r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash bb0c8d0984a1f09a012961a54cda03c6
1a8ad450a0241554ee4fc7d02fac7b83529e60f6
eee3ca879a67cc25ea89cb83de9521eea1b82845705c3e82169d4787ecb7dd3a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EEE3CA879A67CC25EA89CB83DE9521EEA1B82845705C3E82169D4787ECB7DD3A"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8981
Expires: Tue, 17 Jan 2023 13:46:24 GMT
Date: Tue, 17 Jan 2023 11:16:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 4b8b051d555b46b1e9e64faebf91b4ab
bdab7f1f4146f0e7c16665692e4f1edd83c10a24
e069730519f658e767ec8edb57edd8e2b1ccb18d4f0ade0920654eac18f83456
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E069730519F658E767EC8EDB57EDD8E2B1CCB18D4F0ADE0920654EAC18F83456"
Last-Modified: Tue, 17 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15921
Expires: Tue, 17 Jan 2023 15:42:04 GMT
Date: Tue, 17 Jan 2023 11:16:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d6e2abd68203014e8e24d4a9e20e980a
5edbbb1a36083d5077b90b82e7aa10049e90c5d6
88cf8dae194a5e92a8c36a4c54ae71a609eaaed6e99d3986b3834c40d2fceeaa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "88CF8DAE194A5E92A8C36A4C54AE71A609EAAED6E99D3986B3834C40D2FCEEAA"
Last-Modified: Sun, 15 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3483
Expires: Tue, 17 Jan 2023 12:14:46 GMT
Date: Tue, 17 Jan 2023 11:16:43 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 17 Jan 2023 10:49:14 GMT
content-type: application/json
age: 1649
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: dAgh0gar4qvwW/PdtOoiCAZmtQuwalDlLWoG7H/jsdr58TcC3CAEkLfjasZyYMo9ZLx4onYFgunTtVelWqmJBQ==
x-amz-request-id: CMZQXWYK870WPBHQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 17 Jan 2023 10:56:14 GMT
age: 1229
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
nwcleasing.com/
50.31.65.174200 OK 22 kB IP 50.31.65.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (520)
Hash c5598a3ace79d72dfaefe5ed7c87cbde
6c5e7eaa931e9de3aa21ad40142fe45866fbabe8
ee7c31afdd4e288424d77df3040b94ff6887af36804423a29f7d39ab5c9e6231
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:43 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 11:16:43 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
nwcleasing.com/xsp_styles.css
50.31.65.174200 OK 8.4 kB URL HTTP/1.1 nwcleasing.com/xsp_styles.css
IP 50.31.65.174:0
File type ASCII text, with very long lines (306), with CRLF line terminators
Hash 6e375ebbbb8f6d57776269d87cd4141f
6fd682e72c46221174beb11362fef821c825b362
0b11296473bda27b774a853188d5743f493dc3751cc913bce24fbdfd7b94a48d
GET /xsp_styles.css HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:43 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 12 Oct 2012 04:22:05 GMT
Accept-Ranges: bytes
Content-Length: 8367
Keep-Alive: timeout=5, max=100
Content-Type: text/css
nwcleasing.com/INFO_BAR_MENU.css
50.31.65.174200 OK 799 B URL HTTP/1.1 nwcleasing.com/INFO_BAR_MENU.css
IP 50.31.65.174:0
File type ASCII text, with CRLF line terminators
Hash 820c00c3e6ed8712ecbe07e0c713378a
8f33688dd8938ef2940a615b0d6a7905147f9b24
80464f8509ecd0df24dca26970b034509ea3e04efd630da063372610892c6894
GET /INFO_BAR_MENU.css HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:43 GMT
Server: Apache
Last-Modified: Fri, 12 Oct 2012 04:20:38 GMT
Accept-Ranges: bytes
Content-Length: 799
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
nwcleasing.com/LEFT_MENU.css
50.31.65.174200 OK 1.7 kB URL HTTP/1.1 nwcleasing.com/LEFT_MENU.css
IP 50.31.65.174:0
File type ASCII text, with CRLF line terminators
Hash ee33a4872b7b64190e9be77e167cc44c
12655bee494eab3921333e91f3f37bc709f5915b
ad43ece730142d6c9f93ce178ae86bc98893fb449f3e4e5e0b6ebbfaef12c59e
GET /LEFT_MENU.css HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:43 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 12 Oct 2012 04:20:47 GMT
Accept-Ranges: bytes
Content-Length: 1710
Keep-Alive: timeout=5, max=100
Content-Type: text/css
nwcleasing.com/milonic_src.js
50.31.65.174200 OK 7.0 kB URL HTTP/1.1 nwcleasing.com/milonic_src.js
IP 50.31.65.174:0
File type ASCII text, with very long lines (6284), with CRLF, LF line terminators
Hash 0e70cead4bdf3a0a6247b92e790d2daa
2be8c3e6c86d7954fdd1fa0a953198d88563a881
a0433f2a75d317e1528ed758c456158654013f8d64771a8491c01e276ae09f52
Analyzer Verdict Alert fortinet Phishing
GET /milonic_src.js HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:43 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 12 Oct 2012 04:22:02 GMT
Accept-Ranges: bytes
Content-Length: 6956
Keep-Alive: timeout=5, max=100
Content-Type: application/javascript
nwcleasing.com/script/LEFT_MENU0.js
50.31.65.174200 OK 2.8 kB URL HTTP/1.1 nwcleasing.com/script/LEFT_MENU0.js
IP 50.31.65.174:0
File type ASCII text, with CRLF line terminators
Hash 843d590e63bcbb5397c1055288ad495f
d0acc0685bc7b02cebad05f3270899f1ce20716f
9de83f94b5a6c710d9b809b46e5f77d5f696655ed21b5b05e84fb38bf171cab3
Analyzer Verdict Alert fortinet Phishing
GET /script/LEFT_MENU0.js HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:43 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 12 Oct 2012 04:20:56 GMT
Accept-Ranges: bytes
Content-Length: 2822
Keep-Alive: timeout=5, max=100
Content-Type: application/javascript
nwcleasing.com/preloadmenuimages.js
50.31.65.174200 OK 1.8 kB URL HTTP/1.1 nwcleasing.com/preloadmenuimages.js
IP 50.31.65.174:0
File type HTML document, ASCII text, with CRLF line terminators
Hash b59f74e6c3418d030fa7be6a1f04f63b
557716de8c2233debb6a4d7e033ebe4fefc07d76
002e5da9cdab3f026af799d2449a39598c7fb368dddff332c01d78d9b4f21787
Analyzer Verdict Alert fortinet Phishing
GET /preloadmenuimages.js HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:43 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 12 Oct 2012 04:20:48 GMT
Accept-Ranges: bytes
Content-Length: 1781
Keep-Alive: timeout=5, max=100
Content-Type: application/javascript
nwcleasing.com/mmenudom.js
50.31.65.174200 OK 31 kB URL HTTP/1.1 nwcleasing.com/mmenudom.js
IP 50.31.65.174:0
File type HTML document, ASCII text, with very long lines (30441), with CRLF, LF line terminators
Hash ca3c825ff0d23f2fbf201062278ba50d
a6e4f5b526b582d802b57bcc88cc852719e005e4
1e8d0c352ad1e3bc6ed6a4ea7a70e99eb13a38ba0997f15be311ba6e83fa7f68
Analyzer Verdict Alert fortinet Phishing
GET /mmenudom.js HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:43 GMT
Server: Apache
Last-Modified: Fri, 12 Oct 2012 04:22:42 GMT
Accept-Ranges: bytes
Content-Length: 31113
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 17 Jan 2023 10:33:47 GMT
age: 2577
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
nwcleasing.com/images/arrows.gif
50.31.65.174200 OK 583 B URL HTTP/1.1 nwcleasing.com/images/arrows.gif
IP 50.31.65.174:0
File type GIF image data, version 89a, 20 x 17\012- data
Hash 12c42554bc4d910d2e72e4b7e08c1931
f732f0412cfe5a9a6a92e438f1a07d3d98276eac
aa8f4b0361c129dc394d096bc16b4256bb715233721de17f128a0c28064d03c6
GET /images/arrows.gif HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:44 GMT
Server: Apache
Last-Modified: Fri, 12 Oct 2012 04:20:35 GMT
Accept-Ranges: bytes
Content-Length: 583
Cache-Control: max-age=2592000, public
Expires: Thu, 16 Feb 2023 11:16:44 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
nwcleasing.com/images/background.gif
50.31.65.174200 OK 1.2 kB URL HTTP/1.1 nwcleasing.com/images/background.gif
IP 50.31.65.174:0
File type GIF image data, version 89a, 1 x 4000\012- data
Hash 1933a3d9ea64b63a16e0c7562ab82d0a
63c9c72494e142c05c5dfc1122bf7ffeb5772a40
156ca9cf955b098a4ea7212662fd040d5e08e6b571672415196e60571448730a
GET /images/background.gif HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/xsp_styles.css
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:44 GMT
Server: Apache
Last-Modified: Fri, 12 Oct 2012 04:20:44 GMT
Accept-Ranges: bytes
Content-Length: 1166
Cache-Control: max-age=2592000, public
Expires: Thu, 16 Feb 2023 11:16:44 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/gif
nwcleasing.com/images/arrow.gif
50.31.65.174200 OK 825 B URL HTTP/1.1 nwcleasing.com/images/arrow.gif
IP 50.31.65.174:0
File type GIF image data, version 89a, 5 x 7\012- data
Hash ecd10fb66e5d902894cdd5fa6d6d7ed8
402b9a80f926a425b7fe4990ad83315ef20a75e3
a5a027cd128a86e419370e5d56beba72c75a9b49d184f8de2b10ca0fef59285f
GET /images/arrow.gif HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:44 GMT
Server: Apache
Last-Modified: Fri, 12 Oct 2012 04:20:39 GMT
Accept-Ranges: bytes
Content-Length: 825
Cache-Control: max-age=2592000, public
Expires: Thu, 16 Feb 2023 11:16:44 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
www.nwcleasing.com/_themes/tabs/atabbul1.gif
50.31.65.174404 Not Found 315 B URL HTTP/1.1 www.nwcleasing.com/_themes/tabs/atabbul1.gif
IP 50.31.65.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /_themes/tabs/atabbul1.gif HTTP/1.1
Host: www.nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/
HTTP/1.1 404 Not Found
Date: Tue, 17 Jan 2023 11:16:44 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
nwcleasing.com/images/orangedots.gif
50.31.65.174200 OK 55 B URL HTTP/1.1 nwcleasing.com/images/orangedots.gif
IP 50.31.65.174:0
File type GIF image data, version 89a, 8 x 8\012- data
Hash 142dfbc548d21f7ff004b15e144d13da
dc21e6abec123367c18eace369d0b18df9ebe713
be3a55be2a6d384cf65845df4937c1e0e9fcea17c4f591c85c7bb2f104021946
GET /images/orangedots.gif HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:44 GMT
Server: Apache
Last-Modified: Fri, 12 Oct 2012 04:20:00 GMT
Accept-Ranges: bytes
Content-Length: 55
Cache-Control: max-age=2592000, public
Expires: Thu, 16 Feb 2023 11:16:44 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
nwcleasing.com/images/left_panel.gif
50.31.65.174200 OK 106 B URL HTTP/1.1 nwcleasing.com/images/left_panel.gif
IP 50.31.65.174:0
File type GIF image data, version 89a, 238 x 1\012- data
Hash 583cf611578582d6721bebe7906948da
531b642d153a13c3d53a38300539964d7adb5ddb
40d42f95f7665981cf9475a6055aecfa7069867c48fa024c10bd025da8c093eb
GET /images/left_panel.gif HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/xsp_styles.css
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:44 GMT
Server: Apache
Last-Modified: Fri, 12 Oct 2012 04:20:04 GMT
Accept-Ranges: bytes
Content-Length: 106
Cache-Control: max-age=2592000, public
Expires: Thu, 16 Feb 2023 11:16:44 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/gif
nwcleasing.com/images/left_panel_top1.gif
50.31.65.174200 OK 7.4 kB URL HTTP/1.1 nwcleasing.com/images/left_panel_top1.gif
IP 50.31.65.174:0
File type GIF image data, version 89a, 238 x 163\012- data
Hash 5834dc2446968e36431edba9c14c923f
b0157232224ec4516470bddbcc1733123c869ee2
7237eff15bd33d971cbf6033a758f3336dfb53c99ad865af673df1f1482407fb
GET /images/left_panel_top1.gif HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:44 GMT
Server: Apache
Last-Modified: Fri, 12 Oct 2012 04:22:04 GMT
Accept-Ranges: bytes
Content-Length: 7364
Cache-Control: max-age=2592000, public
Expires: Thu, 16 Feb 2023 11:16:44 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/gif
nwcleasing.com/images/left_panel_top2.gif
50.31.65.174200 OK 14 kB URL HTTP/1.1 nwcleasing.com/images/left_panel_top2.gif
IP 50.31.65.174:0
File type GIF image data, version 89a, 238 x 134\012- data
Hash 304e879da065d453986aa7bad3852984
8c51d4b83a2db1a0e104eade5ab40dd578c8cda8
39241e39298e8cf92afc0c2719157e116ccf81b4cd2cd1acd2ff4fb08a82da16
GET /images/left_panel_top2.gif HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:44 GMT
Server: Apache
Last-Modified: Fri, 12 Oct 2012 04:22:10 GMT
Accept-Ranges: bytes
Content-Length: 13962
Cache-Control: max-age=2592000, public
Expires: Thu, 16 Feb 2023 11:16:44 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/gif
nwcleasing.com/images/divider1.gif
50.31.65.174200 OK 649 B URL HTTP/1.1 nwcleasing.com/images/divider1.gif
IP 50.31.65.174:0
File type GIF image data, version 89a, 238 x 8\012- data
Hash 89523d963edb9008033b899ed280a502
5485f3680861bacd2605bace8a450174e9e38b10
260a8ffc6ed07d0f6330cd1536ac8c51429f28639eadc743ff094995d5a0f7d0
GET /images/divider1.gif HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:44 GMT
Server: Apache
Last-Modified: Fri, 12 Oct 2012 04:20:36 GMT
Accept-Ranges: bytes
Content-Length: 649
Cache-Control: max-age=2592000, public
Expires: Thu, 16 Feb 2023 11:16:44 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/gif
nwcleasing.com/images/right_panel.gif
50.31.65.174200 OK 91 B URL HTTP/1.1 nwcleasing.com/images/right_panel.gif
IP 50.31.65.174:0
File type GIF image data, version 89a, 10 x 1\012- data
Hash 8d3c4fdd1b72cd94f302e5a1ec5de40d
fbc44999fcd8d10f6e844f8c90d32c09bd7fddf9
61d6a24a35515d610a88bd17a39b4548fce0748e98a9d89094081cea4d1d25ab
GET /images/right_panel.gif HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/xsp_styles.css
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:44 GMT
Server: Apache
Last-Modified: Fri, 12 Oct 2012 04:20:03 GMT
Accept-Ranges: bytes
Content-Length: 91
Cache-Control: max-age=2592000, public
Expires: Thu, 16 Feb 2023 11:16:44 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/gif
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8720730dce33d0026a1a354ac93d4a7d
ed5f086bc646a4d93d2344b19ff7821c96e44f7c
b2892fda88242fbc4d58dd1f3bb159ca02cbf98b77c57dde66fba98d183c0136
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 727
Cache-Control: max-age=165732
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 11:16:44 GMT
Etag: "63c66529-1d7"
Expires: Thu, 19 Jan 2023 09:18:56 GMT
Last-Modified: Tue, 17 Jan 2023 09:06:49 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
nwcleasing.com/images/header.gif
50.31.65.174200 OK 49 kB URL HTTP/1.1 nwcleasing.com/images/header.gif
IP 50.31.65.174:0
File type GIF image data, version 89a, 750 x 129\012- data
Hash 56711654b25622c9a47a580974cf7cb3
dd18e2d6200480dc55615d42b57ee3f0aa617b80
6bfdf76bbf44edecabdaa1da8987aa65565171b1d8dbd04c8e2ea5d7e507b37a
GET /images/header.gif HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/xsp_styles.css
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:44 GMT
Server: Apache
Last-Modified: Fri, 12 Oct 2012 04:22:46 GMT
Accept-Ranges: bytes
Content-Length: 49268
Cache-Control: max-age=2592000, public
Expires: Thu, 16 Feb 2023 11:16:44 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
nwcleasing.com/images/whitedots.gif
50.31.65.174200 OK 55 B URL HTTP/1.1 nwcleasing.com/images/whitedots.gif
IP 50.31.65.174:0
File type GIF image data, version 89a, 8 x 8\012- data
Hash 8aa58c3454afff414b1de566ab5c6abc
c6337c17816916ae9749b527e3665d313dcf038b
5cba92163cc3ca1e95827c180a0c0efe252c3a49c0348a451e797122a69a0fa8
GET /images/whitedots.gif HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:44 GMT
Server: Apache
Last-Modified: Fri, 12 Oct 2012 04:20:00 GMT
Accept-Ranges: bytes
Content-Length: 55
Cache-Control: max-age=2592000, public
Expires: Thu, 16 Feb 2023 11:16:44 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/gif
nwcleasing.com/images/footer.gif
50.31.65.174200 OK 26 kB URL HTTP/1.1 nwcleasing.com/images/footer.gif
IP 50.31.65.174:0
File type GIF image data, version 89a, 750 x 120\012- data
Hash 96055810c7d2556a6d3d524c55bc51e1
e81bd056265d41e0862f3e9f668cc47219252a8c
c1e3cd4e512ac802fde676a5a230ec40a2f087a2fe720e7dad6e7cc5a4b0fe64
GET /images/footer.gif HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/xsp_styles.css
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:44 GMT
Server: Apache
Last-Modified: Fri, 12 Oct 2012 04:22:40 GMT
Accept-Ranges: bytes
Content-Length: 26104
Cache-Control: max-age=2592000, public
Expires: Thu, 16 Feb 2023 11:16:44 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/gif
nwcleasing.com/images/graphic01.jpg
50.31.65.174200 OK 36 kB URL HTTP/1.1 nwcleasing.com/images/graphic01.jpg
IP 50.31.65.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 502x236, components 3\012- data
Hash 7e33f9ba3c9a099a36e41f27a82fe2a4
9e9afdf84be6a8349b90a02fd678342d1aaa0b5d
c185ca4f81038c455da8942aaa5aa9633981e4c309bb5fd8907bc5ceaa7900e6
GET /images/graphic01.jpg HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/xsp_styles.css
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 11:16:44 GMT
Server: Apache
Last-Modified: Fri, 12 Oct 2012 04:22:43 GMT
Accept-Ranges: bytes
Content-Length: 35572
Cache-Control: max-age=2592000, public
Expires: Thu, 16 Feb 2023 11:16:44 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
nwcleasing.com/favicon.ico
50.31.65.174404 Not Found 315 B URL HTTP/1.1 nwcleasing.com/favicon.ico
IP 50.31.65.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /favicon.ico HTTP/1.1
Host: nwcleasing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://nwcleasing.com/
HTTP/1.1 404 Not Found
Date: Tue, 17 Jan 2023 11:16:44 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
push.services.mozilla.com/
54.148.213.75101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.213.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DdpH6see/gRMxNTlykfGmw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Mk7+L+XGvpnJzhjd7ZRgF+z0tNY=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3488
Expires: Tue, 17 Jan 2023 12:14:53 GMT
Date: Tue, 17 Jan 2023 11:16:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3488
Expires: Tue, 17 Jan 2023 12:14:53 GMT
Date: Tue, 17 Jan 2023 11:16:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad391a3-52d8-4a92-ab46-4ad076c43cf8.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad391a3-52d8-4a92-ab46-4ad076c43cf8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad210f0ba6ce6930724549cbba76e83d
e4badc3fbca9913bc11d968dac5cad1f900ff492
ad5f754d5dbe870feabfe090a46838614e96d72e78b9a2a8010ab339c67130be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad391a3-52d8-4a92-ab46-4ad076c43cf8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9529
x-amzn-requestid: 56f2b9a5-91c6-421a-ad84-165376e23dcf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2tm6Fm-oAMFrDQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c2f8-67a0c1fe6aad6e6b71e50463;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:34:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mzmFGVDfMuZte5CJUmchEQIVAuDUKdGfUpm7PRTUqnsP44IcDmbl8A==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:46:15 GMT
age: 48630
etag: "e4badc3fbca9913bc11d968dac5cad1f900ff492"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f84f3a0-4f01-4cfe-bde0-a7d64664f3d7.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f84f3a0-4f01-4cfe-bde0-a7d64664f3d7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec0e283376914297c3fb2464ed15a31b
acd84e057b6c618fd3b31915983998c00fe21dc4
3d02b82d8f6a00703de7594f5b34baf0010294c1a7023818344ca341e4ac203c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f84f3a0-4f01-4cfe-bde0-a7d64664f3d7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10660
x-amzn-requestid: ac5d6edc-5228-4318-a99f-c08d3265aa87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3HXpH4PoAMF78Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5ec30-044bf7c40e44de637c0c2dba;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 00:30:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FkEloLsB0trkJ9t_rqIbVsZmUi9ytfJ9JdQ-zjs7ZM5smU4xVwvkxA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 00:31:58 GMT
age: 38687
etag: "acd84e057b6c618fd3b31915983998c00fe21dc4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04b94725-ff4a-4bda-82a9-4efa8d9c4276.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04b94725-ff4a-4bda-82a9-4efa8d9c4276.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fefb1f12a78ad92ed309da2c54984a3c
caf58bf6276e226a20a0d0cf6fc3d422f922eb28
baf6596c635254885f32e423cbc5667694754243f01109cbdbeb54c337b16bc2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04b94725-ff4a-4bda-82a9-4efa8d9c4276.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14703
x-amzn-requestid: bdc14ffc-297a-4046-9a4f-26d454f6f9be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2trpGZkoAMFhZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c317-58908dd71980be98200e8f6c;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: J674keESjH0GJBC8A6WnCmsHdxNtHNu5pbsv7EwSFSFMcxVCrZeFrw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 02:43:40 GMT
age: 30785
etag: "caf58bf6276e226a20a0d0cf6fc3d422f922eb28"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a588566-7d22-4b47-96ce-ee6bb56e4898.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a588566-7d22-4b47-96ce-ee6bb56e4898.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57828b7affae7633b38d0fb6057b894d
db4cd956ba7e1e6b43174c250b7d4f1193277be9
26d83d511af9583a8f0a9ef1bd2ce3deab3ca42fa2c2ae141b61cd123afa9625
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a588566-7d22-4b47-96ce-ee6bb56e4898.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7800
x-amzn-requestid: eac845c9-b10c-4fce-b2ff-01b4111b506e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2OjhHp_IAMFeyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c59149-0058376c385a7bf91e07a395;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 18:02:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJvk4N80rrZjzks6MsuDc3XXdRIBAmoEQLVkvN6TXISBtWwXHYDJ_A==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 18:44:18 GMT
etag: "db4cd956ba7e1e6b43174c250b7d4f1193277be9"
content-type: image/jpeg
age: 59547
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7f5c64c-06d8-4527-a53e-4dd0bbe44138.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7f5c64c-06d8-4527-a53e-4dd0bbe44138.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c5cf59ac2200ddefc7b1019ac885adb0
5c3c71108063bfa193b848023ee3e5b17c0df978
785fb702d7a2386ec92e5d33e44cb826d38e21b724df3a7ceedb3a5d05cf9c87
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7f5c64c-06d8-4527-a53e-4dd0bbe44138.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8878
x-amzn-requestid: 02bc1bf0-b606-45b1-8f2c-3c1ed274db15
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbP5GZtIAMFb9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c47265-30419ed51f5603314bd9e4b6;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Mm0qplBOGJFIpjDa24aFcmKqh4MC9VbVCVWN9jKNFV4Bs3qqLDbvXw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 22:05:20 GMT
age: 47485
etag: "5c3c71108063bfa193b848023ee3e5b17c0df978"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93fda3d0-f25d-4038-bce9-349d25d63a74.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93fda3d0-f25d-4038-bce9-349d25d63a74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dd54f560a77956e0ffb9645ba786c193
0a67ed30b7b9c66a6ccd2a72cd0de27b0fd38509
359fd1bdac8f7106b2d1dc71136ddca2bb70e95fab441af114e24d04fa69afe7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93fda3d0-f25d-4038-bce9-349d25d63a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7847
x-amzn-requestid: 15cc6d5b-0805-4828-9bdc-5067a2d542d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: evbCYETXoAMFVqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c2d875-5ff79c917007ccbd40957aa3;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 16:29:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4MTdWQGgqXhGjGRJbtMqJPn__CZJyfhtbDU81Ay-SaZE2CGJ55s8Lw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 12:04:57 GMT
age: 83508
etag: "0a67ed30b7b9c66a6ccd2a72cd0de27b0fd38509"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1490db-aa8a-4724-a608-8c0c03f98b35.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1490db-aa8a-4724-a608-8c0c03f98b35.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 805a998e9a6fc452c152ab9542b6d0cd
0bd57ea7809abfa4136506f565ac8ba45c936406
b24e0b322cacda63e43582e713cb38d80914f6b82c735307188a2ddd9829338f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1490db-aa8a-4724-a608-8c0c03f98b35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10736
x-amzn-requestid: 78c83dbb-f641-4ece-bd8d-ce9d524f100d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2tm5FLvoAMFn1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c2f8-73b261b87d3eb7b709161fdf;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:34:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hUS-ajMYSYKXI2jsZJApvgUgr0lnbrm02BXZ6rsPS5h0daBcIRtgEw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 21:46:15 GMT
age: 48637
etag: "0bd57ea7809abfa4136506f565ac8ba45c936406"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2