allcountyneohudson.com/
199.96.172.45301 MovedPermanently 0 B IP 199.96.172.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 MovedPermanently
Location: http://www.allcountyneohudson.com/
Server: Microsoft-IIS/10.0
X-Frame-Options: SAMEORIGIN
X-Powered-By: UrlRewriter.NET 2.0.0, ASP.NET
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin
X-XSS-Protection: 1; mode=block
Date: Fri, 11 Nov 2022 19:25:35 GMT
Content-Length: 0
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3d0727e32cd103ddd4b73f28c81758aa
197a7bf43d63723fc532c23c6dced68d5cc36652
d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10982
Expires: Fri, 11 Nov 2022 22:28:37 GMT
Date: Fri, 11 Nov 2022 19:25:35 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4edf853c470fcec0ab277c78527f3c2d
de93530ce15337e671c488d9fe05e7091d4956f0
b9d7976b398b1243ff8a571ddd3975d3a1317d69101061bdb1a755b3b56620e6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4845
Cache-Control: max-age=145597
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 19:25:35 GMT
Etag: "636e247f-1d7"
Expires: Sun, 13 Nov 2022 11:52:12 GMT
Last-Modified: Fri, 11 Nov 2022 10:31:27 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 11 Nov 2022 18:43:54 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2501
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a8391107bfc5e4673e8a706f90f63768
5295ed0b1cb8bad4d3e851049acc7f0270937d12
ed5c27510100ffc4481be474ebcb020d147c645beb110604d5284eeeb8b97c02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ED5C27510100FFC4481BE474EBCB020D147C645BEB110604D5284EEEB8B97C02"
Last-Modified: Fri, 11 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19184
Expires: Sat, 12 Nov 2022 00:45:19 GMT
Date: Fri, 11 Nov 2022 19:25:35 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: iXc1xRpMAbwmHSyJz4/Ms/hYcxjRADu/HvJXrk716HUxAdT+h8FHoJ3aMC6rXkb9InfYWJGIzKI=
x-amz-request-id: 2QX0QJF4EM82EG2C
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 11 Nov 2022 19:12:41 GMT
age: 774
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 11 Nov 2022 19:25:35 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Cache-Control, Retry-After, Content-Length, Expires, ETag, Pragma, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 11 Nov 2022 19:24:58 GMT
cache-control: public,max-age=3600
age: 37
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f7ff606fbc8634c858bbc04b69f55cf6
2441de2cba649239efd0dae7a878d7ef2245c0b4
95154e0dbb7e827b8f893cc141f986c29634ead618256470d753429aa65a0548
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6146
Cache-Control: max-age=141822
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 19:25:36 GMT
Etag: "636e10ac-1d7"
Expires: Sun, 13 Nov 2022 10:49:18 GMT
Last-Modified: Fri, 11 Nov 2022 09:06:52 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.237.239.70101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.239.70:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qB0FGgpO10pPcs254LnzCA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: CCXbtNaVQNV+6af14/vauI6Y5qg=
www.allcountyneohudson.com/
199.96.172.45301 MovedPermanently 0 B URL HTTP/1.1 www.allcountyneohudson.com/
IP 199.96.172.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 MovedPermanently
Location: https://www.allcountyneohudson.com/
Server: Microsoft-IIS/10.0
X-Frame-Options: SAMEORIGIN
X-Powered-By: UrlRewriter.NET 2.0.0, ASP.NET
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin
X-XSS-Protection: 1; mode=block
Date: Fri, 11 Nov 2022 19:25:36 GMT
Content-Length: 0
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fc58996e7e2626ba8553cb2ee7d2e734
7cb36589294a3501dd3a6d63c12b99125d30da46
8aa1128fd3a8485e11fe830f719ef3ecf120fb092e4ffbe2b38180f69c2e77c5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8AA1128FD3A8485E11FE830F719EF3ECF120FB092E4FFBE2B38180F69C2E77C5"
Last-Modified: Fri, 11 Nov 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 12 Nov 2022 01:25:37 GMT
Date: Fri, 11 Nov 2022 19:25:37 GMT
Connection: keep-alive
code.jquery.com/jquery-3.4.1.min.js
69.16.175.10200 OK 31 kB URL HTTP/2 code.jquery.com/jquery-3.4.1.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (65451)
Hash 9abb42735168ac9e960b770179b642aa
11475bf8c7244af7a820108b7762e7a3f95aa52c
df53c09a6546b3d23dc0b2d0d92c39808c5663a75f4bf1f8d035fd11b7c81243
GET /jquery-3.4.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Origin: https://www.allcountyneohudson.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 11 Nov 2022 19:25:37 GMT
content-encoding: gzip
content-length: 30638
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15851"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1668194737.dop220.sk1.t,1668194737.cds235.sk1.hn,1668194737.cds201.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 06d7d61a20669050493c3fd5d2b9798e
5d2d51f23582ef785072cdd0ca9ccf859b563b2d
653662665ea3298734fa313f693216a3932a64ac2903986d7415f60f97bcf27f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 19:25:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Montserrat&family=Open+Sans&display=swap
142.250.74.10200 OK 1.2 kB URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat&family=Open+Sans&display=swap
IP 142.250.74.10:0
Hash 6d309d2f52cc38f189cc49adbe89def0
e191b6de1fa7cf836e13ea91b3ca88d1e26473d9
ff9e3cc7482d0ff92cfc7a5e197c76ee0d1e8c0e630ae58fe86637dc8523e394
GET /css2?family=Montserrat&family=Open+Sans&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 11 Nov 2022 19:25:37 GMT
date: Fri, 11 Nov 2022 19:25:37 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3767
Expires: Fri, 11 Nov 2022 20:28:24 GMT
Date: Fri, 11 Nov 2022 19:25:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3767
Expires: Fri, 11 Nov 2022 20:28:24 GMT
Date: Fri, 11 Nov 2022 19:25:37 GMT
Connection: keep-alive
www.allcountyneohudson.com/
199.96.172.45200 OK 63 kB URL HTTP/2 www.allcountyneohudson.com/
IP 199.96.172.45:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2696), with CRLF, CR, LF line terminators
Hash 60b4882fcbee1d3914901881e6a0d4dd
8ee4c1465a3f8529a404d866b8892ad4b2b75bcd
0ad6c140f5985065a8b62e46fb5188264e08cc3fef692859d6e66f771a299b68
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=utf-8
server: Microsoft-IIS/10.0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-aspnet-version: 4.0.30319
set-cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; path=/; HttpOnly; SameSite=Lax
ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; path=/; HttpOnly; SameSite=Lax
__AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0; path=/; HttpOnly
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 63298
X-Firefox-Spdy: h2
www.allcountyneohudson.com/CSS/masterstyle.min.css?v=4.005
199.96.172.45200 OK 20 kB URL HTTP/2 www.allcountyneohudson.com/CSS/masterstyle.min.css?v=4.005
IP 199.96.172.45:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Hash 8c71d8e0cbc1e6b0d0f64eaf34317bec
f93e4102719e90b935af7d8b3883bf025e42aad9
b0af65f9624be2faf40fbfdcfc83724f063915fa3ba3f0ce3a7c5e58a4fe3911
Analyzer Verdict Alert quad9 Sinkholed
GET /CSS/masterstyle.min.css?v=4.005 HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=604800
content-type: text/css
content-encoding: gzip
last-modified: Wed, 02 Nov 2022 18:36:04 GMT
accept-ranges: bytes
etag: "082a1f6e9eed81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 19986
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3767
Expires: Fri, 11 Nov 2022 20:28:24 GMT
Date: Fri, 11 Nov 2022 19:25:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad1abae5-6437-44bf-8428-756b825e5be6.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad1abae5-6437-44bf-8428-756b825e5be6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 88c9931a009690991e73c5b37a1aa085
815a4a1eb8c8e2a138fb3d65ba777b0c18fa15d0
74e70391889e4b46742033b1d5daccfec415ba2ee999e429d1013fd4a1ebc61a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad1abae5-6437-44bf-8428-756b825e5be6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8294
x-amzn-requestid: 233f9724-1c36-426d-8299-1f6577a6e5e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ4lmE60IAMF1Lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d6e23-4b2763b42d8a57044dfa8144;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 21:33:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QaMTrn0ZUptFLGY0x7bytPsJZHnLvdpMnU0XGCBU2pkmiA4MO8DIUw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 21:46:56 GMT
etag: "815a4a1eb8c8e2a138fb3d65ba777b0c18fa15d0"
content-type: image/jpeg
age: 77921
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3767
Expires: Fri, 11 Nov 2022 20:28:24 GMT
Date: Fri, 11 Nov 2022 19:25:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85c6f450b38f41a2fb924d6d9a9cbff8
691f59b65ca9fde4f59bbf96b37071e07351f190
c8f877488a2cf65f0d9829384fd4113847722a1b4df94b6b1d5788699689722c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5583
x-amzn-requestid: e844f42a-e87e-4e61-8c97-137c07c5ae28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNeQ9Ho7IAMF5_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63687739-62c44d2f7d23632e74895bd8;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 03:10:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uHlIN1IVGCFUVl5lx5pFSux0YncseT2HQjiwFDL9eaEaBa9CdnCl8g==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 07:47:38 GMT
age: 41879
etag: "691f59b65ca9fde4f59bbf96b37071e07351f190"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c9847f2-3b5e-4950-9792-a512af36da58.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c9847f2-3b5e-4950-9792-a512af36da58.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f29164fb4dd64d9ce60566fbebd40f0a
96de8f2627e1103c5e6beb5d64cdbc09f97fce82
8eba6095edfed1ee1402c050727f81b8a9942625fd1c9cbb3bac4e51ee178577
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c9847f2-3b5e-4950-9792-a512af36da58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6517
x-amzn-requestid: 78eb1490-4afb-497e-9dbd-afd6ddf9cc48
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bG23pFPLoAMFxcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6365d1ca-4c9caca164576bfe07c9c05c;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 03:00:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zllrXRZmtjHqA98lS_q0Wtx5TeEh2cEy3tr_eGkozM_jWxTIA5d60g==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 21:48:34 GMT
age: 77823
etag: "96de8f2627e1103c5e6beb5d64cdbc09f97fce82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e7dc40a-e47f-44b5-b3b4-87b10cd8669d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e7dc40a-e47f-44b5-b3b4-87b10cd8669d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e72f32944d6f03e005f7b6f3e87d8c72
5fe340bf33ac219f6a3d44810f31d0a8796c83a9
bcdcba30210d276996d0fe749bbfc69d666ae11ddfbfdb57307e4bb4d6e43d1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e7dc40a-e47f-44b5-b3b4-87b10cd8669d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10671
x-amzn-requestid: 1b6053eb-64ac-4c24-a750-c1b8cd69157f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJEh8GxPoAMFhPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366b472-56c6a3bc07ec89ab56d4f3bd;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 19:07:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qJeWGvC4DM_d3k66OHN2V19elou-xoSNkep1BNalBO0NtKyQtAFzNQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 04:30:53 GMT
age: 53684
etag: "5fe340bf33ac219f6a3d44810f31d0a8796c83a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5530631-4859-4685-8ab3-a5b1013cd2cb.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5530631-4859-4685-8ab3-a5b1013cd2cb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1ae1fe42d639643009ccee5a7ef770fd
d43bb27911013930ed09d9609a71d737e0838556
d5fc8515f49a0b90e083f6a6025c3dc71dba286e15d5b3f841772d60d2e68fb2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5530631-4859-4685-8ab3-a5b1013cd2cb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11527
x-amzn-requestid: a2a00c3d-12f7-412b-ba02-6bda7aa60586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNfYZHXhIAMFVYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63687902-593d2a380bac7a567af893d3;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 03:18:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: -4aHIcRGJA05uxZs2HkLI5SBdino1x_a5dIH9soWfxKe1mVNhwpglA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 09:59:00 GMT
age: 33997
etag: "d43bb27911013930ed09d9609a71d737e0838556"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4094512-9a5a-47aa-9796-9f630fb1c13f.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4094512-9a5a-47aa-9796-9f630fb1c13f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13f7b6eea163326da8c58ae5c09efccd
e0d1ebb35a16c686eae3d31eb85ac72278459b05
13f2f428acb7806808d957a8167ab2c139a5d0f59798671465717f2b39b914a9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4094512-9a5a-47aa-9796-9f630fb1c13f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8581
x-amzn-requestid: 385174fe-153f-448f-be5e-9ea3b5757ff9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ4u1EYOIAMFncA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d6e5e-6084a34f58df22037275e676;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 21:34:22 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xSnHWpFlXeyf08gYjPn02H88Hta9fhiDjDOukoKtt6PPVBl_gNTfgw==
via: 1.1 dfc972676b24a6d23251d4f298dfa08c.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 21:46:56 GMT
age: 77921
etag: "e0d1ebb35a16c686eae3d31eb85ac72278459b05"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/cookieconsent@3/build/cookieconsent.min.js
151.101.85.229200 OK 6.8 kB URL HTTP/2 cdn.jsdelivr.net/npm/cookieconsent@3/build/cookieconsent.min.js
IP 151.101.85.229:0
File type ASCII text, with very long lines (20693), with no line terminators
Hash 58a872ad8da4bad737e618cf78b55feb
1917e7662a1c0d1034c3056c6ebd0e9ae2d542f1
5ddc446ff4623ed98a827c66171c9d5d2809d7f679b0681eb088765e272849bb
GET /npm/cookieconsent@3/build/cookieconsent.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.1.1
x-jsd-version-type: version
etag: W/"50d5-nLraS9YXyGxjjPLr3exyStWWkHs"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 11 Nov 2022 19:25:37 GMT
age: 3627
x-served-by: cache-fra-eddf8230087-FRA, cache-bma1659-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6756
X-Firefox-Spdy: h2
www.allcountyneohudson.com/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZF1JrMEvrxElj-ld0uT4_IAu3Mt60g5FiCngyrEcsJy-OE_WK1oy8swiTOJvRAekuQ2&t=637823185705833095
199.96.172.45200 OK 23 kB URL HTTP/2 www.allcountyneohudson.com/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZF1JrMEvrxElj-ld0uT4_IAu3Mt60g5FiCngyrEcsJy-OE_WK1oy8swiTOJvRAekuQ2&t=637823185705833095
IP 199.96.172.45:0
File type ASCII text, with CRLF line terminators
Hash 90ea7274f19755002360945d54c2a0d7
647b5d8bf7d119a2c97895363a07a0c6eb8cd284
40732e9dcfa704cf615e4691bb07aecfd1cc5e063220a46e4a7ff6560c77f5db
Analyzer Verdict Alert quad9 Sinkholed
GET /WebResource.axd?d=pynGkmcFUV13He1Qd6_TZF1JrMEvrxElj-ld0uT4_IAu3Mt60g5FiCngyrEcsJy-OE_WK1oy8swiTOJvRAekuQ2&t=637823185705833095 HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: application/x-javascript
expires: Sat, 11 Nov 2023 19:24:44 GMT
last-modified: Tue, 08 Mar 2022 11:42:50 GMT
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 23063
X-Firefox-Spdy: h2
www.allcountyneohudson.com/ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvvQAOZgaGFVTlFoD6koVLfv9OMowZEiCkXH8lr7vDfc2UR-DtSjdvaty44Dbulbo3ewIH_0usJtqEAUH6JEfLiSkEHqCCeo56WO-IADxa6p0qJ6kv53HHAidlRIZapczRABoYfdWYe8dp16kW69UHy81&t=ffffffffaa493ab8
199.96.172.45200 OK 26 kB URL HTTP/2 www.allcountyneohudson.com/ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvvQAOZgaGFVTlFoD6koVLfv9OMowZEiCkXH8lr7vDfc2UR-DtSjdvaty44Dbulbo3ewIH_0usJtqEAUH6JEfLiSkEHqCCeo56WO-IADxa6p0qJ6kv53HHAidlRIZapczRABoYfdWYe8dp16kW69UHy81&t=ffffffffaa493ab8
IP 199.96.172.45:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65326), with CRLF line terminators
Hash b62553925bd98826c60457d2eb6b9a46
84dbbb6d9b36a587c21b5a56b1d9e587e33ba943
c58166fe4df4ba8f25a960c21451eaf841d97f6f552f104e43431c9db1c2e2cc
Analyzer Verdict Alert quad9 Sinkholed
GET /ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvvQAOZgaGFVTlFoD6koVLfv9OMowZEiCkXH8lr7vDfc2UR-DtSjdvaty44Dbulbo3ewIH_0usJtqEAUH6JEfLiSkEHqCCeo56WO-IADxa6p0qJ6kv53HHAidlRIZapczRABoYfdWYe8dp16kW69UHy81&t=ffffffffaa493ab8 HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: application/x-javascript
content-encoding: gzip
expires: Sat, 11 Nov 2023 19:24:45 GMT
last-modified: Fri, 11 Nov 2022 19:24:45 GMT
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 25609
X-Firefox-Spdy: h2
www.allcountyneohudson.com/ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OMs7w2kWu4XAUvQkJuZu_bemwxNqOaILbGaGFthlXrWIZHn6ICLMnM41toI7J-7khC6G3XkmwI-tRX50EdI7k37jYHSaodZZZAi8rt6CV90vu6tfHPUrKUrAjPcIOxFzCmK1K5YKOqg3CnVMQXanXCQ1&t=ffffffffaa493ab8
199.96.172.45200 OK 10 kB URL HTTP/2 www.allcountyneohudson.com/ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OMs7w2kWu4XAUvQkJuZu_bemwxNqOaILbGaGFthlXrWIZHn6ICLMnM41toI7J-7khC6G3XkmwI-tRX50EdI7k37jYHSaodZZZAi8rt6CV90vu6tfHPUrKUrAjPcIOxFzCmK1K5YKOqg3CnVMQXanXCQ1&t=ffffffffaa493ab8
IP 199.96.172.45:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (39257), with CRLF line terminators
Hash 027a7d52e1ceed8aef7dc13505b81d36
33cf0bce6a4c8b44b4a80b3116c978c12ee93fd0
29061464fb6fce2326b952eacaa95c3c6183bfea74c3851390e9838720d372a6
Analyzer Verdict Alert quad9 Sinkholed
GET /ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OMs7w2kWu4XAUvQkJuZu_bemwxNqOaILbGaGFthlXrWIZHn6ICLMnM41toI7J-7khC6G3XkmwI-tRX50EdI7k37jYHSaodZZZAi8rt6CV90vu6tfHPUrKUrAjPcIOxFzCmK1K5YKOqg3CnVMQXanXCQ1&t=ffffffffaa493ab8 HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: application/x-javascript
content-encoding: gzip
expires: Sat, 11 Nov 2023 19:24:44 GMT
last-modified: Fri, 11 Nov 2022 19:24:44 GMT
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 9984
X-Firefox-Spdy: h2
www.allcountyneohudson.com/images/renown-logo_glow.png
199.96.172.45200 OK 4.2 kB URL HTTP/2 www.allcountyneohudson.com/images/renown-logo_glow.png
IP 199.96.172.45:0
File type PNG image data, 100 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash c128604c7cb342db728263c43ccd93a0
097141949c9a497b58d62e7fba8d22e207994866
a605a563f824e7fd73f4501ff0b36eb7406ee463de40115fc947330343bea03f
Analyzer Verdict Alert quad9 Sinkholed
GET /images/renown-logo_glow.png HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=604800
content-type: image/png
last-modified: Tue, 16 Feb 2021 02:38:54 GMT
accept-ranges: bytes
etag: "0f3eaddc4d71:0"
server: Microsoft-IIS/10.0
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 4238
X-Firefox-Spdy: h2
www.allcountyneohudson.com/images/loader_gray_48.gif
199.96.172.45200 OK 3.5 kB URL HTTP/2 www.allcountyneohudson.com/images/loader_gray_48.gif
IP 199.96.172.45:0
File type GIF image data, version 89a, 48 x 48\012- data
Hash 79b2fd6925473a3cd045a18e8ae6a811
6a6602a5592314fdb4bd6671a59aa930842d017a
6a8be2c5e593a44a7b9af28e96aad4191b9b566c2620778d4b771007ef2887fb
Analyzer Verdict Alert quad9 Sinkholed
GET /images/loader_gray_48.gif HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=604800
content-type: image/gif
last-modified: Tue, 16 Feb 2021 02:38:54 GMT
accept-ranges: bytes
etag: "0f3eaddc4d71:0"
server: Microsoft-IIS/10.0
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 3498
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash a8018ac12c118731c12d8ba13c6f137a
e33bd0b7ca74c72bd303d78a66cc6eedf9fc42e9
746ac68a8e776ed1877c68e1a804156f6a73fed7b4734d8ee3111dd095f316fb
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 19:25:37 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "96C13FADF25B9D7B47B4EF21684AC35F455CF5F2"
Expires: Sat, 12 Nov 2022 06:00:00 GMT
Last-Modified: Fri, 11 Nov 2022 18:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 388
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76896a375b6b0b31-OSL
www.google.com/recaptcha/api.js?onload=captchaCallback&render=explicit
142.250.74.164200 OK 580 B URL HTTP/2 www.google.com/recaptcha/api.js?onload=captchaCallback&render=explicit
IP 142.250.74.164:0
File type ASCII text, with very long lines (910), with no line terminators
Hash 75dc11f2c3775b9b2ebe24d77c8aefb1
e6e34e06762975dcc3bbb9b8a68cabc656499321
ea139f0270a7ce34d8f847c8900bb0472c4d298a09cdbb1c14a7c04ce6091dcf
GET /recaptcha/api.js?onload=captchaCallback&render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 11 Nov 2022 19:25:37 GMT
date: Fri, 11 Nov 2022 19:25:37 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 580
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 05bb9af901ca5b651e88fcbe236711f5
18412da7fc2d868fc74bc3e7c44b4add4bbbdef9
9b87e90e4f5356da47fd562f7d06c8fbdef90d011e8c20e5687afbeaf6e7d29b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 19:25:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.allcountyneohudson.com/Stylesheet/83201/?v=638037735372724833
199.96.172.45200 OK 72 kB URL HTTP/2 www.allcountyneohudson.com/Stylesheet/83201/?v=638037735372724833
IP 199.96.172.45:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash a5769da3410f9dad812d070036017307
44e5665dff1662de07929fda91886239401b2210
c7ed19864dcd637fc120107c4755cc360848cd09babba46b0aaa39ef38251c46
Analyzer Verdict Alert quad9 Sinkholed
GET /Stylesheet/83201/?v=638037735372724833 HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private
content-type: text/css; charset=utf-8
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 71889
X-Firefox-Spdy: h2
www.allcountyneohudson.com/js/collapse.min.js
199.96.172.45200 OK 2.6 kB URL HTTP/2 www.allcountyneohudson.com/js/collapse.min.js
IP 199.96.172.45:0
File type ASCII text, with very long lines (2643), with no line terminators
Hash 03258241859db8293f43b0da4e581c66
2a870fab26554f92986c17ec026eab4179597d6d
eb83d05995177b338602c2f83efa84657f3afd16b591cf50c921a833183a2899
Analyzer Verdict Alert quad9 Sinkholed
GET /js/collapse.min.js HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=604800
content-type: application/javascript
last-modified: Tue, 16 Feb 2021 02:38:54 GMT
accept-ranges: bytes
etag: "0f3eaddc4d71:0"
server: Microsoft-IIS/10.0
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 2643
X-Firefox-Spdy: h2
www.allcountyneohudson.com/js/interchange.es5.min.js
199.96.172.45200 OK 2.0 kB URL HTTP/2 www.allcountyneohudson.com/js/interchange.es5.min.js
IP 199.96.172.45:0
File type ASCII text, with very long lines (1994), with no line terminators
Hash 849a4c688c15cda135b3a454308a333c
5dd18b9d3f9d445d2e2129a1d9f58637f39b7871
f699740c9573d8adea16f6b5009916fb2347994c2cd40ccd3f21fdefef7bb07b
Analyzer Verdict Alert quad9 Sinkholed
GET /js/interchange.es5.min.js HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=604800
content-type: application/javascript
last-modified: Tue, 16 Feb 2021 02:38:54 GMT
accept-ranges: bytes
etag: "0f3eaddc4d71:0"
server: Microsoft-IIS/10.0
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 1994
X-Firefox-Spdy: h2
www.allcountyneohudson.com/js/Controls/MultiCTABanner.min.js
199.96.172.45200 OK 461 B URL HTTP/2 www.allcountyneohudson.com/js/Controls/MultiCTABanner.min.js
IP 199.96.172.45:0
File type ASCII text, with very long lines (461), with no line terminators
Hash abdf25a61f7a016312a2d83325de3d07
6388054de66aec64a90f5e00ae4131359a1d53cd
1a34afcdc542dea2d984a334912f854615c1d833cc8437041957df47c75b1669
Analyzer Verdict Alert quad9 Sinkholed
GET /js/Controls/MultiCTABanner.min.js HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=604800
content-type: application/javascript
last-modified: Thu, 22 Sep 2022 03:12:58 GMT
accept-ranges: bytes
etag: "0d9103731ced81:0"
server: Microsoft-IIS/10.0
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 461
X-Firefox-Spdy: h2
www.allcountyneohudson.com/js/RenownSimpleFeed.min.js
199.96.172.45200 OK 1.5 kB URL HTTP/2 www.allcountyneohudson.com/js/RenownSimpleFeed.min.js
IP 199.96.172.45:0
File type ASCII text, with very long lines (1515), with no line terminators
Hash c8f6fccad29ece5fa312d0502138f7ad
fb119941498ca78c3624031ca19af07f3641d7f0
16d58d502cd087006581d09a7ddd6b698d81656526005ae306e4426ad65c1847
Analyzer Verdict Alert quad9 Sinkholed
GET /js/RenownSimpleFeed.min.js HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=604800
content-type: application/javascript
last-modified: Tue, 16 Feb 2021 02:38:54 GMT
accept-ranges: bytes
etag: "0f3eaddc4d71:0"
server: Microsoft-IIS/10.0
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 1515
X-Firefox-Spdy: h2
www.allcountyneohudson.com/js/customform.min.js?v=3.004
199.96.172.45200 OK 1.5 kB URL HTTP/2 www.allcountyneohudson.com/js/customform.min.js?v=3.004
IP 199.96.172.45:0
File type ASCII text, with very long lines (3712), with no line terminators
Hash 45484658536c6e5114c8bdee3750e3e1
75affb068055bc8036cd1f7ad454e76befa35067
d47c9ba10eafcd75d6151e8799d9bb86d6962fbe5cc93b389b4c83d4ff009568
Analyzer Verdict Alert quad9 Sinkholed
GET /js/customform.min.js?v=3.004 HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=604800
content-type: application/javascript
content-encoding: gzip
last-modified: Fri, 02 Apr 2021 02:49:08 GMT
accept-ranges: bytes
etag: "0aa7ac06a27d71:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 1471
X-Firefox-Spdy: h2
www.allcountyneohudson.com/js/formcheck.min.js
199.96.172.45200 OK 439 B URL HTTP/2 www.allcountyneohudson.com/js/formcheck.min.js
IP 199.96.172.45:0
File type ASCII text, with very long lines (439), with no line terminators
Hash 18482fa5b5112ef5cefb7df65db3edfc
82ca2dad6c354b07303a0109a39c9eca43283e7c
901916ec4ad2ceca97b0ca4d241a58fde94b017f5a054fbf1de582ab4a4df65c
Analyzer Verdict Alert quad9 Sinkholed
GET /js/formcheck.min.js HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=604800
content-type: application/javascript
last-modified: Tue, 16 Feb 2021 02:38:54 GMT
accept-ranges: bytes
etag: "0f3eaddc4d71:0"
server: Microsoft-IIS/10.0
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 439
X-Firefox-Spdy: h2
www.allcountyneohudson.com/js/Controls/GoogleMapIframe.min.js
199.96.172.45200 OK 322 B URL HTTP/2 www.allcountyneohudson.com/js/Controls/GoogleMapIframe.min.js
IP 199.96.172.45:0
File type ASCII text, with very long lines (322), with no line terminators
Hash ed79e13c88c22f6e8a505d5a48d5b7cb
f1e10257c6d3a185f7453591e42f4e4325a72746
97ef7d6d365a96d2c2aea061be1b9a4a74f5dbd25d79b6a9d36ac37d5d6790fb
Analyzer Verdict Alert quad9 Sinkholed
GET /js/Controls/GoogleMapIframe.min.js HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=604800
content-type: application/javascript
last-modified: Tue, 16 Feb 2021 02:38:54 GMT
accept-ranges: bytes
etag: "0f3eaddc4d71:0"
server: Microsoft-IIS/10.0
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 322
X-Firefox-Spdy: h2
www.allcountyneohudson.com/js/Controls/SectionPageLinks.min.js
199.96.172.45200 OK 317 B URL HTTP/2 www.allcountyneohudson.com/js/Controls/SectionPageLinks.min.js
IP 199.96.172.45:0
File type ASCII text, with very long lines (317), with no line terminators
Hash 3645e3bd8fdb69f400c2d39100e26e4d
30130badb70724f662f9e970b4494037c308d75c
88a91a6c2e611220904fbf62c61782a51b9603a9f3fd86b86afa7340be9bef5a
Analyzer Verdict Alert quad9 Sinkholed
GET /js/Controls/SectionPageLinks.min.js HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=604800
content-type: application/javascript
last-modified: Tue, 16 Feb 2021 02:38:54 GMT
accept-ranges: bytes
etag: "0f3eaddc4d71:0"
server: Microsoft-IIS/10.0
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 317
X-Firefox-Spdy: h2
www.allcountyneohudson.com/js/Controls/ScrollToTop.min.js
199.96.172.45200 OK 410 B URL HTTP/2 www.allcountyneohudson.com/js/Controls/ScrollToTop.min.js
IP 199.96.172.45:0
File type ASCII text, with very long lines (410), with no line terminators
Hash 919a24431f2847010d4153658bd4a750
081b5d2605c2b1a8d4c9eeafad23389d68a1c7f2
a8a1ca009d92ddf1fdcf499179e1a449e46e0f5f123b3fa804cdbf93de0ca00f
Analyzer Verdict Alert quad9 Sinkholed
GET /js/Controls/ScrollToTop.min.js HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=604800
content-type: application/javascript
last-modified: Tue, 16 Feb 2021 02:38:54 GMT
accept-ranges: bytes
etag: "0f3eaddc4d71:0"
server: Microsoft-IIS/10.0
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 410
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 19:25:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 19:25:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.allcountyneohudson.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 07 Nov 2022 18:53:39 GMT
expires: Tue, 07 Nov 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 347519
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Hash b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.allcountyneohudson.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 06:06:20 GMT
expires: Fri, 10 Nov 2023 06:06:20 GMT
cache-control: public, max-age=31536000
age: 134358
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.allcountyneohudson.com/iconfont/iconfont.min.css?v=1.3
199.96.172.45200 OK 5.9 kB URL HTTP/2 www.allcountyneohudson.com/iconfont/iconfont.min.css?v=1.3
IP 199.96.172.45:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (27654), with no line terminators
Hash c374b554cb97d747a36af0265fabc6c4
a41e18139e9a37ff2a10ab8312df8932afc1f5de
bb935c21c11d909887cc218d99b6c80bce04066ad3c0da0f8577841f09866d7c
Analyzer Verdict Alert quad9 Sinkholed
GET /iconfont/iconfont.min.css?v=1.3 HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=604800
content-type: text/css
content-encoding: gzip
last-modified: Wed, 02 Nov 2022 18:36:08 GMT
accept-ranges: bytes
etag: "0dc3f9e9eed81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 5922
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 19:25:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.allcountyneohudson.com/images/updated_renown_sources.png
199.96.172.45200 OK 127 kB URL HTTP/2 www.allcountyneohudson.com/images/updated_renown_sources.png
IP 199.96.172.45:0
File type PNG image data, 666 x 741, 8-bit colormap, non-interlaced\012- data
Size 127 kB (127049 bytes)
Hash d1237e7b8503ffb345cb11bbb7a60eb2
853fe0419ae421641d3ddc86a249977eb5498602
a923b5b58ec9043ecbf2f60c857424867a7b429249acbecc53ee4fb7826e532e
Analyzer Verdict Alert quad9 Sinkholed
GET /images/updated_renown_sources.png HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=604800
content-type: image/png
last-modified: Tue, 16 Feb 2021 02:38:54 GMT
accept-ranges: bytes
etag: "0f3eaddc4d71:0"
server: Microsoft-IIS/10.0
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 127049
X-Firefox-Spdy: h2
www.allcountyneohudson.com/iconfont/icomoon.woff
199.96.172.45200 OK 176 kB URL HTTP/2 www.allcountyneohudson.com/iconfont/icomoon.woff
IP 199.96.172.45:0
File type Web Open Font Format, TrueType, length 175520, version 0.0\012- data
Size 176 kB (175520 bytes)
Hash 071e9223e91d35b68b9c9dd7198bce92
58eba312692bdf95a444ce90adfcbc2fc71a3853
d69d6a72950e02e239c299faaae1d6e38038b7752fce03fcf7302c5d0f5d838e
Analyzer Verdict Alert quad9 Sinkholed
GET /iconfont/icomoon.woff HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800
content-type: font/x-woff
last-modified: Sat, 23 Jul 2022 03:48:38 GMT
accept-ranges: bytes
etag: "02f6817479ed81:0"
server: Microsoft-IIS/10.0
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:37 GMT
content-length: 175520
X-Firefox-Spdy: h2
filehandler.revlocal.com/553549
199.96.172.22200 OK 8.4 kB URL HTTP/1.1 filehandler.revlocal.com/553549
IP 199.96.172.22:0
File type PNG image data, 300 x 74, 8-bit/color RGBA, non-interlaced\012- data
Hash 661dc21f48c4bdefe2de569130471227
e11ad98bcaefb5b253d5060aae9b4704a3ba457d
ae9731f96b366d7d896d11cdba68db0eb3b6e4a6f6bb5c991ab063117ea22cb8
GET /553549 HTTP/1.1
Host: filehandler.revlocal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=10
Content-Type: image/png
Last-Modified: Thu, 17 Feb 2022 18:14:23 GMT
Server: Microsoft-IIS/7.5
content-disposition: inline; filename="ac_NEO.png"
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Fri, 11 Nov 2022 19:25:38 GMT
Content-Length: 8352
www.allcountyneohudson.com/image/553550/1920/M0/
199.96.172.45200 OK 509 kB URL HTTP/2 www.allcountyneohudson.com/image/553550/1920/M0/
IP 199.96.172.45:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1920x1278, components 3\012- data
Size 509 kB (508623 bytes)
Hash c9333715377589437adb57781bf3b2f0
e93bd25616e16561361898f9e21d8c7dec123ca7
e42b7e2ca93ec72f54d13c7aa032ea4115b66bbb0578ca8b8e67a13e2e0c5bc0
Analyzer Verdict Alert quad9 Sinkholed
GET /image/553550/1920/M0/ HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
content-type: image/jpeg
last-modified: Thu, 17 Feb 2022 18:20:03 GMT
server: Microsoft-IIS/10.0
content-disposition: inline; filename=553550_q80_w1920.jpeg
x-aspnet-version: 4.0.30319
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:38 GMT
content-length: 508623
X-Firefox-Spdy: h2
d31y97ze264gaa.cloudfront.net/assets/st/js/st.js
54.230.245.199200 OK 26 kB URL HTTP/1.1 d31y97ze264gaa.cloudfront.net/assets/st/js/st.js
IP 54.230.245.199:0
File type ASCII text, with very long lines (648)
Hash 8f372919f5cf7d4ea88a2e7d19ce3059
866902e613b5d8d615e5d60da928a630ecb19475
e4e548a821114aad1aa71afa495a080672bacb1442536103c4ff065ba56b2a5b
GET /assets/st/js/st.js HTTP/1.1
Host: d31y97ze264gaa.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 14 Sep 2021 16:40:59 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Fri, 11 Nov 2022 19:24:26 GMT
ETag: W/"3ada7e792244a7508ebe96ee72971ce6"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RYA4G_yTmSvihDSVarQiiUu0KbFLUv6I_vLfGZJlFWrXqZh9ugRz6g==
Age: 90
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash b474f74278f0bc7d8a7d6a66c3dcc2dd
6aad727d11a42fefbcabe6af4f0d32c42c946043
db18a18706d236333a7e8671728aea6adbe89e54905799cb5dc8d32feadf2e53
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 19:25:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js
142.250.74.163200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (668)
Size 163 kB (162590 bytes)
Hash 70dc760a0efad09d703883a39f7683b2
2bc70f2a100ff27d27a89d563dfe279590c8336b
2bc59eab94309c59fba62afa40dfd841fb83760714e9ec7248ce3e10ae05fd19
GET /recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Origin: https://www.allcountyneohudson.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162590
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 03:30:21 GMT
expires: Wed, 08 Nov 2023 03:30:21 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 07 Nov 2022 23:32:29 GMT
content-type: text/javascript
age: 316517
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 11 Nov 2022 18:41:09 GMT
expires: Fri, 11 Nov 2022 20:41:09 GMT
cache-control: public, max-age=7200
age: 2669
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.allcountyneohudson.com/favicon.ico
199.96.172.45404 Not Found 1.2 kB URL HTTP/2 www.allcountyneohudson.com/favicon.ico
IP 199.96.172.45:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.allcountyneohudson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Cookie: ASP.NET_SessionId=tzliyrd1fz40iyokiyxbzw0b; __AntiXsrfToken=685d3dbc937f45a2bf5058edd7aefcb0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
server: Microsoft-IIS/10.0
x-powered-by: UrlRewriter.NET 2.0.0, ASP.NET
x-content-type-options: nosniff
referrer-policy: strict-origin
x-xss-protection: 1; mode=block
date: Fri, 11 Nov 2022 19:25:38 GMT
content-length: 1245
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash b474f74278f0bc7d8a7d6a66c3dcc2dd
6aad727d11a42fefbcabe6af4f0d32c42c946043
db18a18706d236333a7e8671728aea6adbe89e54905799cb5dc8d32feadf2e53
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 19:25:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cc6bc0328a0b47b32c004162363f93e7
ea2e2e8dc44f9f53d1329b44683455b8cb95113b
0d8a3c793b15d06d3ad4d4d1b4a637711cda1aaf113443fa9137077ba5edf1b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 19:25:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-220947788-1&cid=980804241.1668194738&jid=699939009&gjid=1845894993&_gid=1648174723.1668194738&_u=IGBAgEABAAAAAEAAI~&z=1715410645
64.233.165.157200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-220947788-1&cid=980804241.1668194738&jid=699939009&gjid=1845894993&_gid=1648174723.1668194738&_u=IGBAgEABAAAAAEAAI~&z=1715410645
IP 64.233.165.157:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-220947788-1&cid=980804241.1668194738&jid=699939009&gjid=1845894993&_gid=1648174723.1668194738&_u=IGBAgEABAAAAAEAAI~&z=1715410645 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://www.allcountyneohudson.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.allcountyneohudson.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 11 Nov 2022 19:25:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cc6bc0328a0b47b32c004162363f93e7
ea2e2e8dc44f9f53d1329b44683455b8cb95113b
0d8a3c793b15d06d3ad4d4d1b4a637711cda1aaf113443fa9137077ba5edf1b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 19:25:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash c31af630008c25606be973b980bbbadb
0c033847340bbdbc56e6beb1ea994c3fa2f806a2
523f4573883820c2f6ddba8e87db99ed6a4a70eae24d46b39b0ef9d1f7fd5c51
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=139218
Date: Fri, 11 Nov 2022 19:25:38 GMT
Etag: "636e137e-1d7"
Expires: Sun, 13 Nov 2022 10:05:56 GMT
Last-Modified: Fri, 11 Nov 2022 09:18:54 GMT
Server: ECS (dcb/7F7F)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 048AYTzfxUzL_6pNaeAPQc6htGXmPlrDCXyR-3j0okR10ir_U47zKQ==
Age: 2822
st1.dialogtech.com/st/?_stk=b634966d9cfb0080e2f99fb60ea84388ad05f1b6&dr=&dl=https%3A%2F%2Fwww.allcountyneohudson.com%2F&dt=Property%20Management%20in%20Hudson%2C%20OH%20%7C%20Property%20Management%20Near%20Me%20%7C%20All%20County%C2%AE%20NEO%20Property%20Management&vp=1268x939&sr=1280x1024&cb=1668194738250&stv=38
107.22.63.100403 Forbidden 0 B URL HTTP/2 st1.dialogtech.com/st/?_stk=b634966d9cfb0080e2f99fb60ea84388ad05f1b6&dr=&dl=https%3A%2F%2Fwww.allcountyneohudson.com%2F&dt=Property%20Management%20in%20Hudson%2C%20OH%20%7C%20Property%20Management%20Near%20Me%20%7C%20All%20County%C2%AE%20NEO%20Property%20Management&vp=1268x939&sr=1280x1024&cb=1668194738250&stv=38
IP 107.22.63.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /st/?_stk=b634966d9cfb0080e2f99fb60ea84388ad05f1b6&dr=&dl=https%3A%2F%2Fwww.allcountyneohudson.com%2F&dt=Property%20Management%20in%20Hudson%2C%20OH%20%7C%20Property%20Management%20Near%20Me%20%7C%20All%20County%C2%AE%20NEO%20Property%20Management&vp=1268x939&sr=1280x1024&cb=1668194738250&stv=38 HTTP/1.1
Host: st1.dialogtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allcountyneohudson.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Fri, 11 Nov 2022 19:25:39 GMT
content-length: 0
vary: Origin
access-control-allow-credentials: true
expires: Sat, 26 Jul 1997 05:00:00 GMT
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
pragma: no-cache
last-modified: Fri Nov 11 2022 19:25:39 GMT+0000 (Coordinated Universal Time)
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 05 Nov 2022 12:31:58 GMT
expires: Sun, 05 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 543221
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2