GET www.googletagmanager.com/gtag/js?id=G-H1S93VJW48&cx=c>m=45He56p1v79611690za200&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389~104869650~104885889~104885891
200 OK 487 kB URL GET www.googletagmanager.com/gtag/js?id=G-H1S93VJW48&cx=c>m=45He56p1v79611690za200&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389~104869650~104885889~104885891
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (8197)
Size 487 kB (487447 bytes)
Hash c7d9e0164d0ac402e42b6ba110a2109d
dffcc17026aba46617a55741c9786dbf1c94165d
40b505c395251759947cfebc210e18de7ac97fc5a9837df84fd240acccb95054
GET /gtag/js?id=G-H1S93VJW48&cx=c>m=45He56p1v79611690za200&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389~104869650~104885889~104885891 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 27 Jun 2025 02:37:42 GMT
expires: Fri, 27 Jun 2025 02:37:42 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 154493
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
POST www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fwww.gesa.com%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=1371367927.1750991862&dt=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&auid=371077799.1750991862&navt=n&npa=1>m=45He56p1v79611690za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389~104869650~104885889~104885891&tft=1750991862371&tfd=4244&apve=1&apvf=f
200 OK 0 B URL POST www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fwww.gesa.com%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=1371367927.1750991862&dt=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&auid=371077799.1750991862&navt=n&npa=1>m=45He56p1v79611690za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389~104869650~104885889~104885891&tft=1750991862371&tfd=4244&apve=1&apvf=f
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.google.com
Fingerprint4F:74:10:0A:01:21:55:4F:03:B9:F9:8B:6A:DE:A2:47:7C:44:89:73
ValidityMon, 02 Jun 2025 08:37:21 GMT - Mon, 25 Aug 2025 08:37:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ccm/collect?en=page_view&dl=https%3A%2F%2Fwww.gesa.com%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=1371367927.1750991862&dt=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&auid=371077799.1750991862&navt=n&npa=1>m=45He56p1v79611690za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389~104869650~104885889~104885891&tft=1750991862371&tfd=4244&apve=1&apvf=f HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
Origin: https://www.gesa.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 200 OK
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-type: text/plain
date: Fri, 27 Jun 2025 02:37:44 GMT
vary: Origin, X-Origin, Referer
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.gesa.com
access-control-expose-headers: date,vary,vary,vary,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET collector-37937.tvsquared.com/tv2track.php?action_name=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&idsite=TV-6327096327-1&rec=1&r=223114&h=2&m=37&s=43&url=https%3A%2F%2Fwww.gesa.com%2F%3Futm_source%3Dthe-trade-desk%26utm_medium%3Dvideoolv%26utm_campaign%3Dbrand-25%26utm_term%3Da25-64-tier2-awa%26utm_content%3Dbrand-gesa2215h-swipe%26adfcd%3D1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw&_id=838742841b9b9442&_idts=1750991863&_idvc=0&_idn=1&_viewts=&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x1024>_ms=369
200 OK 42 B URL GET collector-37937.tvsquared.com/tv2track.php?action_name=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&idsite=TV-6327096327-1&rec=1&r=223114&h=2&m=37&s=43&url=https%3A%2F%2Fwww.gesa.com%2F%3Futm_source%3Dthe-trade-desk%26utm_medium%3Dvideoolv%26utm_campaign%3Dbrand-25%26utm_term%3Da25-64-tier2-awa%26utm_content%3Dbrand-gesa2215h-swipe%26adfcd%3D1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw&_id=838742841b9b9442&_idts=1750991863&_idvc=0&_idn=1&_viewts=&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x1024>_ms=369
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerAmazon
Subject*.tvsquared.com
FingerprintBB:AC:17:62:AE:EF:FE:BE:25:44:69:E9:F0:1D:8D:E8:2E:3C:88:05
ValidityWed, 14 May 2025 00:00:00 GMT - Wed, 10 Jun 2026 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1
Hash 00657dd79637a8daf5e6196ca17f1887
3e064855d1fe7c6eac52981a646ec5840ba7efb5
f0c71e3da5b3fcab3c66af1cf0cdbf262c97b9330b7b37116f1ae2ab18bdc660
GET /tv2track.php?action_name=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&idsite=TV-6327096327-1&rec=1&r=223114&h=2&m=37&s=43&url=https%3A%2F%2Fwww.gesa.com%2F%3Futm_source%3Dthe-trade-desk%26utm_medium%3Dvideoolv%26utm_campaign%3Dbrand-25%26utm_term%3Da25-64-tier2-awa%26utm_content%3Dbrand-gesa2215h-swipe%26adfcd%3D1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw&_id=838742841b9b9442&_idts=1750991863&_idvc=0&_idn=1&_viewts=&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x1024>_ms=369 HTTP/1.1
Host: collector-37937.tvsquared.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Fri, 27 Jun 2025 02:37:43 GMT
P3p: CP='OTI DSP COR NID STP UNI OTPa OUR'
Request-Id: d5c4b540-7ba2-490d-9a76-30da74f22e92
Server: nginx
Content-Length: 42
Connection: keep-alive
GET www.gesa.com/wp-content/uploads/2022/05/blue-logo.svg
200 OK 14 kB URL GET www.gesa.com/wp-content/uploads/2022/05/blue-logo.svg
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type SVG Scalable Vector Graphics image
Hash 9b7a4c31ce43ebc6d69447c99addbfa1
43fb028a929d107a47830dd75ac6ce678105832c
b358915252ba0e190c01550a54e89bb37c29925c45f71d0244bfed51c188a49c
GET /wp-content/uploads/2022/05/blue-logo.svg HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:43 GMT
content-type: image/svg+xml
cf-ray: 9561906d2d4756c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378480
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"63977dbd-38a2"
last-modified: Mon, 12 Dec 2022 19:15:09 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor-pro/assets/css/widget-posts.min.css?ver=3.26.2
200 OK 17 kB URL GET www.gesa.com/wp-content/plugins/elementor-pro/assets/css/widget-posts.min.css?ver=3.26.2
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type Unicode text, UTF-8 text, with very long lines (16933)
Hash a356db3df45a7fd34ee198826e9ec44a
e66b20a89defc4345ad9253b090419ae678ca09e
9b7f2f0415a2c3cdd9dbc019b9fce04570116764be9e502f8a2a44b312da11b9
GET /wp-content/plugins/elementor-pro/assets/css/widget-posts.min.css?ver=3.26.2 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: text/css
cf-ray: 9561904e487156c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f008e-4257"
last-modified: Fri, 27 Dec 2024 19:31:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.2.3
200 OK 24 kB URL GET www.gesa.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.2.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (23956)
Hash 6489a0c638adc9b6c7334ac57a739bfd
a20526727652aed97b93f884e0d0ce23a6aac34f
535bc6c72b85f9c2ff687fdc09efa54429994cb36bcd31a5298a09254cfb8720
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.2.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619050996056c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 787462
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"681a44ca-5e46"
last-modified: Tue, 06 May 2025 17:20:10 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/uploads/2022/06/CircularXXWeb-Medium.woff2
200 OK 72 kB URL GET www.gesa.com/wp-content/uploads/2022/06/CircularXXWeb-Medium.woff2
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type Web Open Font Format (Version 2), TrueType, length 71779, version 3.0
Hash d74eac43c78bd5852478998ce63dceb3
e1fddaa5543d156baa5d4287e1dfbf3336794628
d5ea45f8ad8b8df8cdebe87f18cfce232468b3e6a028880773a8d09e13789ac8
GET /wp-content/uploads/2022/06/CircularXXWeb-Medium.woff2 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:40 GMT
content-type: font/woff2
content-length: 71779
cf-ray: 956190580c5c56c3-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
etag: "63977dbc-11863"
last-modified: Mon, 12 Dec 2022 19:15:08 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.3
200 OK 11 kB URL GET www.gesa.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (11072)
Hash 2d6d772c51b0306858b92f7cd3c3c910
2b447952b34107ffd6ba081f99d4879fccdf0a75
061918d0a4f95724e73ed3469513a4cf4bc92a27e768eadf4fd0c48e307e0dcd
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:43 GMT
content-type: application/javascript
cf-ray: 9561906d2d4456c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378481
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-2c16"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET gesacu.us-1.evergage.com/api2/event/gesa_prod?event=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%3D%3D
200 OK 137 B URL GET gesacu.us-1.evergage.com/api2/event/gesa_prod?event=eyJhY3Rpb24iOiJWaWV3IEhvbWVwYWdlIiwiaXRlbUFjdGlvbiI6bnVsbCwic291cmNlIjp7InBhZ2VUeXBlIjoiSG9tZXBhZ2UiLCJjb250ZW50Wm9uZXMiOlsiZ2xvYmFsX2luZm9iYXJfdG9wX29mX3BhZ2UiLCJnbG9iYWxfaW5mb2Jhcl9ib3R0b21fb2ZfcGFnZSIsImdsb2JhbF9wb3B1cCIsImluZm9iYXIiLCJob21lX2hlcm8iLCJob21lX3Byb2R1Y3RfcmVjIl0sInVybCI6Imh0dHBzOi8vd3d3Lmdlc2EuY29tLz91dG1fc291cmNlPXRoZS10cmFkZS1kZXNrJnV0bV9tZWRpdW09dmlkZW9vbHYmdXRtX2NhbXBhaWduPWJyYW5kLTI1JnV0bV90ZXJtPWEyNS02NC10aWVyMi1hd2EmdXRtX2NvbnRlbnQ9YnJhbmQtZ2VzYTIyMTVoLXN3aXBlJmFkZmNkPTE3NTM1ODM3ODkuZWdKZXEtMmMyay1zbVZvbkpnWXBnUS5NakUzT1RrMk5Td3lNak0wTURrdyIsInVybFJlZmVycmVyIjoiIiwiY2hhbm5lbCI6IldlYiIsImJlYWNvblZlcnNpb24iOjE2LCJjb25maWdWZXJzaW9uIjoiMTkyIn0sImZsYWdzIjp7InBhZ2VWaWV3Ijp0cnVlfSwidXNlciI6eyJhdHRyaWJ1dGVzIjp7InV0bV9zb3VyY2UiOiJ0aGUtdHJhZGUtZGVzayIsInV0bV9jYW1wYWlnbiI6ImJyYW5kLTI1IiwidXRtX2NvbnRlbnQiOiJicmFuZC1nZXNhMjIxNWgtc3dpcGUiLCJ1dG1fdGVybSI6ImEyNS02NC10aWVyMi1hd2EiLCJ1dG1fbWVkaXVtIjoidmlkZW9vbHYifSwiYW5vbklkIjoiOTk3ZGRkNjM4YzZiNzA0NiJ9LCJwZXJmb3JtYW5jZSI6e30sImRlYnVnIjp7ImV4cGxhbmF0aW9ucyI6dHJ1ZX0sImNhdGFsb2ciOnt9LCJjb25zZW50cyI6W10sImFjY291bnQiOnt9LCJfdG9vbHNFdmVudExpbmtJZCI6IjM4ODQwNjUyNzY0MDY0MDIifQ%3D%3D
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerAmazon
Subject*.us-1.evergage.com
Fingerprint73:B3:09:B9:18:21:E2:68:C5:B6:24:6D:23:75:CE:32:57:2A:37:EA
ValidityThu, 08 May 2025 00:00:00 GMT - Tue, 02 Jun 2026 23:59:59 GMT
Hash 92e3ae2fb94a2524fbdc984af2c9811b
e62340c90f89b714154593a114d4999e497b0e96
cf54ccabae5025926fe3d1fc0e5085c23543defef5efbcc86620da19b207af36
GET /api2/event/gesa_prod?event=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%3D%3D HTTP/1.1
Host: gesacu.us-1.evergage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
Origin: https://www.gesa.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:42 GMT
content-type: application/json;charset=UTF-8
set-cookie: AWSALBTG=v761XcIc2T2HI3EZUKdKQejEHsZgCpXWA5e1SxViaxl+W1vOrWXmNvFK9s9JFLwSJoTISZ/zEEDGMGKlhMGy4xzn2IngUVW1+03t6UIM/TFqapw+0g6cjFMSD3ZVBy8CFga2/NlNngbd9JnfxunI7ISG7C3QHvxDbzjVGANTN3rV5Bzc0sw=; Expires=Fri, 04 Jul 2025 02:37:42 GMT; Path=/
AWSALBTGCORS=v761XcIc2T2HI3EZUKdKQejEHsZgCpXWA5e1SxViaxl+W1vOrWXmNvFK9s9JFLwSJoTISZ/zEEDGMGKlhMGy4xzn2IngUVW1+03t6UIM/TFqapw+0g6cjFMSD3ZVBy8CFga2/NlNngbd9JnfxunI7ISG7C3QHvxDbzjVGANTN3rV5Bzc0sw=; Expires=Fri, 04 Jul 2025 02:37:42 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: https://www.gesa.com
timing-allow-origin: *
cache-control: no-cache, no-store
access-control-allow-credentials: true
x-content-type-options: nosniff
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
GET app.truconversion.com/ti-js/19201/d9707.js
200 OK 267 B URL GET app.truconversion.com/ti-js/19201/d9707.js
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerSectigo Limited
Subjectwww.truconversion.com
FingerprintD2:EE:C3:8B:20:C2:42:7F:E9:8E:3D:2A:F9:AF:43:79:33:89:4B:9F
ValidityWed, 06 Nov 2024 00:00:00 GMT - Fri, 05 Dec 2025 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 15bc6fc752293f78b89de696adfd2cd8
6c101c46a24fab67a45e3a9bf4e81f0beb42610f
3ea0ae12147c76e3b4e6ad26bfb580121295c8aa91480dee7b7e579dd00eb23d
GET /ti-js/19201/d9707.js HTTP/1.1
Host: app.truconversion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jun 2025 02:37:43 GMT
content-type: application/javascript
content-length: 267
last-modified: Fri, 27 Jun 2025 02:30:27 GMT
etag: "685e0243-10b"
expires: Fri, 27 Jun 2025 02:40:43 GMT
pragma: public
cache-control: max-age=180, public, stale-while-revalidate=10, stale-if-error=10
accept-ranges: bytes
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
content-security-policy: default-src 'self'; frame-src 'self' *.truconversion.com http: https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' http: https: data: blob:; style-src 'self' 'unsafe-inline' http: https:; style-src-elem 'self' 'unsafe-inline' http: https: data:; img-src http: https: data: blob:; connect-src wss://*.truconversion.com wss://*.intercom.io wss://*.appcues.net wss://*.wistia.com wss://*.crisp.chat http: https: data: blob:; font-src http: https: data: blob:; object-src http: https:; media-src http: https: data: blob:; form-action 'self' http://*.truconversion.com https://*.truconversion.com;
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.34.0
200 OK 20 kB URL GET www.gesa.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.34.0
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (20014)
Hash 501fc15f2589fd053eeb79ed026de4ac
c11e4b8ce7edc4fceb33b4afe3ff3b244432b088
2b1bd4f2ad15ca4430bc9f14f4bc77080009742326c61dc7a107b78e27675093
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.34.0 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: text/css
cf-ray: 9561904e386a56c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-4e5c"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/pixelyoursite/dist/scripts/tld.min.js?ver=2.3.1
200 OK 141 kB URL GET www.gesa.com/wp-content/plugins/pixelyoursite/dist/scripts/tld.min.js?ver=2.3.1
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 141 kB (141079 bytes)
Hash 35a22bea641003807bc6e7ee80eb14eb
80bb6fca40db4f6c5d6ff20f078328082997e3c9
6c459c688d05bbda53ede4e2aac0862d2f4599efb297cf753129866dba170401
GET /wp-content/plugins/pixelyoursite/dist/scripts/tld.min.js?ver=2.3.1 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 9561904e88a256c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f002b-22717"
last-modified: Fri, 27 Dec 2024 19:29:47 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtm.js?id=GTM-57PZM3KX
200 OK 301 kB URL GET www.googletagmanager.com/gtm.js?id=GTM-57PZM3KX
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (4971)
Size 301 kB (300783 bytes)
Hash bc5a5d9f9a5c2ad2f98c505531e1b0fe
60b0d524dc0365c73c1192be073185023dad5c70
c443d36fc96ff3d4e4c334a37ea2f4fbe573f00fe2c7c91de9bef8268632dc21
GET /gtm.js?id=GTM-57PZM3KX HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 27 Jun 2025 02:37:40 GMT
expires: Fri, 27 Jun 2025 02:37:40 GMT
cache-control: private, max-age=900
last-modified: Fri, 27 Jun 2025 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1319:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1319:0
report-to: {"group":"ascgcycc:1319:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1319:0"}],}
server: Google Tag Manager
content-length: 102000
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.gesa.com/wp-admin/admin-ajax.php?action=pys_get_pbid
200 OK 117 B URL GET www.gesa.com/wp-admin/admin-ajax.php?action=pys_get_pbid
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
Hash abba8cd6ace45505f347456acf04aa49
e0dbd44b5fdcb822adff71e5aa1adc57d5d49f48
f87e792b5dbdab6484d2499f809372a51f74ef71e1d4603d55003ba25b29247a
GET /wp-admin/admin-ajax.php?action=pys_get_pbid HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:43 GMT
content-type: application/json; charset=UTF-8
cf-ray: 95619066fac456c3-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: max-age=0, must-revalidate, private
content-encoding: br
expires: Wed, 11 Jan 1984 05:00:00 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: accept-encoding
cf-apo-via: origin,host
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-cache: MISS
x-cacheable: NO:Passed
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-pass-why: wp-admin
x-powered-by: WP Engine
x-robots-tag: noindex
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.3
200 OK 22 kB URL GET www.gesa.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (8189)
Hash 8fbc22c79d40119dde9a5d16897002b9
e9837519aca724457792e2d5ee98a97a0367cdf9
7e84c9f8d71bc6eb2dac2fce59a6caea62da51ffa8cf56b41806f59386ab1322
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619050c97c56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"667d6e6f-53d8"
last-modified: Thu, 27 Jun 2024 13:51:43 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=3.3.4
200 OK 19 kB URL GET www.gesa.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=3.3.4
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (18660), with no line terminators
Hash c9e5081e25d67bd27ba7204d1de43669
f762dfc099573b9a84935fd76da808b480f92ccc
3044ae66be11f026e61aae1190cdf2fd43adb843b841249cc965729b97621791
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=3.3.4 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 9561905119ab56c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f0093-48e4"
last-modified: Fri, 27 Dec 2024 19:31:31 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/uploads/2022/06/Besley-Regular.ttf
200 OK 60 kB URL GET www.gesa.com/wp-content/uploads/2022/06/Besley-Regular.ttf
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type TrueType Font data, 16 tables, 1st "GDEF", 29 names, Microsoft, language 0x409
Hash b2bc1fc717e4b66f2487bb4d7e14d084
cbf8929241f2a28572b605b59f5fe479b0c3a1c3
1ee3b1db07661a9cc8b0fdff20fc508bf14336eadf704d42384e368b0a3ecb7b
GET /wp-content/uploads/2022/06/Besley-Regular.ttf HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:40 GMT
content-type: application/octet-stream
content-length: 60500
cf-ray: 956190582c6756c3-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
etag: "66bbea61-ec54"
last-modified: Tue, 13 Aug 2024 23:21:05 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/wp-store-locator/css/styles.min.css?ver=2.2.235
200 OK 15 kB URL GET www.gesa.com/wp-content/plugins/wp-store-locator/css/styles.min.css?ver=2.2.235
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (14979), with no line terminators
Hash ecf4af1872883451fd0420a2902c80d4
92ae5af49582fab7fc7d82db93ab72ca8f3f3065
7a2adf4c1187ff44afb6596a750c078a97b07717364daade11a8c337771832e0
GET /wp-content/plugins/wp-store-locator/css/styles.min.css?ver=2.2.235 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: text/css
cf-ray: 9561904e084956c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"63977dbd-3a83"
last-modified: Mon, 12 Dec 2022 19:15:09 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/uploads/2022/06/CircularXXWeb-Book.woff2
200 OK 69 kB URL GET www.gesa.com/wp-content/uploads/2022/06/CircularXXWeb-Book.woff2
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type Web Open Font Format (Version 2), TrueType, length 69026, version 3.0
Hash cd7d2bcec649b1243839a15d5eb8f0a3
a9cbc707d3cbd736c74c809dea1cb200a8a174cf
884ec4af3e42aa326e687947185fce05ecdbd42e4a4481de91495ab423a5259c
GET /wp-content/uploads/2022/06/CircularXXWeb-Book.woff2 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:40 GMT
content-type: font/woff2
content-length: 69026
cf-ray: 95619056fbda56c3-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
etag: "63977dbc-10da2"
last-modified: Mon, 12 Dec 2022 19:15:08 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6
200 OK 9.1 kB URL GET www.gesa.com/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
Hash a8127c1a87bb4f99edbeec7c37311dcd
9997a1745f48bdd233dbe9bd8164daa53eba105b
f313d12ea6124bd28fc4a6b7163d253bb83d5aeab5edce594880c5c3df475cbc
GET /wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619051099d56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"65ce417b-23b5"
last-modified: Thu, 15 Feb 2024 16:53:15 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor-pro/assets/js/load-more.8b46f464e573feab5dd7.bundle.min.js
200 OK 5.3 kB URL GET www.gesa.com/wp-content/plugins/elementor-pro/assets/js/load-more.8b46f464e573feab5dd7.bundle.min.js
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (5302)
Hash c8e69c8537b41e67afdf8b5725eb86c1
c91f98e4a6a2ac2a36b76af57894895cd0fe83f8
25097c4140b83b3e2afae9f33d84dae10c203daba955ebbe251bef9a99728160
GET /wp-content/plugins/elementor-pro/assets/js/load-more.8b46f464e573feab5dd7.bundle.min.js HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:44 GMT
content-type: application/javascript
cf-ray: 956190719f7a56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378482
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f008e-14e2"
last-modified: Fri, 27 Dec 2024 19:31:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-includes/js/jquery/ui/selectmenu.min.js?ver=1.13.3
200 OK 9.5 kB URL GET www.gesa.com/wp-includes/js/jquery/ui/selectmenu.min.js?ver=1.13.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (9317)
Hash ecc3d4a65fcdf3c7fe67ff9d726d2daa
5f7a6898608ec691e6fef2ef52673971befa14e9
89c3f51110f629231ae765385824fb6df90584e9063db539777b350f868eb859
GET /wp-includes/js/jquery/ui/selectmenu.min.js?ver=1.13.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619050d98356c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 787462
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"667d6e6f-251e"
last-modified: Thu, 27 Jun 2024 13:51:43 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET api.alpharank.io/api/pixel/script/bc04200588d29fe97c0c8a783f268d7d6ecf1d2de1d1d417f28d36799e47de
200 OK 495 B URL GET api.alpharank.io/api/pixel/script/bc04200588d29fe97c0c8a783f268d7d6ecf1d2de1d1d417f28d36799e47de
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerLet's Encrypt
Subjectapi.alpharank.io
FingerprintA3:5E:4A:8A:7A:8E:06:59:4C:F8:96:D9:60:04:B4:6A:70:9D:08:8B
ValiditySun, 01 Jun 2025 07:09:33 GMT - Sat, 30 Aug 2025 07:09:32 GMT
File type ASCII text, with very long lines (495), with no line terminators
Hash 2449e2091e6dc13bbc2144c0e0bcf657
76e80c1f3c639744e7082c091be7f5d9020a56c0
013c037f68d07cd5a0a595f89995290aec3addca27079bc47ecd128440b06b3a
GET /api/pixel/script/bc04200588d29fe97c0c8a783f268d7d6ecf1d2de1d1d417f28d36799e47de HTTP/1.1
Host: api.alpharank.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Fri, 27 Jun 2025 02:37:43 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 495
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: undefined
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
ETag: W/"1ef-dugMHzxjl0TnCCwJG+f12QIKVsA"
GET www.gesa.com/wp-content/uploads/2025/05/favIcon2.png
200 OK 2.6 kB URL GET www.gesa.com/wp-content/uploads/2025/05/favIcon2.png
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type PNG image data, 150 x 150, 8-bit colormap, non-interlaced
Hash 3b17f83377e129f64d3efc443b199284
51061459460fa67d4eb0acb4c47d2b0c363a73b0
1a8c188b356460e61cbac8f235f45dbb90b64a3552dc51cabbd4cbcc08047cb9
GET /wp-content/uploads/2025/05/favIcon2.png HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:43 GMT
content-type: image/png
content-length: 2604
cf-ray: 9561906ccd2756c3-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 729293
cache-control: public, max-age=31536000
etag: "6830df59-196b"
last-modified: Fri, 23 May 2025 20:49:29 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept, Accept-Encoding
cf-bgj: imgq:100,h2pri
cf-polished: origSize=6507
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-social-icons.min.css?ver=3.26.3
200 OK 5.2 kB URL GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-social-icons.min.css?ver=3.26.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (5110)
Hash 8466e0bc89197e69d4ddc0e0c0f98240
4e673a43cf8c2a58b1296835d6f7ca98f5c20fe6
ab474d17c35ecedc73394403474427fee0b2c870b8bbc96d6919637d5bb9536a
GET /wp-content/plugins/elementor/assets/css/widget-social-icons.min.css?ver=3.26.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: text/css
cf-ray: 9561904e386856c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-141e"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/pixelyoursite/dist/scripts/js.cookie-2.1.3.min.js?ver=2.1.3
200 OK 1.7 kB URL GET www.gesa.com/wp-content/plugins/pixelyoursite/dist/scripts/js.cookie-2.1.3.min.js?ver=2.1.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (1709), with no line terminators
Hash fbaff6df5010e82fec77e88acd359eb5
ca5b3dc99936b2865ef02d756ede49ad455ba4a0
4af105297c5b49ca668eaa0774c0eb479e907175f12ccc30e9c038dd7b6fcaf0
GET /wp-content/plugins/pixelyoursite/dist/scripts/js.cookie-2.1.3.min.js?ver=2.1.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: application/javascript
cf-ray: 9561904e789956c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378478
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f002b-6ad"
last-modified: Fri, 27 Dec 2024 19:29:47 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/uploads/2022/10/Gesa-nw-adhesives-1200px.webp
200 OK 68 kB URL GET www.gesa.com/wp-content/uploads/2022/10/Gesa-nw-adhesives-1200px.webp
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type RIFF (little-endian) data, Web/P image
Hash cd92c237286d7d056cc4b7d9f9e60cb8
d6063187319af07488fc80208acf3a72b4d184d9
88f1b74a8cd91b6f6d80be274a96d6afba46ad95b81953f38c7fc7a4213adb45
GET /wp-content/uploads/2022/10/Gesa-nw-adhesives-1200px.webp HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:43 GMT
content-type: image/webp
content-length: 68216
cf-ray: 9561906d2d4b56c3-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378480
cache-control: public, max-age=31536000
etag: "68193f60-10a78"
last-modified: Mon, 05 May 2025 22:44:48 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET docs.google.com/spreadsheets/d/1dqILO5rtO9GTQfZ2YtUkh6f-pHzVTlS3pbtjmniH2Xs/gviz/tq?tqx=out:json&sheet=Promotional%20Terms
200 OK 325 B URL GET docs.google.com/spreadsheets/d/1dqILO5rtO9GTQfZ2YtUkh6f-pHzVTlS3pbtjmniH2Xs/gviz/tq?tqx=out:json&sheet=Promotional%20Terms
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subject*.google.com
FingerprintEE:B4:21:E2:07:A7:35:36:27:81:A0:3A:3E:C9:6C:F5:11:A0:7F:5C
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
File type ASCII text, with very long lines (317)
Hash 254f1f70215785a714e8447fb86dfec6
b6230c64761ffd5d1c0c47a533cd9bd714dce0f0
2e6c86073885a5db28f96e1c45667d0664dd0c9bb41bab53fb8372dfa4b9c2bc
GET /spreadsheets/d/1dqILO5rtO9GTQfZ2YtUkh6f-pHzVTlS3pbtjmniH2Xs/gviz/tq?tqx=out:json&sheet=Promotional%20Terms HTTP/1.1
Host: docs.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
Origin: https://www.gesa.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
x-robots-tag: noindex, nofollow, nosnippet
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 27 Jun 2025 02:37:43 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
content-encoding: gzip
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
access-control-allow-origin: https://www.gesa.com
access-control-expose-headers: Cache-Control,Content-Disposition,Content-Encoding,Content-Length,Content-Type,Date,Expires,Pragma,Server,Transfer-Encoding
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/docs-tt, base-uri 'self';object-src 'self';report-uri https://docs.google.com/spreadsheets/cspreport;script-src 'nonce-C17u-IuMpTHTbIEJsMyBiA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';worker-src 'self' blob:
reporting-endpoints: default="/spreadsheets/d/1dqILO5rtO9GTQfZ2YtUkh6f-pHzVTlS3pbtjmniH2Xs/web-reports?bl=editors.spreadsheets-frontend_20250617.01_p3&context=eJwV0HtczfcfB_CP8_183lrXU6fT_ZxOnU41iU7NRJnuShaN7Xssm6GQXIuEZQ0zYy7DlpCiIl3wY4a5zGpu2SiGUo02uVVrWFR-8Xv9_ng-3o_H-_N5vF_vz8d8p9vVlx-wAjOZKd6Q2WILmVXCEUuZGZUyK4L3bWWmtZOZj1pmv0CJk8zOusjM01VmH7jJzF8rs2JI1svsjLfMXg6QmdVAmdmCn7_MNg-S2WqjzHKDZLYDjgbL7NEwmVWMlNlpeBAts-44mZ1PkNlN8DHJbChIE2WmgtoPZXYXbk3BXdBNldkbyTJzhrfSZBYFAQtlFgZti5APqiyZ1efI7CFErZTZBAheL7NYSNwgsylwCx7A2u9kth0MuTIbAuXbZHYSXoF1HubkYw5MKsL-xTiH6n0yuw7ZB2S2BuwPycwLqk-iDyGnZBYP4ZeRBw61MvOGOzdl1gnlt5ABPzTg3VD1h8yugbZFZoMg957M9oG-VWZBcBiq4DzchIf38WcwrUdmGRAumVgiLOIm9gUMNjexkfBaaWI2tiaW5G1iaWA1zMQ0cHa4idVCUij6oIowMT00jDKxR3Ag1sTOgCoefVifYGL50Awd8O5ME_sIghabWCR4Z5nY25C21MSWwYAcExsOd9R1LHBAm2I43Kh-omiGJd5PFY0tTxV_QfOgZ4pWsIp_plBDl7FL0QcxsV2KBIjK6VKMgfEruhRJkJL2QjEHjoZ2K05DzohuxRqImd6tSAD3dd0KH7i-tEfRCGtrehSbwVjboxgGY-16FTI0r-hVtMKVwl7FTdCy1wpvyHF7rVgDx7NeK87CERsmnQRFC5PM_y-ln9S6p5_UXdRPYsX9pCOFCukkKM4ppK2-krQTRo2XpLFwfYIkNcLGzyUpF979UpJMsLRVklZAuDmX3vTgkhG-7hzOt0L-3yG8BNK6QngGdI0N5edzQ_kV6KoI5X2wzGUEXwndQ0dwFjyC388dwZ_AUK93-Ejo2zCSi40j-bzXI_liWCOH8U1Q5RbOa0AdF8510Dw6nLdC19Zw3gdBHeE8BGZFRPB0KC6P4B0VEciN4IccI_lx8E6M5INgXWYk3wJx2ZE8EW6URvJW-PtgJH8Ocw5H8kVw42gkv-YRxW_DMu8ovg58S6N4ALzojOKv4e1_ovg7EA_jIQfWwAW4Cj3Q70kUtwI1-EEQuA-M5j4wZlY0nwCLFkTzbDiSHs2rYdfmaL4XLM9Ec3vIvBDNm-uieSucvR_NL4KVRwxXQ9SQGD4GaufG8Ltw-OEoXgWTu0fxGXBCHct93o_lgyFXFccLoM8pjps5x_HC_qN5KZw3H82vQNLYAlH9XoG4DNUzUaE0tUAchzXHCsQmsDxTINzg6qhCcQc23ykUPc8KRb9_C8UxuACDPt4trtsXiUbIdiwS66GvsUiIpiLxTWeRyIP-7sXCEY7BBeh5p1hkRxWL-7OLxd-gWlws9BAOiVB3vFi0wIeXi8UsyKsrFhH3isVo8JRKRCBovigRBlhZWiK2QHxTiUiCg-F7xU-w6vResRECK_aJCGiBR5DRsk-shGZWKjrgsFQqhHupsAKH0FLhDU0TS8U9aDpWKtohrHa_GAfbc8vErkdlYi8095WJVkhVloslcNC5XPwEq_zLxUZ4I75c2IIxoVwMg9-Sy8UNiFxeLhLgi2_LxXqoKy0XDaCqKhd6YHYVQgnJugqxEJ7mVAjF5xXi97UV4g4YH1WIcHg5oFJIfpXCI6hSGMEwtFIMgeOLKsVFWD3tgNgAxvkHROHyx-IQjNrwWBj3Pxbh8KrysaADj4VZ7WOhhJBLbSIGAmraRDAE3m4TVY1togbMRrYLJfx4ol1UgXtVu_CB1dXtYickP28XCyHLs0PkwPO8DvEKVm7vEOvAM79DBMKusx1iL9imdAoP-CfxqTg9xIJ-A8uJFmQPV2os6A94_1cLSoHq3y3oOsy9b0Hjey3IBMbZllQ715LqQayypGM7LOkU5O-0pD0Qes6SouBQgyV13rOkF1BvY0V3IVdvRfvA8qgV2YPdcStygYw2K8qCMcHWNAn-3WBN_4Wvt1jTTsg4bE2Lz1nTZ-By2ZpC7llTIuwKtKG90DDdhgwFNuQPS1ptiLXZkBLinZWUBHoXJflBQZiSDoJ2nJK-K1HSLqjdr6QbsLJMSWvgUoOSrsDkbiUlgzTAliwgLsyW-kfakg1UJdlSDVgcsSUVnPK3o19hbLQdyfDZFDv6ElKX2tESWFZrR0UQ2mpHY6DURkWH4Gd_FU0bqqI0cApWkQ5mhahoKayeoiK_qSoKgunTVSTNV5EKPOtUNABSrqvIql5FGvixyZ6qoKzDng5CXo897QfJSk0qeGWrJrJT05WlaroJuavVVACB69UUAXblanKBQw_VVNaupv57HMgG9KcdyAeM1x1oGChvOJAT5DU60G640ORAVyGwy4EiYPxUR9LOdiRvmJPpSNnwyRZHmgkztjnSYvCqcaS3YIrOiVLh-3gnOgWuaU70ZJ4T9ZvvRBu_cqKt4LfNiQKgqdKJ7sHsQ060AMIuOlEs1Hs500M4He1Mv0EdtMDDPc70D9i950KOsOgzF8qGAytd6AxMW-tCafBphCutgrMxrnQOnn_iSq9gzgJXyobaTa5UDw7hbuQKZqPdyAoMu91oCBw94kbnIOGEG30A1352oz9hxC9uFA02TW5kD97NbuQH2xQayocJRg0lQ_MkDbXC42Ua6oW5n2poOXy_XEPKFRrSgdiiITVc-4-GbkFinYYmQthNDcXCL60augTPejUkvdTQZL2WZkCDn5YegW6wlgzQmaClf2HJOC0th_WztZQPRZlaKgez_VqygtgyLb0Lgyu09PCylrbe1lIe7GjSUiFkdWopB-J6tZQAdnp38oTpY9xpLtxJdKdO-DbJnRZMd6dMaFnlTk_gAemoExqH6ugvCPpQRyHwOlVH6_J0NGGfjmbBwYs6OgaTLuso2-hB6yHzcw9aDsmFHpQKY4I9aSp8NAoV8ss8qQROtXvSr0CBerKG-lQ93YWB6XoKBV2mngLAfKmebCAFZsHaZXraCA4v9eQKfsKLgmCDmRftAvcILxoMM195URa8MDdQfwsD9VobyNzGQDPmG2geNC4w0F9wIt1Al8Ch0kBa8G8w0AjY5OVN26Bujze1wNGJPnQa7q3yoUfQV-9DosGHMrp8KAtmcV9Kh6-EL30Dfyp96QFoPvYlA7ju9iU9vLPXl2Jgt--bdBA-MQ2n-VDzx3C6DX8-GU5P4SILIWf_EPKAHyaF0HnIzAuh1ZC-PYRWwJaKENoB9mdDyAuCl4dSGNyF-8B-DiUljKsbQXYWZi--7K4i5cXWnaNdzCdMmTo7JXFRSvoSz4EpyakL56VnDMqYn54yJTljZkrKwgz_6enz5i5MmZs8OTAgcEjA28ahgwKMk-cH_Q_Qd8Il&build-label=editors.spreadsheets-frontend_20250617.01_p3&imp-sid=CIediIDJkI4DFSPfSgAd8cwBDw&is-cached-offline=false&cellSizeBucket=RITZ_SHEET_CELLS_50K_TO_100K"
document-policy: include-js-call-stacks-in-crash-reports
x-xss-protection: 1; mode=block
server: GSE
set-cookie: NID=525=BYRAeTfP12C42x_31ebnMbCRcMcRPGBQFTCJVt6kZPmd3dXxMwhUOTDSSuNN7XsbpCbAqi4w6867nv5WNxtZIKmzv44ap8RlD51U1Shd17W1WAKKivDgUPrKnJqdecDRh2-acl9UQKPC02lLNFIeXMIfJEOO_CiKXigPQPuirNrjSc3mUxY7cv_KqXDGLhpooc-_jbvs1EnHB5Yu-YA23fqrsPQ7zCtmXrG_xA; expires=Sat, 27-Dec-2025 02:37:43 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
COMPASS=apps-spreadsheets=CmUACWuJV9BwbUc0zJejys-qWyxvqNIHiysg5kmC9fJ8FfvMqYDbHZddKdr-AFz8ta7AqG4EPTJSDGBaougkCviXKM3_lkmVTORGwZGmBrpUpwneHM_ZpSGguOvFVI1yBwcJTuht5BCHpPjCBhp2AAlriVe0Fa_LRHdKMyjqE14gf_T7fepghR_kP38ZqJHRCCPU9dWkx9HVT0Pz7SZIxLcUlTRbEB3tlJ6K_2OglyyA-66e9rPShMZNGD4kqB5wlxNB3rmDE5omGFztA-4tkamcDecAmWbkLXXtwiku5VhYyHF8iQ==; Domain=.docs.google.com; Expires=Fri, 27-Jun-2025 03:37:43 GMT; Path=/spreadsheets/d/1dqILO5rtO9GTQfZ2YtUkh6f-pHzVTlS3pbtjmniH2Xs; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-l2-request-path: l2-managed-6
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/uploads/2024/06/wisecard.jpg
200 OK 68 kB URL GET www.gesa.com/wp-content/uploads/2024/06/wisecard.jpg
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JPEG image data, progressive, precision 8, 1200x1042, components 3
Hash 9860b490e1504a3629878c1bd146bd1a
94dd15357f0bc341fcca952d853fa646ea39b932
cc2d92e80c260adc7551d871980ff18996b3df5f4346393d6f9408ef46e2fae2
GET /wp-content/uploads/2024/06/wisecard.jpg HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:43 GMT
content-type: image/jpeg
content-length: 68129
cf-ray: 9561906d3d5556c3-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 610137
cache-control: public, max-age=31536000
etag: "67eb27e8-11631"
last-modified: Mon, 31 Mar 2025 23:40:24 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
cf-bgj: imgq:100,h2pri
cf-polished: origSize=71217
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/themes/gesa/assets/js/foundation.min.js?ver=6.5.3
200 OK 47 kB URL GET www.gesa.com/wp-content/themes/gesa/assets/js/foundation.min.js?ver=6.5.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (47157), with no line terminators
Hash b8e1e4f150e783e880182d6857477f43
f578524fadf621958ea21be93e49284a429a9e72
58a752f5a1298d0757f7953670951352ab722958e4332e1f1f20a315f836e6e5
GET /wp-content/themes/gesa/assets/js/foundation.min.js?ver=6.5.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619050d98656c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"63d2e310-b835"
last-modified: Thu, 26 Jan 2023 20:31:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.26.3
200 OK 53 kB URL GET www.gesa.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.26.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (52713)
Hash af3b650142a71111522d68bbc64e8f09
9852dc315e965287e8a3f2d76f001fd150abb150
d85d2f98cb9907fbec0a9374386dece6e12570898e05828070ce4e2e8e851cf9
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.26.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619050f99756c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-ce12"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET webbeta.gesa.com/wp-content/uploads/2024/03/login-icon.svg
301 Moved Permanently 0 B URL GET webbeta.gesa.com/wp-content/uploads/2024/03/login-icon.svg
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwebbeta.gesa.com
Fingerprint5C:AC:26:5F:9F:0F:6D:94:96:D4:D5:75:8D:BC:9C:6F:22:B9:6C:9E
ValidityTue, 24 Jun 2025 14:47:13 GMT - Mon, 22 Sep 2025 15:47:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2024/03/login-icon.svg HTTP/1.1
Host: webbeta.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Fri, 27 Jun 2025 02:37:43 GMT
content-type: text/html
content-length: 167
location: https://www.gesa.com/wp-content/uploads/2024/03/login-icon.svg
cache-control: max-age=3600
expires: Fri, 27 Jun 2025 03:37:43 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 9561906d992d0b45-OSL
X-Firefox-Spdy: h2
GET www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
200 OK 821 kB URL User Request GET www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
IP
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (18013), with CRLF, LF line terminators
Size 821 kB (821296 bytes)
Hash 9ced92a0bb108026b46b8f17054b355a
1d6f54322bb4180893d952c7316a5a23c9c0400c
73a2697a08bf7564cba89585c83ab999427fc5c1e73652de7b98cf2f070a8b94
GET /?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/html; charset=UTF-8
cf-ray: 9561904a3ee156c3-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: max-age=600, must-revalidate
link: <https://www.gesa.com/wp-json/>; rel="https://api.w.org/", <https://www.gesa.com/wp-json/wp/v2/pages/27858>; rel="alternate"; title="JSON"; type="application/json", <https://www.gesa.com/>; rel=shortlink
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding,Cookie
cf-apo-via: origin,host
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
content-security-policy-report-only: default-src 'self'; script-src 'self' https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.googletagmanager.com https://*.googletagmanager.com https://cdn.evgnet.com/beacon/gesacu/gesa_prod/scripts/evergage.min.js https://d10lpsik1i8c69.cloudfront.net https://secure.node7seat.com/js/219777.js https://connect.facebook.net https://snap.licdn.com/li.lms-analytics/insight.min.js https://www.redditstatic.com/ads/pixel.js https://app.truconversion.com/ https://tags.srv.stackadapt.com/events.js https://app.leadsrx.com/visitor.js https://collector-37937.tvsquared.com/tv2track.js https://acsbapp.com https://s2.adform.net/banners/scripts/st/trackpoint-async.js https://qvdt3feo.com/events.js https://api.alpharank.io https://tools.luckyorange.com 'nonce-6b6d60c89b'; script-src-attr 'nonce-6b6d60c89b' https://d10lpsik1i8c69.cloudfront.net/js/clickstream.js; style-src 'self' https://d10lpsik1i8c69.cloudfront.net https://tags.srv.stackadapt.com https://tagmanager.google.com/ https://fonts.googleapis.com/ 'unsafe-inline'; connect-src 'self' https://analytics.google.com https://*.analytics.google.com https://stats.g.doubleclick.net/g/collect https://app.leadsrx.com https://gesacu.us-1.evergage.com https://pixel.alpharank.io https://px.ads.linkedin.com https://pubsub.googleapis.com https://*.luckyorange.net wss://*.visitors.live wss://visitors.live https://cdn.acsbapp.com https://www.redditstatic.com https://tags.srv.stackadapt.com; img-src 'self' https://collector-37937.tvsquared.com https://d10lpsik1i8c69.cloudfront.net https://px.ads.linkedin.com https://www.google.com/pagead/1p-user-list/ https://alb.reddit.com/rp.gif https://www.facebook.com https://www.googletagmanager.com https://googleads.g.doubleclick.net/pagead/viewthroughconversion https://ssl.gstatic.com/ data:; media-src 'self' https://d10lpsik1i8c69.cloudfront.net; frame-src 'self' https://td.doubleclick.net/; font-src 'self' data:; base-uri 'self'; manifest-src 'self'; object-src 'none'; worker-src blob: ;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-cache: HIT: 7
x-cache-group: normal
x-cacheable: SHORT
x-content-type-options: nosniff
x-powered-by: WP Engine
x-xss-protection: 1; mode=block
server-timing: cfCacheStatus;desc="DYNAMIC", cfOrigin;dur=0,cfEdge;dur=326
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.26.3
200 OK 53 kB URL GET www.gesa.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.26.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (53182)
Hash cb872d094849cf61b22413e2a3e1a654
f6683450e86991abb37f7e6466ca3ca3fd45fb8d
9bae9e40ccea20c734d08a4c3c1498cb2aaedc89031c0b29746244fc8ec4559e
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.26.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e185256c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378478
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-cfe6"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET bat.bing.net/action/0?ti=211063669&tm=gtm002&Ver=2&mid=5f16a3c8-37a1-4ff3-9c4b-e1b0c3e4e01b&bo=2&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&p=https%3A%2F%2Fwww.gesa.com%2F%3Futm_source%3Dthe-trade-desk%26utm_medium%3Dvideoolv%26utm_campaign%3Dbrand-25%26utm_term%3Da25-64-tier2-awa%26utm_content%3Dbrand-gesa2215h-swipe%26adfcd%3D1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw&r=<=3931&evt=pageLoad&sv=1&asc=D&cdb=AQAY&rn=540696
204 No Content 0 B URL GET bat.bing.net/action/0?ti=211063669&tm=gtm002&Ver=2&mid=5f16a3c8-37a1-4ff3-9c4b-e1b0c3e4e01b&bo=2&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&p=https%3A%2F%2Fwww.gesa.com%2F%3Futm_source%3Dthe-trade-desk%26utm_medium%3Dvideoolv%26utm_campaign%3Dbrand-25%26utm_term%3Da25-64-tier2-awa%26utm_content%3Dbrand-gesa2215h-swipe%26adfcd%3D1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw&r=<=3931&evt=pageLoad&sv=1&asc=D&cdb=AQAY&rn=540696
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerMicrosoft Corporation
Subjectbat.bing.net
Fingerprint36:B0:89:87:47:4A:B0:8A:1F:A8:EB:71:A6:13:8A:FF:CD:94:46:23
ValidityThu, 24 Apr 2025 22:29:23 GMT - Tue, 21 Oct 2025 22:29:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=211063669&tm=gtm002&Ver=2&mid=5f16a3c8-37a1-4ff3-9c4b-e1b0c3e4e01b&bo=2&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&p=https%3A%2F%2Fwww.gesa.com%2F%3Futm_source%3Dthe-trade-desk%26utm_medium%3Dvideoolv%26utm_campaign%3Dbrand-25%26utm_term%3Da25-64-tier2-awa%26utm_content%3Dbrand-gesa2215h-swipe%26adfcd%3D1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw&r=<=3931&evt=pageLoad&sv=1&asc=D&cdb=AQAY&rn=540696 HTTP/1.1
Host: bat.bing.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 7B2EE7DD15924CBA85559896B71E9480 Ref B: OSL30EDGE0205 Ref C: 2025-06-27T02:37:45Z
date: Fri, 27 Jun 2025 02:37:44 GMT
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/uploads/2022/06/Besley-Medium.ttf
200 OK 61 kB URL GET www.gesa.com/wp-content/uploads/2022/06/Besley-Medium.ttf
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type TrueType Font data, 16 tables, 1st "GDEF", 31 names, Microsoft, language 0x409
Hash 6ea276e1187ab3172ecfa4eae8ea0f02
8b8df9df288f9699b2341ff55a86c462f96be7e6
b323e131fad2c38fb73c2a29b61f3207974614d577ca63627d75636ab9296deb
GET /wp-content/uploads/2022/06/Besley-Medium.ttf HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:40 GMT
content-type: application/octet-stream
content-length: 60560
cf-ray: 95619058ecdc56c3-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
etag: "66bbea60-ec90"
last-modified: Tue, 13 Aug 2024 23:21:04 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET api.alpharank.io/api/pixel/script/bc04200588d29fe97c0c8a783f268d7d6ecf1d2de1d1d417f28d36799e47de?c=n&t=1751068800000
200 OK 46 kB URL GET api.alpharank.io/api/pixel/script/bc04200588d29fe97c0c8a783f268d7d6ecf1d2de1d1d417f28d36799e47de?c=n&t=1751068800000
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerLet's Encrypt
Subjectapi.alpharank.io
FingerprintA3:5E:4A:8A:7A:8E:06:59:4C:F8:96:D9:60:04:B4:6A:70:9D:08:8B
ValiditySun, 01 Jun 2025 07:09:33 GMT - Sat, 30 Aug 2025 07:09:32 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (45894), with no line terminators
Hash 9992d813e98bc22d52ec7f8cf5651b3b
e65e1113fe26b7830c9b1f4c279883893e145ea0
4a25be1f0513a03c0595d7adc16dbd4402afaa9f00fdcb2564b53613eba2ad8b
GET /api/pixel/script/bc04200588d29fe97c0c8a783f268d7d6ecf1d2de1d1d417f28d36799e47de?c=n&t=1751068800000 HTTP/1.1
Host: api.alpharank.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Fri, 27 Jun 2025 02:37:44 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 45900
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: undefined
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
ETag: W/"b34c-5l4RE/4mt4MMmx9MJ5iDiT4UXqA"
POST www.gesa.com/cdn-cgi/rum?
204 No Content 0 B URL POST www.gesa.com/cdn-cgi/rum?
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
content-type: application/json
Content-Length: 1351
Origin: https://www.gesa.com
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Fri, 27 Jun 2025 02:37:44 GMT
access-control-allow-origin: https://www.gesa.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 9561906e9e0b56c3-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=3.3.4
200 OK 40 B URL GET www.gesa.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=3.3.4
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with no line terminators
Hash 94d041d462db321cdb888066586f2068
717d2f9da7fb9f9e2bf2058a8177a0344f8a8647
b8166c5475df6a64ab2456e95f64564164ed697d258e8bfed8cebca40efd6fa5
GET /wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=3.3.4 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619050b97256c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f0093-28"
last-modified: Fri, 27 Dec 2024 19:31:31 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.26.3
200 OK 5.3 kB URL GET www.gesa.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.26.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (5286)
Hash 8bb75abdf83d2b16a09ba7a753d2bb50
b416ae7918f24bcfdbdb66b0f79ee4bd6dbf7b46
17864c688a766f27a97e33f1bc5fd8054dc4ea30c0a3866af578a9de48c8c959
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.26.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619050f99556c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 1988502
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-14ce"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.26.2
200 OK 45 kB URL GET www.gesa.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.26.2
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (44580)
Hash 79a591a01877f6c85e4da1c5940fd9db
debff31bb6520e43d3e884d1ce18aabd123c8aec
e7b19e12a9606bdacfc7e4fcf230aa6e23ba5ea25be54136f717516fe698a93e
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.26.2 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 9561905119a156c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f008e-ae50"
last-modified: Fri, 27 Dec 2024 19:31:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/uploads/2024/12/cd-gesa-june-1200px.webp
200 OK 294 kB URL GET www.gesa.com/wp-content/uploads/2024/12/cd-gesa-june-1200px.webp
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x1188, Scaling: [none]x[none], YUV color, decoders should clamp
Size 294 kB (294248 bytes)
Hash e8a13d340a426661d99407fd4ac664ed
f83a262643547db772ae6ea79adae5259f3558bb
358a7f8fe16b7acbea93de879189ee9a0a69200de720744b66ea7acb68681751
GET /wp-content/uploads/2024/12/cd-gesa-june-1200px.webp HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:44 GMT
content-type: image/webp
content-length: 294248
cf-ray: 9561906d3d5756c3-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
etag: "683f8ce1-47d68"
last-modified: Wed, 04 Jun 2025 00:01:37 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-heading.min.css?ver=3.26.3
200 OK 600 B URL GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-heading.min.css?ver=3.26.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (560)
Hash f10e42e93a2e1a1d2713248f62a5b2c8
9a039be6eec3bcf7b440b4776c655186862b97ef
0f516e1b48b0556e9a8e73a4dd9fa9c32d1b580c97b4622da94c3a938f773296
GET /wp-content/plugins/elementor/assets/css/widget-heading.min.css?ver=3.26.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e185456c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378478
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-258"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-counter.min.css?ver=3.26.3
200 OK 793 B URL GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-counter.min.css?ver=3.26.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (753)
Hash 6d0be731e72e51b6b7d307a13add194d
39e4396ed8847c3692c40eab8237e6c7a798fbac
6757a3dd4e2c59669ec142748c5c5d2b7673f5fbfa47bb2addd25debb61fd94c
GET /wp-content/plugins/elementor/assets/css/widget-counter.min.css?ver=3.26.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e487456c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378478
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-319"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/themes/gesa/assets/css/custom.css?ver=1.0.29
200 OK 355 kB URL GET www.gesa.com/wp-content/themes/gesa/assets/css/custom.css?ver=1.0.29
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (51987)
Size 355 kB (354626 bytes)
Hash 751c41d09df0a3a955aeeba186d43a60
49cf87b6fa72bd99c912e50d7e7cb7858d7e084d
f4d785209d5432b353ee6c17b87bc1443f53c8b26fcce19f5a47acbb851d81eb
GET /wp-content/themes/gesa/assets/css/custom.css?ver=1.0.29 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e587c56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 787461
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"673e2502-56942"
last-modified: Wed, 20 Nov 2024 18:05:54 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET cdn.evgnet.com/beacon/gesacu/gesa_prod/scripts/evergage.min.js
200 OK 202 kB URL GET cdn.evgnet.com/beacon/gesacu/gesa_prod/scripts/evergage.min.js
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerDigiCert Inc
Subjectcdn.evergage.com
FingerprintCD:36:97:D3:3A:ED:81:2D:E6:71:69:BE:31:70:30:AE:6C:1B:CA:FA
ValidityWed, 15 Jan 2025 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (626)
Size 202 kB (201602 bytes)
Hash c7dd434f7603eb9fb6b32c5bc0a92c60
a04a2f8b5fe7db7dad36df346d8a39b704982634
006a59f9ad8b0c2c186d32418856aac33f341020ef8393ba84fd4535dd88a472
GET /beacon/gesacu/gesa_prod/scripts/evergage.min.js HTTP/1.1
Host: cdn.evgnet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: VmFYMVh0IswmsqPP+qnNjtBYXqIkP7LN5M1ZOZ8AhZLw8kFpu9jwi4Asm2aEAUuP6TNlm3yMoSo=
x-amz-request-id: T9X5J4EYQW05YQFD
x-amz-replication-status: COMPLETED
last-modified: Thu, 26 Jun 2025 20:14:20 GMT
etag: "367d8e2a51feda0c7deb07be2592765c"
x-amz-server-side-encryption: AES256
cache-control: max-age=120
content-encoding: gzip
x-amz-meta-evergage-beacon-ver: 16
x-amz-meta-evergage-sum: a04a2f8b5fe7db7dad36df346d8a39b704982634
x-amz-version-id: VRo7NciTmtl8NDCIHgZ2vxnY_Yw2So_S
content-type: application/javascript; charset=utf-8
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 73
date: Fri, 27 Jun 2025 02:37:39 GMT
x-served-by: cache-iad-kcgs7200023-IAD, cache-hel1410025-HEL
x-cache: HIT, HIT
x-cache-hits: 2028, 0
x-timer: S1750991859.093307,VS0,VE97
vary: Accept-Encoding
timing-allow-origin: *
content-length: 48811
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=3.3.4
200 OK 30 kB URL GET www.gesa.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=3.3.4
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (30299), with no line terminators
Hash 317fbc87772718eb181ec7feba35e148
e08708d82fba6bdb5d2a6826cc5099662f7daab1
12c3f7bc60c99d1b6b634d6cd16fbb0e26ae75ddda15d7a6e5106cd5dad83f14
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=3.3.4 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e487756c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378478
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f0093-765b"
last-modified: Fri, 27 Dec 2024 19:31:31 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/uploads/2022/06/CircularXXWeb-Bold.woff2
200 OK 75 kB URL GET www.gesa.com/wp-content/uploads/2022/06/CircularXXWeb-Bold.woff2
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type Web Open Font Format (Version 2), TrueType, length 75010, version 3.0
Hash 83b8ceaf77f49c7cffa44107561909e4
7cb5ba19bf94cfbd70f8f723d82361d216432933
d2d92ee9c3d13c54f11e88045a5f5ed45550cee1ce7c1b653a9da645d65400fb
GET /wp-content/uploads/2022/06/CircularXXWeb-Bold.woff2 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:40 GMT
content-type: font/woff2
content-length: 75010
cf-ray: 95619056fbdc56c3-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
etag: "63977dbc-12502"
last-modified: Mon, 12 Dec 2022 19:15:08 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/rates-widget-plugin/rates-v2.php
200 OK 113 kB URL GET www.gesa.com/wp-content/plugins/rates-widget-plugin/rates-v2.php
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
Size 113 kB (113290 bytes)
Hash 9d8f50158953436df682d3dfb25a7cc2
ec1172df12a6ca801bd7475c826aca4e343804bd
4753f3821f4ef6d42148d6db95121892c09216008010c60a7b9d1ef74f90f5f2
GET /wp-content/plugins/rates-widget-plugin/rates-v2.php HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:40 GMT
content-type: text/html; charset=UTF-8
cf-ray: 95619054fb0456c3-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: max-age=600, must-revalidate
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding,Cookie
cf-apo-via: origin,host
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-cache: HIT: 17
x-cache-group: normal
x-cacheable: SHORT
x-content-type-options: nosniff
x-powered-by: WP Engine
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/uploads/2024/03/login-icon.svg
404 Not Found 0 B URL GET www.gesa.com/wp-content/uploads/2024/03/login-icon.svg
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2024/03/login-icon.svg HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Fri, 27 Jun 2025 02:37:44 GMT
content-type: text/html
cf-ray: 9561906f4e4f56c3-OSL
cf-cache-status: EXPIRED
cache-control: max-age=14400
content-encoding: br
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.a23fbd67486c5bedf26c.bundle.min.js
200 OK 5.3 kB URL GET www.gesa.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.a23fbd67486c5bedf26c.bundle.min.js
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (5238)
Hash 36a049e1a85aa08411020acf330174c1
e69001f50ffffe162b8ba96bcf0906a460d60d2b
2d36f3de859594e0d19dbcb55269ea68ee4bcaa121ea385ad2f20f3ccfa51a9a
GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.a23fbd67486c5bedf26c.bundle.min.js HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:44 GMT
content-type: application/javascript
cf-ray: 9561906ffeac56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378482
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f008e-14a2"
last-modified: Fri, 27 Dec 2024 19:31:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/js/counter.b8a75ad37ae3164105fe.bundle.min.js
200 OK 912 B URL GET www.gesa.com/wp-content/plugins/elementor/assets/js/counter.b8a75ad37ae3164105fe.bundle.min.js
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (872)
Hash 31af33c266c952b45d587d1ebdf77e2b
0fc89ff169598bd240c5d8ec394d74426f5beec7
eaf44249caba34db8a695fb3787317ad01e0c27e11a0aba988424c1e19754059
GET /wp-content/plugins/elementor/assets/js/counter.b8a75ad37ae3164105fe.bundle.min.js HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:44 GMT
content-type: application/javascript
cf-ray: 95619071ef9b56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378482
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-390"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/sfmc/personalization/sfmc-personalization-content.js?4
200 OK 29 kB URL GET www.gesa.com/wp-content/sfmc/personalization/sfmc-personalization-content.js?4
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type Unicode text, UTF-8 text, with very long lines (374)
Hash ecb643f25536c3e0ee3032c40c486318
183717f82f13e65230eb972afa4ffb935a71e8fb
a7cce058ee1449cd55e1e5ffa2bf967d5045c91c67fed9f13740be01b0ad1937
GET /wp-content/sfmc/personalization/sfmc-personalization-content.js?4 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 9561904ea8b356c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"66d78696-7085"
last-modified: Tue, 03 Sep 2024 21:58:46 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.min.js?ver=3.3.4
200 OK 681 B URL GET www.gesa.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.min.js?ver=3.3.4
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (681), with no line terminators
Hash f5945db2f3337fd9f1cbef5b07b2a493
8a11439d56af9fb27836bb5f2a30aeb35b93bb5a
a8642bcd147ba3528345f5bd17f788cd524931e093255b2c1c8344677a1ab505
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.min.js?ver=3.3.4 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 9561905119a956c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f0093-2a9"
last-modified: Fri, 27 Dec 2024 19:31:31 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/lib/animations/styles/slideInRight.min.css?ver=3.26.3
200 OK 155 B URL GET www.gesa.com/wp-content/plugins/elementor/assets/lib/animations/styles/slideInRight.min.css?ver=3.26.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with no line terminators
Hash 5144b262df1bba4f71d9dc1db70afeff
53e27a4ca78f4d4ce16cf36554bf914d5e1e3e8e
377461349f66b2ccbd1e1f289cee9ebe37b81a366f5cda5846fd289996a7ec7e
GET /wp-content/plugins/elementor/assets/lib/animations/styles/slideInRight.min.css?ver=3.26.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e285956c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 787461
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-9b"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/themes/gesa/assets/js/global.js?ver=1.0.21
200 OK 44 kB URL GET www.gesa.com/wp-content/themes/gesa/assets/js/global.js?ver=1.0.21
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text
Hash 830f05550bfd68f823c42c2608898f46
be5d40eb60ddf87b8b18946b61908a96ae49a3a3
d06f268c77448178499685670227fec66e99f9a72adddbae7759b49a2c9e46f0
GET /wp-content/themes/gesa/assets/js/global.js?ver=1.0.21 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619051099a56c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"673e217b-ad0f"
last-modified: Wed, 20 Nov 2024 17:50:51 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/uploads/2024/06/gesa-piggy-bank-1500px.webp
200 OK 462 kB URL GET www.gesa.com/wp-content/uploads/2024/06/gesa-piggy-bank-1500px.webp
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1500x1000, Scaling: [none]x[none], YUV color, decoders should clamp
Size 462 kB (461754 bytes)
Hash bd9dd634467c1c94f0c860cceb1dad23
30987962d049342b429916ceaee818e0bbe2da1e
d2b577bacd652e62ee9ba2d4cafc78f0dc028e0a4f5c24f49b1b0a7219f1a69e
GET /wp-content/uploads/2024/06/gesa-piggy-bank-1500px.webp HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:40 GMT
content-type: image/webp
content-length: 461754
cf-ray: 9561905a5d6c56c3-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
etag: "681134cc-70bba"
last-modified: Tue, 29 Apr 2025 20:21:32 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/weglot/dist/css/front-css.css?ver=4.2.9
200 OK 52 kB URL GET www.gesa.com/wp-content/plugins/weglot/dist/css/front-css.css?ver=4.2.9
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (52388)
Hash f0a21b1ef4a430d4261638f4256fb783
97e029eb9c092074f2e2d27e653143a95db207a1
cbbf83c45cce424c26bb4d929e053d264b713b70b8dcee428343b64e06a22056
GET /wp-content/plugins/weglot/dist/css/front-css.css?ver=4.2.9 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e184b56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378478
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f003e-cca5"
last-modified: Fri, 27 Dec 2024 19:30:06 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-image.min.css?ver=3.26.3
200 OK 254 B URL GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-image.min.css?ver=3.26.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
Hash 8845a2429508153631ebd96e6260947a
eaa057f4fdda94f644aca033698796796323495c
69d727e877eb1252411165b099db9df57d68c8745b8765aaf73e931f03d72772
GET /wp-content/plugins/elementor/assets/css/widget-image.min.css?ver=3.26.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e285c56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378478
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-fe"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/uploads/2024/06/gesa-aut-refi-hero-left-1200px.webp
200 OK 142 kB URL GET www.gesa.com/wp-content/uploads/2024/06/gesa-aut-refi-hero-left-1200px.webp
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x1042, Scaling: [none]x[none], YUV color, decoders should clamp
Size 142 kB (141482 bytes)
Hash 7f8b34caf1c84094e13851f509fe7050
de747ed1c12257edc26e8b4750cb3c860918c959
9fd97f085a61d7eb6be75061c470cb81af4b0e96c6293525891f06575ce612cb
GET /wp-content/uploads/2024/06/gesa-aut-refi-hero-left-1200px.webp HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:44 GMT
content-type: image/webp
content-length: 141482
cf-ray: 9561906d2d4f56c3-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
etag: "682b6b5b-228aa"
last-modified: Mon, 19 May 2025 17:33:15 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor-pro/assets/js/posts.aec59265318492b89cb5.bundle.min.js
200 OK 3.3 kB URL GET www.gesa.com/wp-content/plugins/elementor-pro/assets/js/posts.aec59265318492b89cb5.bundle.min.js
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (3273)
Hash fd6bc4970ebcdda5c6450f455cb98f3e
ce44688c61a7bf71a4e473ce29becbda3b481dee
b2c6822ec87c6d8a36812fcd510d95a1ec6c0ba2d0bd87c3fa030da507af26c3
GET /wp-content/plugins/elementor-pro/assets/js/posts.aec59265318492b89cb5.bundle.min.js HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:44 GMT
content-type: application/javascript
cf-ray: 95619071bf8756c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378481
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f008e-cf5"
last-modified: Fri, 27 Dec 2024 19:31:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor-pro/assets/css/conditionals/popup.min.css?ver=3.26.2
200 OK 995 B URL GET www.gesa.com/wp-content/plugins/elementor-pro/assets/css/conditionals/popup.min.css?ver=3.26.2
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (995), with no line terminators
Hash 3034ff16bd46f230e8c546990ff1735a
a80e0d3f3dadb578d99869db272f5cecb9a3997d
3e86e49c78cd2befb9c7e7b27ee263298290728f7489b17077f00c25e37a5838
GET /wp-content/plugins/elementor-pro/assets/css/conditionals/popup.min.css?ver=3.26.2 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e285756c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378478
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f008e-3e3"
last-modified: Fri, 27 Dec 2024 19:31:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/themes/gesa/assets/css/foundation.css?ver=6.5.3
200 OK 172 kB URL GET www.gesa.com/wp-content/themes/gesa/assets/css/foundation.css?ver=6.5.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 172 kB (171517 bytes)
Hash 1ed2f89d28bf87caddf3e2ef1b063da2
0f4995c30d9b98926136555fd26d189878f85143
3e77dafe902b5371d42c7e236b778a91874bfb8bdb2dc82b3ee3d4803d20fd9d
GET /wp-content/themes/gesa/assets/css/foundation.css?ver=6.5.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: text/css
cf-ray: 9561904e587a56c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"63d2e310-29dfd"
last-modified: Thu, 26 Jan 2023 20:31:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/themes/gesa/assets/fonts/fa-solid-900.woff
200 OK 98 kB URL GET www.gesa.com/wp-content/themes/gesa/assets/fonts/fa-solid-900.woff
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type Web Open Font Format, TrueType, length 98016, version 330.15859
Hash 3ded831d708bf90b2da86756551b5c1c
7d8638fccbd53fcbc95db2c601a9f93a3c0b292b
00bca6a9271b5e1cbb3965a74f48c1ce0b72bcbf08790aa2cab95f8dc5362153
GET /wp-content/themes/gesa/assets/fonts/fa-solid-900.woff HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:40 GMT
content-type: font/woff
content-length: 98016
cf-ray: 956190576c0a56c3-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
etag: "63d2e310-17ee0"
last-modified: Thu, 26 Jan 2023 20:31:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/themes/gesa/assets/images/Loans-icon.svg
200 OK 794 B URL GET www.gesa.com/wp-content/themes/gesa/assets/images/Loans-icon.svg
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type SVG Scalable Vector Graphics image
Hash 7c23ee9e0e87b80ca84fb263bd0e5eb5
8ab241d3b6b510607c6a0a476153f28b52f61d9c
ec335d354b53a8fd44ef06fddfb6663dea667f2da5631d8526df515db8d9d3e2
GET /wp-content/themes/gesa/assets/images/Loans-icon.svg HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:40 GMT
content-type: image/svg+xml
cf-ray: 95619056cbc756c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 1658671
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"63d2e310-31a"
last-modified: Thu, 26 Jan 2023 20:31:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/css/conditionals/apple-webkit.min.css?ver=3.26.3
200 OK 7.0 kB URL GET www.gesa.com/wp-content/plugins/elementor/assets/css/conditionals/apple-webkit.min.css?ver=3.26.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (7025), with no line terminators
Hash e9b1e2081a27f02916ca1f02303c6adf
96a85e6703454bb25109acf38dc9756cbfc347f4
02c3b1394964fd713f366fd878ba6c450f8e51618d7d98dcc3ba0b6e94ef3800
GET /wp-content/plugins/elementor/assets/css/conditionals/apple-webkit.min.css?ver=3.26.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e386956c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 787461
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-1b71"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
200 OK 20 kB URL GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectcloudflareinsights.com
Fingerprint9D:9F:FB:08:8A:BA:46:3F:69:F6:F3:D7:AE:78:13:8D:FD:5A:C8:D5
ValidityWed, 25 Jun 2025 22:10:34 GMT - Tue, 23 Sep 2025 23:10:19 GMT
File type JavaScript source, ASCII text, with very long lines (19948), with no line terminators
Hash ec18af6d41f6f278b6aed3bdabffa7bc
62c9e2cab76b888829f3c5335e91c320b22329ae
8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f
GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
Origin: https://www.gesa.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.6.1"
last-modified: Thu, 06 Jun 2024 15:52:56 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 95619051483b56c4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/themes/gesa/style.css?ver=1.1.0
200 OK 1.1 kB URL GET www.gesa.com/wp-content/themes/gesa/style.css?ver=1.1.0
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
Hash e26c617be5fba688c14ecb7d56ef4af4
2a4e00f4bf5d8626ef921792edb19ef8d70d34ca
69bba50b17d75423288fd69eb23a6bf3a4ad2b63e762f64bd01c973228204e28
GET /wp-content/themes/gesa/style.css?ver=1.1.0 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e588456c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378478
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"64ad0f41-453"
last-modified: Tue, 11 Jul 2023 08:13:53 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/ninja-forms-uploads/assets/js/nfpluginsettings.js?ver=3.3.21
200 OK 1.1 kB URL GET www.gesa.com/wp-content/plugins/ninja-forms-uploads/assets/js/nfpluginsettings.js?ver=3.3.21
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text
Hash 1027df8b5bedec89f3ae760880d28bda
b79dbb209fa316693c688f55122ab0a36340ca30
066fd763ae80d8c10477182a76d859fa2ce27405d8599aaf4ff76127389dd65b
GET /wp-content/plugins/ninja-forms-uploads/assets/js/nfpluginsettings.js?ver=3.3.21 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 9561904e588c56c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f0306-42c"
last-modified: Fri, 27 Dec 2024 19:41:58 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/uploads/2025/04/gesa-we-give-a-hoot-1200px.webp
200 OK 237 kB URL GET www.gesa.com/wp-content/uploads/2025/04/gesa-we-give-a-hoot-1200px.webp
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type RIFF (little-endian) data, Web/P image
Size 237 kB (236910 bytes)
Hash 1858942bb622114607b557dd8dbebf1a
f5bae24fef2862fa1cacb0828c4931695b6bd3a4
b9539a7b4844b40a6110e53bb05463b102c172a628be850b99a64c895f7078eb
GET /wp-content/uploads/2025/04/gesa-we-give-a-hoot-1200px.webp HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:40 GMT
content-type: image/webp
content-length: 236910
cf-ray: 9561905a5d6a56c3-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
etag: "68113835-39d6e"
last-modified: Tue, 29 Apr 2025 20:36:05 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=AW-783161191&cx=c>m=45He56p1v79611690za200&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389~104869650~104885889~104885891
200 OK 360 kB URL GET www.googletagmanager.com/gtag/js?id=AW-783161191&cx=c>m=45He56p1v79611690za200&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389~104869650~104885889~104885891
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
File type JavaScript source, ASCII text, with very long lines (5913)
Size 360 kB (360425 bytes)
Hash 8aba82d7fcd868f67344a3f05f5e6be0
44685510bf5812aaf24fa19deb9fa9b34fbc4ed7
9284d52b59e1f17994edf74246c6e230c4ce353c0718f88b734de7a1e7b549b1
GET /gtag/js?id=AW-783161191&cx=c>m=45He56p1v79611690za200&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389~104869650~104885889~104885891 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 27 Jun 2025 02:37:42 GMT
expires: Fri, 27 Jun 2025 02:37:42 GMT
cache-control: private, max-age=900
last-modified: Fri, 27 Jun 2025 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 121858
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-divider.min.css?ver=3.26.3
200 OK 4.3 kB URL GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-divider.min.css?ver=3.26.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (4258)
Hash 079b5349fecd0b48f2b0bcf0c72ae89c
bdb83e3d94de26ad97ab5c0857f070a69a0e6e7b
961057a6c93194414e7d9c9694f0b1db365807e2f7362285adbcaab9dc0e0cec
GET /wp-content/plugins/elementor/assets/css/widget-divider.min.css?ver=3.26.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e285a56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 787461
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-10ca"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/tablepress/css/build/default.css?ver=3.0.1
200 OK 6.2 kB URL GET www.gesa.com/wp-content/plugins/tablepress/css/build/default.css?ver=3.0.1
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type Unicode text, UTF-8 text, with very long lines (6174)
Hash 9bae56f46cb8d01d16bc7087bd985c35
3b1a7874e36fb72f29b642998161f7f6466d1042
1f80e6b33604a220dc354d5efbe1958827ced1aca779688a8372188b59454f15
GET /wp-content/plugins/tablepress/css/build/default.css?ver=3.0.1 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e487656c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378478
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f0043-1823"
last-modified: Fri, 27 Dec 2024 19:30:11 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/themes/gesa/assets/images/Credit-Cards-icon.svg
200 OK 2.5 kB URL GET www.gesa.com/wp-content/themes/gesa/assets/images/Credit-Cards-icon.svg
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type SVG Scalable Vector Graphics image
Hash 7ea05c614452138c0768a4a8fa46b7d8
1b1898f829bc0712fd17a8520f44c4a7dea61fd1
0bc396bf8a3b9e6cd2c8275599ba07f84ae64a6833d38ae8739e44ca553daf0a
GET /wp-content/themes/gesa/assets/images/Credit-Cards-icon.svg HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:40 GMT
content-type: image/svg+xml
cf-ray: 95619056dbce56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"63d2e310-9da"
last-modified: Thu, 26 Jan 2023 20:31:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-QDJGCG1PN8&cx=c>m=45He56p1v9200811032za200&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389
200 OK 403 kB URL GET www.googletagmanager.com/gtag/js?id=G-QDJGCG1PN8&cx=c>m=45He56p1v9200811032za200&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (6004)
Size 403 kB (402631 bytes)
Hash 8ff769ab61a0d9f61352f7ebb6149291
1853435df7f8e2943847a025e3ae750f47699a22
15db9ea0c29a4fe3ed2618e8603042e1be9aa2964d998f4465e56fe03ad68e8a
GET /gtag/js?id=G-QDJGCG1PN8&cx=c>m=45He56p1v9200811032za200&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 27 Jun 2025 02:37:42 GMT
expires: Fri, 27 Jun 2025 02:37:42 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 133433
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-tabs.min.css?ver=3.26.3
200 OK 4.2 kB URL GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-tabs.min.css?ver=3.26.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (4157)
Hash f3a0813b8cb31181751e4371136dda91
b5dec1a007b2244dd62a6f7ac5dfd7fd7422fedd
1a10b999796bc5884d347f4c85cf4556bab059bd2620b64f6349ca5177ebc354
GET /wp-content/plugins/elementor/assets/css/widget-tabs.min.css?ver=3.26.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e487256c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378478
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-1065"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/themes/gesa/assets/js/plugins/jquery.fancybox.v3.js?ver=3.5.2
200 OK 68 kB URL GET www.gesa.com/wp-content/themes/gesa/assets/js/plugins/jquery.fancybox.v3.js?ver=3.5.2
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (31972)
Hash 6cedf08f4d46259f5ecc93f01897e8a1
28ce333e6e041fe84e6ded91e23f1f4c2fe5e9b5
ff4961dda4383b1a3727e5aa981024c40cb07005f89e3264a3ab423eb356380f
GET /wp-content/themes/gesa/assets/js/plugins/jquery.fancybox.v3.js?ver=3.5.2 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619050f99056c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 787462
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"63d2e311-10aa1"
last-modified: Thu, 26 Jan 2023 20:31:13 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/tablepress/js/jquery.datatables.min.js?ver=3.0.1
200 OK 94 kB URL GET www.gesa.com/wp-content/plugins/tablepress/js/jquery.datatables.min.js?ver=3.0.1
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65458)
Hash cdef6f655b9f375c9b8cfc47090a14a8
4298ea0da7ea7e43b78b11373f90826e9c3b7f95
27afe8dc1860709ec297922ca0c639163039d0a480db4e54cf8dc57a1e91603c
GET /wp-content/plugins/tablepress/js/jquery.datatables.min.js?ver=3.0.1 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 9561905119ac56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f0043-16d25"
last-modified: Fri, 27 Dec 2024 19:30:11 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
POST pixel.alpharank.io/pixel.gif?id=bc04200588d29fe97c0c8a783f268d7d6ecf1d2de1d1d417f28d36799e47de&duid=4.32.4-yj3ysl9m-mce7cirx&fp=6c54ffbcac9e76ee5f4f397b8e605cac&ev=pageload&v=4.32.4&dl=https%3A%2F%2Fwww.gesa.com%2F%3Futm_source%3Dthe-trade-desk%26utm_medium%3Dvideoolv%26utm_campaign%3Dbrand-25%26utm_term%3Da25-64-tier2-awa%26utm_content%3Dbrand-gesa2215h-swipe%26adfcd%3D1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw&ts=1750991863955&de=UTF-8&sr=1280x1024&vp=1280x1024&cd=24&dt=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&bn=Firefox%20134&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&utm_source=the-trade-desk&utm_medium=videoolv&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&utm_campaign=brand-25
200 OK 35 B URL POST pixel.alpharank.io/pixel.gif?id=bc04200588d29fe97c0c8a783f268d7d6ecf1d2de1d1d417f28d36799e47de&duid=4.32.4-yj3ysl9m-mce7cirx&fp=6c54ffbcac9e76ee5f4f397b8e605cac&ev=pageload&v=4.32.4&dl=https%3A%2F%2Fwww.gesa.com%2F%3Futm_source%3Dthe-trade-desk%26utm_medium%3Dvideoolv%26utm_campaign%3Dbrand-25%26utm_term%3Da25-64-tier2-awa%26utm_content%3Dbrand-gesa2215h-swipe%26adfcd%3D1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw&ts=1750991863955&de=UTF-8&sr=1280x1024&vp=1280x1024&cd=24&dt=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&bn=Firefox%20134&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&utm_source=the-trade-desk&utm_medium=videoolv&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&utm_campaign=brand-25
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerLet's Encrypt
Subjectpixel.alpharank.io
FingerprintF0:85:29:E2:66:50:9B:9A:57:81:3C:2F:37:5A:B8:9F:45:E0:AD:08
ValidityTue, 27 May 2025 07:05:24 GMT - Mon, 25 Aug 2025 07:05:23 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
POST /pixel.gif?id=bc04200588d29fe97c0c8a783f268d7d6ecf1d2de1d1d417f28d36799e47de&duid=4.32.4-yj3ysl9m-mce7cirx&fp=6c54ffbcac9e76ee5f4f397b8e605cac&ev=pageload&v=4.32.4&dl=https%3A%2F%2Fwww.gesa.com%2F%3Futm_source%3Dthe-trade-desk%26utm_medium%3Dvideoolv%26utm_campaign%3Dbrand-25%26utm_term%3Da25-64-tier2-awa%26utm_content%3Dbrand-gesa2215h-swipe%26adfcd%3D1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw&ts=1750991863955&de=UTF-8&sr=1280x1024&vp=1280x1024&cd=24&dt=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&bn=Firefox%20134&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&utm_source=the-trade-desk&utm_medium=videoolv&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&utm_campaign=brand-25 HTTP/1.1
Host: pixel.alpharank.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
Origin: https://www.gesa.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Server: nginx/1.12.2
Date: Fri, 27 Jun 2025 02:37:46 GMT
Content-Type: application/octet-stream
Content-Length: 35
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.gesa.com
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Set-Cookie: __arank.uid__=1f9c6f09-faa7-428e-b193-e4299ed4397d; Max-Age=63072000; Path=/; Expires=Sun, 27 Jun 2027 02:37:46 GMT; Secure; SameSite=None
ETag: W/"23-X71HIiL+uKIs9biqXcW44Tr4jis"
GET www.gesa.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
200 OK 88 kB URL GET www.gesa.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (65447)
Hash 826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: application/javascript
cf-ray: 9561904e588656c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378478
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"64ecd5ef-15601"
last-modified: Mon, 28 Aug 2023 17:14:23 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.26.3
200 OK 45 kB URL GET www.gesa.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.26.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (45388)
Hash 440fca02edc9a588dd656fe08e04967e
d4ff3e9961f3ce7ec9ac7723fc19dfbb647d72b6
f19646abb920a343f7ccc5ae0cb6e549143942bf0311546e87873b7dfdba7538
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.26.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619051099956c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 787462
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-b174"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
POST www.gesa.com/wp-admin/admin-ajax.php
200 OK 0 B URL POST www.gesa.com/wp-admin/admin-ajax.php
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Cache-Control: no-cache
X-Requested-With: XMLHttpRequest
Content-Length: 625
Origin: https://www.gesa.com
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:43 GMT
content-type: text/html; charset=UTF-8
cf-ray: 95619066fac856c3-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: no-cache, must-revalidate, max-age=0, no-store
content-encoding: br
expires: Wed, 11 Jan 1984 05:00:00 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
access-control-allow-credentials: true
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-powered-by: WP Engine
x-robots-tag: noindex
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/pixelyoursite/dist/scripts/public.js?ver=10.0.3.1
200 OK 142 kB URL GET www.gesa.com/wp-content/plugins/pixelyoursite/dist/scripts/public.js?ver=10.0.3.1
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, Unicode text, UTF-8 text
Size 142 kB (141750 bytes)
Hash 6159d7fb0be190bfa1352bc16c0e3aa2
6f62e59c3785bf1a602db9d497bb1ef1a4a7e9d5
95684a96ad41a06c52e7b3f778a8c90486fec62431db6743f140e788d81ae8ee
GET /wp-content/plugins/pixelyoursite/dist/scripts/public.js?ver=10.0.3.1 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: application/javascript
cf-ray: 9561904e98a956c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 787461
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f002b-229b6"
last-modified: Fri, 27 Dec 2024 19:29:47 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1
200 OK 1.8 kB URL GET www.gesa.com/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (1801), with no line terminators
Hash 4d43b2fcb5ef3e6afdcd539f46148514
0ff4d5160beb004c439b20c6343044917c629d10
9aa9bb8be2b834059533ce5de7eed3a662ad3d3e70643bbe5f75265075e9bd28
GET /wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619050a96956c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-709"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=3.3.4
200 OK 138 kB URL GET www.gesa.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=3.3.4
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (45047)
Size 138 kB (137541 bytes)
Hash 3266c8f80b985a3be04473bceaee5f0b
2eafe5ffdecbcf187c57f70cf7e8e96e466392e0
25c1ba620b1fd2e9000735c704677c7d618af09c6b82cb206346df3ceffdd495
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=3.3.4 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619050c97956c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f0093-21945"
last-modified: Fri, 27 Dec 2024 19:31:31 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtm.js?id=GTM-MTFL685
200 OK 478 kB URL GET www.googletagmanager.com/gtm.js?id=GTM-MTFL685
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (59261)
Size 478 kB (477460 bytes)
Hash 0f3a3e82725291e27260407d78f9a67f
92694f4167ad9c624e3a834a8435cd279833f9c0
969d73a7c9957bf102ad9e54aef7aa773e3f11222a25dec90184a46b793824ac
GET /gtm.js?id=GTM-MTFL685 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 27 Jun 2025 02:37:40 GMT
expires: Fri, 27 Jun 2025 02:37:40 GMT
cache-control: private, max-age=900
last-modified: Fri, 27 Jun 2025 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1319:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1319:0
report-to: {"group":"ascgcycc:1319:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1319:0"}],}
server: Google Tag Manager
content-length: 144717
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET bat.bing.com/bat.js
200 OK 53 kB IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerMicrosoft Corporation
Subjectwww.bing.com
Fingerprint42:FB:17:7D:A8:3B:A5:42:94:4A:3F:29:95:40:EB:9D:E5:9B:B6:B3
ValidityThu, 12 Jun 2025 05:26:50 GMT - Tue, 09 Dec 2025 05:26:50 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (52941), with no line terminators
Hash 8aa3621e078f553b342b105272dd45fc
7d0086d79b7ba961871becf1f55233d2cf9750cb
c4e400da2b9e9a111a08457d1de07c9280c7233e4a305b967da320564a83eb0f
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 14978
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 08 May 2025 19:07:55 GMT
accept-ranges: bytes
etag: "8077e3804cc0db1:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 37B462CB1B5C490C98D7562B872459D7 Ref B: OSL30EDGE0213 Ref C: 2025-06-27T02:37:43Z
date: Fri, 27 Jun 2025 02:37:43 GMT
X-Firefox-Spdy: h2
GET www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-H1S93VJW48&cid=1623869566.1750991863>m=45je56p1v896984732z879611690za200zb79611690&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389&z=1939060959
200 OK 42 B URL GET www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-H1S93VJW48&cid=1623869566.1750991863>m=45je56p1v896984732z879611690za200zb79611690&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389&z=1939060959
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subject*.google.no
Fingerprint06:9A:0B:8C:DF:AC:70:7A:12:56:3A:16:E7:C4:85:BA:3E:C8:E2:63
ValidityMon, 02 Jun 2025 08:38:19 GMT - Mon, 25 Aug 2025 08:38:18 GMT
File type GIF image data, version 89a, 1 x 1
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-H1S93VJW48&cid=1623869566.1750991863>m=45je56p1v896984732z879611690za200zb79611690&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389&z=1939060959 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 27 Jun 2025 02:37:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor-pro/assets/css/modules/sticky.min.css?ver=3.26.2
200 OK 162 B URL GET www.gesa.com/wp-content/plugins/elementor-pro/assets/css/modules/sticky.min.css?ver=3.26.2
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with no line terminators
Hash 7305ed8a30b2e9610fea4e383b7d1756
24bef514e8dbd4dc0cbebb686639085dccbb9b4e
6f0b2e96bd88c2d8512dfd204adaf2251376467a1f834a51c66ce85f0051979d
GET /wp-content/plugins/elementor-pro/assets/css/modules/sticky.min.css?ver=3.26.2 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: text/css
cf-ray: 95619050895d56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f008e-a2"
last-modified: Fri, 27 Dec 2024 19:31:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.26.2
200 OK 3.7 kB URL GET www.gesa.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.26.2
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (3720)
Hash 3e31a0ddb1f910fc672d22e6435b95ed
f478fd262840bfb394da94a2f5dd95eed4991194
34bbd1c367ffc7d80fcff86c7e5f8777e70f4911bb324e8ecfc7dd3604a96e68
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.26.2 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619050996456c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f008e-e89"
last-modified: Fri, 27 Dec 2024 19:31:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/themes/gesa/assets/fonts/fa-brands-400.woff
200 OK 88 kB URL GET www.gesa.com/wp-content/themes/gesa/assets/fonts/fa-brands-400.woff
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type Web Open Font Format, TrueType, length 87520, version 330.15859
Hash df02c782834b113d605d8329368737b4
0564668471cfb513324f231553e2250ba19e1ae1
4ad88e6a32db51a41cff1741970ca95b3e433fbfb8be269c72f881a42f2b88c6
GET /wp-content/themes/gesa/assets/fonts/fa-brands-400.woff HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:40 GMT
content-type: font/woff
content-length: 87520
cf-ray: 9561905a5d6e56c3-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
etag: "63d2e310-155e0"
last-modified: Thu, 26 Jan 2023 20:31:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/themes/gesa/assets/js/plugins/slick.min.js?ver=1.8.1
200 OK 54 kB URL GET www.gesa.com/wp-content/themes/gesa/assets/js/plugins/slick.min.js?ver=1.8.1
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (53179)
Hash 8c3cb689b61e4bb56b8d25c7bf022b23
517087c82820707d250d070b91b61a14c922f09e
7e6c39ab37a92035619ffbf66dd293f6d6980fc1bebdaeb9a0b922775abc32eb
GET /wp-content/themes/gesa/assets/js/plugins/slick.min.js?ver=1.8.1 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619050e98856c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"63d2e311-d13f"
last-modified: Thu, 26 Jan 2023 20:31:13 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET secure.node7seat.com/js/219777.js
0 B URL GET secure.node7seat.com/js/219777.js
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/219777.js HTTP/1.1
Host: secure.node7seat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.gesa.com/wp-content/themes/gesa/assets/images/Investments-icon.svg
200 OK 1.6 kB URL GET www.gesa.com/wp-content/themes/gesa/assets/images/Investments-icon.svg
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type SVG Scalable Vector Graphics image
Hash fd432b1acf63c5b32a04c5f28780819b
2340851a672fde0620fba776f9729361de25fe73
6e72cd55c905f3b710316c822d2dcfc305b17460b58d73639294b9b5867ec7d5
GET /wp-content/themes/gesa/assets/images/Investments-icon.svg HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:40 GMT
content-type: image/svg+xml
cf-ray: 95619056ebd056c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"63d2e310-659"
last-modified: Thu, 26 Jan 2023 20:31:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/uploads/2022/10/gesa-teller-1200px-1024x655.webp
200 OK 40 kB URL GET www.gesa.com/wp-content/uploads/2022/10/gesa-teller-1200px-1024x655.webp
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type RIFF (little-endian) data, Web/P image
Hash 8a64a575dfdb65e18424786f816b8f13
b4f7b3aa5c99c192cbde8124b5e805dbedfe9748
9e4c528c81420970cf3928c91de7e3b2da68bd2d8134ecf49e6bc48fa33a6479
GET /wp-content/uploads/2022/10/gesa-teller-1200px-1024x655.webp HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:43 GMT
content-type: image/webp
content-length: 39500
cf-ray: 9561906d2d4956c3-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378480
cache-control: public, max-age=31536000
etag: "681941ac-9a4c"
last-modified: Mon, 05 May 2025 22:54:36 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/js/text-editor.2cbb801863b5118e0825.bundle.min.js
200 OK 1.4 kB URL GET www.gesa.com/wp-content/plugins/elementor/assets/js/text-editor.2cbb801863b5118e0825.bundle.min.js
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (1320)
Hash 21318d007c7e67585e221bae73e68e23
d448b100b620ef40805d88640e08f068cd006564
a63b112a3356b8e207a6bb7826881349bf66f9b0a3af7db622200ce43b52487e
GET /wp-content/plugins/elementor/assets/js/text-editor.2cbb801863b5118e0825.bundle.min.js HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:44 GMT
content-type: application/javascript
cf-ray: 956190700eb956c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378482
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-550"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
POST region1.analytics.google.com/g/collect?v=2&tid=G-H1S93VJW48>m=45je56p1v896984732z879611690za200zb79611690&_p=1750991859713&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389&cid=1623869566.1750991863&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1750991863&sct=1&seg=0&dl=https%3A%2F%2Fwww.gesa.com%2F%3Futm_source%3Dthe-trade-desk%26utm_medium%3Dvideoolv%26utm_campaign%3Dbrand-25%26utm_term%3Da25-64-tier2-awa%26utm_content%3Dbrand-gesa2215h-swipe%26adfcd%3D1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw&dt=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&en=page_view&_fv=1&_ss=1&tfd=5214
204 No Content 0 B URL POST region1.analytics.google.com/g/collect?v=2&tid=G-H1S93VJW48>m=45je56p1v896984732z879611690za200zb79611690&_p=1750991859713&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389&cid=1623869566.1750991863&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1750991863&sct=1&seg=0&dl=https%3A%2F%2Fwww.gesa.com%2F%3Futm_source%3Dthe-trade-desk%26utm_medium%3Dvideoolv%26utm_campaign%3Dbrand-25%26utm_term%3Da25-64-tier2-awa%26utm_content%3Dbrand-gesa2215h-swipe%26adfcd%3D1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw&dt=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&en=page_view&_fv=1&_ss=1&tfd=5214
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-H1S93VJW48>m=45je56p1v896984732z879611690za200zb79611690&_p=1750991859713&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389&cid=1623869566.1750991863&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1750991863&sct=1&seg=0&dl=https%3A%2F%2Fwww.gesa.com%2F%3Futm_source%3Dthe-trade-desk%26utm_medium%3Dvideoolv%26utm_campaign%3Dbrand-25%26utm_term%3Da25-64-tier2-awa%26utm_content%3Dbrand-gesa2215h-swipe%26adfcd%3D1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw&dt=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&en=page_view&_fv=1&_ss=1&tfd=5214 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
Origin: https://www.gesa.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.gesa.com
date: Fri, 27 Jun 2025 02:37:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:158:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:158:0
report-to: {"group":"ascnsrsggc:158:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:158:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET bat.bing.com/p/action/211063669.js
200 OK 4.1 kB URL GET bat.bing.com/p/action/211063669.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerMicrosoft Corporation
Subjectwww.bing.com
Fingerprint42:FB:17:7D:A8:3B:A5:42:94:4A:3F:29:95:40:EB:9D:E5:9B:B6:B3
ValidityThu, 12 Jun 2025 05:26:50 GMT - Tue, 09 Dec 2025 05:26:50 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Hash 26d45b908c19e99c17981c2405dd4386
d7060216c6035a92f6f9b3a4d5ef96fedeca8560
fe0a646b8944fdbe3a4c12787c6ec8a8581e41cba57161d2197878815c47af08
GET /p/action/211063669.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private,max-age=60
content-type: application/javascript; charset=utf-8
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: EDE1AC4EC24A4681A9A4CFB0B8556FB0 Ref B: OSL30EDGE0213 Ref C: 2025-06-27T02:37:44Z
date: Fri, 27 Jun 2025 02:37:44 GMT
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-spacer.min.css?ver=3.26.3
200 OK 1.3 kB URL GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-spacer.min.css?ver=3.26.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (1304)
Hash 5f3a01e58c84ff33aef6dbd63df2123c
5efccbdc31fb5e5250e87f6db8e54d4841fd5828
76a4630a99c4b6ddaccaa026a4b6b9777fb7cc12f40c642e57fe3721e10bdd13
GET /wp-content/plugins/elementor/assets/css/widget-spacer.min.css?ver=3.26.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e285856c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-540"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css?ver=3.26.2
200 OK 27 kB URL GET www.gesa.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css?ver=3.26.2
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type Unicode text, UTF-8 text, with very long lines (26814)
Hash 917807fcd49ed1d6f66afd7a10d67d16
b16ced3e543bbdc6cfb58378c73cd1b863ac9c75
1778ac7a53748fe35c5287bf8c802c1f20f36b22b55f00e554afb368c7936e4f
GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css?ver=3.26.2 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e285d56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378478
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f008e-68eb"
last-modified: Fri, 27 Dec 2024 19:31:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
POST gesacu.us-1.evergage.com/pr?.top=3057&action=View%20Homepage&.tt=639&.ttdns=33&.dt=3888&.lt=3932&.btdns=10&.bv=16&_ak=gesacu&_ds=gesa_prod&.scv=192&channel=Web&_r=428647&.anonId=997ddd638c6b7046&_anon=true
204 No Content 0 B URL POST gesacu.us-1.evergage.com/pr?.top=3057&action=View%20Homepage&.tt=639&.ttdns=33&.dt=3888&.lt=3932&.btdns=10&.bv=16&_ak=gesacu&_ds=gesa_prod&.scv=192&channel=Web&_r=428647&.anonId=997ddd638c6b7046&_anon=true
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerAmazon
Subject*.us-1.evergage.com
Fingerprint73:B3:09:B9:18:21:E2:68:C5:B6:24:6D:23:75:CE:32:57:2A:37:EA
ValidityThu, 08 May 2025 00:00:00 GMT - Tue, 02 Jun 2026 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pr?.top=3057&action=View%20Homepage&.tt=639&.ttdns=33&.dt=3888&.lt=3932&.btdns=10&.bv=16&_ak=gesacu&_ds=gesa_prod&.scv=192&channel=Web&_r=428647&.anonId=997ddd638c6b7046&_anon=true HTTP/1.1
Host: gesacu.us-1.evergage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 0
Origin: https://www.gesa.com
DNT: 1
Connection: keep-alive
Cookie: AWSALBTGCORS=v761XcIc2T2HI3EZUKdKQejEHsZgCpXWA5e1SxViaxl+W1vOrWXmNvFK9s9JFLwSJoTISZ/zEEDGMGKlhMGy4xzn2IngUVW1+03t6UIM/TFqapw+0g6cjFMSD3ZVBy8CFga2/NlNngbd9JnfxunI7ISG7C3QHvxDbzjVGANTN3rV5Bzc0sw=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 27 Jun 2025 02:37:42 GMT
set-cookie: AWSALBTG=8h5FsyYBSSHuf6H7Kudr5LcenWPiFNSFoKfoeVPS1mTT22Ez3f2E+BMEMxdXerND6dLksTz3tQZhMw6tGigszzRmo5NYVbtsWA8ZU0NO9SzX1V+NQj7NenVyPCn8jX0mSgKAaysgAUWKUqTIn7GleYBbgRsrODWLW0IN3xK3bk5FNGP5lpU=; Expires=Fri, 04 Jul 2025 02:37:42 GMT; Path=/
AWSALBTGCORS=8h5FsyYBSSHuf6H7Kudr5LcenWPiFNSFoKfoeVPS1mTT22Ez3f2E+BMEMxdXerND6dLksTz3tQZhMw6tGigszzRmo5NYVbtsWA8ZU0NO9SzX1V+NQj7NenVyPCn8jX0mSgKAaysgAUWKUqTIn7GleYBbgRsrODWLW0IN3xK3bk5FNGP5lpU=; Expires=Fri, 04 Jul 2025 02:37:42 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: https://www.gesa.com
timing-allow-origin: *
x-content-type-options: nosniff
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/uploads/2025/05/favIcon2.png
200 OK 2.6 kB URL GET www.gesa.com/wp-content/uploads/2025/05/favIcon2.png
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type PNG image data, 150 x 150, 8-bit colormap, non-interlaced
Hash 3b17f83377e129f64d3efc443b199284
51061459460fa67d4eb0acb4c47d2b0c363a73b0
1a8c188b356460e61cbac8f235f45dbb90b64a3552dc51cabbd4cbcc08047cb9
GET /wp-content/uploads/2025/05/favIcon2.png HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:43 GMT
content-type: image/png
content-length: 2604
cf-ray: 9561906ccd2956c3-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 729293
cache-control: public, max-age=31536000
etag: "6830df59-196b"
last-modified: Fri, 23 May 2025 20:49:29 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept, Accept-Encoding
cf-bgj: imgq:100,h2pri
cf-polished: origSize=6507
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/destination?id=AW-794148304&cx=c>m=45je56p1v896984732za200zb79611690&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389
200 OK 360 kB URL GET www.googletagmanager.com/gtag/destination?id=AW-794148304&cx=c>m=45je56p1v896984732za200zb79611690&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
File type JavaScript source, ASCII text, with very long lines (5913)
Size 360 kB (360321 bytes)
Hash 63572fd59275ce757a6e9b046893851e
38419b4df8281a368ee75c2f2a88b8a029501574
007320fdd62c0c9551322e620764c00bdc35e501f9402d2f58a28445a8de0c24
GET /gtag/destination?id=AW-794148304&cx=c>m=45je56p1v896984732za200zb79611690&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 27 Jun 2025 02:37:43 GMT
expires: Fri, 27 Jun 2025 02:37:43 GMT
cache-control: private, max-age=900
last-modified: Fri, 27 Jun 2025 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcysghrgc:42:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcysghrgc:42:0
report-to: {"group":"ascgcysghrgc:42:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcysghrgc:42:0"}],}
server: Google Tag Manager
content-length: 122100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET secure.node7seat.com/js/219777.js
0 B URL GET secure.node7seat.com/js/219777.js
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/219777.js HTTP/1.1
Host: secure.node7seat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.gesa.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.3
200 OK 10 kB URL GET www.gesa.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (10020)
Hash 284953f0e0a570aa06d6b527c45a55bb
c4b8089261f001829f0d6e522928f6d912db7d1f
41788f27f61aab4174275eb5fbbbcaffde0f4f0f07e6900592affad38e09b154
GET /wp-includes/js/jquery/ui/menu.min.js?ver=1.13.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619050d98056c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"667d6e6f-27d7"
last-modified: Thu, 27 Jun 2024 13:51:43 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/pixelyoursite/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=6.7.1
200 OK 1.3 kB URL GET www.gesa.com/wp-content/plugins/pixelyoursite/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=6.7.1
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (1146)
Hash ff9016c99f73c592c2648319ea6d2074
f2918fb5f72121b67f74c5f5ccbb47a2eb1317b0
37045bf0d243623db4f2e99567c986944957b336dafa6368f4f75bcbad6fc4fa
GET /wp-content/plugins/pixelyoursite/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=6.7.1 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: application/javascript
cf-ray: 9561904e789856c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378478
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f002b-525"
last-modified: Fri, 27 Dec 2024 19:29:47 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-includes/js/imagesloaded.min.js?ver=5.0.0
200 OK 5.5 kB URL GET www.gesa.com/wp-includes/js/imagesloaded.min.js?ver=5.0.0
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (4358)
Hash 6823120876c9afc8929418c9a6f8e343
90b0adb37d70ffec5f9189c36bb0027c310c9502
b65b3de1bc923b9355248a0d941a0eaee15dfb9a6b8eadb51323a8df6189dcd1
GET /wp-includes/js/imagesloaded.min.js?ver=5.0.0 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619050a96756c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 787462
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"64d67b72-1590"
last-modified: Fri, 11 Aug 2023 18:18:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/rates-widget-plugin/populate-rates-on-page-api.php
200 OK 117 kB URL GET www.gesa.com/wp-content/plugins/rates-widget-plugin/populate-rates-on-page-api.php
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
Size 117 kB (116788 bytes)
Hash 327b38cddd856ec1237408012d271201
19b60260c60918fab056a81db1752915d201d7f9
5a73696fad5748a0261de5176789ab1a7ac0f4e6ec64340d6988a711d9e011e4
GET /wp-content/plugins/rates-widget-plugin/populate-rates-on-page-api.php HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:40 GMT
content-type: text/html; charset=UTF-8
cf-ray: 95619054fb0356c3-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: max-age=600, must-revalidate
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding,Cookie
cf-apo-via: origin,host
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-cache: HIT: 22
x-cache-group: normal
x-cacheable: SHORT
x-content-type-options: nosniff
x-powered-by: WP Engine
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/uploads/2022/10/gesa-grant-1200px-768x492.webp
200 OK 69 kB URL GET www.gesa.com/wp-content/uploads/2022/10/gesa-grant-1200px-768x492.webp
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 768x492, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 7dca55f177bd970e2d72d217242c502d
9ccd828aefa73caf2a168811f1b7e7aa669eab0a
a2c5dcb22c3a2e550d271cf179b6923db3fe021785c9e1dcd03c0fa4db4431bc
GET /wp-content/uploads/2022/10/gesa-grant-1200px-768x492.webp HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:43 GMT
content-type: image/webp
content-length: 69078
cf-ray: 9561906d2d4d56c3-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378480
cache-control: public, max-age=31536000
etag: "68194662-10dd6"
last-modified: Mon, 05 May 2025 23:14:42 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/js/tabs.3919f4174431c122f3d8.bundle.min.js
200 OK 3.7 kB URL GET www.gesa.com/wp-content/plugins/elementor/assets/js/tabs.3919f4174431c122f3d8.bundle.min.js
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (3675)
Hash d0dbbfc3874324aadc700e3c8c3b9819
77ba603c5a8483cf71387a39fe065fb69db8cd25
32dc6ac67d5dd37b2cec799d409d55f1c5b15f754b483c744b240bc87e939105
GET /wp-content/plugins/elementor/assets/js/tabs.3919f4174431c122f3d8.bundle.min.js HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:44 GMT
content-type: application/javascript
cf-ray: 95619071ef9956c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378482
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-e83"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-text-editor.min.css?ver=3.26.3
200 OK 704 B URL GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-text-editor.min.css?ver=3.26.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (664)
Hash 08f0908af18db191b71eaff968b70de8
4de86c88778c1c6a0dbb5088838b6a74e3a309bf
2cb144eae776a6b5f12d79f962be656e56d697727437ab17d67a99dc96d1c9dd
GET /wp-content/plugins/elementor/assets/css/widget-text-editor.min.css?ver=3.26.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e185356c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378478
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-2c0"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css?ver=3.26.3
200 OK 10 kB URL GET www.gesa.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css?ver=3.26.3
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (10270)
Hash 6c4df7f3fb7aa5161e544ccf8f39310c
8481d1b09a0926b09603b6dfe93acdc92775bc3a
73735f7bbac5397376c1bae585a2130d8907146af3a35f58873c7572549e6429
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css?ver=3.26.3 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: text/css
cf-ray: 9561904e285656c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 787461
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f006a-2846"
last-modified: Fri, 27 Dec 2024 19:30:50 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/uploads/2024/06/wisecard-1024x889.jpg
200 OK 103 kB URL GET www.gesa.com/wp-content/uploads/2024/06/wisecard-1024x889.jpg
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JPEG image data, progressive, precision 8, 1024x889, components 3
Size 103 kB (102693 bytes)
Hash 24a7dd6011966834e17e42947ebadcc0
c18cb87a7770b8819dc477347b25564d5cf0e67e
ab4585772fb5d54e9c17bd2d8fd2256b672cc734106f221161cd3bd80b3d1449
GET /wp-content/uploads/2024/06/wisecard-1024x889.jpg HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22%2C%22consents%22:[]}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B; _gcl_au=1.1.371077799.1750991862; pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.gesa.com/; pys_utm_source=the-trade-desk; pys_utm_medium=videoolv; pys_utm_campaign=brand-25; pys_utm_term=a25-64-tier2-awa; pys_utm_content=brand-gesa2215h-swipe; last_pysTrafficSource=direct; last_pys_landing_page=https://www.gesa.com/; last_pys_utm_source=the-trade-desk; last_pys_utm_medium=videoolv; last_pys_utm_campaign=brand-25; last_pys_utm_term=a25-64-tier2-awa; last_pys_utm_content=brand-gesa2215h-swipe; _fbp=fb.1.1750991862811.7794935958; _ga_QDJGCG1PN8=GS2.1.s1750991862$o1$g0$t1750991862$j60$l0$h0; _ga=GA1.1.1623869566.1750991863; _ga_H1S93VJW48=GS2.1.s1750991863$o1$g0$t1750991863$j60$l0$h0; _tq_id.TV-6327096327-1.ab9a=838742841b9b9442.1750991863.0.1750991863..; pbid=64d4f6b4601672edb6cc79b7f50bb9230c9ee1531f2f889fd2fae0f2d5e123ac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:43 GMT
content-type: image/jpeg
content-length: 102693
cf-ray: 9561906d2d4e56c3-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
etag: "67eb27e8-19fdc"
last-modified: Mon, 31 Mar 2025 23:40:24 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
cf-bgj: imgq:100,h2pri
cf-polished: origSize=106460
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fwww.gesa.com%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=1371367927.1750991862&dt=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&auid=371077799.1750991862&navt=n&npa=1>m=45He56p1v79611690za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389~104869650~104885889~104885891&tft=1750991862371&tfd=4244&apve=1&apvf=f&img=1
200 OK 0 B URL GET www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fwww.gesa.com%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=1371367927.1750991862&dt=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&auid=371077799.1750991862&navt=n&npa=1>m=45He56p1v79611690za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389~104869650~104885889~104885891&tft=1750991862371&tfd=4244&apve=1&apvf=f&img=1
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subject*.google.com
FingerprintEE:B4:21:E2:07:A7:35:36:27:81:A0:3A:3E:C9:6C:F5:11:A0:7F:5C
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ccm/collect?en=page_view&dl=https%3A%2F%2Fwww.gesa.com%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=1371367927.1750991862&dt=Washington%20Credit%20Union%20%7C%20Loans%20%7C%20Savings%20Accounts%20%7C%20Gesa&auid=371077799.1750991862&navt=n&npa=1>m=45He56p1v79611690za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389~104869650~104885889~104885891&tft=1750991862371&tfd=4244&apve=1&apvf=f&img=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
date: Fri, 27 Jun 2025 02:37:44 GMT
content-type: text/plain
cache-control: no-cache, no-store, must-revalidate
vary: Origin, X-Origin, Referer
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.gesa.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.26.2
200 OK 6.3 kB URL GET www.gesa.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.26.2
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (6219)
Hash 2dda439643a822112d10b9ae21d31aab
653e7a9ecbfb694dfca181fbfa90e9e2c91eeaaf
1222f6e82ad782bdca42fc5c8b48683aa9323cfb933f8da846682c9ad2030f4e
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.26.2 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619051099b56c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f008e-1877"
last-modified: Fri, 27 Dec 2024 19:31:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/themes/gesa/assets/images/Commercial-Banking-icon.svg
200 OK 1.1 kB URL GET www.gesa.com/wp-content/themes/gesa/assets/images/Commercial-Banking-icon.svg
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type SVG Scalable Vector Graphics image
Hash 334c06d31780b2f16fb233eff846c84c
b3cfae44bfddce25b0b0553d64211673712d430e
2d849984aadfbd799da2ee8e12277ac18a70d5e5a2166f73418ba4b46d382432
GET /wp-content/themes/gesa/assets/images/Commercial-Banking-icon.svg HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Cookie: _sfid_0e63={%22anonymousId%22:%22997ddd638c6b7046%22}; _evga_6d54={%22uuid%22:%22997ddd638c6b7046%22}; gcuMember=B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:40 GMT
content-type: image/svg+xml
cf-ray: 95619056cbc456c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"63d2e310-436"
last-modified: Thu, 26 Jan 2023 20:31:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET docs.google.com/spreadsheets/d/1dqILO5rtO9GTQfZ2YtUkh6f-pHzVTlS3pbtjmniH2Xs/gviz/tq?tqx=out:json&sheet=Product%20Terms
200 OK 27 kB URL GET docs.google.com/spreadsheets/d/1dqILO5rtO9GTQfZ2YtUkh6f-pHzVTlS3pbtjmniH2Xs/gviz/tq?tqx=out:json&sheet=Product%20Terms
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subject*.google.com
FingerprintEE:B4:21:E2:07:A7:35:36:27:81:A0:3A:3E:C9:6C:F5:11:A0:7F:5C
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
File type Unicode text, UTF-8 text, with very long lines (26904)
Hash 3d7207b1a89ccfef839eebc2e9533ebf
c003f8bd9cb10beeb7a008ff467a3e59346725a5
fba3815c9c209f93480d34bf409edc92550cee2dbd104cd82d77ad79ecf889b2
GET /spreadsheets/d/1dqILO5rtO9GTQfZ2YtUkh6f-pHzVTlS3pbtjmniH2Xs/gviz/tq?tqx=out:json&sheet=Product%20Terms HTTP/1.1
Host: docs.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
Origin: https://www.gesa.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
x-robots-tag: noindex, nofollow, nosnippet
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 27 Jun 2025 02:37:43 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
content-encoding: gzip
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
access-control-allow-origin: https://www.gesa.com
access-control-expose-headers: Cache-Control,Content-Disposition,Content-Encoding,Content-Length,Content-Type,Date,Expires,Pragma,Server,Transfer-Encoding
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/docs-tt, base-uri 'self';object-src 'self';report-uri https://docs.google.com/spreadsheets/cspreport;script-src 'nonce-qnYxAGOEc4M-UdNc-0vpXA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';worker-src 'self' blob:
reporting-endpoints: default="/spreadsheets/d/1dqILO5rtO9GTQfZ2YtUkh6f-pHzVTlS3pbtjmniH2Xs/web-reports?bl=editors.spreadsheets-frontend_20250617.01_p3&context=eJwV0HlYlFUbBvDj-77nkYCBgWHYZxgYBkgCGchEwWQXxFDSekexTAU3FBVEUT-M3DLNJbUQN1AWkUX9NFNzySB3U9BUEEgpcQMiNRTwQ767P37Xc133da5zn_OYn3K9_vpjlm8mM-EtmWVayKwSjljK7GuFzIxKmRXCRzYy09rKzFsts19gg73M9jnK7KyzzFxdZPaxq8z8tDIrgmS9zM54yez1AJkp3pGZDfj6yWyzv8xWG2WWGySzHXA0WGZPhsisYrjMTsOjaJl1xcnsfILMboO3SWaDQRwvMxXUTJDZfbgzGWdBN0VmbyXLzAneTZVZFAQskFkYtGaiH1RZMqvLkdljiFohs3EQvF5msZC4QWaT4Q48grXfyWw7GHJlNgjKt8nsJLwBqzyZTSjEu4uQQ_U-md2E7AMyWwN2h2TmCdUnkUPIKZnFQ_gV9IB9jcy84N5tmXVA-R3cDT_U479Q9bvMboC2WWb-kPsA-wV9i8yC4DBUwXm4DY8fYlcwtVtmGRAumlgiZEomtgoGmpvYcOhTmpi1jYkleZlYKiiGmJgGzg41sRpICkUOqggT00P9CBN7AgdiTewMqOKRw_oEE9sFTdAOH8wwsU8gaJGJRYJXlom9B6lLTGwpDMgxsaFwT13LAge0CkPhVvUzoQkWez0XGpqfC39Ck_8LoQUU8S8ENXQaO4VeiIntFBIgKqdTGAVjl3cKSZCS-kqYA0dDu4TTkDOsS1gDMdO6hARwW9cleMPNJd1CA6y93C1sBmNNtzAERtv2CDI0Le8RWuBaQY9wG7SsT_CCHNc-YQ0cz-oTzsIRayaeBKGZieb_SukntuztJ3YV9hNZUT_xSIEgngThnCBu9RHFnTBirCiOhpvjRLEBNn4hirnwwZeiaIIlLaK4HMLNJfFtd0k0wtcdQ6WtsOuvEKkYUjtDpAzoHB0qnc8Nla5BZ0Wo1Atdg4dJLHiY9DB3mPQMBnu-Lw2H3g3DJb5xuDS3b7i0CNbIYdImuOoaLv0G6rhwSQdNI8OlFujcGi71QlB7uBQCsyIipHQoKo-Q2isi0BchHXKIlI6DV2Kk5A_rFkZKWyAuO1JKhFulkVIL_HUwUnoJcw5HSplw62ikdMM9SroLS72ipHXgUxolBcCrjiipD977O0p6H-JhLKyFzXABrkM39HsWJSlADb4QBG7vREveMGpWtDQOMudHS9lwJD1aqobdm6OlErA8Ey3ZwcIL0VJTbbTUAmcfRksXQeEeI6khalCMNApq0mKk-3D48QipCiZ1jZCmwwl1rOT9Uaw0EHJVcVI-9DrGSWZOcVJB_5FSKZw3Hyldg6TR-bz6w3x-BapnYELpzHx-HNYcy-ebwPJMPneF6yMK-D3YfK-Ad78o4P3-KeDH4AL4f7qH37Qr5A2Q7VDI10NvQyHnjYX8m45Cngf93Yq4AxyDC9D9fhHPjiriD2cX8b9AtaiI6yEcEqH2eBFvhglXivgsyKst4hEPivhI8BCLeSCkLSjmC0GzqpgbYEVpMd8C8Y3FPAkcXEq4GxwML-E_wcrTJXwjBFbs4xHQDE8go3kfXwFNrJS3w2GxlHO3Uq4A-9BS7gWN40v5A2g8VsrbIKxmPx8D23PL-O4nZbwEmnrLeAvMVJbzxXDQqZz_BCv9yvlGeCu-nNuAMaGcD4Ffk8v5LYhcVs4TYNW35Xw91JaW83pQVZVzPTDbCq6EZF0FXwDPcyq48EUF_21tBb8HxicVPBxeD6jkom8ldw-q5EYwDK7kg-B4ZiW_CKunHuAbwDjvAC9Y9pQfghEbnnLj_qc8HN5UPuV04Ck3q3nKlRByqZXHQMDlVh4MgXdbeVVDK78MZsPbuBJ-PNHGq8Ctqo17w-rqNr4Tkl-28QWQ5dHOc-BlXjt_Ayu2t_N14LGrnQfC7rPtvARsUjq4O_yd-Jzz4j7eH04PsqBfwXK8BdnBtcsW9Dt8dNWCUqD6Nwu6CWkPLWhsjwWZwDjbkmrSLKkO-EpLOrbDkk7Brp2WtBdCz1lSFByqt6SOB5b0CuqsFXQfcvUK2geWRxVkB7bHFeQMGa0KyoJRwVY0Ef7ZYEX_g6-3WNFOyDhsRYvOWdHn4HzFikIeWFEi7A60phKon2ZNhnxr8oPFLdbEWq1JCfFOSkoCvbOSfCE_TEkHQTtGSd8VK2k31OxX0i1YUaakNXCpXknXYFKXkpJBHGBDFhAXZkP9I23IGqqSbOgyWByxIRWc8rOlqzA62pZk-HyyLX0JM5fY0mJYWmNLhRDaYkujoNRaRYfgZz8VTR2solRwDFaRDmaFqGgJrJ6sIt8pKgqCadNUJM5TkQo8alU0AFJuqkhRpyIN_NhoR1VQ1m5HByGv2472g6hQkwre2KiJbNV0bYmabkPuajXlQ-B6NUWAbbmanOHQYzWVtamp_157sgb9aXvyBuNNexoCylv25Ah5Dfa0By402tN1COy0pwgYO8WBtLMdyAvmLHSgbPhsiwPNgOnbHGgReF52oHdhss6RZsL38Y50ClxSHenZXEfqN8-RNn7lSFvBd5sjBUBjpSM9gNmHHGk-hF10pFio83Six3A62ol-hVpohsd7nehvsP3QmRwg83NnyoYDK5zpDExd60yp8J8IF1oJZ2Nc6By8_MyF3sCc-S6UDTWbXKgO7MNdyQXMRrqSAgx7XGkQHD3iSucg4YQrfQw3fnalP2DYL64UDdaNrmQHXk2u5AvbBA3tgnFGDSVD00QNtcDTpRrqgbT_aGgZfL9MQ8rlGtIB36IhNdz4r4buQGKthsZD2G0NxcIvLRq6BC96NCS-1tAkvZamQ72vlp6AbqCWDNCRoKV_YPEYLS2D9bO1tAsKF2qpHMz2a0kBsWVa-gAGVmjp8RUtbb2rpTzY0ailAsjq0FIOxPVoKQFs9W7kAdNGuVEa3Et0ow74NsmNmle60TN4RDrqgIbBOvoThk3QUTT0zdTRujwdjduno1lw8KKOjsHEKzrKNrrTelj4hTstg08L3GkqeA30IH8YFexBU-CTEZiwq8yDiuFUmwddBQrUkxXUzdTTffBN11MI6BbqKQDMl-jJGlJgFqxdqqeNYP9aTy7gyz0pCDaYedJucIvwpIGQHulJy2HGG0_KglfmBupvYaAeKwOZWxto-jwDzYWG-Qb6E06kG-gS2FcaSAt-9QYaBps8vWgb1O71omY4Ot6bTsODld70BHrrvInXe1NGpzdlwSzJh9LhK-5D38AfSh96BJpPfcjwrz0-5Afvl_hQDJTc9qEDsMfnbToIn5mG0jy4_PtQugsXWQg5-YWQO_wwMYTOQ2ZeCK2C9O0htBy2VITQDrA7G0KeELwslMLgPjwE9nMoKWHQrVCKhzG1w8jWwuzVl11VpKzLy5_hbD5u8pTZKYmZKemLPd5JSZ65YG56hn_GvPSUyckZM1JSFmT4TUufm7YgJS15UmBA4KCA94yD_QOMk-YF_R-qO8nY&build-label=editors.spreadsheets-frontend_20250617.01_p3&imp-sid=CMCLjIDJkI4DFSPfSgAd8cwBDw&is-cached-offline=false&cellSizeBucket=RITZ_SHEET_CELLS_50K_TO_100K"
document-policy: include-js-call-stacks-in-crash-reports
x-xss-protection: 1; mode=block
server: GSE
set-cookie: NID=525=Evt9x-KjNa1xhJOZU3IRE9tDcpHWtnND6XKzVyLxIlIOqbuePP0v4x8bdKPUYm1MNzF4k_jXymk7wqt5oWiCyeEmpjCOC4ZL6ArJRnb1mRM_zFaznBuUGy6F0x8uNkIDXgL_HRqUM_S88VPN-QgoAa9Zwtz6omqYnFLjCcOKIBMkyK_jvEZQSBLCR6BMI684qwm4hcFXKNFK-doMkCDwsZ38oZHdOpmtDKn2; expires=Sat, 27-Dec-2025 02:37:43 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
COMPASS=apps-spreadsheets=CmUACWuJV9BwbUc0zJejys-qWyxvqNIHiysg5kmC9fJ8FfvMqYDbHZddKdr-AFz8ta7AqG4EPTJSDGBaougkCviXKM3_lkmVTORGwZGmBrpUpwneHM_ZpSGguOvFVI1yBwcJTuht5BCHpPjCBhp2AAlriVe0Fa_LRHdKMyjqE14gf_T7fepghR_kP38ZqJHRCCPU9dWkx9HVT0Pz7SZIxLcUlTRbEB3tlJ6K_2OglyyA-66e9rPShMZNGD4kqB5wlxNB3rmDE5omGFztA-4tkamcDecAmWbkLXXtwiku5VhYyHF8iQ==; Domain=.docs.google.com; Expires=Fri, 27-Jun-2025 03:37:43 GMT; Path=/spreadsheets/d/1dqILO5rtO9GTQfZ2YtUkh6f-pHzVTlS3pbtjmniH2Xs; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-l2-request-path: l2-managed-6
X-Firefox-Spdy: h2
GET collector-37937.tvsquared.com/tv2track.js
200 OK 21 kB URL GET collector-37937.tvsquared.com/tv2track.js
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerAmazon
Subject*.tvsquared.com
FingerprintBB:AC:17:62:AE:EF:FE:BE:25:44:69:E9:F0:1D:8D:E8:2E:3C:88:05
ValidityWed, 14 May 2025 00:00:00 GMT - Wed, 10 Jun 2026 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (1162)
Hash a1f3145e1dc107aad3b57974b8817b57
507ea38aa8ad7bbe3ab3fa7e4c85016e3dca2960
a463aa6666ce0abcabf8033013cfe881fdbfb570389aff471d400a45b3a496d4
GET /tv2track.js HTTP/1.1
Host: collector-37937.tvsquared.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=600
Content-Encoding: gzip
Content-Type: application/javascript
Date: Fri, 27 Jun 2025 02:37:43 GMT
ETag: "67b73671-2133"
Expires: Fri, 27 Jun 2025 02:47:43 GMT
Last-Modified: Thu, 20 Feb 2025 14:04:33 GMT
Server: nginx
X-Robots-Tag: noindex
Content-Length: 8499
Connection: keep-alive
POST bat.bing.net/actionp/0?ti=211063669&tm=gtm002&Ver=2&mid=5f16a3c8-37a1-4ff3-9c4b-e1b0c3e4e01b&bo=1&evt=consent&src=enforced&cdb=AQAY&asc=D
204 No Content 0 B URL POST bat.bing.net/actionp/0?ti=211063669&tm=gtm002&Ver=2&mid=5f16a3c8-37a1-4ff3-9c4b-e1b0c3e4e01b&bo=1&evt=consent&src=enforced&cdb=AQAY&asc=D
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerMicrosoft Corporation
Subjectbat.bing.net
Fingerprint36:B0:89:87:47:4A:B0:8A:1F:A8:EB:71:A6:13:8A:FF:CD:94:46:23
ValidityThu, 24 Apr 2025 22:29:23 GMT - Tue, 21 Oct 2025 22:29:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /actionp/0?ti=211063669&tm=gtm002&Ver=2&mid=5f16a3c8-37a1-4ff3-9c4b-e1b0c3e4e01b&bo=1&evt=consent&src=enforced&cdb=AQAY&asc=D HTTP/1.1
Host: bat.bing.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
Origin: https://www.gesa.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 34745970F58C4157AEA89756499C3F00 Ref B: OSL30EDGE0205 Ref C: 2025-06-27T02:37:45Z
date: Fri, 27 Jun 2025 02:37:44 GMT
X-Firefox-Spdy: h2
GET www.gesa.com/wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6
200 OK 4.8 kB URL GET www.gesa.com/wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (4741)
Hash c6fddbb6be69793478de26fc245b2acf
a136ebf5054fdc19729b3592005fe0fefec4bb4c
9a1e0d38b691f1d22a92cff65ec0439b428170ac39a4493c7ecb06d5585f56a3
GET /wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619051099c56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 841510
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f0577-12a8"
last-modified: Fri, 27 Dec 2024 19:52:23 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.26.2
200 OK 24 kB URL GET www.gesa.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.26.2
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (24166)
Hash 5b76642da0065cbaf14b220aa11b3eaf
86b6763b459a53cd16a0411d2388412cb2adafae
479bd73d76d3360fd8d91d53512a956afdc94c880636817ce71dc91f2858bb71
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.26.2 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619051099f56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f008e-5e92"
last-modified: Fri, 27 Dec 2024 19:31:26 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/themes/gesa/assets/js/plugins/lazyload.min.js?ver=12.4.0
200 OK 8.0 kB URL GET www.gesa.com/wp-content/themes/gesa/assets/js/plugins/lazyload.min.js?ver=12.4.0
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (7972), with no line terminators
Hash a2e0d1fa4b2ae08c9deeee486a265d42
f89d5647a041d232fcb71d5e2d2b566ddd4cff01
7866661e9747c63d27963b389bd0bbc19c29dc5255cf7393b727368927e9b06c
GET /wp-content/themes/gesa/assets/js/plugins/lazyload.min.js?ver=12.4.0 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619050e98a56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378479
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"63d2e311-1f24"
last-modified: Thu, 26 Jan 2023 20:31:13 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/themes/gesa/assets/js/plugins/jquery.matchHeight-min.js?ver=0.7.2
200 OK 3.4 kB URL GET www.gesa.com/wp-content/themes/gesa/assets/js/plugins/jquery.matchHeight-min.js?ver=0.7.2
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (522)
Hash 9f5893b32d21ae6cbd3ae40eccc30420
6757eb942ac4399f9f8ab58ee1156881ac89b416
246faa0aca51a7be47ae13827bffdec1f0e69699d291c727646b56e83ee1fd0e
GET /wp-content/themes/gesa/assets/js/plugins/jquery.matchHeight-min.js?ver=0.7.2 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: application/javascript
cf-ray: 95619050e98d56c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"63d2e311-d39"
last-modified: Thu, 26 Jan 2023 20:31:13 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET docs.google.com/spreadsheets/d/1dqILO5rtO9GTQfZ2YtUkh6f-pHzVTlS3pbtjmniH2Xs/gviz/tq?tqx=out:json&sheet=General%20Terms
200 OK 2.5 kB URL GET docs.google.com/spreadsheets/d/1dqILO5rtO9GTQfZ2YtUkh6f-pHzVTlS3pbtjmniH2Xs/gviz/tq?tqx=out:json&sheet=General%20Terms
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subject*.google.com
FingerprintEE:B4:21:E2:07:A7:35:36:27:81:A0:3A:3E:C9:6C:F5:11:A0:7F:5C
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
File type ASCII text, with very long lines (2485)
Hash 048234679f93903b8c92918581413c05
52648d5d9f6daf9f7bbd326e8bc1d180ad8be5f6
dcfe2f42fc4f0cac02788bc0bca71da2c899d15f821922c1b0a6c7ce7df823fb
GET /spreadsheets/d/1dqILO5rtO9GTQfZ2YtUkh6f-pHzVTlS3pbtjmniH2Xs/gviz/tq?tqx=out:json&sheet=General%20Terms HTTP/1.1
Host: docs.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
Origin: https://www.gesa.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
x-robots-tag: noindex, nofollow, nosnippet
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 27 Jun 2025 02:37:43 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
content-encoding: gzip
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
access-control-allow-origin: https://www.gesa.com
access-control-expose-headers: Cache-Control,Content-Disposition,Content-Encoding,Content-Length,Content-Type,Date,Expires,Pragma,Server,Transfer-Encoding
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/docs-tt, base-uri 'self';object-src 'self';report-uri https://docs.google.com/spreadsheets/cspreport;script-src 'nonce-9jRIT7WJMC_fFJzBnmfUgQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';worker-src 'self' blob:
reporting-endpoints: default="/spreadsheets/d/1dqILO5rtO9GTQfZ2YtUkh6f-pHzVTlS3pbtjmniH2Xs/web-reports?bl=editors.spreadsheets-frontend_20250617.01_p3&context=eJwV0HtczfcfB_CPcz6ft1adOnU63c_p1OlUk9KpuVajq5JFY_se2liUIUKJsKwJM-YybMmtKEkX_Jgf5jKruRvFUKrRJrdquSwqv_i99sfz8X48Xo_34_P-vN_my12vvf6YpXGJFZhJTPaOxCotJHbYUmLfKiRmVEqsCD6ykZjWVmLeaon9CuvtJbbXUWJnnCVm5yKxj10l5qeVWDEk6yV22ktir_tJTNFfYjbg6yexjf4SW2mUWF6QxLbBkSESezxUYhXDJXYKHkZJrCtWYufiJXYLvE0SGwzyCRJTQc1Eid2D20noBd0Uib2TLDEneC9VYpEQMF9iI6A1E_NBlSWxuhyJPYLIXImNhyFrJRYDCesklgS34SGs_kFiW8GQJ7GBUL5FYifgDVjlS2xiEf5djByq90rsBmTvl9gqsDsoMU-oPoEcgk9KLA7CLmMOONRgH7h7S2IdUH4bb8N_67EvVP0hseugbZaYP-Tdx31B3yKxIDgEVXAObsGjB7gVTO2WWAaEyU0sATK5ia2AAeYmNhzeKk3M2sbEEr1MLBUUQ01MA2eGmVgNJIYgB1W4iemhfqSJPYb9MSZ2GlRxyGFtvIntgCZohw-mm9inELTQxCLAK8vEBkHqYhNbAv1yTGwY3FXXssB-rbJhcLP6mawJFnk9lzU0P5f9BU3-L2QtoIh7IVNDp7FT1gvRMZ2yeIjM6ZSNhnHLOmWJkJL6SjYbjoR0yU5BTmiXbBVET-uSxYPbmi6ZN9xY3C1rgNWXumUbwVjTLRsKY2x7ZBI0LeuRtcDVwh7ZLdCytzIvyHF9K1sFx7Leys7AYWsmPwGyZiY3_1dKH3nL7j7yrqI-clbcR364UCY_AbKzMvlmH7l8O4wcJ5ePgRvj5fIGWP-VXJ4HH3wtl5tgcYtcvgzCzLn8XXcuN8K3HcP4ZtjxdzDfA6mdwTwDOseE8HN5IfwqdFaE8F5Y4hzKc6FrcChnQ0L5g7xQ_gwGe77Ph0PvuuFcrB_O57wdzhfCKmkE3wBXXMP476CODeM6aBoVxlugc3MY74Wg9jAeDDPDw3k6FJeH8_aKcMwN5wcdIvgx8EqI4P6wZkEE3wSx2RE8AW6WRvAW-PtABH8Jsw9F8Ey4eSSCX3eP5HdgiVckXwM-pZE8AF51RPK3MOhpJH8f4mAcrIaNcB6uQTf0eRbJFaAGXwgCt_5R3BtGz4zi4yFzXhTPhsPpUbwadm6M4iVgeTqK28GC81G8qTaKt8CZB1H8Aijco7kaIgdG89FQkxbN78GhRyN5FUzuGsk_h-PqGO79UQwfAHmqWF4AvY6x3Mwplhf2HcVL4Zz5KH4VEscUiOoPC8RlqJ6OCqUzCsQxWHW0QGwAy9MFwhWujSwUd2Hj3ULR_aJQ9PmnUByF8-A_aZe4YVckGiDboUishd6GIiEai8R3HUUiH_q6FQsHOArnofv9YpEdWSwezCoWf4NqYbHQQxgkQO2xYtEMEy8Xi5mQX1sswu8Xi1HgId8jAkGzYo8wQG7pHrEJ4hr3iERwdykR78KBsBLxMyw_VSLWQ2DFXhEOzfAYMpr3ilxoYqWiHQ7JS4VwKxUKsA8pFV7QOKFU3IfGo6WiDUbU7BNjYWtemdj5uEyUQFNvmWiBGcpysQgOOJWLn2G5X7lYD-_ElQsbMMaXi6HwW3K5uAkRS8tFPKz4vlyshdrSclEPqqpyoQdmWyGUkKyrEPPheU6FkH1VIX5fXSHugvFxhQiD1_0qhdy3UrgHVQojGAZXioFwLLNSXICVU_eLdWCcu18ULn0iDsLIdU-Ecd8TEQZvKp8I2v9EmNU8EUoIvtgqoiHgUqsYAoF3WkVVQ6u4BGbD24QSfjreJqrArapNeMPK6jaxHZJfton5kOXRLnLgZX67eAO5W9vFGvDY0S4CYeeZdlECNikdwh2eJjwXpwZa0G9gOcGC7ODqJQv6Az66YkEpUP27Bd2AtAcWNKHHgiaBcZYl1aRZUh2I5ZZ0dJslnYQd2y1pN4SctaRIOFhvSR33LekV1Fkr6B7k6RW0FyyPKMgObI8pyBkyWhWUBaOHWNEn8M86K_offLvJirZDxiErWnjWir4E58tWFHzfihJgZ6A1lUD9NGsyFFiTHyxqsSbWak1KiHNSUiLonZXkCwUjlHQAtGOV9MMeJe2Emn1Kugm5ZUpaBRfrlXQVJncpKRnk_WzIAmJH2FDfCBuyhqpEG7oEFodtSAUn_WzpCoyJsiUJvkyypa9hxmJbWgRLamypCEJabGk0lFqr6CD84qeiqYNVlAqOQ1Skg5nBKloMK5NU5DtFRUEwbZqK5HNVpAKPWhX1g5QbKlLUqUgDPzXaURWUtdvRAcjvtqN9IFeoSQVvbNREtmq6ulhNtyBvpZoKIHCtmsLBtlxNznDwkZrK2tTUd7c9WYP-lD15g_GGPQ0F5U17coT8BnvaBecb7ekaBHbaUziMm-JA2lkO5AWzFzhQNny2yYGmw-dbHGgheF5yoPcgSedIM-DHOEc6CS6pjvRsjiP1metI679xpM3gu8WRAqCx0pHuw6yDjjQPRlxwpBio83SiR3Aqyol-g1pohke7negp2H7oTA6Q-aUzZcP-XGc6DVNXO1MqfBHuQsvhTLQLnYWXn7nQG5g9z4WyoWaDC9WBfZgruYDZKFdSgGGXKw2EI4dd6SzEH3elj-H6L670J4T-6kpRYN3oSnbg1eRKvrBFpqEdMN6ooWRo-kRDLfBkiYZ6IO0LDS2FH5dqSLlMQzoQmzSkhuv_0dBtSKjV0AQYcUtDMfBri4YuwoseDclfa2iyXkufQ72vlh6DboCWDNARr6V_YNFYLS2FtbO0tAOKFmipHMz2aUkBMWVa-gAMFVp6dFlLm-9oKR-2NWqpELI6tJQDsT1aigdbvRt5wLTRbpQGdxPcqAO-T3Sj5uVu9Aweko46oGGwjv6C0Ik6ioLOGTpak6-j8Xt1NBMOXNDRUfjkso6yje60FhZ85U5LYVKhO02F0UM8aAp8OhIVdpR50B442eZBV4AC9WQFdTP0dA_6p-spBHQL9BQA5ov1ZA2rl-hpPdi_1pML-ApPCoJ1Zp60E9zCPWkATH_jSVnwytxAfS0M1GNlIHNrA82ba6BF0DDPQH_B8XQDXQT7SgNpwa_eQKGwwdOLtkDtbi9qhiMTvOkU3F_uTY-ht86bRL03ZXR6UxbM5D6UDt8IH_oO_lT60EPQTPIhw792-ZAfvF_iQ9Gwy-ddOgBJpmE0Dy79MYzuwAUWTE5-weQOmfnBtAIytgZTLmyqCKZtoD4TTAbwXxpCg-AePAD2SwgpYWxtKNlamL36uquKlE9b6-KczccnTZmVkpCZkr7Io39K8oz5c9Iz_DPmpqckJWdMT0mZn-E3LX1O2vyUtOTJgQGBAwMGGQf7Bxgnzw36P5Xnt7g&build-label=editors.spreadsheets-frontend_20250617.01_p3&imp-sid=CMa2iIDJkI4DFSPfSgAd8cwBDw&is-cached-offline=false&cellSizeBucket=RITZ_SHEET_CELLS_50K_TO_100K"
document-policy: include-js-call-stacks-in-crash-reports
x-xss-protection: 1; mode=block
server: GSE
set-cookie: NID=525=hj5eluSlCKT5TOuwe1YlbbH5b9hslS-Fx7vwAgofKE4GlxoVEPi3Bs7bgbZbO3_lxlUGWH8lLZPaQdZyMc9S5rvz1e8_Kdl-1KxEtB9YtNp3BevUS6qPogMdnQ5V6VoljClR5t-AOTddlMXnJRctopbSQ_bk6XacMaQpOu8P3VhPGsNo41MmOa6eZ6tOmwyfcnU8-wtRIXMCa4g8t0425XlL8E36EX4DOkl3; expires=Sat, 27-Dec-2025 02:37:43 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
COMPASS=apps-spreadsheets=CmUACWuJV9BwbUc0zJejys-qWyxvqNIHiysg5kmC9fJ8FfvMqYDbHZddKdr-AFz8ta7AqG4EPTJSDGBaougkCviXKM3_lkmVTORGwZGmBrpUpwneHM_ZpSGguOvFVI1yBwcJTuht5BCHpPjCBhp2AAlriVe0Fa_LRHdKMyjqE14gf_T7fepghR_kP38ZqJHRCCPU9dWkx9HVT0Pz7SZIxLcUlTRbEB3tlJ6K_2OglyyA-66e9rPShMZNGD4kqB5wlxNB3rmDE5omGFztA-4tkamcDecAmWbkLXXtwiku5VhYyHF8iQ==; Domain=.docs.google.com; Expires=Fri, 27-Jun-2025 03:37:43 GMT; Path=/spreadsheets/d/1dqILO5rtO9GTQfZ2YtUkh6f-pHzVTlS3pbtjmniH2Xs; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-l2-request-path: l2-managed-6
X-Firefox-Spdy: h2
GET www.googletagmanager.com/a?v=3&t=l&pid=679177449&rv=56p1&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389~104869650~104885889~104885891&u=AAAAAAAIAAAAAAAIAAAAAEA&ut=AgAAgAAB&h=Ag>m=45He56p1v79611690za200&cl=1.10.0&ccid=9611690&cid=GTM-MTFL685&l=L1587.S19.Y1299.B269.E2768.I3362.TC85.HTC8~gtm.init_consent.S20.V19.E1700~gtm.init.S13.V13.E2680.TS5googtag.TI603.TE12~gtm.js.S35.V34.TS5gclidw.TI297.TE17.TS5googtag.TI432.TE8.TS5html.TI1.TE9.TS1sp.TI2.TE1.TS6paused.TI3.TE2.TS6paused.TI19.TE1.TS6paused.TI71.TE1.TS6paused.TI236.TE1.TS6cvt.TI486.TE5.TS1baut.TI608.TE5.TS5cl.TI615.TE1.TS5lcl.TI617.TE1.TS5lcl.TI618.TE2.TS5cl.TI619.TE1.TS5cl.TI620.TE1.TS5cl.TI622.TE1.TS5cl.TI625.TE1.TS5lcl.TI628.TE4.TS5lcl.TI629.TE1.TS5lcl.TI630.TE2.TS5lcl.TI631.TE2.TS5lcl.TI632.TE1.TS5lcl.TI636.TE2.TS5lcl.TI638.TE3.TS5lcl.TI639.TE1.TS5lcl.TI640.TE2.TS5lcl.TI641.TE1.TS5lcl.TI642.TE1.TS5lcl.TI643.TE1.TS5lcl.TI644.TE1.TS5lcl.TI645.TE1.TS5lcl.TI646.TE2.TS5lcl.TI650.TE1.TS5lcl.TI651.TE2.TS5lcl.TI652.TE1.TS5lcl.TI653.TE1.TS5lcl.TI655.TE1.TS5lcl.TI656.TE1.TS5lcl.TI657.TE2.TS5lcl.TI658.TE1.TS5lcl.TI659.TE1.TS5lcl.TI660.TE1.TS5lcl.TI661.TE1.TS5lcl.TI662.TE1.TS5lcl.TI663.TE1.TS5lcl.TI665.TE1.TS5lcl.TI666.TE1.TS5fsl.TI668.TE1.TS5lcl.TI669.TE1.TS5lcl.TI670.TE1.TS5cl.TI672.TE1.TS5lcl.TI675.TE1.TS5lcl.TI676.TE1.TS5lcl.TI677.TE1.TS5lcl.TI680.TE2.TS5lcl.TI681.TE1.TS5lcl.TI683.TE1.TS5lcl.TI684.TE1.TS5lcl.TI685.TE1.TS5lcl.TI686.TE2.TS5lcl.TI687.TE1.TS5html.TI48.TE4.TS5html.TI307.TE4.TS5html.TI495.TE6.TS5html.TI538.TE2.TS5html.TI555.TE4.TS5html.TI587.TE4.TS6html.TI604.TE3.TS5cl.TI621.TE1552.TS5cl.TI623.TE1552.TS5cl.TI624.TE1552.TS5cl.TI626.TE1554.TS5cl.TI627.TE1553.TS5lcl.TI633.TE1628.TS5lcl.TI634.TE1626.TS5lcl.TI635.TE1626.TS5cl.TI637.TE1624.TS5lcl.TI664.TE1642.TS5lcl.TI667.TE1650.TS5lcl.TI671.TE1648.TS5lcl.TI673.TE1648.TS5lcl.TI678.TE1644.TS5lcl.TI679.TE1645~*.S12.V12.E1610~gtm.dom.S10.V10.E1559~gtm.load.S15.V15.E1105.TS5sdl.TI616.TE2
200 OK 0 B URL GET www.googletagmanager.com/a?v=3&t=l&pid=679177449&rv=56p1&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389~104869650~104885889~104885891&u=AAAAAAAIAAAAAAAIAAAAAEA&ut=AgAAgAAB&h=Ag>m=45He56p1v79611690za200&cl=1.10.0&ccid=9611690&cid=GTM-MTFL685&l=L1587.S19.Y1299.B269.E2768.I3362.TC85.HTC8~gtm.init_consent.S20.V19.E1700~gtm.init.S13.V13.E2680.TS5googtag.TI603.TE12~gtm.js.S35.V34.TS5gclidw.TI297.TE17.TS5googtag.TI432.TE8.TS5html.TI1.TE9.TS1sp.TI2.TE1.TS6paused.TI3.TE2.TS6paused.TI19.TE1.TS6paused.TI71.TE1.TS6paused.TI236.TE1.TS6cvt.TI486.TE5.TS1baut.TI608.TE5.TS5cl.TI615.TE1.TS5lcl.TI617.TE1.TS5lcl.TI618.TE2.TS5cl.TI619.TE1.TS5cl.TI620.TE1.TS5cl.TI622.TE1.TS5cl.TI625.TE1.TS5lcl.TI628.TE4.TS5lcl.TI629.TE1.TS5lcl.TI630.TE2.TS5lcl.TI631.TE2.TS5lcl.TI632.TE1.TS5lcl.TI636.TE2.TS5lcl.TI638.TE3.TS5lcl.TI639.TE1.TS5lcl.TI640.TE2.TS5lcl.TI641.TE1.TS5lcl.TI642.TE1.TS5lcl.TI643.TE1.TS5lcl.TI644.TE1.TS5lcl.TI645.TE1.TS5lcl.TI646.TE2.TS5lcl.TI650.TE1.TS5lcl.TI651.TE2.TS5lcl.TI652.TE1.TS5lcl.TI653.TE1.TS5lcl.TI655.TE1.TS5lcl.TI656.TE1.TS5lcl.TI657.TE2.TS5lcl.TI658.TE1.TS5lcl.TI659.TE1.TS5lcl.TI660.TE1.TS5lcl.TI661.TE1.TS5lcl.TI662.TE1.TS5lcl.TI663.TE1.TS5lcl.TI665.TE1.TS5lcl.TI666.TE1.TS5fsl.TI668.TE1.TS5lcl.TI669.TE1.TS5lcl.TI670.TE1.TS5cl.TI672.TE1.TS5lcl.TI675.TE1.TS5lcl.TI676.TE1.TS5lcl.TI677.TE1.TS5lcl.TI680.TE2.TS5lcl.TI681.TE1.TS5lcl.TI683.TE1.TS5lcl.TI684.TE1.TS5lcl.TI685.TE1.TS5lcl.TI686.TE2.TS5lcl.TI687.TE1.TS5html.TI48.TE4.TS5html.TI307.TE4.TS5html.TI495.TE6.TS5html.TI538.TE2.TS5html.TI555.TE4.TS5html.TI587.TE4.TS6html.TI604.TE3.TS5cl.TI621.TE1552.TS5cl.TI623.TE1552.TS5cl.TI624.TE1552.TS5cl.TI626.TE1554.TS5cl.TI627.TE1553.TS5lcl.TI633.TE1628.TS5lcl.TI634.TE1626.TS5lcl.TI635.TE1626.TS5cl.TI637.TE1624.TS5lcl.TI664.TE1642.TS5lcl.TI667.TE1650.TS5lcl.TI671.TE1648.TS5lcl.TI673.TE1648.TS5lcl.TI678.TE1644.TS5lcl.TI679.TE1645~*.S12.V12.E1610~gtm.dom.S10.V10.E1559~gtm.load.S15.V15.E1105.TS5sdl.TI616.TE2
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint79:AA:03:D4:F6:6B:0F:61:E5:C5:AB:19:F4:A5:5D:DC:97:80:AF:DA
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /a?v=3&t=l&pid=679177449&rv=56p1&tag_exp=101509157~103116026~103200004~103233427~103308216~103308218~103351869~103351871~104684208~104684211~104718208~104784387~104784389~104869650~104885889~104885891&u=AAAAAAAIAAAAAAAIAAAAAEA&ut=AgAAgAAB&h=Ag>m=45He56p1v79611690za200&cl=1.10.0&ccid=9611690&cid=GTM-MTFL685&l=L1587.S19.Y1299.B269.E2768.I3362.TC85.HTC8~gtm.init_consent.S20.V19.E1700~gtm.init.S13.V13.E2680.TS5googtag.TI603.TE12~gtm.js.S35.V34.TS5gclidw.TI297.TE17.TS5googtag.TI432.TE8.TS5html.TI1.TE9.TS1sp.TI2.TE1.TS6paused.TI3.TE2.TS6paused.TI19.TE1.TS6paused.TI71.TE1.TS6paused.TI236.TE1.TS6cvt.TI486.TE5.TS1baut.TI608.TE5.TS5cl.TI615.TE1.TS5lcl.TI617.TE1.TS5lcl.TI618.TE2.TS5cl.TI619.TE1.TS5cl.TI620.TE1.TS5cl.TI622.TE1.TS5cl.TI625.TE1.TS5lcl.TI628.TE4.TS5lcl.TI629.TE1.TS5lcl.TI630.TE2.TS5lcl.TI631.TE2.TS5lcl.TI632.TE1.TS5lcl.TI636.TE2.TS5lcl.TI638.TE3.TS5lcl.TI639.TE1.TS5lcl.TI640.TE2.TS5lcl.TI641.TE1.TS5lcl.TI642.TE1.TS5lcl.TI643.TE1.TS5lcl.TI644.TE1.TS5lcl.TI645.TE1.TS5lcl.TI646.TE2.TS5lcl.TI650.TE1.TS5lcl.TI651.TE2.TS5lcl.TI652.TE1.TS5lcl.TI653.TE1.TS5lcl.TI655.TE1.TS5lcl.TI656.TE1.TS5lcl.TI657.TE2.TS5lcl.TI658.TE1.TS5lcl.TI659.TE1.TS5lcl.TI660.TE1.TS5lcl.TI661.TE1.TS5lcl.TI662.TE1.TS5lcl.TI663.TE1.TS5lcl.TI665.TE1.TS5lcl.TI666.TE1.TS5fsl.TI668.TE1.TS5lcl.TI669.TE1.TS5lcl.TI670.TE1.TS5cl.TI672.TE1.TS5lcl.TI675.TE1.TS5lcl.TI676.TE1.TS5lcl.TI677.TE1.TS5lcl.TI680.TE2.TS5lcl.TI681.TE1.TS5lcl.TI683.TE1.TS5lcl.TI684.TE1.TS5lcl.TI685.TE1.TS5lcl.TI686.TE2.TS5lcl.TI687.TE1.TS5html.TI48.TE4.TS5html.TI307.TE4.TS5html.TI495.TE6.TS5html.TI538.TE2.TS5html.TI555.TE4.TS5html.TI587.TE4.TS6html.TI604.TE3.TS5cl.TI621.TE1552.TS5cl.TI623.TE1552.TS5cl.TI624.TE1552.TS5cl.TI626.TE1554.TS5cl.TI627.TE1553.TS5lcl.TI633.TE1628.TS5lcl.TI634.TE1626.TS5lcl.TI635.TE1626.TS5cl.TI637.TE1624.TS5lcl.TI664.TE1642.TS5lcl.TI667.TE1650.TS5lcl.TI671.TE1648.TS5lcl.TI673.TE1648.TS5lcl.TI678.TE1644.TS5lcl.TI679.TE1645~*.S12.V12.E1610~gtm.dom.S10.V10.E1559~gtm.load.S15.V15.E1105.TS5sdl.TI616.TE2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:893:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:893:0
report-to: {"group":"ascgcycc:893:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:893:0"}],}
date: Fri, 27 Jun 2025 02:37:45 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.gesa.com/wp-content/plugins/weglot/app/styles/new-flags.css?ver=4.2.9
200 OK 88 kB URL GET www.gesa.com/wp-content/plugins/weglot/app/styles/new-flags.css?ver=4.2.9
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 754c893ebb0b2b813c4eb59676f0eca4
cd197ca1c0255196afd5640b33c6222839a978d9
b48bb25e1fe530912d872438ef532de73c7fddad96fadc6affb18fdbd097c1d6
GET /wp-content/plugins/weglot/app/styles/new-flags.css?ver=4.2.9 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:39 GMT
content-type: text/css
cf-ray: 9561904e185056c3-OSL
cf-cache-status: MISS
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f003e-15817"
last-modified: Fri, 27 Dec 2024 19:30:06 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
GET www.gesa.com/wp-content/plugins/weglot/dist/front-js.js?ver=4.2.9
200 OK 4.7 kB URL GET www.gesa.com/wp-content/plugins/weglot/dist/front-js.js?ver=4.2.9
IP
Requested by https://www.gesa.com/?utm_source=the-trade-desk&utm_medium=videoolv&utm_campaign=brand-25&utm_term=a25-64-tier2-awa&utm_content=brand-gesa2215h-swipe&adfcd=1753583789.egJeq-2c2k-smVonJgYpgQ.MjE3OTk2NSwyMjM0MDkw
Certificate IssuerGoogle Trust Services
Subjectwww.gesa.com
Fingerprint79:CC:E1:5E:8B:30:AF:27:03:EF:95:35:2A:B3:94:DA:0B:3A:5B:E3
ValidityTue, 29 Apr 2025 15:01:39 GMT - Mon, 28 Jul 2025 16:01:37 GMT
File type JavaScript source, ASCII text, with very long lines (4676), with no line terminators
Hash 930bdaa2327403b40dad3f68e91d57be
4bda2ccf7312eb42957bfa811d922a8a7f94794d
0aa10e1d078fcba8a8c9c654650d01b1e9562fb419ca536ad23fcb960bad9b2b
GET /wp-content/plugins/weglot/dist/front-js.js?ver=4.2.9 HTTP/1.1
Host: www.gesa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gesa.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 27 Jun 2025 02:37:38 GMT
content-type: application/javascript
cf-ray: 9561904e688d56c3-OSL
cf-cache-status: HIT
access-control-allow-origin: https://cdn.evgnet.com/beacon/gesacu/
age: 378478
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"676f003e-1244"
last-modified: Fri, 27 Dec 2024 19:30:06 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
content-security-policy: frame-ancestors 'self' https://gesacreditunion.sharepoint.com;
permissions-policy: midi=(), notifications=(self), push=(self), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(self), vibrate=(self), fullscreen=(), payment=()
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: cloudflare
X-Firefox-Spdy: h2
104.21.39.133
52.0.32.0