Overview

URL www.eduservices.us
IP166.63.127.116
ASNAS32392 Ecommerce Corporation
Location United States
Report completed2017-09-08 17:25:42 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 166.63.127.116

Date UQ / IDS / BL URL IP
2017-10-19 17:14:30 +0200
0 - 0 - 0 www.edudetail.com/forms/ltcuniversity.html 166.63.127.116
2017-10-16 18:41:39 +0200
0 - 0 - 0 www.teachhelps.com/forms/ltcuniversity.html 166.63.127.116
2017-10-12 17:11:25 +0200
0 - 0 - 0 www.stateservices.us/forms/ltcuniversity.html 166.63.127.116
2017-10-10 15:36:34 +0200
0 - 0 - 0 www.teachhelps.com/forms/ltcuniversity.html 166.63.127.116
2017-10-09 23:34:48 +0200
0 - 0 - 0 www.teachhelps.com/forms/ltcuniversity.html 166.63.127.116
2017-10-05 19:15:33 +0200
0 - 0 - 0 www.edudetail.com/forms/ltcuniversity.html 166.63.127.116
2017-09-27 18:32:15 +0200
0 - 0 - 0 www.edudetail.com/forms/ltcuniversity.html 166.63.127.116
2017-09-08 18:02:38 +0200
0 - 0 - 0 www.eduservices.us/forms/ltcuniversity.html 166.63.127.116
2017-09-01 18:52:44 +0200
0 - 0 - 0 www.eduservices.us/forms/ltcuniversity.html 166.63.127.116
2017-08-31 17:13:42 +0200
0 - 0 - 0 www.stateservices.us/forms/ltcuniversity.html 166.63.127.116

Last 10 reports on ASN: AS32392 Ecommerce Corporation

Date UQ / IDS / BL URL IP
2017-10-19 17:14:30 +0200
0 - 0 - 0 www.edudetail.com/forms/ltcuniversity.html 166.63.127.116
2017-10-19 10:03:49 +0200
0 - 0 - 1 www.insideboxing.com/cooperative.php?UE9DQ3lm (...) 98.130.166.217
2017-10-19 09:41:53 +0200
0 - 0 - 0 peachtreeink.net/wp-content/xglupeso.php 71.18.62.157
2017-10-19 08:29:11 +0200
0 - 0 - 26 pearlgonzalez.com/b9wawhy 166.63.11.180
2017-10-19 07:22:28 +0200
0 - 0 - 1 https://sparkinfosystems.com/xupx/index8.php 166.63.124.239
2017-10-19 06:17:46 +0200
0 - 0 - 1 priestlakeuncorked.com/ 74.91.252.132
2017-10-19 06:10:35 +0200
2 - 0 - 1 new-rutor.info/ 50.6.0.2
2017-10-19 02:46:26 +0200
0 - 0 - 13 blurdesign.com 166.63.125.31
2017-10-18 23:32:42 +0200
0 - 0 - 0 166.63.122.126 166.63.122.126
2017-10-18 23:28:32 +0200
0 - 0 - 0 www.riskti.com 71.18.18.222

No other reports on domain: eduservices.us



JavaScript

Executed Scripts (16)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (46)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: www.eduservices.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         166.63.127.116
HTTP/1.1 302 Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 08 Sep 2017 15:25:06 GMT
Server: Apache/2.2.3 (CentOS)
Location: https://www.publicadvantage.net/
Content-Length: 216
Connection: close


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   216
Md5:    e053dc1605c70775c6e96eb989fc32c3
Sha1:   1f97a980f99d3ca0819b02a04eb03dd7d96356b1
Sha256: ca5458dc7b749be3ab337bdab4a8e3463a63e7b9cb02be73908ddc7d8411c0af
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Sep 2017 15:25:07 GMT
Server: Apache
Last-Modified: Wed, 06 Sep 2017 22:39:24 GMT
Expires: Wed, 13 Sep 2017 22:39:24 GMT
Etag: A11DA788CA4C1D331472857EA1758DC6062413EB
Cache-Control: max-age=457456,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp30
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    f67a1678d60158cd7f8baa2256f376aa
Sha1:   a11da788ca4c1d331472857ea1758dc6062413eb
Sha256: 1a6b866e6902ee3b20bc71e29cee61ed52fbf0e1c0736d811cf5dec792f2cca1
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Sep 2017 15:25:07 GMT
Server: Apache
Last-Modified: Wed, 06 Sep 2017 10:42:46 GMT
Expires: Wed, 13 Sep 2017 10:42:46 GMT
Etag: CCD735FEEC89EDDEFDAE60339A5FEC59FAFEE336
Cache-Control: max-age=414458,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp30
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    4cb736b12d5f2cc01cc40e8266955190
Sha1:   ccd735feec89eddefdae60339a5fec59fafee336
Sha256: 99552dd7c66b522ec347609ca5f21ea03f29502458991b28877d6f826de1e18a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Sep 2017 15:25:08 GMT
Server: Apache
Last-Modified: Wed, 06 Sep 2017 10:42:46 GMT
Expires: Wed, 13 Sep 2017 10:42:46 GMT
Etag: 2DCDB1AE960B094161363D231EF9EA039198AE74
Cache-Control: max-age=414457,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp30
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    67594d3fdf8302694b56beb32553a977
Sha1:   2dcdb1ae960b094161363d231ef9ea039198ae74
Sha256: 37afbec42e3cb23078f4b22a3f3d9aa6aca3c990c083f055fc5ca942fb13f084
                                        
                                            GET / HTTP/1.1 
Host: www.publicadvantage.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         166.63.127.116
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Fri, 08 Sep 2017 15:25:08 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 29 Nov 2012 20:42:20 GMT
Etag: "23efa-214-4cfa851c28300"
Accept-Ranges: bytes
Content-Length: 532
Connection: close


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   532
Md5:    a7177743e56f5d4e46dbe2bfa02971a2
Sha1:   5686ed64aa14c9cb95b31d49593b23d414f36a8d
Sha256: 456b01309efb864a0730f70238806c37d189a653f5c9d22d88b21efd1149434c
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.publicadvantage.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         166.63.127.116
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 08 Sep 2017 15:25:08 GMT
Server: Apache/2.2.3 (CentOS)
Content-Length: 209
Connection: close


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   209
Md5:    18ffb59b61525f781cf9251045be575d
Sha1:   bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
Sha256: b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.publicadvantage.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         166.63.127.116
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 08 Sep 2017 15:25:12 GMT
Server: Apache/2.2.3 (CentOS)
Content-Length: 209
Connection: close


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   209
Md5:    18ffb59b61525f781cf9251045be575d
Sha1:   bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
Sha256: b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642
                                        
                                            GET / HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         173.201.222.185
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 08 Sep 2017 15:25:13 GMT
Server: Apache
Location: https://www.nesgroup.us/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         72.167.239.239
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Sep 2017 15:25:16 GMT
Server: Apache
Content-Transfer-Encoding: Binary
Cache-Control: max-age=116542, public, no-transform, must-revalidate
Last-Modified: Fri, 08 Sep 2017 13:29:52 GMT
Expires: Sun, 10 Sep 2017 01:29:52 GMT
Etag: "a0da79d922313bbd82f2edc36237ecba18e8b521"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
Content-Length: 1776
Connection: close


--- Additional Info ---
Magic:  data
Size:   1776
Md5:    83754b9ecec6dc9e8fd363c98aec61ff
Sha1:   a0da79d922313bbd82f2edc36237ecba18e8b521
Sha256: 4567129b2aef21739736920c67bd6275efbc0a36be3b1a6ce2fe0a37019829ee
                                        
                                            GET / HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 08 Sep 2017 15:25:16 GMT
Server: Apache
Link: <https://www.nesgroup.us/wp-json/>; rel="https://api.w.org/", <https://www.nesgroup.us/>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8409
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8409
Md5:    584fb26d664db61d99be47d312cac873
Sha1:   7934238f115419a21065327ec175255817ba8c39
Sha256: 68d89199a292652c73d2fd3b80f507ab08e54df607ce0392c7d7d7fc52867dce
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Sep 2017 15:25:18 GMT
Expires: Tue, 12 Sep 2017 15:25:18 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    91719ca60b7ddab775a8cc93bcacf371
Sha1:   95b553ef9a5a866f27821acf3ca390b48656515e
Sha256: 3c046946e471a762fac6d94aecd4c8f00350791049dd9cc08ab96c631e479c21
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.52.27.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=596231, public, no-transform, must-revalidate
Last-Modified: Fri, 8 Sep 2017 13:00:50 GMT
Expires: Fri, 15 Sep 2017 13:00:50 GMT
Date: Fri, 08 Sep 2017 15:25:18 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    e73781035c1143c2e4a455d6e6b96d2b
Sha1:   247b2823d9a623d00c9c74dfb49c896b76aab5f3
Sha256: 7c753e37076148c12acd0770eee664e47c98dd38bfaa9e1b5d7cfddce42dc5b6
                                        
                                            GET /css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         172.217.22.170
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Fri, 08 Sep 2017 15:25:18 GMT
Date: Fri, 08 Sep 2017 15:25:18 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   572
Md5:    175a443be179d35ba4d102b1a86bee1e
Sha1:   bfa9d827b4a60cfa7f3c1a325e0d8ce71b3ea221
Sha256: 2a76457af2d3ca641eeba51cf090c86c8e3f231fe0ca1d3c4c59879c0776cf15
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=f1b2fc251a3c64d7d760e4ca4c4e9719 HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Sep 2017 15:25:18 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 15:37:22 GMT
Etag: "2e45-551c5185b97fa-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 15 Sep 2017 15:25:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4299
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4299
Md5:    b5eda7f4f7632c2ee3cf23c72b69af26
Sha1:   aefebf84c998202222a45fd89f2c48742ebd1825
Sha256: 4008c5d12e0bbe2b0d35bffb4f41323fa9e1abecf5ba6a343d4c66d538cde043
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Sep 2017 15:25:18 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2016 18:14:43 GMT
Etag: "17ba0-535f607485d3d-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 15 Sep 2017 15:25:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33766
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   33766
Md5:    d417f4d673009b01654915bbf1f4f872
Sha1:   f432ea8e89e5f4ef50e506019899e539a068f415
Sha256: 24560d81ded58e8befabf32ff51f5b6ae6f21eead0a5f87c255e3b47b988d1cc
                                        
                                            GET /wp-content/themes/Divi/epanel/shortcodes/css/shortcodes.css?ver=3.0.51 HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 08 Sep 2017 15:25:18 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 15:17:58 GMT
Etag: "8c8c-551c4d2ff6476-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Sat, 09 Sep 2017 15:25:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5763
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5763
Md5:    80beba07a90efc53279010cade1e7045
Sha1:   ea591819ab6b6efc1f896a00ba47a670c7fb8c3c
Sha256: aa94005f6ed02071e3f2c3ede69b83c82289bea79a1db884e077241ed34bb971
                                        
                                            GET /wp-includes/css/dashicons.min.css?ver=f1b2fc251a3c64d7d760e4ca4c4e9719 HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 08 Sep 2017 15:25:18 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2016 18:14:43 GMT
Etag: "b51c-535f607441b47-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Sat, 09 Sep 2017 15:25:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 28612
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   28612
Md5:    c3deda3e7fece967f2ccbd284ea13582
Sha1:   97463a1c50f1c8975116d5498806f24791b23fef
Sha256: a7e9b2f080d9b676910cd9186c7f2ffd4066d61d0380a344c935fa349982aa10
                                        
                                            GET /wp-content/themes/Divi/includes/builder/styles/magnific_popup.css?ver=3.0.51 HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 08 Sep 2017 15:25:18 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 15:18:00 GMT
Etag: "1f6f-551c4d31e1c64-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Sat, 09 Sep 2017 15:25:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2021
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2021
Md5:    e82f260e449f7e08b1cf1f90d3a055cc
Sha1:   c9320e7a9bebc9e4511f496963aa58748faa89e8
Sha256: 1605409b81d1dd2647534e0cc0439f2fb3c1c4c06071a295da7b387da816a03a
                                        
                                            GET /wp-content/themes/Divi/epanel/shortcodes/css/shortcodes_responsive.css?ver=3.0.51 HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 08 Sep 2017 15:25:18 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 15:17:58 GMT
Etag: "f6e-551c4d2ff934b-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Sat, 09 Sep 2017 15:25:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 814
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   814
Md5:    2aabb8ca9f5cec861bc8a99d1dff9932
Sha1:   2ee83f77076b42a3d71707d39327965511feed41
Sha256: 603409fb11f23e36a2ea94913377b078da7eaeec6eab684cc17649647c8e2185
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Sep 2017 15:25:18 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2016 18:14:43 GMT
Etag: "2748-535f60748650c-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 15 Sep 2017 15:25:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4014
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4014
Md5:    a6c81e2f02bd04160d2de88c4e8f3559
Sha1:   e3f3c91427d785820ca97dabe738f01faf041f36
Sha256: b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe
                                        
                                            GET /wp-content/themes/Divi/style.css?ver=3.0.51 HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 08 Sep 2017 15:25:18 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 15:18:01 GMT
Etag: "6623e-551c4d32738ae-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Sat, 09 Sep 2017 15:25:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 49380
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   49380
Md5:    2d023e3ad4c8f24a62eb6c3d4eaa303c
Sha1:   1d715992fd404ca03968ed2a2cff309e13e78883
Sha256: 4a9dcb52f36ce8402d76ffbe627cd3f0653e72e2da7e41baee7fcdf78016da0b
                                        
                                            GET /wp-content/uploads/2017/04/USRP-NES-logo-1.png HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 08 Sep 2017 15:25:18 GMT
Server: Apache
Last-Modified: Thu, 06 Apr 2017 21:34:21 GMT
Etag: "56c2-54c8645a24a0a"
Accept-Ranges: bytes
Content-Length: 22210
Cache-Control: max-age=5184000
Expires: Tue, 07 Nov 2017 15:25:18 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 428 x 100, 8-bit/color RGBA, non-interlaced
Size:   22210
Md5:    c15bdabb362c8e65d047d5108c6ea67f
Sha1:   789e3994f7538a78d8ba908a9be35e4bc2cc8c19
Sha256: 5898211771c0e2f380d82290eeb796b01e7031ade4d4169715388a304b6a82e8
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Sep 2017 15:25:19 GMT
Expires: Tue, 12 Sep 2017 15:25:19 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    cf7b0688111f97c4e7a8fd690730caea
Sha1:   c163cb6212cae2025ec36297135099016b32e9b5
Sha256: 83de5f0a6c14c41c4cadc0b625719571e03157d6dd8a819642ed5ce97dc0228f
                                        
                                            GET /wp-content/uploads/2016/02/life-insurance.jpg HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 08 Sep 2017 15:25:19 GMT
Server: Apache
Last-Modified: Fri, 19 Feb 2016 20:57:29 GMT
Etag: "25ae-52c25bb2b3c0e"
Accept-Ranges: bytes
Content-Length: 9646
Cache-Control: max-age=5184000
Expires: Tue, 07 Nov 2017 15:25:19 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   9646
Md5:    820c4e417f2065963a6d56babd914638
Sha1:   018cd7af1568fd7d2c59d313227c1d0f21d170e2
Sha256: caa7f29b5511de568423f620b9d8d6d78547aa711fbafa2ddfc8b844f865b1a9
                                        
                                            GET /wp-content/uploads/2016/02/403b.jpg HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 08 Sep 2017 15:25:19 GMT
Server: Apache
Last-Modified: Fri, 19 Feb 2016 00:06:16 GMT
Etag: "232c-52c1440794996"
Accept-Ranges: bytes
Content-Length: 9004
Cache-Control: max-age=5184000
Expires: Tue, 07 Nov 2017 15:25:19 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   9004
Md5:    cac7deeedb2e26faed2552fd7fecbd76
Sha1:   df6a59185ebd81b8281f613892b88f59c48ae9de
Sha256: d4662f3bfe019565d3abb48d6ca443deb487954194ef6109c2c2df04d20cbeb0
                                        
                                            GET /wp-content/uploads/2016/02/ira.jpg HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 08 Sep 2017 15:25:19 GMT
Server: Apache
Last-Modified: Fri, 19 Feb 2016 20:59:10 GMT
Etag: "1e45-52c25c137bc92"
Accept-Ranges: bytes
Content-Length: 7749
Cache-Control: max-age=5184000
Expires: Tue, 07 Nov 2017 15:25:19 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   7749
Md5:    e3b258528f433142d4fb3a5be4634f11
Sha1:   89b93b36a2f7bf8d25e8c21dd9265df5e729fa6a
Sha256: 4faaa2ed4c1c0765c036272039d2e7d83b8544feb80853380c078971732009a4
                                        
                                            GET /wp-content/uploads/2016/02/ltc.jpg HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 08 Sep 2017 15:25:19 GMT
Server: Apache
Last-Modified: Fri, 19 Feb 2016 21:00:11 GMT
Etag: "290e-52c25c4d638ab"
Accept-Ranges: bytes
Content-Length: 10510
Cache-Control: max-age=5184000
Expires: Tue, 07 Nov 2017 15:25:19 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   10510
Md5:    9b63c312c3d6125c905a57238c707a5e
Sha1:   211861ae128b11960ca44b229301d02df3d8432f
Sha256: b75fb3ada8271de850b86e890c546a137388bb2585a1200cf1302201dd8b4f35
                                        
                                            GET /wp-content/uploads/2016/02/1page-img1-1.jpg HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 08 Sep 2017 15:25:19 GMT
Server: Apache
Last-Modified: Fri, 19 Feb 2016 23:41:22 GMT
Etag: "4f1b-52c280541123d"
Accept-Ranges: bytes
Content-Length: 20251
Cache-Control: max-age=5184000
Expires: Tue, 07 Nov 2017 15:25:19 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   20251
Md5:    829f0f3dab3e27014075e4dc23d05e09
Sha1:   c0d63036ba5d7c0ae7c3549b055e57aff279df5d
Sha256: 5cbc9db69ded4c94e4508b361dd1037430d69e936269e54f8aa800055b4f0858
                                        
                                            GET /wp-content/themes/Divi/includes/builder/scripts/frontend-builder-global-functions.js?ver=3.0.51 HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Sep 2017 15:25:19 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 15:18:00 GMT
Etag: "2097-551c4d31bca9a-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 15 Sep 2017 15:25:19 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2477
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2477
Md5:    9d72b69bced27d34ea9ed566ecd17462
Sha1:   3649a5d95346ab4c1a5d5da15ecf8e05ab8ba9ed
Sha256: 4ac3bc0988ec7ebf426c9e152daf84e76eea339bc79a92981695bdaca5ed809e
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Fri, 08 Sep 2017 14:50:02 GMT
Expires: Fri, 08 Sep 2017 16:50:02 GMT
Last-Modified: Thu, 17 Aug 2017 01:11:09 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 13472
Cache-Control: public, max-age=7200
Age: 2117
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   13472
Md5:    b9b86922042a652c2ab95127f5d56fb1
Sha1:   ab415059ac440b2dc5aa4618e99df56b4f648222
Sha256: 9984b80ed589c69864d7fa2d664e83db447b4cafc4b7beeeea3c14a0818b519f
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Sep 2017 15:25:20 GMT
Expires: Tue, 12 Sep 2017 15:25:20 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    f4d5649a7372181303f7e7475d9c1076
Sha1:   54847de97b3f3dd20e5d6b14878c240e36eeb1d4
Sha256: 8b1c7f1a316318e3dccc134ab22f50019727c5b3af7ab47da022b8f858f82f85
                                        
                                            GET /wp-content/uploads/2016/02/header.jpg HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 08 Sep 2017 15:25:19 GMT
Server: Apache
Last-Modified: Tue, 23 Feb 2016 00:45:24 GMT
Etag: "277c8-52c6543c8719d"
Accept-Ranges: bytes
Content-Length: 161736
Cache-Control: max-age=5184000
Expires: Tue, 07 Nov 2017 15:25:19 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   161736
Md5:    3ac0696531cfcc457f22f257e708874a
Sha1:   b41e52be72390a4e4262237a82c44b1caa46c6c9
Sha256: b647edca40e48978485dc9fe79a42b31d3015c93e5c0f1c0fb109eef14f97276
                                        
                                            GET /wp-content/uploads/2017/01/cropped-us-192x192.jpg HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 08 Sep 2017 15:25:19 GMT
Server: Apache
Last-Modified: Fri, 27 Jan 2017 01:14:19 GMT
Etag: "19ca-547092f6782d0"
Accept-Ranges: bytes
Content-Length: 6602
Cache-Control: max-age=5184000
Expires: Tue, 07 Nov 2017 15:25:19 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   6602
Md5:    c0cc63b610be6b199e0834790ba03e2a
Sha1:   e553f49d8e25d811a50083c74d2a93d0e9eb4e50
Sha256: 12946eb5ee955850b4886cf24b22575e1ff4be80bf179e2c3f8d33b4af6d5500
                                        
                                            GET /s/opensans/v14/MTP_ySUJH_bn48VBG8sNSha1RVmPjeKy21_GQJaLlJI.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&subset=latin,latin-ext
Origin: https://www.nesgroup.us

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 24472
Date: Mon, 04 Sep 2017 10:01:36 GMT
Expires: Tue, 04 Sep 2018 10:01:36 GMT
Last-Modified: Wed, 14 Jun 2017 16:46:20 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 365024
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  data
Size:   24472
Md5:    41eae26f7fc4a3d4b02949bdc9bd48f6
Sha1:   c8507d6be2dfc74f358c6b832dcc2e011c5af6ce
Sha256: 70c426e014ae7b7090a86b4ef59d790ff0ac1a8033668df9d058df812e0a9854
                                        
                                            GET /r/collect?v=1&_v=j60&a=1339757149&t=pageview&_s=1&dl=https%3A%2F%2Fwww.nesgroup.us%2F&ul=en-us&de=UTF-8&dt=Home%20-%20National%20Educational%20Services&sd=24-bit&sr=1176x885&vp=1159x754&je=1&fl=10.0%20r45&_u=IEBAAEQAI~&jid=931288243&gjid=815446958&cid=2117687299.1504884320&tid=UA-11755786-2&_gid=1857934484.1504884320&_r=1&z=380475282 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Fri, 08 Sep 2017 15:25:20 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /s/opensans/v14/u-WUoqrET9fUeobQW7jkRT8E0i7KZn-EPnyo3HZu7kw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&subset=latin,latin-ext
Origin: https://www.nesgroup.us

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 23644
Date: Mon, 04 Sep 2017 14:33:38 GMT
Expires: Tue, 04 Sep 2018 14:33:38 GMT
Last-Modified: Wed, 14 Jun 2017 16:46:20 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 348702
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  data
Size:   23644
Md5:    ca9b8cba8488f85d6c93130e524f3d52
Sha1:   b5fd42d3e25af05758a2286f77b542cc1aada592
Sha256: 2745698fcd5dd6e7b06ff00de0479ccd41f29a27129bb76801f074f7734b655e
                                        
                                            GET /wp-content/themes/Divi/includes/builder/scripts/jquery.mobile.custom.min.js?ver=3.0.51 HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/
Cookie: _ga=GA1.2.2117687299.1504884320; _gid=GA1.2.1857934484.1504884320; _gat=1

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Sep 2017 15:25:20 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 15:18:00 GMT
Etag: "1e68-551c4d31c5b2d-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 15 Sep 2017 15:25:20 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2872
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2872
Md5:    a7bc9bd6d7a143a13d7072ee406c8692
Sha1:   42a46eca1ae6c1b50602917cc52b4b61e13f24f7
Sha256: 63b52e7a859b8943c2d1255b30e1d3b8fa262285797a69098def3967d112ad5b
                                        
                                            GET /wp-content/themes/Divi/core/admin/fonts/modules.ttf HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/wp-content/themes/Divi/style.css?ver=3.0.51

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: application/x-font-ttf
                                        
Date: Fri, 08 Sep 2017 15:25:19 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 15:17:57 GMT
Etag: "143e8-551c4d2edfb05"
Accept-Ranges: bytes
Content-Length: 82920
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  TrueType font data\012 raw G3 data, byte-padded
Size:   82920
Md5:    87a9fcfa516cd7576d52480b0bb21dae
Sha1:   7b2b31c6f1e91d53b76daad7fedea802592e4da4
Sha256: c683211e591f2048ec4a840586e4f849894c8a57c147f23d7b5652d61c1260e2
                                        
                                            GET /wp-content/themes/Divi/js/custom.js?ver=3.0.51 HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/
Cookie: _ga=GA1.2.2117687299.1504884320; _gid=GA1.2.1857934484.1504884320; _gat=1

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Sep 2017 15:25:21 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 15:18:01 GMT
Etag: "cfbc-551c4d32154a9-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 15 Sep 2017 15:25:21 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11702
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   11702
Md5:    fc1ad29248d5c0b974cca2d3687eadd1
Sha1:   854c8b173575abe5b2da21b079276788c31149ae
Sha256: cef043ceda82b48795b26c0873caaeebbc5bbe7c3aa3d1bfd9339dd7010a208f
                                        
                                            GET /wp-content/themes/Divi/includes/builder/scripts/jquery.fitvids.js?ver=3.0.51 HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/
Cookie: _ga=GA1.2.2117687299.1504884320; _gid=GA1.2.1857934484.1504884320; _gat=1

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Sep 2017 15:25:21 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 15:18:00 GMT
Etag: "c95-551c4d31bedcd-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 15 Sep 2017 15:25:21 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1298
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1298
Md5:    31bd6f103266422712d7f21fd221259c
Sha1:   478fe2a563f8edd20468c878ad0c8dabcc506159
Sha256: 4f7cd006453252967505df8f72f72333de4ba5b2734773aaeca3f250fcf0b5e1
                                        
                                            GET /wp-content/themes/Divi/includes/builder/scripts/waypoints.min.js?ver=3.0.51 HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/
Cookie: _ga=GA1.2.2117687299.1504884320; _gid=GA1.2.1857934484.1504884320; _gat=1

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Sep 2017 15:25:21 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 15:18:00 GMT
Etag: "2281-551c4d31d2a27-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 15 Sep 2017 15:25:21 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2698
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2698
Md5:    f7d4b6ef09365ba331dda4e3648c05fc
Sha1:   f852f915b87c84eb1c3590829e8d9f5c97fbe620
Sha256: 61e3dba589d367496e409a346677b89db66ee134e7370f06a8629ce0492eb6c6
                                        
                                            GET /wp-content/themes/Divi/includes/builder/scripts/jquery.magnific-popup.js?ver=3.0.51 HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/
Cookie: _ga=GA1.2.2117687299.1504884320; _gid=GA1.2.1857934484.1504884320; _gat=1

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Sep 2017 15:25:21 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 15:18:00 GMT
Etag: "576c-551c4d31c535b-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 15 Sep 2017 15:25:21 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8382
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8382
Md5:    dc28e6a88fd9930fed07d0de45b3a0ea
Sha1:   6181203be9d6e425d138533edaf3121c1a1968b1
Sha256: 497c6f92880fe8e1e12aff1c833910958d7b46379980da1ded707c39a2ca33ee
                                        
                                            GET /wp-content/uploads/2017/01/cropped-us-32x32.jpg HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: _ga=GA1.2.2117687299.1504884320; _gid=GA1.2.1857934484.1504884320; _gat=1

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 08 Sep 2017 15:25:22 GMT
Server: Apache
Last-Modified: Fri, 27 Jan 2017 01:14:19 GMT
Etag: "4c3-547092f6888a0"
Accept-Ranges: bytes
Content-Length: 1219
Cache-Control: max-age=5184000
Expires: Tue, 07 Nov 2017 15:25:22 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   1219
Md5:    7699db4e9b4eb20c8060c8a3f0b9f490
Sha1:   c108ff428d41225efea2f081ed1bdc9aa54d59ee
Sha256: 5c58e7145571f69bc984d02089a6c290eb325e809e0a2adeb630af0b5b233f02
                                        
                                            GET /wp-content/themes/Divi/includes/builder/scripts/frontend-builder-scripts.js?ver=3.0.51 HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/
Cookie: _ga=GA1.2.2117687299.1504884320; _gid=GA1.2.1857934484.1504884320; _gat=1

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Sep 2017 15:25:22 GMT
Server: Apache
Last-Modified: Mon, 12 Jun 2017 15:18:00 GMT
Etag: "27a6d-551c4d31be202-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 15 Sep 2017 15:25:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 31299
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   31299
Md5:    9454da05d94b393898b37de0c46b05de
Sha1:   ecc64f1da44f0169bc7dacca9a1b4df678f5836a
Sha256: d33a4b04a9318cef42f6220e5d9e4344b8a772e48c37a18c026962b3e5122b33
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=f1b2fc251a3c64d7d760e4ca4c4e9719 HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.nesgroup.us/
Cookie: _ga=GA1.2.2117687299.1504884320; _gid=GA1.2.1857934484.1504884320; _gat=1

                                         
                                         173.201.222.185
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Sep 2017 15:25:25 GMT
Server: Apache
Last-Modified: Mon, 30 Jan 2017 16:18:48 GMT
Etag: "576-547522b9fe63b-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Fri, 15 Sep 2017 15:25:25 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 751
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   751
Md5:    7542039ce963ffd18ad4fb7be13bd2be
Sha1:   8385e433e8e65739fc27b6bd16b1a7ae71b11084
Sha256: a70bca1336a4ac7592ce631cbb22c9ebb01d60461d221ac7a46f91a4ccfd1255
                                        
                                            GET /wp-content/uploads/2017/01/cropped-us-32x32.jpg HTTP/1.1 
Host: www.nesgroup.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         0.0.0.0
                                        


--- Additional Info ---