libs.salemove.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: text/css date: Wed, 09 Nov 2022 09:48:34 GMT last-modified: Wed, 09 Nov 2022 07:01:42 GMT etag: W/"2ece1abd558dac6c6be864708fd813f2" x-amz-meta-s3cmd-attrs: md5:2ece1abd558dac6c6be864708fd813f2 cache-control: max-age=31536000 server: AmazonS3 strict-transport-security: max-age=63072000; includeSubdomains; preload content-encoding: gzip vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method,Origin x-cache: Hit from cloudfront via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: tFaDLec8vaEeQLBmoNMcpDTuurmorJltyyodNb4NwY3rnUKLers9ow== age: 481328 X-Firefox-Spdy: h2

	js.poshdevelopment.com/glia/render.js	54.230.111.64	200 OK	0 B
URL HTTP/2 js.poshdevelopment.com/glia/render.js IP 54.230.111.64:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /glia/render.js HTTP/1.1 Host: js.poshdevelopment.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript last-modified: Tue, 25 Oct 2022 22:09:48 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: null server: AmazonS3 strict-transport-security: max-age=63072000; includeSubdomains; preload content-encoding: gzip date: Mon, 14 Nov 2022 18:16:20 GMT cache-control: max-age=28800, stale-while-revalidate=14400 etag: W/"a13a937b45cb12d8097d2db6dc461250" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 02525D7X7WeyNniPFViV9wgYZvGaqx47eHQ13EzMFsIzARNiKwulLw== age: 18861 X-Firefox-Spdy: h2

	platform.fonolo.com/v2/callback/CP0009fdcb5f4e548df585e7396ceb12b1/?c=fonolo_widget&u=https://www.cuofco.org/&s=&tz=0&input[name]=Test%20User&input[account]=12345&t=embedded	3.137.31.241	200 OK	0 B
URL HTTP/2 platform.fonolo.com/v2/callback/CP0009fdcb5f4e548df585e7396ceb12b1/?c=fonolo_widget&u=https://www.cuofco.org/&s=&tz=0&input[name]=Test%20User&input[account]=12345&t=embedded IP 3.137.31.241:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /v2/callback/CP0009fdcb5f4e548df585e7396ceb12b1/?c=fonolo_widget&u=https://www.cuofco.org/&s=&tz=0&input[name]=Test%20User&input[account]=12345&t=embedded HTTP/1.1 Host: platform.fonolo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK date: Mon, 14 Nov 2022 23:30:40 GMT content-type: text/javascript;charset=utf-8 server: nginx content-language: en content-encoding: gzip vary: Accept-Encoding strict-transport-security: max-age=63072000; includeSubDomains; preload x-content-type-options: nosniff cache-control: no-store, max-age=0 X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (31)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP