r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3852
Expires: Tue, 06 Dec 2022 03:00:56 GMT
Date: Tue, 06 Dec 2022 01:56:44 GMT
Connection: keep-alive
realhopeoswego.org/
301 Moved Permanently 238 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ad5cca30eab42024ac7e7adeebaa1d79
0e2536e8eff6df8e1ff39b832937548e8efeacb6
1e61db105ca4e34078382840b70bd7eae56bcd5fbeb085a46c6b4d1b5d50d64d
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 01:56:44 GMT
Server: Apache
Location: http://www.realhopeoswego.org/
Content-Length: 238
Keep-Alive: timeout=10, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.digicert.com/
200 OK 471 B IP
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1478
Cache-Control: max-age=118753
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:44 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 10:55:57 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6413
Expires: Tue, 06 Dec 2022 03:43:37 GMT
Date: Tue, 06 Dec 2022 01:56:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 01:20:20 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2184
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sPT9HDa1ZBoUCBR6he3jtvRfa+hXA7jykq9jvPWyWR5CiAro9FivKTkPHRH2GkJ1usM/BC0mE/s=
x-amz-request-id: KS84VF9ZAJYWMBGA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 01:48:44 GMT
age: 480
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:56:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 01:11:20 GMT
cache-control: public,max-age=3600
age: 2725
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.realhopeoswego.org/
301 Moved Permanently 370 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3168afd7f2e52d52c9b401688c845337
6f5bff725fa21cc9e90daa48dc7a54941a550bf9
155fb34847bde6401bc6eac53a03701be4ef19d2832fcbe9528053623fd47cf1
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 01:56:45 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=www.realhopeoswego.org
Vary: X-W-SSL,User-Agent
Location: https://www.realhopeoswego.org/
X-Host: blu139.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 370
Keep-Alive: timeout=10, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
200 OK 471 B IP
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1462
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:45 GMT
Last-Modified: Tue, 06 Dec 2022 01:32:23 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nUH5coGflRTj/6bmZE+flw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mjAxnj/tbgb1GNv0vXwJciztxUg=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6e7f910267e9b1caecfc0babc2ffeaf0
99687ca2d237ca1518bbc6d6f5262a65c5764151
cd25d3d0ded928805ec34661815c52125990f8bd2e9ce976e4cef2cf7f9c5d87
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CD25D3D0DED928805EC34661815C52125990F8BD2E9CE976E4CEF2CF7F9C5D87"
Last-Modified: Mon, 05 Dec 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 06 Dec 2022 07:56:45 GMT
Date: Tue, 06 Dec 2022 01:56:45 GMT
Connection: keep-alive
www.realhopeoswego.org/
200 OK 9.7 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1350), with CRLF, LF line terminators
Hash 8205801b1e5e88056e3d5808d16cd951
117f513d87eb29ef80dd6acc2bc273d85a11fcfc
6ee1caf7e6b6aae228f4306e8dc62b4f82396d5eca7baf1a0fd2338a3a9be503
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 01:56:45 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.realhopeoswego.org
language=en; expires=Tue, 20-Dec-2022 01:56:45 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"436f18a7a4bb9507bfada99f24577b35-gzip"
Content-Encoding: gzip
X-Host: grn44.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 9706
Keep-Alive: timeout=10, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1665518573&
200 OK 33 kB URL HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1665518573&
IP
File type ASCII text, with very long lines (65024)
Hash d8a96093e4ac9525ad79fcfd57d8ef8a
c69965f81400795e52e7795f2befbb62dc84dbeb
260dadf35ac438d5101a0c5ad9f48d631d6e9652e92761af42e81338153831f2
GET /js/lang/en/stl.js?buildTime=1665518573& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 21 Nov 2022 22:28:26 GMT
etag: "637bfb8a-2c00a"
expires: Tue, 06 Dec 2022 20:06:25 GMT
cache-control: max-age=1209600
x-host: blu85.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 06 Dec 2022 01:56:46 GMT
age: 1144221
x-served-by: cache-sjc10033-SJC, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 80, 1
x-timer: S1670291806.035725,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 32668
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 620156f6e55e9adba5a5b7249d8ac2be
78554239c187a37fe9ada1673b4068fcfad84dc8
ca79140b8c48915ed715a40e66fa67b78c1fe15490b78bcba0575bb4d0bd5490
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 952
Cache-Control: max-age=137658
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:46 GMT
Etag: "638e1460-116"
Expires: Wed, 07 Dec 2022 16:11:04 GMT
Last-Modified: Mon, 05 Dec 2022 15:55:12 GMT
Server: ECS (amb/6B90)
X-Cache: HIT
Content-Length: 278
cdn2.editmysite.com/css/old/fancybox.css?1665518573
200 OK 1.2 kB URL HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1665518573
IP
File type ASCII text, with very long lines (3910)
Hash b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
GET /css/old/fancybox.css?1665518573 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 28 Nov 2022 20:03:37 GMT
etag: "63851419-f47"
expires: Tue, 13 Dec 2022 09:24:07 GMT
cache-control: max-age=1209600
x-host: grn140.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 06 Dec 2022 01:56:46 GMT
age: 577958
x-served-by: cache-sjc10040-SJC, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 80, 1
x-timer: S1670291806.041235,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1218
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Montserrat/font.css?2
200 OK 276 B URL HTTP/2 cdn2.editmysite.com/fonts/Montserrat/font.css?2
IP
Hash 559eefb63fcae2a3f85471dd3903016a
5e4a9f5b529f2f6d2ee1de511231f856e673066c
09110f0d179c52677e2caf24d4bad70e5d717acb2eff2887ac36dbc1d9583fae
GET /fonts/Montserrat/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 01 Dec 2022 15:08:26 GMT
etag: "6388c36a-354"
expires: Thu, 15 Dec 2022 18:07:57 GMT
cache-control: max-age=1209600
x-host: grn82.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 06 Dec 2022 01:56:46 GMT
age: 373729
x-served-by: cache-sjc10070-SJC, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 50, 13
x-timer: S1670291806.042370,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 276
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/social-icons.css?buildtime=1665518573
200 OK 1.6 kB URL HTTP/2 cdn2.editmysite.com/css/social-icons.css?buildtime=1665518573
IP
File type ASCII text, with very long lines (13080)
Hash dd1b976ae24c875642a63e4305fde2c6
7866a4d620fc0defccc6b55221ab0c57f1c9d01a
e90611d41ff4a8eb0fce6aaab344605ea7c983105db1e8042768cd0aa9510dab
GET /css/social-icons.css?buildtime=1665518573 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 21 Nov 2022 22:29:33 GMT
etag: W/"637bfbcd-3319"
expires: Wed, 07 Dec 2022 11:24:35 GMT
cache-control: max-age=1209600
x-host: grn41.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 06 Dec 2022 01:56:46 GMT
age: 1089130
x-served-by: cache-sjc10053-SJC, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 892, 1
x-timer: S1670291806.042123,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1639
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1665518573
200 OK 159 kB URL HTTP/2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1665518573
IP
File type ASCII text, with very long lines (32007)
Size 159 kB (158930 bytes)
Hash f740fdfbcf394f270a9b176029fa6f37
5f20c49627104282744508eb0278d7185128532e
3021f0f944c9bd7c6e995601f25b3d970e0bd41f9a411f08b2871bb5415a8707
GET /js/site/main-customer-accounts-site.js?buildTime=1665518573 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 21 Nov 2022 22:29:57 GMT
etag: "637bfbe5-8250f"
expires: Wed, 07 Dec 2022 09:00:36 GMT
cache-control: max-age=1209600
x-host: grn77.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 06 Dec 2022 01:56:46 GMT
age: 1097770
x-served-by: cache-sjc10038-SJC, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 17, 1
x-timer: S1670291806.037515,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 158930
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP
Hash 366d23fbc940d3112c801322f59aff05
cbcbee6e5cb1ed4b8edb702806d4e8e51a93da89
e3e9e55309737ace61f2588b881cb682fa7cafd4884de09bd012cdeafc513440
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 01:56:46 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "DBAEF430CF06D5DC5C5BF928E6172804F25D2BB6"
Expires: Tue, 06 Dec 2022 13:00:00 GMT
Last-Modified: Tue, 06 Dec 2022 01:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1221
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7751682c1e1cb527-OSL
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP
File type ASCII text, with very long lines (65483)
Hash a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 22:01:48 GMT
expires: Wed, 29 Nov 2023 22:01:48 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 532498
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.realhopeoswego.org/files/main_style.css?1665520744
200 OK 7.4 kB URL HTTP/1.1 www.realhopeoswego.org/files/main_style.css?1665520744
IP
File type ASCII text, with very long lines (1061)
Hash eb4fa23bd07fc851f46edc898292769e
5aa78a87582cc815d2fbab6ad8661e3fd8900657
3a2f7ffe44d2e86fed4cd481fe61e5e0194ecc6411fe1129c4b4b054d0b4a909
Analyzer Verdict Alert fortinet Malware
GET /files/main_style.css?1665520744 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:46 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu83.sf2p.intern.weebly.net
Content-Encoding: gzip
cdn2.editmysite.com/css/sites.css?buildTime=1665518573
200 OK 30 kB URL HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1665518573
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash d10158b22b553f723d99dc78eaee6390
80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
GET /css/sites.css?buildTime=1665518573 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 29 Nov 2022 20:16:01 GMT
etag: W/"63866881-347ac"
expires: Thu, 15 Dec 2022 09:09:07 GMT
cache-control: max-age=1209600
x-host: blu144.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 06 Dec 2022 01:56:46 GMT
age: 406058
x-served-by: cache-sjc10079-SJC, cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 656, 0
x-timer: S1670291806.039256,VS0,VE163
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29746
X-Firefox-Spdy: h2
www.realhopeoswego.org/files/templateArtifacts.js?1665520744
200 OK 1.6 kB URL HTTP/1.1 www.realhopeoswego.org/files/templateArtifacts.js?1665520744
IP
File type exported SGML document, ASCII text, with very long lines (1630)
Hash e0836e8203c22b8e4086f27e91e86f5a
28235e77f5a895c8cd411aff4a6ef4e6f7d419c2
32dbc4a2eeca39a57d35670f00e2cf59e03c279521e47506c56c5c36d8b664b6
Analyzer Verdict Alert fortinet Malware
GET /files/templateArtifacts.js?1665520744 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:46 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu61.sf2p.intern.weebly.net
Content-Encoding: gzip
ocsp.digicert.com/
200 OK 278 B IP
Hash 58bc86fddb668142ffed9f7b0796653c
6d9e7798dacb9dc3fd4b8486d4fd9bb57e2b9b02
5d585bcfc7cd1cbbfcd4b95b03f2997ad6e47a3fa7c8985d0a55bef87d21d9f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5790
Cache-Control: max-age=97092
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:46 GMT
Etag: "638d6304-116"
Expires: Wed, 07 Dec 2022 04:54:58 GMT
Last-Modified: Mon, 05 Dec 2022 03:18:28 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 278
www.realhopeoswego.org/files/theme/custom.js?1565969634
200 OK 1.8 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/custom.js?1565969634
IP
Hash 1f7d51d1b0acc9268e8aa57af11ee258
df55901d31c5b1de0181820e1bf123d61b5ec6c6
44ecca81c81024cd199ad979fd0ca46a379978a73a1c9ce09b6dfc9393cceff0
GET /files/theme/custom.js?1565969634 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:46 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 19 Apr 2022 15:56:37 GMT
x-rgw-object-type: Normal
ETag: W/"48e887857aec23f184b0aa49c18d2445"
x-amz-request-id: tx000000000000001b90fc6-0062847c15-b9fbc29-sfo1
X-Storage-Bucket: z0567
X-Storage-Object: 0567021bc3973d113c6b0b6e68d0e9a8b53f38a7f60716c83214a133cc00139a
X-Host: grn142.sf2p.intern.weebly.net
Content-Encoding: gzip
www.realhopeoswego.org/files/theme/plugins.js?1565969634
200 OK 16 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/plugins.js?1565969634
IP
Hash 43e6b0bb6eb6524188831a282f7656d7
44e73fe367fc1fb8efee7eefac557b7d76ef0f44
9001fcfe93ceab40de4bb3535fc61335318c56d4440b53070cac27a26fef42bb
Analyzer Verdict Alert fortinet Malware
GET /files/theme/plugins.js?1565969634 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:46 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 24 Apr 2022 01:56:38 GMT
x-rgw-object-type: Normal
ETag: W/"2b8d85f1ea01d2c3e8b962eac8d76a5c"
x-amz-request-id: tx000000000000001b40535-0062847a75-b9fbc64-sfo1
X-Storage-Bucket: zb635
X-Storage-Object: b6353ca52760aba4e7547ae9861db68158dc2af0f4febece55e5c775ee4449f5
X-Host: blu61.sf2p.intern.weebly.net
Content-Encoding: gzip
www.realhopeoswego.org/files/theme/fonts/2cd55546-ec00-4af9-aeca-4a3cd186da53.woff2?1665520744
200 OK 17 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/2cd55546-ec00-4af9-aeca-4a3cd186da53.woff2?1665520744
IP
File type Web Open Font Format (Version 2), TrueType, length 16560, version 2.6553\012- data
Hash 27958408325380d903e67d87768563b8
d728e699c79072f1c7b9602c771e241b8c04c8a4
83f8b8932766826c1dd3a228b48f4072586ca09f781d64e2950d9f0e235c00a0
GET /files/theme/fonts/2cd55546-ec00-4af9-aeca-4a3cd186da53.woff2?1665520744 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1665520744
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:46 GMT
Content-Type: font/woff2
Content-Length: 16561
Connection: keep-alive
Last-Modified: Fri, 30 Aug 2019 08:25:03 GMT
ETag: "27958408325380d903e67d87768563b8"
x-amz-request-id: tx000000000000000002739-005ea35a19-10e20e2-las
X-Storage-Bucket: z83f8
X-Storage-Object: 83f8b8932766826c1dd3a228b48f4072586ca09f781d64e2950d9f0e235c00a0
X-Host: blu57.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.digicert.com/
200 OK 279 B IP
Hash c7f4e74a06f5dfbeb7b45be990519b4c
7f39cddaffcb62f141fa3e2f8d0c00eb9847d14e
5547af5a7322ea2c16b5c37f655a5182e53ab4894d7171c188f64b1fa8a09f3f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1390
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:46 GMT
Etag: "638e4c7e-117"
Last-Modified: Tue, 06 Dec 2022 01:33:36 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash c7f4e74a06f5dfbeb7b45be990519b4c
7f39cddaffcb62f141fa3e2f8d0c00eb9847d14e
5547af5a7322ea2c16b5c37f655a5182e53ab4894d7171c188f64b1fa8a09f3f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 852
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:46 GMT
Etag: "638cfafd-117"
Last-Modified: Tue, 06 Dec 2022 01:42:34 GMT
Server: ECS (amb/6B90)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8093
Expires: Tue, 06 Dec 2022 04:11:39 GMT
Date: Tue, 06 Dec 2022 01:56:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg
200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49c08cd33e41826af9dd4a8a912e0ddf
bde85bd98858e4b13484a9cc3263b4db7fb5d348
43471e7b4da8e4e58b842d05cb073ef150ff119eaa6890c86162f03a140459cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5273
x-amzn-requestid: 5ab71aaf-6757-46dc-86fc-0a866958d22f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSz2EqfIAMFqng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e5-15ae9d330e005f547161b4df;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xcEI729NEfORs3fT_fHi-BkyqA1sHl0dA6fAGd9hYkJNePUlM4vKQg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:05:52 GMT
age: 13854
etag: "bde85bd98858e4b13484a9cc3263b4db7fb5d348"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.zbcdn.net/__omnkipv/social_tab/temp2.js
200 OK 40 kB URL HTTP/2 static.zbcdn.net/__omnkipv/social_tab/temp2.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash bc8cd210cb7de5b313b994e3d2bf2382
a778c5dab90c09485367f403f346ee9d22f0096f
d840646e0676f59115b6e299ab24c4b9af0dd80847a986f0262fd818d64b9bc3
GET /__omnkipv/social_tab/temp2.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:46 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 05 Dec 2022 11:13:33 GMT
vary: Accept-Encoding
etag: W/"638dd25d-3a5f8"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 4190
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NspYvbwp3pp9ycXL2rAXHYBPy4McjUPo2QqfvUrPI74XEUD3pz9XBwiqXAf%2FaWkhCcCyV3nw93kJg4LynS0mGzTIMO%2BMY0zXE1KwkExeNzIvz846JHlyHoYMv9BiZzeWzck%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 775168304b881c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f60a6490f38a772dcd50a1132e98e1b
ff254a1df087d2c157d88a6ef04e395dc49efe5e
653e40becd103cd76cc2f194a87e933e8c548d346f87520fefca3b16430fc4ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: c17eff92-da62-4f0f-9e75-2741012ec43a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqFSjoAMFQ6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-61d61d2f0bb01ecb21b809ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i6QasBBRK9APW19sH0DdOipvUJA3gWj0CAMTzt7ejRCOk_V2psz-Xw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:45:47 GMT
age: 15059
etag: "ff254a1df087d2c157d88a6ef04e395dc49efe5e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8055d0db573ab34924db3b60ed788bb2
a4aae05e7a929fc7f652f56748d2a2da9c44ac45
f6a9555f112882d4ac284c6dc26ae0f02f6ccf8ee312615e01ebec8242bade1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 3d4d7dd0-2be0-46c1-a9c0-aa3cce2e8c81
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSvUHhJIAMFZYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c8-63a6960043564aa762caaabe;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XaKRGgDJdys5Ufgv2QasOrlxuXHRnb8dJWc_tHiXa72QvQ-egpRDsQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:25:37 GMT
age: 12669
etag: "a4aae05e7a929fc7f652f56748d2a2da9c44ac45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42536ef2-6e40-4541-ac60-0ff74058daa7.png
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42536ef2-6e40-4541-ac60-0ff74058daa7.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5e953213b7b13b8ee202406147fac52
67a09d8cd23ed444667b225f7fbf4bb17b9f42dd
cf6b2502f0a992148f9401c16a329cae5a6c21fb81f03131f3e69c58bc608110
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42536ef2-6e40-4541-ac60-0ff74058daa7.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15732
x-amzn-requestid: 7467ddb0-b9f9-47e9-ac31-c7599fe45698
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csVIIESBIAMFU6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e689a-79e3f8b66e1cf72f3283ac5b;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:54:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3seQ7H4qrlKKpuIWUobiey92ZMkB4jWqd5v6T6379g0V0y6XdVFvWQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:21 GMT
age: 12865
etag: "67a09d8cd23ed444667b225f7fbf4bb17b9f42dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 38b97436af942d5eb1111ca7043259a0
0234fe32c84c4711f0619714f3ac6d3db1b717d3
a76a7721355abbaecd5c8cb5218e7e4626dc345eb26e7541c71bf4ceaa7ae5d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11175
x-amzn-requestid: 9c93ddca-1247-44af-a364-e617f69ace26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSzYEnEoAMFa2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e2-7d38ea383725901524bc2ca0;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jqWuNfsDgPOsqxlX2HGJdhXm9GnGC-TBafSbSCrztICFgEwcyqc_iA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:22 GMT
age: 12864
etag: "0234fe32c84c4711f0619714f3ac6d3db1b717d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash c7f4e74a06f5dfbeb7b45be990519b4c
7f39cddaffcb62f141fa3e2f8d0c00eb9847d14e
5547af5a7322ea2c16b5c37f655a5182e53ab4894d7171c188f64b1fa8a09f3f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=151072
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:46 GMT
Etag: "638e4c7e-117"
Expires: Wed, 07 Dec 2022 19:54:38 GMT
Last-Modified: Mon, 05 Dec 2022 19:54:38 GMT
Server: nginx
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5006b8e985c5838b7fd2f2b558a65bc4
183ff15e0faedf346305fd6fe1c70c9c7a1eef4a
fcbfec9f5fd0e10d44778c1df64d8612281cd39881cdfd0aa8ca30d13655655a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?_=1670291803984
200 OK 553 B URL HTTP/2 www.google.com/recaptcha/api.js?_=1670291803984
IP
File type ASCII text, with very long lines (850), with no line terminators
Hash 1309ff133720d219cc98090d66a051ed
b96fc5a893e42be16d687d7abdecdb13d348a019
358683c66634ea5ee3021c93111d8621d583880bcbbfadf3ec2ff87a15ea1038
GET /recaptcha/api.js?_=1670291803984 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 06 Dec 2022 01:56:46 GMT
date: Tue, 06 Dec 2022 01:56:46 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/29573050-10155679475053318-4597406936829406111-n.jpg?1552863936
200 OK 46 kB URL HTTP/1.1 www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/29573050-10155679475053318-4597406936829406111-n.jpg?1552863936
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 718x405, components 3\012- data
Hash eb53df0cfd9c2f20d63c92fcba3f8141
45526f4223b803162fb53ee265b8d4d0a28d0a60
4ae3478d139c40b24a3627f698e7c85ac4dda5fe9f40ecf8dba1834fda1d833e
Analyzer Verdict Alert fortinet Malware
GET /uploads/1/2/4/0/124018328/published/29573050-10155679475053318-4597406936829406111-n.jpg?1552863936 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:46 GMT
Content-Type: image/jpeg
Content-Length: 46392
Connection: keep-alive
Last-Modified: Sun, 17 Mar 2019 23:05:36 GMT
x-rgw-object-type: Normal
ETag: "eb53df0cfd9c2f20d63c92fcba3f8141"
x-amz-request-id: tx000000000000042182cdb-00638ea15e-c699baa-sfo1
X-Storage-Bucket: z4ae3
X-Storage-Object: 4ae3478d139c40b24a3627f698e7c85ac4dda5fe9f40ecf8dba1834fda1d833e
X-Host: blu122.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.realhopeoswego.org/files/theme/fonts/7377dbe6-f11a-4a05-b33c-bc8ce1f60f84.woff2?1665520744
200 OK 19 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/7377dbe6-f11a-4a05-b33c-bc8ce1f60f84.woff2?1665520744
IP
File type Web Open Font Format (Version 2), TrueType, length 18964, version 2.6553\012- data
Hash 03eed84923bfc319da88de04298fa495
9b4e82ce10dc1ae528d53e22045df8610e5f3dcc
0f7cae04d4ab4ba9c1bceb2a59ab9dcd925103f186c6c430cf5d9ab032c18128
GET /files/theme/fonts/7377dbe6-f11a-4a05-b33c-bc8ce1f60f84.woff2?1665520744 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1665520744
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:46 GMT
Content-Type: font/woff2
Content-Length: 18965
Connection: keep-alive
Last-Modified: Fri, 30 Aug 2019 08:25:13 GMT
x-rgw-object-type: Normal
ETag: "03eed84923bfc319da88de04298fa495"
x-amz-request-id: tx000000000000001ac6203-00628479bb-b9fbc77-sfo1
X-Storage-Bucket: z0f7c
X-Storage-Object: 0f7cae04d4ab4ba9c1bceb2a59ab9dcd925103f186c6c430cf5d9ab032c18128
X-Host: grn133.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/coins-912719-1920.jpg?1553259709
200 OK 27 kB URL HTTP/1.1 www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/coins-912719-1920.jpg?1553259709
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 384x256, components 3\012- data
Hash 8411fa9dbec3a40fd8f70bdd819d3102
5a2707cdf3b2d6a0017a22de13c8eebd0494e792
a8391ed95fc3358d1ff6263c2501dc396ec2b9451a7afefa9bb973b7a5c2e03c
GET /uploads/1/2/4/0/124018328/published/coins-912719-1920.jpg?1553259709 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:46 GMT
Content-Type: image/jpeg
Content-Length: 27421
Connection: keep-alive
Last-Modified: Fri, 22 Mar 2019 13:01:49 GMT
x-rgw-object-type: Normal
ETag: "8411fa9dbec3a40fd8f70bdd819d3102"
x-amz-request-id: tx00000000000004138bb43-00638ea15e-c67eadd-sfo1
X-Storage-Bucket: za839
X-Storage-Object: a8391ed95fc3358d1ff6263c2501dc396ec2b9451a7afefa9bb973b7a5c2e03c
X-Host: blu80.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/25734117-10155425686983318-5089469130545338446-o.jpg?1552863824
200 OK 83 kB URL HTTP/1.1 www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/25734117-10155425686983318-5089469130545338446-o.jpg?1552863824
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1065x601, components 3\012- data
Hash 95b654c7fd06451c884e1a9eda521ae3
590155158783a917ccbd8520e627897200c12a65
321a9c42091a3f28cc99190be88d246f8acc38ae31d1fd9021ee2ffd639ec15e
Analyzer Verdict Alert fortinet Malware
GET /uploads/1/2/4/0/124018328/published/25734117-10155425686983318-5089469130545338446-o.jpg?1552863824 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:46 GMT
Content-Type: image/jpeg
Content-Length: 82857
Connection: keep-alive
Last-Modified: Sun, 17 Mar 2019 23:03:44 GMT
x-rgw-object-type: Normal
ETag: "95b654c7fd06451c884e1a9eda521ae3"
x-amz-request-id: tx0000000000000425ba6ef-00638ea15e-c695612-sfo1
X-Storage-Bucket: z321a
X-Storage-Object: 321a9c42091a3f28cc99190be88d246f8acc38ae31d1fd9021ee2ffd639ec15e
X-Host: grn76.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/files/theme/fonts/1e9892c0-6927-4412-9874-1b82801ba47a.woff?1665520744
200 OK 21 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/1e9892c0-6927-4412-9874-1b82801ba47a.woff?1665520744
IP
File type Web Open Font Format, TrueType, length 20709, version 1.0\012- data
Hash 9df5efadcd24b83511f3c339178210d8
74f67081083ebd94979f50e681df20bfbdc4cd8d
0d887fc553f2b9a6488c8bbdeb38d0e70e2da58d5bb34161d32f683af096fdb8
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/1e9892c0-6927-4412-9874-1b82801ba47a.woff?1665520744 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1665520744
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:47 GMT
Content-Type: font/woff
Content-Length: 20710
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:43 GMT
x-rgw-object-type: Normal
ETag: "9df5efadcd24b83511f3c339178210d8"
x-amz-request-id: tx000000000000001b743b9-0062847a81-b9fbc29-sfo1
X-Storage-Bucket: z0d88
X-Storage-Object: 0d887fc553f2b9a6488c8bbdeb38d0e70e2da58d5bb34161d32f683af096fdb8
X-Host: grn87.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/files/theme/fonts/2e3f5cb9-101f-46cf-a7b3-dfaa58261e03.woff2?1665520744
200 OK 19 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/2e3f5cb9-101f-46cf-a7b3-dfaa58261e03.woff2?1665520744
IP
File type Web Open Font Format (Version 2), TrueType, length 18636, version 2.6553\012- data
Hash b3aa7e2126c418e820b06924717c2ce9
35e12e34fb21fd08390027dbf0a9975c1444e863
cace42567eefa76edc8b069bb9cdf9fda7486243911fa88188efb2efca387a4a
GET /files/theme/fonts/2e3f5cb9-101f-46cf-a7b3-dfaa58261e03.woff2?1665520744 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1665520744
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:47 GMT
Content-Type: font/woff2
Content-Length: 18637
Connection: keep-alive
Last-Modified: Fri, 30 Aug 2019 08:25:04 GMT
ETag: "b3aa7e2126c418e820b06924717c2ce9"
x-amz-request-id: tx00000000000000000181b-005ea35a17-10e20e2-las
X-Storage-Bucket: zcace
X-Storage-Object: cace42567eefa76edc8b069bb9cdf9fda7486243911fa88188efb2efca387a4a
X-Host: blu57.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/files/theme/fonts/92b66dbd-4201-4ac2-a605-4d4ffc8705cc.woff?1665520744
200 OK 25 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/92b66dbd-4201-4ac2-a605-4d4ffc8705cc.woff?1665520744
IP
File type Web Open Font Format, TrueType, length 25168, version 1.0\012- data
Hash 2f4c2c07910a4f4c70e95bbb7859f28e
1e95b73f1e87373b532928dd4a298a904ee440e9
f78c119c0807a2140e669a0e114ae2addcd782c948c91c25639e6eccfa6d08af
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/92b66dbd-4201-4ac2-a605-4d4ffc8705cc.woff?1665520744 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1665520744
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=b2cceea8-d954-4fae-8253-b5844fb6a0a7.1670291804.1.1670291804.1670291804.001d1eec-9938-4a56-8d50-6add3e71728d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:47 GMT
Content-Type: font/woff
Content-Length: 25169
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:44 GMT
ETag: "2f4c2c07910a4f4c70e95bbb7859f28e"
x-amz-request-id: tx0000000000000000bf793-0061627ae1-1ff9432-las
X-Storage-Bucket: zf78c
X-Storage-Object: f78c119c0807a2140e669a0e114ae2addcd782c948c91c25639e6eccfa6d08af
X-Host: blu47.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 5d87861fe3cd1580dd70157e91762a05
3302860c825dfeeb9d80dae555b0c0472708386f
aeae8e4e774441e9013bff05b8281086794dd85207ba46055721e4b83d9356b2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=146649
Date: Tue, 06 Dec 2022 01:56:47 GMT
Etag: "638e2da3-1d7"
Expires: Wed, 07 Dec 2022 18:40:56 GMT
Last-Modified: Mon, 05 Dec 2022 17:42:59 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yH-_ss0c6I-b6zsx9PXYJ_zFr1QCPm3Yp4iScaqSOw2XlRx0kzjTNg==
Age: 3478
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 5d87861fe3cd1580dd70157e91762a05
3302860c825dfeeb9d80dae555b0c0472708386f
aeae8e4e774441e9013bff05b8281086794dd85207ba46055721e4b83d9356b2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=146591
Date: Tue, 06 Dec 2022 01:56:47 GMT
Etag: "638e2da3-1d7"
Expires: Wed, 07 Dec 2022 18:39:58 GMT
Last-Modified: Mon, 05 Dec 2022 17:42:59 GMT
Server: ECS (nyb/1DCD)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JbX3ZhkKh4obQnfQ97nkv_H-psUZ1Bwt5MI1WfUp-aQxl9rmgz8XyA==
Age: 3419
www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/10858566-10205580632342086-5385752792553485738-n.jpg?1552863841
200 OK 99 kB URL HTTP/1.1 www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/10858566-10205580632342086-5385752792553485738-n.jpg?1552863841
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 956x539, components 3\012- data
Hash dbdffe3d579eb4701cf8689796f59e61
722cfa822fd11e002b2f8119ca43440831142e96
5fda61389dfb65cab1202471bfe4d2f846d1af26e23736afeb0d5fd0f714e965
Analyzer Verdict Alert fortinet Malware
GET /uploads/1/2/4/0/124018328/published/10858566-10205580632342086-5385752792553485738-n.jpg?1552863841 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:46 GMT
Content-Type: image/jpeg
Content-Length: 99250
Connection: keep-alive
Last-Modified: Sun, 17 Mar 2019 23:04:01 GMT
x-rgw-object-type: Normal
ETag: "dbdffe3d579eb4701cf8689796f59e61"
x-amz-request-id: tx00000000000004215dde3-00638ea15e-c669cc6-sfo1
X-Storage-Bucket: z5fda
X-Storage-Object: 5fda61389dfb65cab1202471bfe4d2f846d1af26e23736afeb0d5fd0f714e965
X-Host: grn87.sf2p.intern.weebly.net
Accept-Ranges: bytes
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.realhopeoswego.org/
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:47 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.realhopeoswego.org
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 600
X-Firefox-Spdy: h2
www.realhopeoswego.org/files/theme/fonts/46cf1067-688d-4aab-b0f7-bd942af6efd8.ttf?1665520744
200 OK 39 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/46cf1067-688d-4aab-b0f7-bd942af6efd8.ttf?1665520744
IP
File type TrueType Font data, 16 tables, 1st "GPOS", 26 names, Macintosh, Copyright \251 2004 - 2007 Linotype GmbH, www.linotype.com. All rights reserved. This font softw\012- data
Hash 98f6dacde86ebbaac7cc62b34a6e54cf
d232a9249b6f39e7d35ce6a555e070987357acc9
65032d5699bf3d4deb4313aa4d1bb8375053ac7e93dfb4bf631ce9261da20c2b
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/46cf1067-688d-4aab-b0f7-bd942af6efd8.ttf?1665520744 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1665520744
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=b2cceea8-d954-4fae-8253-b5844fb6a0a7.1670291804.1.1670291804.1670291804.001d1eec-9938-4a56-8d50-6add3e71728d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:47 GMT
Content-Type: font/ttf
Content-Length: 39185
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:44 GMT
ETag: "98f6dacde86ebbaac7cc62b34a6e54cf"
x-amz-request-id: tx0000000000000004976c1-005eaa6ae2-1100fc6-las
X-Storage-Bucket: z6503
X-Storage-Object: 65032d5699bf3d4deb4313aa4d1bb8375053ac7e93dfb4bf631ce9261da20c2b
X-Host: blu48.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/files/theme/fonts/fa19948e-5e38-4909-b31e-41acd170d6f2.woff?1665520744
200 OK 25 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/fa19948e-5e38-4909-b31e-41acd170d6f2.woff?1665520744
IP
File type Web Open Font Format, TrueType, length 24663, version 1.0\012- data
Hash 921592aa07f703ed55036aed49590184
c8eb56bca4fcb3a715b408f15ecd71df0f415e39
304fdd345e780b7dbb6c6e6bc39d24e906e40ac2a618bc78ff81abc769f9b4ae
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/fa19948e-5e38-4909-b31e-41acd170d6f2.woff?1665520744 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1665520744
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=b2cceea8-d954-4fae-8253-b5844fb6a0a7.1670291804.1.1670291804.1670291804.001d1eec-9938-4a56-8d50-6add3e71728d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:47 GMT
Content-Type: font/woff
Content-Length: 24664
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:43 GMT
x-rgw-object-type: Normal
ETag: "921592aa07f703ed55036aed49590184"
x-amz-request-id: tx000000000000001b40533-0062847a75-b9fbc64-sfo1
X-Storage-Bucket: z304f
X-Storage-Object: 304fdd345e780b7dbb6c6e6bc39d24e906e40ac2a618bc78ff81abc769f9b4ae
X-Host: grn133.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/files/theme/fonts/18839597-afa8-4f0b-9abb-4a30262d0da8.ttf?1665520744
200 OK 52 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/18839597-afa8-4f0b-9abb-4a30262d0da8.ttf?1665520744
IP
File type TrueType Font data, 16 tables, 1st "GPOS", 30 names, Macintosh, Copyright \251 2004 - 2007 Linotype GmbH, www.linotype.com. All rights reserved. This font softw\012- data
Hash 0e7e6446b2256e0cab1eda85655b253e
db15e8b7df5ee737e4960e0190af1ceaed74d5ac
a4e7a777a8d0e1a06feffaff42f025b9d8d890ca1df6f46d84f5da810109f5c0
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/18839597-afa8-4f0b-9abb-4a30262d0da8.ttf?1665520744 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1665520744
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=b2cceea8-d954-4fae-8253-b5844fb6a0a7.1670291804.1.1670291804.1670291804.001d1eec-9938-4a56-8d50-6add3e71728d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:47 GMT
Content-Type: font/ttf
Content-Length: 52433
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:43 GMT
x-rgw-object-type: Normal
ETag: "0e7e6446b2256e0cab1eda85655b253e"
x-amz-request-id: tx000000000000001b3c083-0062847c15-b9fbc7f-sfo1
X-Storage-Bucket: za4e7
X-Storage-Object: a4e7a777a8d0e1a06feffaff42f025b9d8d890ca1df6f46d84f5da810109f5c0
X-Host: blu61.sf2p.intern.weebly.net
Accept-Ranges: bytes
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1793
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:47 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=c97dd765-7a50-4dd9-91b1-3f54fc153cc0; Expires=Wed, 06 Dec 2023 01:56:47 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.realhopeoswego.org
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.realhopeoswego.org/files/theme/fonts/6de0ce4d-9278-467b-b96f-c1f5f0a4c375.ttf?1665520744
200 OK 52 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/6de0ce4d-9278-467b-b96f-c1f5f0a4c375.ttf?1665520744
IP
File type TrueType Font data, 16 tables, 1st "GPOS", 32 names, Macintosh, Copyright \251 2004 - 2007 Linotype GmbH, www.linotype.com. All rights reserved. This font softw\012- data
Hash 86cbf50e12da0b519ced148acd8ba2b4
f1d8b59433f059a54232b2db2cba4c17e455da1e
7118fcc9995d78a79c6a13eca290b043acd29399680aae376df5e95bc537fbd3
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/6de0ce4d-9278-467b-b96f-c1f5f0a4c375.ttf?1665520744 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1665520744
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=b2cceea8-d954-4fae-8253-b5844fb6a0a7.1670291804.1.1670291804.1670291804.001d1eec-9938-4a56-8d50-6add3e71728d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:47 GMT
Content-Type: font/ttf
Content-Length: 52269
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:44 GMT
x-rgw-object-type: Normal
ETag: "86cbf50e12da0b519ced148acd8ba2b4"
x-amz-request-id: tx000000000000001b56cf6-0062848234-b9fbc77-sfo1
X-Storage-Bucket: z7118
X-Storage-Object: 7118fcc9995d78a79c6a13eca290b043acd29399680aae376df5e95bc537fbd3
X-Host: grn140.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5f16a534222e5749ef240d413826c2f6
11683d84d420dd6f919425094edb8961278f7fed
691ebf7feb1f7d6ae7e5e7efd678626c62042dda520506f262c7d9a67a48e3ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.google-analytics.com/ga.js
200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Tue, 06 Dec 2022 00:17:12 GMT
expires: Tue, 06 Dec 2022 02:17:12 GMT
cache-control: public, max-age=7200
age: 5976
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.zbcdn.net/__omnkipv/asset/script/qrcode.js
200 OK 170 kB URL HTTP/2 static.zbcdn.net/__omnkipv/asset/script/qrcode.js
IP
File type ASCII text, with very long lines (19629), with no line terminators
Size 170 kB (170015 bytes)
Hash a9dc425378761068ada24099ab134236
41674041b5496cd368396d607f0f719957110418
3073ecca68b6487ed574fc8f18be5bb6cc7578a5c841d29b17692be45dacee77
GET /__omnkipv/asset/script/qrcode.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 05 Dec 2022 11:13:33 GMT
vary: Accept-Encoding
etag: W/"638dd25d-4cad"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 3807
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Iyr%2BernBhBZh3cTb5dkjEFlGbIIXvVuye1Js5YFUkm53ldL7eWPpeYouxGVtGdsb2QjJhrEEAqt6yW9DScCn%2BcHnUpWVFAuXnBnqSvIdU1ql1G00yVyfn%2B1msAwcZC4rxdE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77516836dd311c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5f16a534222e5749ef240d413826c2f6
11683d84d420dd6f919425094edb8961278f7fed
691ebf7feb1f7d6ae7e5e7efd678626c62042dda520506f262c7d9a67a48e3ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.realhopeoswego.org/favicon.ico
200 OK 4.3 kB URL HTTP/1.1 www.realhopeoswego.org/favicon.ico
IP
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 4d27526198ac873ccec96935198e0fb9
b98d8b73ad6a0f7477c3397561b4aab37bf262aa
40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
GET /favicon.ico HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=b2cceea8-d954-4fae-8253-b5844fb6a0a7.1670291804.1.1670291804.1670291804.001d1eec-9938-4a56-8d50-6add3e71728d; _ZB_STATIC_1196806_TS=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 01:56:48 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000000c7f3c4-0061a705d8-a9f6a62-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: grn76.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
200 OK 348 B URL HTTP/1.1 www.realhopeoswego.org/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP
File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Hash a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
Analyzer Verdict Alert fortinet Malware
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=b2cceea8-d954-4fae-8253-b5844fb6a0a7.1670291804.1.1670291804.1670291804.001d1eec-9938-4a56-8d50-6add3e71728d; _ZB_STATIC_1196806_TS=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 01:56:48 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu34.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=74
Connection: Keep-Alive
Content-Type: application/json
ocsp.digicert.com/
200 OK 279 B IP
Hash b9e460c077e837add10b7e423b149f6e
cde6854da1c7108d3d6c8184f9a39d2d20ba0c78
874a4babc2bf54d880f94425142d3cce3151d964efd54c8bffec992b064c1be3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1223
Cache-Control: max-age=105891
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:48 GMT
Etag: "638d973c-117"
Expires: Wed, 07 Dec 2022 07:21:39 GMT
Last-Modified: Mon, 05 Dec 2022 07:01:16 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 471 B IP
Hash 6cbf9c21148463ab7d6f0b0c2a55c230
813bf3a12f65c3cb4935576fb8b1a8ea6134215f
16939807204e03c683c2779d288d20c35ef2d4d2f829726545a1226736062e1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6471
Cache-Control: max-age=129487
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:48 GMT
Etag: "638ddee8-1d7"
Expires: Wed, 07 Dec 2022 13:54:55 GMT
Last-Modified: Mon, 05 Dec 2022 12:07:04 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 279 B IP
Hash 4cdba5d98330b54bb686fdfc5d6de679
c0028d54482e7776a6c68cca94a27b24dd4849df
3dc0f806bae6a63f735e109f9a91a706e0ec6bafe2def1900a03252942206eea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6022
Cache-Control: max-age=152410
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:48 GMT
Etag: "638e3a34-117"
Expires: Wed, 07 Dec 2022 20:16:58 GMT
Last-Modified: Mon, 05 Dec 2022 18:36:36 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash 4cdba5d98330b54bb686fdfc5d6de679
c0028d54482e7776a6c68cca94a27b24dd4849df
3dc0f806bae6a63f735e109f9a91a706e0ec6bafe2def1900a03252942206eea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3843
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:48 GMT
Etag: "638e3a34-117"
Last-Modified: Tue, 06 Dec 2022 00:52:45 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash 4cdba5d98330b54bb686fdfc5d6de679
c0028d54482e7776a6c68cca94a27b24dd4849df
3dc0f806bae6a63f735e109f9a91a706e0ec6bafe2def1900a03252942206eea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6022
Cache-Control: max-age=152410
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:48 GMT
Etag: "638e3a34-117"
Expires: Wed, 07 Dec 2022 20:16:58 GMT
Last-Modified: Mon, 05 Dec 2022 18:36:36 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash 4cdba5d98330b54bb686fdfc5d6de679
c0028d54482e7776a6c68cca94a27b24dd4849df
3dc0f806bae6a63f735e109f9a91a706e0ec6bafe2def1900a03252942206eea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3843
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:48 GMT
Etag: "638e3a34-117"
Last-Modified: Tue, 06 Dec 2022 00:52:45 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
cdn.jsdelivr.net/npm/jquery@1.11.2/dist/jquery.min.js
200 OK 33 kB URL HTTP/2 cdn.jsdelivr.net/npm/jquery@1.11.2/dist/jquery.min.js
IP
File type ASCII text, with very long lines (32047)
Hash 63e182df0883a4702e8db066451bdba0
993f0816fd2c8286c0f59df00e2697d6f7ad25cb
b9c375a13d4fa1e14ba88460ddb93ac9d380e77965cceb203145127f6ea82961
GET /npm/jquery@1.11.2/dist/jquery.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.11.2
x-jsd-version-type: version
etag: W/"176de-sz7jtCuYju+dTWJJW25U4j3WQv0"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 06 Dec 2022 01:56:48 GMT
age: 13307465
x-served-by: cache-fra19169-FRA, cache-bma1622-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33348
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 4cdba5d98330b54bb686fdfc5d6de679
c0028d54482e7776a6c68cca94a27b24dd4849df
3dc0f806bae6a63f735e109f9a91a706e0ec6bafe2def1900a03252942206eea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6059
Cache-Control: max-age=152447
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:48 GMT
Etag: "638e3a34-117"
Expires: Wed, 07 Dec 2022 20:17:35 GMT
Last-Modified: Mon, 05 Dec 2022 18:36:36 GMT
Server: ECS (amb/6B7C)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash b9e460c077e837add10b7e423b149f6e
cde6854da1c7108d3d6c8184f9a39d2d20ba0c78
874a4babc2bf54d880f94425142d3cce3151d964efd54c8bffec992b064c1be3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1223
Cache-Control: max-age=105891
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:48 GMT
Etag: "638d973c-117"
Expires: Wed, 07 Dec 2022 07:21:39 GMT
Last-Modified: Mon, 05 Dec 2022 07:01:16 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
Hash 7ab2840f56d3adbc1fd852ae978f4bae
28304d04e0038d0e625fc67bedaae69d93d55367
f9b905153936e4b2313ace1f78b2fefdad7b9971875337871dbf64f8ee47a77c
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 01:56:48 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "1EDEEADF6B82EC960A5AEB3333A7A891D8D55F36"
Expires: Tue, 06 Dec 2022 12:00:00 GMT
Last-Modified: Tue, 06 Dec 2022 00:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3474
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7751683e2c9db527-OSL
ocsp.digicert.com/
200 OK 279 B IP
Hash 4cdba5d98330b54bb686fdfc5d6de679
c0028d54482e7776a6c68cca94a27b24dd4849df
3dc0f806bae6a63f735e109f9a91a706e0ec6bafe2def1900a03252942206eea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3844
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:49 GMT
Etag: "638e3a34-117"
Last-Modified: Tue, 06 Dec 2022 00:52:45 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
static.zbcdn.net/__omnkipv/asset/font/Zotabox3/ztb3.woff
200 OK 43 kB URL HTTP/2 static.zbcdn.net/__omnkipv/asset/font/Zotabox3/ztb3.woff
IP
File type Web Open Font Format, TrueType, length 42552, version 1.0\012- data
Hash 8fc96ab697fe06015e3e0ff21e17552f
8753f45c0152e4c72206a6b11e2c193539ec0091
a663045428dde255621d1cb17237dab68c89d45624bb0e6fa96a0b9a65921004
GET /__omnkipv/asset/font/Zotabox3/ztb3.woff HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:49 GMT
content-type: application/font-woff
content-length: 42552
last-modified: Mon, 05 Dec 2022 11:04:24 GMT
etag: "638dd038-a638"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jh2R3ZcdqJvJOcuhgXj83eVnj1ws4p9fBzpD9sPsSg6JnxNGk9OG0IW3%2Bt43u5OXXnbg5twlFrKB59dmSMRgdHJTs4XQxXNb1WkdUSdTYGcza0c8mt4sNPB2gx1Im7%2BUIo8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7751683aaea51c0e-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=14579ba48d
200 OK 54 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=14579ba48d
IP
File type ASCII text, with very long lines (65397)
Hash dc9270247a97f75913a5d8934c24de03
ed9b0fa01b552571f99d529ed355b2ba91cfc48d
847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8
GET /releases/v5.15.4/css/pro.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:49 GMT
content-type: text/css
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 15735889
accept-ranges: bytes
server: cloudflare
cf-ray: 7751684148971c0e-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d
200 OK 2.6 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d
IP
File type ASCII text, with very long lines (27832)
Hash eaaabd3f60063923cd5333eb1d7a20a1
0da69706105e28896a1f6eeaa91d5bec1b82f7f1
f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:49 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 8027883
accept-ranges: bytes
server: cloudflare
cf-ray: 7751684148981c0e-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d
200 OK 4.2 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d
IP
File type ASCII text, with very long lines (26366)
Hash 7fd743485fa194e25e2a207bff6c258a
97c999d752b95ee1ed6271a29aa58109dc17281e
dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc
GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:49 GMT
content-type: text/css
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 531265
accept-ranges: bytes
server: cloudflare
cf-ray: 7751684168a21c0e-OSL
X-Firefox-Spdy: h2
js-agent.newrelic.com/nr-1184.min.js
200 OK 11 kB URL HTTP/2 js-agent.newrelic.com/nr-1184.min.js
IP
File type ASCII text, with very long lines (27995), with no line terminators
Hash 43e0aec0456ae54841a52fe989abb1ec
d9e080d86beada72e9e42092bede868db3d4aee4
9d7ecd792af230cea192e0786491921415d809686321da7414b3df85d875de07
GET /nr-1184.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Svo5nu50yzSdKTW4BnQjCw/Xb+hdOjFFWnYtB1O9HadEu2JcsgfFPtp6qjwpjfQrw7hM8mGG3NI=
x-amz-request-id: GWSF72488WT91CS4
last-modified: Mon, 28 Sep 2020 16:34:45 GMT
etag: "3d7f312be60d08a2568e311e4762f3af"
x-amz-version-id: null
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Tue, 06 Dec 2022 01:56:49 GMT
via: 1.1 varnish
x-served-by: cache-bma1630-BMA
x-cache: HIT
x-cache-hits: 9
x-timer: S1670291810.645801,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 10624
X-Firefox-Spdy: h2
bam.nr-data.net/1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1326&ck=1&ref=https://www.powr.io/plugins/social-feed/cached_view&be=729&fe=1123&dc=1114&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1670291805544,%22n%22:0,%22f%22:1,%22dn%22:1,%22dne%22:1,%22c%22:1,%22s%22:1,%22ce%22:1,%22rq%22:16,%22rp%22:490,%22rpe%22:490,%22dl%22:498,%22di%22:1070,%22ds%22:1087,%22de%22:1114,%22dc%22:1123,%22l%22:1123,%22le%22:1126%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken
200 OK 73 B URL HTTP/1.1 bam.nr-data.net/1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1326&ck=1&ref=https://www.powr.io/plugins/social-feed/cached_view&be=729&fe=1123&dc=1114&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1670291805544,%22n%22:0,%22f%22:1,%22dn%22:1,%22dne%22:1,%22c%22:1,%22s%22:1,%22ce%22:1,%22rq%22:16,%22rp%22:490,%22rpe%22:490,%22dl%22:498,%22di%22:1070,%22ds%22:1087,%22de%22:1114,%22dc%22:1123,%22l%22:1123,%22le%22:1126%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken
IP
File type ASCII text, with no line terminators
Hash 516a128bb6000ca8154792678f4333fb
41d0257bea96afd36c6f3e40fcfdc9ca247f8e01
9fa62b52f24b87a40410fe842cb9be494abed114a2eac2eb406c8b4a4d372d10
GET /1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1326&ck=1&ref=https://www.powr.io/plugins/social-feed/cached_view&be=729&fe=1123&dc=1114&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1670291805544,%22n%22:0,%22f%22:1,%22dn%22:1,%22dne%22:1,%22c%22:1,%22s%22:1,%22ce%22:1,%22rq%22:16,%22rp%22:490,%22rpe%22:490,%22dl%22:498,%22di%22:1070,%22ds%22:1087,%22de%22:1114,%22dc%22:1123,%22l%22:1123,%22le%22:1126%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 01:56:49 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 7751684328a0b51d-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=fc7a368d3039ac69; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
www.powr.io/plugins/social-feed/view.json?powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&external_type=weebly-integrated
200 OK 6.6 kB URL HTTP/2 www.powr.io/plugins/social-feed/view.json?powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&external_type=weebly-integrated
IP
File type JSON data\012- , ASCII text, with very long lines (14259), with no line terminators
Hash d1c47fcdc684f7771c1d1ed29ef8a3fa
df1441f63e495d73ee154282784467aeba25fe69
e1b366ba3c52cc7a800519d8cb2b8e2c7db6d308f69bb94c76f20d04a6ed5a78
GET /plugins/social-feed/view.json?powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&external_type=weebly-integrated HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: pDWEi7qO1Kagow-PRPuYAT09cqyQrQqfelsX-wi7UrxbwWTOBm2HWcJzFYX0RAef5cLQOIXDmAn0owC6GqQPqw
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=https%3A%2F%2Fwww.realhopeoswego.org%2F
Cookie: __cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JP6FHCUToG54o
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:49 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-credentials: true
vary: Accept-Encoding
etag: W/"0b127d2301b39fb10c618e94b62cd0ca"
cache-control: max-age=0, private, must-revalidate
set-cookie: src=https%3A%2F%2Fwww.powr.io%2Fplugins%2Fsocial-feed%2Fcached_view%3Fload%3Dsync%26index%3D0%26unique_label%3D%26powr_token%3Dweebly_924604842104570874%26user_label%3Dweebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97%26demo_mode%3Dfalse%26isCookieAllowed%3Dundefined%26external_type%3Dweebly-integrated%26template_powr_token%3D%26request_url%3Dhttps%253A%252F%252Fwww.realhopeoswego.org%252F; path=/; expires=Fri, 06 Jan 2023 01:56:49 GMT; secure; SameSite=None
unique_id=426e729f_1670291809; path=/; secure; SameSite=None
editables=; path=/; secure; SameSite=None
POWR_PRODUCTION=Mo7gT18uqRyYvZpvA8PbXYw1PFU2idDoHLdcdb8Bhcl12vxt%2FjUxH7VlOw4GjdoBRSAaDmQqkKAcQqx9adznkHPBktOlUjQeujk0IYD%2FTc9bWQYGyuGmDAkUwgYYcBIaJMS34Ion2Sxzm6SPwPfLX3xvn%2FZ%2BadAC8V%2F6VlJaYPIIpZO82%2BGGGz0vdYWDwlm6N3Gtgy6Oqw%3D%3D--ZvAvpK6mTAzlsxua--xtBiYkX6RNWvkrbwjBpBBA%3D%3D; domain=.powr.io; path=/; secure; HttpOnly; SameSite=None
x-request-id: 08b83542-4a42-40fe-96f5-3c6f119055cc
x-runtime: 0.100710
x-origin-instance: heroku
via: 1.1 vegur
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 775168411ec0b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
public.powrcdn.com/fonts/gordita/gordita-regular-webfont-woff.woff
200 OK 42 kB URL HTTP/2 public.powrcdn.com/fonts/gordita/gordita-regular-webfont-woff.woff
IP
File type Web Open Font Format, TrueType, length 31148, version 1.0\012- data
Hash bc97722109b1d523672aa5f974aa5786
7aeeeebbbdca9c4effa357a0431ae703dc653483
8ae381ac908a95271de6104eca247da240b3ab3b47d5dd617852db67a42134bb
GET /fonts/gordita/gordita-regular-webfont-woff.woff HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:48 GMT
content-type: application/font-woff
x-amz-id-2: sifKAKBERg3ZET1CMbM1qjLlxQMV+/VsTEDr3coB6Jfp+T+/LvZ9+EcYQrJMiIwf2BUuh2E0nkI=
x-amz-request-id: 20EHP7B2K9DWNY1B
access-control-allow-origin: *
access-control-allow-methods: GET, POST
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 31 May 2021 12:44:51 GMT
x-amz-version-id: hx7AXNg7K1e1RTazyN_0DpBGtio5OElw
etag: W/"951cf61fb8b08593af1d6466359e32fe"
cache-control: max-age=2073600
cf-cache-status: HIT
age: 1906
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Nz1JJPVsGe1QLRLZ5rgTJHLgimGmC0IBnsTGHUeTTnWZoswUkD%2FBBiEIbSHQbB3YdlcDvHPHHOvnn%2Btb%2FaVWYwJD4IaBVbadg2ZufwyGfOS6lhpiWOZ5XfQp%2FHdcgUt8cYb4%2Bsw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7751683de9deb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Hash 08cd0430a44477b06a8b9c2038dc2dd9
e06b54387bd85d5073ea6c6906df23ef16c5b867
90165971c429adb59b38172b894a4687287bf709e19f6a9523a93b97088f37b9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 454976
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/apps-view-7878cac32231a997f8a0.js
200 OK 259 kB URL HTTP/2 public.powrcdn.com/latest/assets/packs/apps-view-7878cac32231a997f8a0.js
IP
File type ASCII text, with very long lines (7793)
Size 259 kB (259419 bytes)
Hash 0155e1ee7ffe5f80cce18f8c8a6a1b3b
fee5ea86347eb3d89986a206c18be55cd1faff31
7958cccaee55c75a3f97b6bf7e51d055130cf277e48d633386766c141db56e3a
GET /latest/assets/packs/apps-view-7878cac32231a997f8a0.js HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:48 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1445355
etag: W/"df791a730cd875670ec446b826116ec8"
last-modified: Fri, 02 Dec 2022 21:39:57 GMT
x-amz-id-2: C3SLfRsFlT0eFrcLgJq31CZdultIaUHqql4Fju2gnrA8RiFII/oz3FjWbJycnXNXhn5xI/rL8XE=
x-amz-request-id: 8AM3B2XN5K73RZSC
x-amz-version-id: F_bS1GG9qiTW0nASzK.A3Whp4Fv41aQL
cache-control: max-age=2073600
cf-cache-status: HIT
age: 420
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S4F2eKw26W3jY6wxFxbyScHz1ml4oBOW8RegP7D6NgFA3PjyhEVP9ZLYhLxUvc7JrcSW1t11NnWcolTOFwfEaliMNCwOuU9oHQbKLYbG6zH5Iv76FQkfKHi1vLVaAz4%2FXMItFmE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7751683dffe9b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:52:55 GMT
expires: Tue, 05 Dec 2023 18:52:55 GMT
cache-control: public, max-age=31536000
age: 25435
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
200 OK 6.9 kB URL HTTP/2 www.youtube.com/iframe_api
IP
File type ASCII text, with very long lines (509)
Hash b5ba3efccfb7a76c07e9b0bd29c2d0c1
8e251000bfe178972ea7bdeab2c98ff0ea441545
d032c904d58aaca8a3aab85aff4e99a549eac86cb514266e8c97e0a1d980ec73
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Tue, 06 Dec 2022 01:56:49 GMT
date: Tue, 06 Dec 2022 01:56:49 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=IUeKlqdqb64; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=OqsgYshTkx4; Domain=.youtube.com; Expires=Sun, 04-Jun-2023 01:56:49 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+024; expires=Thu, 05-Dec-2024 01:56:49 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 72 kB URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 90623498d35fe300a1cb1e7580803926
97d7d0269045bbec74cb3afc909953949311569a
d6f348b00aba19ab1389339a1628e1c7409881c5eda80765042f8215edce7433
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=155844
Date: Tue, 06 Dec 2022 01:56:50 GMT
Etag: "638e4cab-1d7"
Expires: Wed, 07 Dec 2022 21:14:14 GMT
Last-Modified: Mon, 05 Dec 2022 19:55:23 GMT
Server: ECS (nyb/1D06)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 44B3K2S47CPRSTiw2tDJUGVcbkJUV36lhzpS5JOHaXk4Yy_lUmaO4g==
Age: 4731
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 052430344353cfda469a071b4a5e3375
bfcf3157f7ed5be9b287ebea27ffd4279b408d15
eac364e2587aff5451c65bd1b5d044ab5fa12c94cd762bd5163c9e2e5b2b116f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=155951
Date: Tue, 06 Dec 2022 01:56:50 GMT
Etag: "638e4cab-1d7"
Expires: Wed, 07 Dec 2022 21:16:01 GMT
Last-Modified: Mon, 05 Dec 2022 19:55:23 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: W1nHdws3ZrvvPit3UBNwQXTcJ2gar2ZHdmfpdCFBAw2bZmzx0PDAjA==
Age: 4838
powr-counter.herokuapp.com/18118676
200 OK 0 B URL HTTP/1.1 powr-counter.herokuapp.com/18118676
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /18118676 HTTP/1.1
Host: powr-counter.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 06 Dec 2022 01:56:50 GMT
Connection: keep-alive
Content-Type: text/plain
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Transfer-Encoding: chunked
Via: 1.1 vegur
powr-counter.herokuapp.com/18118676
200 OK 1 B URL HTTP/1.1 powr-counter.herokuapp.com/18118676
IP
File type very short file (no magic)
Hash 7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
POST /18118676 HTTP/1.1
Host: powr-counter.herokuapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 606
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Date: Tue, 06 Dec 2022 01:56:50 GMT
Connection: keep-alive
Content-Type: text/plain; charset=utf-8
Etag: W/"36a9e7f1c95b82ffb99743e0c5c4ce95"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: c67e9fe4-dcea-4775-8360-7dfcb2c5972d
X-Runtime: 0.036956
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Vary: Origin
Transfer-Encoding: chunked
Via: 1.1 vegur
ocsp.digicert.com/
200 OK 471 B IP
Hash a179b3b6ab78e29169af8cc2363d6280
501cd2871c5b70c56852c6cd0c87f383504ca933
ceecf34d673dd0d910e3622aa0fa8d84fea748592acc796286c4ec5e76fbc170
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3744
Cache-Control: max-age=134669
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:52 GMT
Etag: "638dfdd1-1d7"
Expires: Wed, 07 Dec 2022 15:21:21 GMT
Last-Modified: Mon, 05 Dec 2022 14:18:57 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash a179b3b6ab78e29169af8cc2363d6280
501cd2871c5b70c56852c6cd0c87f383504ca933
ceecf34d673dd0d910e3622aa0fa8d84fea748592acc796286c4ec5e76fbc170
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1022
Cache-Control: max-age=131947
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:52 GMT
Etag: "638dfdd1-1d7"
Expires: Wed, 07 Dec 2022 14:35:59 GMT
Last-Modified: Mon, 05 Dec 2022 14:18:57 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
scontent-lga3-2.xx.fbcdn.net/v/t39.30808-6/317362252_10159429151123318_330976308899063152_n.jpg?stp=dst-jpg_p720x720&_nc_cat=100&ccb=1-7&_nc_sid=8024bb&_nc_ohc=ybpxLmVs0y0AX-HNoIl&_nc_ht=scontent-lga3-2.xx&edm=AKIiGfEEAAAA&oh=00_AfAk8VsQSMV3DJY4b09EfL0fMiFujOmk9rsPnwo3A4iphA&oe=639424C8
200 OK 105 kB URL HTTP/2 scontent-lga3-2.xx.fbcdn.net/v/t39.30808-6/317362252_10159429151123318_330976308899063152_n.jpg?stp=dst-jpg_p720x720&_nc_cat=100&ccb=1-7&_nc_sid=8024bb&_nc_ohc=ybpxLmVs0y0AX-HNoIl&_nc_ht=scontent-lga3-2.xx&edm=AKIiGfEEAAAA&oh=00_AfAk8VsQSMV3DJY4b09EfL0fMiFujOmk9rsPnwo3A4iphA&oe=639424C8
IP
Size 105 kB (105107 bytes)
Hash 5e3f1875a9e3b03bb6627db3960b270b
1fc3d07c152ec812e25a4638f74d6a70bb1f6251
bdcf39dfc72e2d4215c7a32e8059e2aa15b38fbd49fb862ee83c071defdf4930
GET /v/t39.30808-6/317362252_10159429151123318_330976308899063152_n.jpg?stp=dst-jpg_p720x720&_nc_cat=100&ccb=1-7&_nc_sid=8024bb&_nc_ohc=ybpxLmVs0y0AX-HNoIl&_nc_ht=scontent-lga3-2.xx&edm=AKIiGfEEAAAA&oh=00_AfAk8VsQSMV3DJY4b09EfL0fMiFujOmk9rsPnwo3A4iphA&oe=639424C8 HTTP/1.1
Host: scontent-lga3-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Mon, 28 Nov 2022 19:02:51 GMT
x-haystack-needlechecksum: 1839560147
x-needle-checksum: 1543058513
content-type: image/jpeg
content-length: 69730
content-digest: adler32=1980294133
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 2050670934
date: Tue, 06 Dec 2022 01:56:52 GMT
x-fb-edge-debug: GvXfEOsH4fxyVBzsWPgezfQS7_t_q06w2cufaEr2I5F1qVF3_l2TLxEOP5DbJDeYdQnR5QRN6aay1rkzyP1GjLAChT0h6M94sbdvSVyb8zU
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
outlet.powr.io/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400
200 OK 132 kB URL HTTP/2 outlet.powr.io/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400
IP
File type Unicode text, UTF-8 text, with very long lines (65486), with no line terminators
Size 132 kB (131599 bytes)
Hash 10e3cd58c2f03a5aa687ecc290805d82
ca29fec9e42a754542385335207ece2b5b9723a1
4f30be094fa457645454138dbca21825a8663cea5df97c6f13e76eda70a79afd
GET /social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400 HTTP/1.1
Host: outlet.powr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: pDWEi7qO1Kagow-PRPuYAT09cqyQrQqfelsX-wi7UrxbwWTOBm2HWcJzFYX0RAef5cLQOIXDmAn0owC6GqQPqw
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:51 GMT
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://www.powr.io
vary: Origin
cache-control: public, max-age=3600
via: 1.1 vegur
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 775168475c64b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ca09fa3-9c1c-4e27-b763-2de04564da9d.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ca09fa3-9c1c-4e27-b763-2de04564da9d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 73b9f329cd3a39d0756de62dd5f190b7
0f1c7567b89cc3de60196e47e37879296359bc78
e15711efe27a3d302a9869cf01d27fd65bd0beca9d03a19d93bbf11e28f3e1d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ca09fa3-9c1c-4e27-b763-2de04564da9d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4827
x-amzn-requestid: 9091cc45-8fb1-4b07-8ef9-3f42b85fb81e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSuYH_KIAMFpMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c2-6bf3bf8659ef3feb27c1803f;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fxdYE-ftBwC_0KcBJBQqvUbVXM54TmsKR8QXIfLIhdLYsqtaxdx9tg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:26 GMT
age: 12867
etag: "0f1c7567b89cc3de60196e47e37879296359bc78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.powrcdn.com/images/svgs/logo/powr-logo.svg
200 OK 0 B URL HTTP/2 www.powrcdn.com/images/svgs/logo/powr-logo.svg
IP
GET /images/svgs/logo/powr-logo.svg HTTP/1.1
Host: www.powrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:50 GMT
content-type: image/svg+xml
x-amz-id-2: E/klkNmavKvZoujWodWNqgGpibzYy5k+A8dkX96oeIyjz1uhDnk0TFArSolTKcgcjeAQemqlP+M=
x-amz-request-id: Y0CJH0FADG9B8XQ5
last-modified: Fri, 26 Mar 2021 06:20:16 GMT
x-amz-version-id: tPOfPRlwyUlA2MMIF2d70UQ32pgiXz8o
etag: W/"237728599b40c05c7dcbe278e72918f3"
cache-control: max-age=2073600
cf-cache-status: HIT
age: 69117
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0EeN%2B6fE5INFnTol8pkZ2JNSgwyw2GvTGuyB6s5eqpCbpPCqLpCjm%2FxRBmbceWRyz%2FdXAB8ae7s7pXXngsjgB7TKhPIh1idZJmWVNn4jsK7RwfThsQWbcBWdhMz3D4jjZuw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775168447f16b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.zbcdn.net/__omnkipv/asset/script/jquery.js
200 OK 0 B URL HTTP/2 static.zbcdn.net/__omnkipv/asset/script/jquery.js
IP
GET /__omnkipv/asset/script/jquery.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:48 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 05 Dec 2022 11:09:23 GMT
vary: Accept-Encoding
etag: W/"638dd163-15a50"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xvMZoC5B3kiQHIFBIcT1EZ%2BSPO6pzkvhep8XdJiM9aInShNEoS2CJjMl%2Bg1KeXpCRChzvvBgw6tOUxaUlwqiyF%2FmjJql6D3ZtwmQD8C%2BOFl45Shnde5090IyTEAzIGb%2BRPQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77516836cd2d1c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-4fba8b5d7f2b8b3cf077.css
200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-4fba8b5d7f2b8b3cf077.css
IP
GET /latest/assets/packs/apps/views/socialFeed-4fba8b5d7f2b8b3cf077.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:48 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=288980
etag: W/"c65451da2fca75accfb43ebc98ed908b"
last-modified: Fri, 02 Dec 2022 21:39:57 GMT
x-amz-id-2: DyXKNtTkvuJ+WBxLbhRRUwSCpIQkS82aMB0X69ZlmfM3QX+UA70zJbPeyd6s0LS0izd8qpa4u4k=
x-amz-request-id: 8AMD07RAMXKBV1CM
x-amz-version-id: XkW5FjLLjHexzdS8Z_fnH5r0ASM_j2Ei
cache-control: max-age=2073600
cf-cache-status: HIT
age: 7084
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=te3nbH0udJ4eGs9ywB6lxW2vlY7WLE4mjsnZwKRNQauM4Thkhj6zXcFpyWi1ERgBs93vKzi0pxg5yOxxDrXfbL847gem14bSDWckxCIjsOie9eUz5YoXpmBu%2F3JYApz5OHT7TSE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7751683defe7b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.zbcdn.net/5/6/56f7a92aa06f86a27d18b57576df1d19/data.js?1670264011630
200 OK 0 B URL HTTP/2 static.zbcdn.net/5/6/56f7a92aa06f86a27d18b57576df1d19/data.js?1670264011630
IP
GET /5/6/56f7a92aa06f86a27d18b57576df1d19/data.js?1670264011630 HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 05 Dec 2022 18:29:26 GMT
vary: Accept-Encoding
etag: W/"638e3886-463b1"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9Yf%2BLDm2cIFEratLyGDN3BL7BNhzalvIigIzVGdM9%2Bxa4l%2B1i%2BxeKDLWuviga0y53uv3N2Uqp0D5j569zBL%2FtxnXcW66z880BSvZ9O34K1erbCDbvUstytARy78NJNZ6gjI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 775168310bac1c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main.js?buildTime=1665518573
200 OK 0 B URL HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1665518573
IP
GET /js/site/main.js?buildTime=1665518573 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 21 Nov 2022 22:29:57 GMT
etag: "637bfbe5-74804"
expires: Tue, 06 Dec 2022 10:56:38 GMT
cache-control: max-age=1209600
x-host: blu63.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 06 Dec 2022 01:56:46 GMT
age: 1177207
x-served-by: cache-sjc10066-SJC, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 25, 1
x-timer: S1670291806.043184,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 146400
X-Firefox-Spdy: h2
static.zbcdn.net/__omnkipv/asset/bundle.js
200 OK 0 B URL HTTP/2 static.zbcdn.net/__omnkipv/asset/bundle.js
IP
GET /__omnkipv/asset/bundle.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:46 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 05 Dec 2022 11:09:23 GMT
vary: Accept-Encoding
etag: W/"638dd163-4224f"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 359
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jNc4cdjxwKZEajzJgNCVdZGNufyNvnmWvYwrnWxhFLlLz2TaBkxoACZOEMTvqtJH%2FDzpyBJtaxfKXeCGzwH4pjhUfyTy54n7p460yVGUxfGQCy0HrZpTv8j3mfMbnQSGF%2Fw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 775168306b8f1c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/apps/socialFeed-34b0c42b51dd4104c758.js
200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/apps/socialFeed-34b0c42b51dd4104c758.js
IP
GET /latest/assets/packs/apps/socialFeed-34b0c42b51dd4104c758.js HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:48 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2756537
etag: W/"c8a67000cadf0e378c7b9ea317f56ac6"
last-modified: Fri, 02 Dec 2022 21:39:55 GMT
x-amz-id-2: 4//FZS6aX5GZQkClDp04nB1YbW/8idUkuBjJKuk+jbbtzudgU5bsLzoJD1GdMttKdybxx1UxdK4=
x-amz-request-id: 8AMEFANJ52746ST8
x-amz-version-id: 9TutJkMNTJXj4.0Uqxx82I7uQeeuwBXU
cache-control: max-age=2073600
cf-cache-status: HIT
age: 7084
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qmSeWlbSGntnfY7TI604cHvZus0SUaU7l%2ByozfwAEpCC%2FngoDQox3t8n9MJGzzOzd1DSkCMbdKcN95RAURtO%2BXYgb9s7e9eLFPSW2nESciXyB0Ya7PQT%2BVubgJKPPXg%2FePVbPA4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7751683ddfe4b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/style_packs/views-1702f475bac1679727ec.css
200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/style_packs/views-1702f475bac1679727ec.css
IP
GET /latest/assets/packs/style_packs/views-1702f475bac1679727ec.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:48 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=465058
etag: W/"e1a2e5362a2ee85015e577b37cb24b91"
last-modified: Fri, 02 Dec 2022 21:40:04 GMT
x-amz-id-2: KQG4f0NvsictjTj1m7N8vxf6BTwcJSit4t9yjAM7GZzzX/JEv5uLnP1RVt3e4UyQDGoSBIZIcB0=
x-amz-request-id: 8AMA2MG0MXV33K90
x-amz-version-id: s8AB9P2H8XVs53v5JydKxnhWS264TEkD
cache-control: max-age=2073600
cf-cache-status: HIT
age: 419
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Uo2%2FMr3yEXG5U2LIofvNrBDTg%2FrgvYi44yHvD%2BzodLIZbRAY1lM9BTMCJP8KUkXBjGVAznr7SYhmcWINqCCpfFCGWCjLujBCt2J3gFqPHLF6mzBwgiM6q2gBldHslKpdDdxbqDw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7751683dffecb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.zotabox.com/5/6/56f7a92aa06f86a27d18b57576df1d19/widgets.js
200 OK 0 B URL HTTP/2 static.zotabox.com/5/6/56f7a92aa06f86a27d18b57576df1d19/widgets.js
IP
GET /5/6/56f7a92aa06f86a27d18b57576df1d19/widgets.js HTTP/1.1
Host: static.zotabox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:46 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 05 Dec 2022 18:13:31 GMT
vary: Accept-Encoding
etag: W/"638e34cb-138df"
expires: Tue, 06 Dec 2022 02:56:46 GMT
cache-control: max-age=3600, public, max-age=3600
access-control-allow-origin: *
access-control-allow-methods: GET, POST
content-encoding: gzip
z-server: mariadb
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7751682c1f6bb4fd-OSL
X-Firefox-Spdy: h2
www.powr.io/powr.js
200 OK 0 B IP
GET /powr.js HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:46 GMT
content-type: application/javascript
cache-control: max-age=604800, public
cf-bgj: minify
expires: Tue, 05 Dec 2023 04:59:39 GMT
last-modified: Mon, 05 Dec 2022 04:59:31 GMT
vary: Accept-Encoding
via: 1.1 vegur
x-origin-instance: heroku
cf-cache-status: HIT
age: 75240
server: cloudflare
cf-ray: 7751682f6fb0b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zbcdn.net/__omnkipv/asset/script/jquery.scrollbar.js
200 OK 0 B URL HTTP/2 static.zbcdn.net/__omnkipv/asset/script/jquery.scrollbar.js
IP
GET /__omnkipv/asset/script/jquery.scrollbar.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 05 Dec 2022 11:09:23 GMT
vary: Accept-Encoding
etag: W/"638dd163-2d36"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 3807
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FaZQxBQGQSMmt37MUlOzxLcD4tW0BYxoBLEkwtWSzVx%2FPA%2BMLg6f3vNh%2FXpInFwKFWtAV0ZzqJW5jkAVwkU%2F4VLs%2F0gn%2B4FREn7rEOMg53V8RF1CWBGN73aAmz6WBYXSf0o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77516836cd301c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=https%3A%2F%2Fwww.realhopeoswego.org%2F
200 OK 0 B URL HTTP/2 www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=https%3A%2F%2Fwww.realhopeoswego.org%2F
IP
GET /plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=https%3A%2F%2Fwww.realhopeoswego.org%2F HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:48 GMT
content-type: text/html; charset=utf-8
cache-control: public, max-age=2678400
link: <https://public.powrcdn.com/latest/assets/packs/style_packs/views-1702f475bac1679727ec.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-4fba8b5d7f2b8b3cf077.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-98ff5c9ad111a6b593c2.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps-view-7878cac32231a997f8a0.js>; rel=preload; as=script; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/socialFeed-34b0c42b51dd4104c758.js>; rel=preload; as=script; nopush
vary: Accept-Encoding
x-request-id: 8d5a0dfc-0e2a-422c-9531-5c0aa5038355
x-runtime: 0.016241
x-origin-instance: heroku
via: 1.1 vegur
cf-cache-status: MISS
set-cookie: __cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JP6FHCUToG54o; SameSite=None; Secure; path=/; expires=Tue, 13-Dec-22 01:56:48 GMT; HttpOnly
server: cloudflare
cf-ray: 7751683a3befb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.0.0/css/bootstrap.min.css
200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.0.0/css/bootstrap.min.css
IP
GET /bootstrap/3.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:48 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:03:55 GMT
cdn-cachedat: 11/04/2021 22:40:16
cdn-edgestorageid: 755
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.0
cdn-requestid: a0669b23f8a3a4d2d54e12d18ef5c3e0
cdn-cache: HIT
cf-cache-status: HIT
age: 22509719
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7751683da9deb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-98ff5c9ad111a6b593c2.css
200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-98ff5c9ad111a6b593c2.css
IP
GET /latest/assets/packs/style_packs/ie9-overrides-98ff5c9ad111a6b593c2.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:48 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=97779
etag: W/"8569d08b93b65be6f73bca7e48e87a62"
last-modified: Fri, 18 Nov 2022 12:53:31 GMT
x-amz-id-2: xq6N4kPdonLxRNWUOfs9g/seDB8lJUgCSpM3i7u0/ncEJ7agpR3iY0c5qfFTSqZfp+dLN6Oph5E=
x-amz-request-id: 20EHZZ9JZ84EN5JD
x-amz-version-id: GMw4JLs8xZ2LN.5b959aPNzBzCnxHbeF
cache-control: max-age=2073600
cf-cache-status: HIT
age: 3584
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1RVGRiADzwLwG7kKfOacpAOlnosBRH2ggCXxgITWIU2XdeyAziDNRZ4PDzl7l%2BkTmWcPYivIGXkL5BUSMufubyS%2FoSvNXGGagUy7X2v%2FOTW13X%2BS%2Biq7PyyFvepXffF8NGdQpro%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7751683e280fb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kit.fontawesome.com/14579ba48d.js
200 OK 0 B URL HTTP/2 kit.fontawesome.com/14579ba48d.js
IP
GET /14579ba48d.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:49 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fuu_NKRKzsFcWtfaTAAi
cf-cache-status: HIT
server: cloudflare
cf-ray: 7751683d8865b529-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
199.34.228.73
104.18.23.52
93.184.220.29
188.114.96.1
23.36.76.226