r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11724
Expires: Tue, 20 Sep 2022 04:14:32 GMT
Date: Tue, 20 Sep 2022 00:59:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 20 Sep 2022 00:12:59 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nA1pPNbQ27puoGkKRmutUyV0Z-7WfVAoYsSCg1ndYYvwbq32HEHljA==
Age: 2769
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 19 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9H6MyX9T0F6q0Rpvn25Pw-Gj-yyNttFWDkA-QWq8MF47PjOn_qE9UQ==
age: 73435
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 00:59:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
1steaglemortgage.atigraphics.com/
68.178.134.57200 OK 12 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10593), with CRLF, LF line terminators
Hash 89f4eca622ec92c40d7da9e1e77ef90d
5391aeede127b554afb08e93c06c788b19898e23
e3b93dea732209d9079ff6462a6455749f4571eb9b4827350838bc203b496c7e
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:08 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Link: <http://1steaglemortgage.atigraphics.com/wp-json/>; rel="https://api.w.org/", <http://1steaglemortgage.atigraphics.com/>; rel=shortlink
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12143
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 20 Sep 2022 00:03:22 GMT
Expires: Tue, 20 Sep 2022 00:46:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lEdUMJ3zW82WOSFEwfKdxxIyFdX8wCiWIeaXVPSWwyQ958xgYrKxng==
Age: 3347
1steaglemortgage.atigraphics.com/wp-content/plugins/easy-facebook-likebox/public/assets/css/public.css?ver=4.3.1
68.178.134.57200 OK 2.4 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/easy-facebook-likebox/public/assets/css/public.css?ver=4.3.1
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash c26fb8759793d80fe1900333df378abf
127e322dab93dbba35081548abb2b59c5f4288bf
478bc89e8d2e88e1ebfba04cf3bead7d303ae7b3501309f5abeb4fb2fb6aedc4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/easy-facebook-likebox/public/assets/css/public.css?ver=4.3.1 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 04 Sep 2017 15:58:44 GMT
ETag: "14816dd-291a-5585f2f677500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2435
Keep-Alive: timeout=5
Content-Type: text/css
1steaglemortgage.atigraphics.com/wp-content/plugins/easy-facebook-likebox/public/assets/css/animate.css?ver=4.3.1
68.178.134.57200 OK 4.4 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/easy-facebook-likebox/public/assets/css/animate.css?ver=4.3.1
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash b2d34f77af61287dbb241bc0dac5f1f7
28683f9ea3db7a1948d1fe46dac3205e82dae022
fa94f672744e7493127791a1f264ea1a4d22fc72e2f10140397ea2b0fbabc0ad
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/easy-facebook-likebox/public/assets/css/animate.css?ver=4.3.1 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Mon, 04 Sep 2017 15:58:44 GMT
ETag: "14816da-11a43-5585f2f677500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4430
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 377cc6ad82bc250b5fc9f7ee68f2e129
6726e0d37fb67318cc5d7b01149e5057ba30ae89
21f4bac878f491505f71aab032a4945a10d381c1510cc129493c0037a54329fc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5020
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 00:59:09 GMT
Last-Modified: Mon, 19 Sep 2022 23:35:29 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5c817aa82ca8ed4a4257fd1e1628b423
7905c62b6bbc582860c07b75eddae371a4b8d02b
dce1783ecfe50c83d30878b48d60e1cf3fe42a3fa4090fb5d318194de73e53d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5878
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 00:59:09 GMT
Last-Modified: Mon, 19 Sep 2022 23:21:11 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 377cc6ad82bc250b5fc9f7ee68f2e129
6726e0d37fb67318cc5d7b01149e5057ba30ae89
21f4bac878f491505f71aab032a4945a10d381c1510cc129493c0037a54329fc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5020
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 00:59:09 GMT
Last-Modified: Mon, 19 Sep 2022 23:35:29 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 278
1steaglemortgage.atigraphics.com/wp-content/plugins/easy-facebook-likebox/public/assets/popup/magnific-popup.css?ver=4.3.1
68.178.134.57200 OK 2.0 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/easy-facebook-likebox/public/assets/popup/magnific-popup.css?ver=4.3.1
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 940d74755e5536d09c7fa9eb66372652
d1d8b8238f080fdedd4015c7da81675c62a802c6
69a629f67d38a1a75391be1ba82c5756821d6bf7aa135e800ec88c679d716621
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/easy-facebook-likebox/public/assets/popup/magnific-popup.css?ver=4.3.1 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Mon, 04 Sep 2017 15:58:44 GMT
ETag: "14816ea-1e6d-5585f2f677500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1950
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
1steaglemortgage.atigraphics.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
68.178.134.57200 OK 4.0 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (9959)
Hash a6c81e2f02bd04160d2de88c4e8f3559
e3f3c91427d785820ca97dabe738f01faf041f36
b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 20 May 2016 06:11:28 GMT
ETag: "2240af8-2748-5333ff613c400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4014
Keep-Alive: timeout=5
Content-Type: application/javascript
1steaglemortgage.atigraphics.com/wp-content/plugins/easy-facebook-likebox/public/assets/popup/jquery.magnific-popup.min.js?ver=4.3.1
68.178.134.57200 OK 7.7 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/easy-facebook-likebox/public/assets/popup/jquery.magnific-popup.min.js?ver=4.3.1
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (20965)
Hash eecaf699eec02a74dc93b4a45f29ba88
a0fd46ddc804484ffb622332e1f31046b78fa6b4
d4aadea0d8d183f314d3c3692c8d67aa6c15200c3645fe943caeb9cb28551710
GET /wp-content/plugins/easy-facebook-likebox/public/assets/popup/jquery.magnific-popup.min.js?ver=4.3.1 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 04 Sep 2017 15:58:44 GMT
ETag: "14816e9-5266-5585f2f677500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7691
Keep-Alive: timeout=5
Content-Type: application/javascript
1steaglemortgage.atigraphics.com/wp-content/plugins/easy-facebook-likebox/public/assets/js/public.js?ver=4.3.1
68.178.134.57200 OK 1.5 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/easy-facebook-likebox/public/assets/js/public.js?ver=4.3.1
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 0f7bec60d0677fb85d4c4b40e0c80062
444decc2e91f6b02f80da95b563f7a705ef585e9
e096caa963c691e34167515c62db299a06c6024ee54ca4eefa77243e4fa79151
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/easy-facebook-likebox/public/assets/js/public.js?ver=4.3.1 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Mon, 04 Sep 2017 15:58:44 GMT
ETag: "14816e7-132c-5585f2f677500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1467
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
1steaglemortgage.atigraphics.com/wp-content/plugins/easy-facebook-likebox/public/assets/js/jquery.cookie.js?ver=4.3.1
68.178.134.57200 OK 1.4 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/easy-facebook-likebox/public/assets/js/jquery.cookie.js?ver=4.3.1
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 71cee6f859ca573c06c376e5ad3cd9fe
92defeef63ab15263a06b357326576d3441e60ce
1568782488cf5cd7416b6a1bbd5afce7d94e5d188cde9223ba6f70aacfe97673
GET /wp-content/plugins/easy-facebook-likebox/public/assets/js/jquery.cookie.js?ver=4.3.1 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 04 Sep 2017 15:58:44 GMT
ETag: "14816e6-c38-5585f2f677500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1374
Keep-Alive: timeout=5
Content-Type: application/javascript
1steaglemortgage.atigraphics.com/wp-content/plugins/quotes-collection/js/quotes-collection.js?ver=2.0.9
68.178.134.57200 OK 953 B URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/quotes-collection/js/quotes-collection.js?ver=2.0.9
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 79ed2b929c975c8e6de1025dd4e84fd3
99120211916781a13537db25ccf79932468f3462
28ec14edcea53f6420f4f64cd15c85eaf096f9394d669f9973acf04ed8758270
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/quotes-collection/js/quotes-collection.js?ver=2.0.9 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Mon, 28 Aug 2017 04:38:15 GMT
ETag: "1ba0beb-ce4-557c8dceabbc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 953
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
1steaglemortgage.atigraphics.com/wp-content/themes/lcp-allinone/js/lowcostpanel.js?ver=4.8.19
68.178.134.57200 OK 4.8 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/themes/lcp-allinone/js/lowcostpanel.js?ver=4.8.19
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 34e79c15a36fb9a3216a38995beda94b
d03d7d426d3f3c585f680d1ed94cfad104076d73
8ae24fd6077fde4acfffc69ebe29bf84d1c4b0e27b6aa53727f17ee73c1cdc0e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/lcp-allinone/js/lowcostpanel.js?ver=4.8.19 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Tue, 29 Aug 2017 00:34:01 GMT
ETag: "1561646-1342a-557d9914fd040-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4781
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
1steaglemortgage.atigraphics.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
68.178.134.57200 OK 34 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (31997)
Hash 6b2ceda6218e6810713286b29db017fb
71175271d84c90ca5f05ecc04d7f7a1052873380
de7a4d9a1cb75f0d1a4bf1a71907a44b85b9356da5c4f9e7f6729b8e69a38974
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 04 Sep 2019 21:45:54 GMT
ETag: "2240aff-17a6a-591c1211fc880-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33776
Keep-Alive: timeout=5
Content-Type: application/javascript
1steaglemortgage.atigraphics.com/wp-content/plugins/ml-slider/assets/sliders/flexslider/flexslider.css?ver=3.5.1
68.178.134.57200 OK 1.7 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/ml-slider/assets/sliders/flexslider/flexslider.css?ver=3.5.1
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (366)
Hash 973e8d694a38914c5f7fe3a0378b16df
4c08f34c8589fea3f39df13701bf4fae8cf45374
4443397cad26ac273ee54f31b6108f524ba0e3229cee797b635b9a86c04fbce9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ml-slider/assets/sliders/flexslider/flexslider.css?ver=3.5.1 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Tue, 29 Aug 2017 01:22:51 GMT
ETag: "1b20aa3-14b0-557da3ff410c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1718
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
1steaglemortgage.atigraphics.com/wp-content/plugins/ml-slider/assets/metaslider/public.css?ver=3.5.1
68.178.134.57200 OK 737 B URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/ml-slider/assets/metaslider/public.css?ver=3.5.1
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 9fafb5f4e1e78cc3c4c7e11bfb36311c
ca108d8fe335a65c021c72e624aa40a40bda845f
2c4cd94d035f93e958f95aa764c20be0605769c000337566ee6466a441199d9f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ml-slider/assets/metaslider/public.css?ver=3.5.1 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Tue, 29 Aug 2017 01:22:51 GMT
ETag: "1b00a3c-934-557da3ff410c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 737
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/widget-form.css?ver=4.8.19
68.178.134.57200 OK 818 B URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/widget-form.css?ver=4.8.19
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 699d9958c22d0fff3ef522886896d797
a9ffc702e4bf838f2617538bf7545348855d00ac
8a3fe3c9790b22621de80dae5cdb9ebb65584a0231595b2ffc620f16b7610f57
GET /wp-content/plugins/mortgage-loan-calculator/widget-form.css?ver=4.8.19 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Mon, 04 Sep 2017 16:03:53 GMT
ETag: "1401b64-a0e-5585f41d26c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 818
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
52.13.69.101101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.13.69.101:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rCO2NKISrztAAJybZFTDew==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3gFqM+AZoQ/6E32mXrk2+iSxVK0=
1steaglemortgage.atigraphics.com/wp-includes/js/comment-reply.min.js?ver=4.8.19
68.178.134.57200 OK 580 B URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-includes/js/comment-reply.min.js?ver=4.8.19
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1076), with no line terminators
Hash 03610c833b0a8cd39a5cfd87a20dd104
038ccb657a60f77c5eaf6a707bd4d0834d08da42
9feb345568ea18a6f4cee3c910adb99c956a06161a6c75e2c3a1a916f2129baa
GET /wp-includes/js/comment-reply.min.js?ver=4.8.19 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Fri, 05 Feb 2021 04:10:38 GMT
ETag: "1302a2b-434-5ba8f00ad4b80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 580
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
1steaglemortgage.atigraphics.com/wp-includes/js/wp-embed.min.js?ver=4.8.19
68.178.134.57200 OK 735 B URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-includes/js/wp-embed.min.js?ver=4.8.19
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1386), with no line terminators
Hash d2b60c1231015fbb2cfb0680a4fdfc87
2964b5bc32aad38d53ba3063503711c5cb6006ed
a83053c9a437c08c7d62ae9b07cf680d43a3ad129de64633eee91a860fab7844
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=4.8.19 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Fri, 05 Feb 2021 04:10:38 GMT
ETag: "1302a6b-56a-5ba8f00ad4b80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 735
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
1steaglemortgage.atigraphics.com/wp-content/plugins/ml-slider/assets/sliders/flexslider/jquery.flexslider-min.js?ver=3.5.1
68.178.134.57200 OK 12 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/ml-slider/assets/sliders/flexslider/jquery.flexslider-min.js?ver=3.5.1
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 768460dedd6a67b4e9bcc507dcd29f02
acd1778b4caedf7aaf3925814c2350e6fe01716d
29f44496e9d708faec0b44b62a1d73e31e592d8a71dab480fc059963274fe76b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ml-slider/assets/sliders/flexslider/jquery.flexslider-min.js?ver=3.5.1 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Tue, 29 Aug 2017 01:22:51 GMT
ETag: "1b20aa4-d2e9-557da3ff410c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11539
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
1steaglemortgage.atigraphics.com/wp-content/plugins/quotes-collection/css/quotes-collection.css?ver=2.0.9
68.178.134.57200 OK 415 B URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/quotes-collection/css/quotes-collection.css?ver=2.0.9
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 0494d93ebdcafa95f264231bb08bab15
76a735ba97ea303c76047783d40221e12d59944c
523f5d2a0c1e092e6b8ad7c8c7f32b8f9f5f70593e75f5f7d1ee612c4a872c07
GET /wp-content/plugins/quotes-collection/css/quotes-collection.css?ver=2.0.9 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Mon, 28 Aug 2017 04:38:15 GMT
ETag: "1ba0be1-374-557c8dceabbc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 415
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/en/widget-nj.js?ver=4.8.19
68.178.134.57200 OK 2.9 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/en/widget-nj.js?ver=4.8.19
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash a90e7a1e98a4b7a6660f1a8eb2f41d17
425c4596efb501e32f02e66565207fabe97350f2
50efb5557e115fb3d52baa3a015bb19bedcba7d7430fa3bf08919c3148ef7a11
GET /wp-content/plugins/mortgage-loan-calculator/en/widget-nj.js?ver=4.8.19 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Mon, 04 Sep 2017 16:03:53 GMT
ETag: "1b60ac1-25c3-5585f41d26c40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2869
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
1steaglemortgage.atigraphics.com/wp-content/themes/lcp-allinone/style.css?ver=4.8.19
68.178.134.57200 OK 4.5 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/themes/lcp-allinone/style.css?ver=4.8.19
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash dc2c494725e689a3967d266282644708
1264ea447eb3b67a098cff9fd8fc4cca504486ff
2f38f6f7d1b15dffd5fd3ade5c65ce3a9bdf501df71135a5c3730b3162f93c59
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/lcp-allinone/style.css?ver=4.8.19 HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Tue, 29 Aug 2017 00:34:03 GMT
ETag: "13e212a-6096-557d9916e54c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4516
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/harp-2.jpg
68.178.134.57200 OK 25 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/harp-2.jpg
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 300x212, components 3\012- data
Hash 04702a26ed4479efb17a261bcaae4400
f4eb7e13fe8f40ffa7ee20684c939726cfa6a2f1
d2f37309ab15ab4247dd046965b5038eaed8549ad0c68144ac1184019b46c1af
GET /wp-content/uploads/2017/08/harp-2.jpg HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Fri, 08 Sep 2017 17:50:22 GMT
ETag: "1962849-6277-558b136005380"
Accept-Ranges: bytes
Content-Length: 25207
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/en/images/top-panel-loan-only.png
68.178.134.57200 OK 2.4 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/en/images/top-panel-loan-only.png
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 300 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash bcc877dd1ab252faef53e866dc63b1d7
2ffec7b2643bf3976a5b327e1aa00b064c8928ad
ae9fe3002d3209ace8f7a89530a0c80ad93365ea5ac9b653c543c5d65878436b
GET /wp-content/plugins/mortgage-loan-calculator/en/images/top-panel-loan-only.png HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Mon, 04 Sep 2017 16:03:53 GMT
ETag: "1b80a7f-98d-5585f41d26c40"
Accept-Ranges: bytes
Content-Length: 2445
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
1steaglemortgage.atigraphics.com/wp-content/plugins/easy-facebook-likebox/public/assets/images/loader.gif
68.178.134.57200 OK 14 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/easy-facebook-likebox/public/assets/images/loader.gif
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type GIF image data, version 89a, 240 x 320\012- data
Hash 0a856515df896370b960d69101003b00
206af3b06bfc5cf26e28fbd50e86e081ca407d7b
50f04feafe5e07e69384706c4d004bbec71aa2e183b57bad7fda2d7be5e24e0b
GET /wp-content/plugins/easy-facebook-likebox/public/assets/images/loader.gif HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Mon, 04 Sep 2017 15:58:44 GMT
ETag: "14816e0-37b6-5585f2f677500"
Accept-Ranges: bytes
Content-Length: 14262
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/en/images/top-panel-mortgage.png
68.178.134.57200 OK 4.6 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/en/images/top-panel-mortgage.png
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 300 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 1d8ef8cb4abced3c6abaadadb7016171
a09a9560464673714e56c0576b165729dbee0f2a
ad1973ee47e3fb82aca97c6b5175a4efc0146e3beb6a6b105bfebc29bdb8fe20
GET /wp-content/plugins/mortgage-loan-calculator/en/images/top-panel-mortgage.png HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Mon, 04 Sep 2017 16:03:53 GMT
ETag: "1b80a85-11fd-5585f41d26c40"
Accept-Ranges: bytes
Content-Length: 4605
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/en/images/top-panel-mortgage-only.png
68.178.134.57200 OK 3.6 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/en/images/top-panel-mortgage-only.png
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 300 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 3a86bc832a4f5173a1d00154ef73e834
2a3e9e9b8141ce834f0750658fc282c38bf3fa5d
62f45346cbcf6983942e15acaabbe36311892f4168e6e97ad6e99b8426d5591c
GET /wp-content/plugins/mortgage-loan-calculator/en/images/top-panel-mortgage-only.png HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Mon, 04 Sep 2017 16:03:53 GMT
ETag: "1b80a83-e20-5585f41d26c40"
Accept-Ranges: bytes
Content-Length: 3616
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/commercial-loan-programs.jpg
68.178.134.57200 OK 19 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/commercial-loan-programs.jpg
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 300x212, components 3\012- data
Hash 5af7a2dcf46181fee72661816b8782bf
ef4ceb6157bb950ae64d98829e2adc0043db5451
e3a6ecb1a101d04ca5d45bee744355a8ffd6b5ef097b9a86b94efa189a583462
GET /wp-content/uploads/2017/08/commercial-loan-programs.jpg HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Fri, 08 Sep 2017 17:50:22 GMT
ETag: "1962836-48ac-558b136005380"
Accept-Ranges: bytes
Content-Length: 18604
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/images/bottom.png
68.178.134.57200 OK 693 B URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/images/bottom.png
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 300 x 13, 8-bit/color RGBA, non-interlaced\012- data
Hash 239f3a1bb0ac89b1a3f8377815a2f758
9b33f3279c385dda72da00aa67f206f6bd9d4914
2d4ab8af9323827cbd90f604ec784b067778ad1f6ccc62014eb2c17dac589ebf
GET /wp-content/plugins/mortgage-loan-calculator/images/bottom.png HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Mon, 04 Sep 2017 16:03:53 GMT
ETag: "1b60ac8-2b5-5585f41d26c40"
Accept-Ranges: bytes
Content-Length: 693
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/slide1.jpg
68.178.134.57200 OK 70 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/slide1.jpg
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1080x300, components 3\012- data
Hash 3a864516e1924ba8111cd8bae87a0cd6
349df9138cb535d5aace2c666cc0451ecf6ad5fa
9af81b36a3ea39d1bfa92d0f33ac383a251da14e2819edef114023559c5233b8
GET /wp-content/uploads/2017/08/slide1.jpg HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Fri, 08 Sep 2017 17:50:22 GMT
ETag: "1962862-11113-558b136005380"
Accept-Ranges: bytes
Content-Length: 69907
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/images/right-bg.png
68.178.134.57200 OK 204 B URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/images/right-bg.png
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 7 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 104c15c5dec64151d80715aa345041c0
cc7f5c035772df89a0189607a7dc925189984d7a
2d9935139a27f2ff8441ea0c624f1b731739a4485771b6a0c096b0f47daa3b9c
GET /wp-content/plugins/mortgage-loan-calculator/images/right-bg.png HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Mon, 04 Sep 2017 16:03:53 GMT
ETag: "1b60aca-cc-5585f41d26c40"
Accept-Ranges: bytes
Content-Length: 204
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/images/left-bg.png
68.178.134.57200 OK 206 B URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/images/left-bg.png
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 7 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 6c215c3b42dcd9e04675001872f2a3bb
dc8c159a8371a61989495ab5342a181fb14ac678
9243d6fa9ac6421f12aa2f11d74a2e277ffd4d74f00dc24291389b9059db0219
GET /wp-content/plugins/mortgage-loan-calculator/images/left-bg.png HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Mon, 04 Sep 2017 16:03:53 GMT
ETag: "1b60ac9-ce-5585f41d26c40"
Accept-Ranges: bytes
Content-Length: 206
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
1steaglemortgage.atigraphics.com/wp-content/plugins/ml-slider/assets/sliders/flexslider/bg_direction_nav.png
68.178.134.57200 OK 1.9 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/ml-slider/assets/sliders/flexslider/bg_direction_nav.png
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 57 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash f595730bbfc9b24daa4c834f8c8660b9
94f23759874386a95da31159b0ad5bba4fd5d4c1
a36616dc61a9c5d4f034e1758a86a34d630f9a63cfd91c1ac49c01f121e323a5
GET /wp-content/plugins/ml-slider/assets/sliders/flexslider/bg_direction_nav.png HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/wp-content/plugins/ml-slider/assets/sliders/flexslider/flexslider.css?ver=3.5.1
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:10 GMT
Server: Apache
Last-Modified: Tue, 29 Aug 2017 01:22:51 GMT
ETag: "1b20aa2-74a-557da3ff410c0"
Accept-Ranges: bytes
Content-Length: 1866
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/slide2.jpg
68.178.134.57200 OK 61 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/slide2.jpg
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1080x300, components 3\012- data
Hash a1f3adb122f9a2f4327ccad0119b42ce
9bebfc5c74ef649fad01252cf7e85076a00b3933
b10d8a910f151f9691f7d721c33d485f10c7bd642aaef6b1cb430666f647e773
GET /wp-content/uploads/2017/08/slide2.jpg HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Fri, 08 Sep 2017 17:50:22 GMT
ETag: "1962867-eefc-558b136005380"
Accept-Ranges: bytes
Content-Length: 61180
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/slide3.jpg
68.178.134.57200 OK 65 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/slide3.jpg
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1080x300, components 3\012- data
Hash 604c9934ab8ce71540aaa96d4962b5c0
6f86e694d1a043cd383127f6b50a337c729818d1
3cd3f98506cace43d4c7df93c517f84184caac0c98b84dc30e11333357ce5539
GET /wp-content/uploads/2017/08/slide3.jpg HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Fri, 08 Sep 2017 17:50:22 GMT
ETag: "196286c-fc51-558b136005380"
Accept-Ranges: bytes
Content-Length: 64593
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/construction-loans.jpg
68.178.134.57200 OK 24 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/construction-loans.jpg
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 300x212, components 3\012- data
Hash d09973a93a3bf417366ee8939ccb6b87
2076ccf19f3fe26c9f2b3cd64fb367f5d892fbff
084949f66cf002b1858b38fb03c11e7d3d19ad69d534ad90e44622d5e73ed4f0
GET /wp-content/uploads/2017/08/construction-loans.jpg HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:10 GMT
Server: Apache
Last-Modified: Fri, 08 Sep 2017 17:50:22 GMT
ETag: "196283c-5e91-558b136005380"
Accept-Ranges: bytes
Content-Length: 24209
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/slide4.jpg
68.178.134.57200 OK 62 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/slide4.jpg
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1080x300, components 3\012- data
Hash fa2bb550d8095b32fb9e548a427c493d
5dee003a8645328a79bbef089dc9348e533cf21b
1ffa5e7f097c74bef83c5a1d8a172cbb46025e4cfc1d1dae00153ff3a0de4d90
GET /wp-content/uploads/2017/08/slide4.jpg HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:09 GMT
Server: Apache
Last-Modified: Fri, 08 Sep 2017 17:50:22 GMT
ETag: "1962871-f16f-558b136005380"
Accept-Ranges: bytes
Content-Length: 61807
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/en/images/top-panel-loan.png
68.178.134.57200 OK 4.7 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/en/images/top-panel-loan.png
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 300 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 87fa69dcb9bc7a059e323df843d1fa7f
68a51e8dfa0bfe569ce855f0fa989ce914de9e64
f4a5504d28af2c4b8ebc2580cc207af9d8eb3c6f059cf5b76acf396133001f12
GET /wp-content/plugins/mortgage-loan-calculator/en/images/top-panel-loan.png HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:10 GMT
Server: Apache
Last-Modified: Mon, 04 Sep 2017 16:03:53 GMT
ETag: "1b80a81-123e-5585f41d26c40"
Accept-Ranges: bytes
Content-Length: 4670
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/first-time-home-buyers.jpg
68.178.134.57200 OK 18 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/first-time-home-buyers.jpg
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 300x212, components 3\012- data
Hash fc5e10224c3f8d1b1d9d8ba2f1897ec3
2537fe30d1c4b4c90bf4ca3148d6a4aeb99775c2
b94c40f90530a7e7d66f7dc12fbae69c6f5638cd56659ae9f6ee73e2d0817b94
GET /wp-content/uploads/2017/08/first-time-home-buyers.jpg HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:10 GMT
Server: Apache
Last-Modified: Fri, 08 Sep 2017 17:50:22 GMT
ETag: "1962846-479e-558b136005380"
Accept-Ranges: bytes
Content-Length: 18334
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/images/ajax-loader.gif
68.178.134.57200 OK 1.8 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/plugins/mortgage-loan-calculator/images/ajax-loader.gif
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type GIF image data, version 89a, 54 x 55\012- data
Hash 3a3910497cb0e50dd581f0fb03ca6b35
286082495b05e60231387f2dbe41dd69fade7291
710d70fd77ffc831fbd76ed56db416d096fb60b8aa4ad125285c9f30102446ee
GET /wp-content/plugins/mortgage-loan-calculator/images/ajax-loader.gif HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:10 GMT
Server: Apache
Last-Modified: Mon, 04 Sep 2017 16:03:53 GMT
ETag: "1b60ac6-6e1-5585f41d26c40"
Accept-Ranges: bytes
Content-Length: 1761
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20006
Date: Tue, 20 Sep 2022 00:20:46 GMT
Expires: Tue, 20 Sep 2022 02:20:46 GMT
Cache-Control: public, max-age=7200
Age: 2304
Last-Modified: Wed, 13 Apr 2022 21:02:38 GMT
Content-Type: text/javascript
connect.facebook.net/en_US/all.js
157.240.200.14200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1961)
Hash 78578dc714e9122d9889234bbc37c55a
9a73ba98e84a9db5d1f36c6e1b9d1ab9b2392889
b135d2141d464b3643c07b6f3e402bcb328cd8b08c6e5da10caf1fdfe610a8d5
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 0ba65238dfe46c97a7c29b781db3a519
ETag: "26463b63790e8e9a5e615c150dd506ed"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Tue, 20 Sep 2022 01:15:34 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: eFeNxxTpEi2YiSNLvDfFWg==
X-FB-Debug: L1Be1fjQZa36HtaTkj/CTF2xgIgc/H4RA80qnLETLtSDoOld31PWaM14wcAo9lghiF+4A+STGaVgQxCcLdSEbQ==
Priority: u=3,i
X-FB-TRIP-ID: 1679558926
Date: Tue, 20 Sep 2022 00:59:10 GMT
Alt-Svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
Connection: keep-alive
Content-Length: 1687
1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/header.jpg
68.178.134.57200 OK 63 kB URL HTTP/1.1 1steaglemortgage.atigraphics.com/wp-content/uploads/2017/08/header.jpg
IP 68.178.134.57:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1080x150, components 3\012- data
Hash 0caa1993837c1a89ddc04ccc44b7938a
77c638a4c90630198a3e1b7ecae463e69cf8e594
446c511a547fcffae169e0cfdeaed95d738f7dfb3afd4256b9864cdc0eff10ab
GET /wp-content/uploads/2017/08/header.jpg HTTP/1.1
Host: 1steaglemortgage.atigraphics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 00:59:10 GMT
Server: Apache
Last-Modified: Fri, 08 Sep 2017 17:50:22 GMT
ETag: "1962851-f48d-558b136005380"
Accept-Ranges: bytes
Content-Length: 62605
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5b7a05fad83d3476facabd4e7eb8dc42
64d6ee10d23330cd51ea38487544c595b47f2633
4ff8fbed80185bfa0a9196affa36c5f60e743c86d3cf5328a5884b8058dca635
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5051
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 00:59:10 GMT
Last-Modified: Mon, 19 Sep 2022 23:34:59 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5b7a05fad83d3476facabd4e7eb8dc42
64d6ee10d23330cd51ea38487544c595b47f2633
4ff8fbed80185bfa0a9196affa36c5f60e743c86d3cf5328a5884b8058dca635
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5051
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 00:59:10 GMT
Last-Modified: Mon, 19 Sep 2022 23:34:59 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/all.js?hash=9a6a55f13f75eb925358263cd77dab35
157.240.200.14200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=9a6a55f13f75eb925358263cd77dab35
IP 157.240.200.14:0
File type ASCII text, with very long lines (18671)
Hash 23b29e38968bea558c3005083ac68fdf
063eba863d97bd171af4e47cc00c3c9e7427d2ca
891e6c9e7e2228f0ee6bbf97d6e4cc653f851c991cee4c58672c8cedf000cde7
GET /en_US/all.js?hash=9a6a55f13f75eb925358263cd77dab35 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://1steaglemortgage.atigraphics.com
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: f26ea1b9223c2fadf0cdae2585caa103
etag: "4110d40de00b1efeedc64ba1489fa9ba"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 19 Sep 2023 23:00:28 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: I7KeOJaL6lWMMAUIOsaP3w==
x-fb-debug: 2x49nTM2Kbo37SBk03kV+TI66zyjRacc4FRLFj8lgICe0rDzB/b24039R2Wz4e1WnxrJ6pa7up6qvRA7JE+fCw==
priority: u=3,i
content-length: 87174
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:10 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15868
Expires: Tue, 20 Sep 2022 05:23:38 GMT
Date: Tue, 20 Sep 2022 00:59:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15868
Expires: Tue, 20 Sep 2022 05:23:38 GMT
Date: Tue, 20 Sep 2022 00:59:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15868
Expires: Tue, 20 Sep 2022 05:23:38 GMT
Date: Tue, 20 Sep 2022 00:59:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15868
Expires: Tue, 20 Sep 2022 05:23:38 GMT
Date: Tue, 20 Sep 2022 00:59:10 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d94aa1-e164-4f98-8fe2-beb3868db074.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d94aa1-e164-4f98-8fe2-beb3868db074.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5f4438521bfdc6871ae384abcb7da547
a17fc7a7c30999b8789011c2064f5a8704b00eee
2e40ac154724af625c4858b09b90fa3f6a600b70c9e5e959598f0cdb05a78847
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d94aa1-e164-4f98-8fe2-beb3868db074.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5402
x-amzn-requestid: 0442580c-9024-46b1-8ad5-5c7e8d35371d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfMALHT2oAMFmgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322c067-254ecd9003455f090f7d5ef9;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 06:04:23 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Y4IeHZWMs_JdT2dG8d3BNqpxvU3lcYDsXub1CuCoVBxzTPsjuU_5Ww==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 18:11:38 GMT
age: 24452
etag: "a17fc7a7c30999b8789011c2064f5a8704b00eee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F099b68b9-9e16-49e4-85b1-93b59b2ba2e0.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F099b68b9-9e16-49e4-85b1-93b59b2ba2e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f816c646aefe417c3b980f432b98b41f
39c46ac3c49f0e2067aa6937a95839845b372dea
b9d8cb82c21257f9d5b5d82cf12bbf8aff690321f39c26e4a89f8a4d89fb00a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F099b68b9-9e16-49e4-85b1-93b59b2ba2e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8746
x-amzn-requestid: 23ee3cce-0abd-436a-b4d8-a2ad451cbeaf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yuh7zElLoAMF0cw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e37e-1e03d3ee7a0033dd78620f20;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:47:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ChuMpL0m_XtTffIvROFslpQUwz13cx8rKF8UfD3LTfMtHvKKm5VNAQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:08:46 GMT
age: 10224
etag: "39c46ac3c49f0e2067aa6937a95839845b372dea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe763d5d6-1a5c-4160-9667-8ed7c6b1e265.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe763d5d6-1a5c-4160-9667-8ed7c6b1e265.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3463c46d2b7a87a91ff1a701a438d80e
92c78b27f4e31609c1b78670b26e68b4f991a8ed
b95b290832f12f97c7da51382fe92feba2fa93a5ec0470d48a533a58a13dc474
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe763d5d6-1a5c-4160-9667-8ed7c6b1e265.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5985
x-amzn-requestid: 6797727b-78c7-470f-bee8-7b55e64d36ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugzxH6qoAMF67w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e1b1-0d574a815d19636b21376c91;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:40:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RIRyR6BXSZrTZq2joFYjssEpZAqxuWYgdoU5um35md0Yt_m0UzZpiw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 21:51:37 GMT
age: 11253
etag: "92c78b27f4e31609c1b78670b26e68b4f991a8ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F681ee4d8-26a9-4cf5-b578-449931eef31a.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F681ee4d8-26a9-4cf5-b578-449931eef31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d1cf01936db09979b24d611b5ef75ddc
90a3f56cc22a8756096262972d525f66ab99f1e7
42fe14d3691d6290204c73aa7ad3c9f7efad867cbc658578408809dc0259ee86
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F681ee4d8-26a9-4cf5-b578-449931eef31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8536
x-amzn-requestid: 7fcc3572-09ee-41c2-b9fc-93e545206d45
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yr9jpGamoAMFvvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6327dc7d-746f3324113acdf36f2fc579;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 03:05:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DY9gjalknFX1DuM13Hz1MlrO5N_yyWlVycPq6eYqF50EHr9vAeeMNQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 03:41:51 GMT
age: 76639
etag: "90a3f56cc22a8756096262972d525f66ab99f1e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ed7323b395e757f7766ea0045efdaca
8b91bc3069a3217bc719c27959d578b353b5d9dc
8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
content-type: image/jpeg
age: 10167
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0be442b0-65b4-4d6f-bdd3-b9f3847359a1.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0be442b0-65b4-4d6f-bdd3-b9f3847359a1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9556616ca10eb4383b1e15f360fbf6d4
cb328d0f66f4c2779bc64342ef89735636ae5ded
4f945ab342352aea3f4b2242d084d527bb517cf7c6efd0c10a828f0bee9f5d3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0be442b0-65b4-4d6f-bdd3-b9f3847359a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9227
x-amzn-requestid: 26d977d3-f4d2-4218-a8f4-a56c873e6a26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YiFzKG2zIAMFoDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6323e9ad-0bfac6c453e6ea5a311a28a8;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 03:12:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FDAZ-13mmseYF5UsTN4t2HGmdFyco33lUQgfWoc7j02kSsCDPtirBA==
via: 1.1 33d72803ad26b392c1b578a2b1276580.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 05:04:22 GMT
age: 71688
etag: "cb328d0f66f4c2779bc64342ef89735636ae5ded"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.facebook.com/x/oauth/status?client_id=395202813876688&input_token&origin=1&redirect_uri=http%3A%2F%2F1steaglemortgage.atigraphics.com%2F&sdk=joey&wants_cookie_data=false
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/x/oauth/status?client_id=395202813876688&input_token&origin=1&redirect_uri=http%3A%2F%2F1steaglemortgage.atigraphics.com%2F&sdk=joey&wants_cookie_data=false
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /x/oauth/status?client_id=395202813876688&input_token&origin=1&redirect_uri=http%3A%2F%2F1steaglemortgage.atigraphics.com%2F&sdk=joey&wants_cookie_data=false HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://1steaglemortgage.atigraphics.com/
Origin: http://1steaglemortgage.atigraphics.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
access-control-expose-headers: fb-s
access-control-allow-credentials: true
access-control-allow-origin: http://1steaglemortgage.atigraphics.com
fb-s: unknown
fb-error-description: "This endpoint may only be called from an HTTPS Origin."
document-policy: force-load-at-top
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
strict-transport-security: max-age=15552000; preload
x-fb-debug: 4BWGR/qVBWHSHDw6QX4zHFeeb+P9PLsCk2/FKT85mHsM8C/vv8VX0QpCoGRY5SFJtgeHpuFE9kA7qhsEoHYnCg==
content-length: 0
date: Tue, 20 Sep 2022 00:59:10 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/plugins/page.php?adapt_container_width=true&app_id=395202813876688&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df1646487a576036%26domain%3D1steaglemortgage.atigraphics.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252F1steaglemortgage.atigraphics.com%252Ff2b5045b1562956%26relation%3Dparent.parent&container_width=313&hide_cover=false&hide_cta=false&href=https%3A%2F%2Fwww.facebook.com%2F1stEagleMortgage&locale=en_US&sdk=joey&show_facepile=false&show_posts=true&small_header=false&width=
157.240.200.35200 OK 40 kB URL HTTP/2 www.facebook.com/plugins/page.php?adapt_container_width=true&app_id=395202813876688&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df1646487a576036%26domain%3D1steaglemortgage.atigraphics.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252F1steaglemortgage.atigraphics.com%252Ff2b5045b1562956%26relation%3Dparent.parent&container_width=313&hide_cover=false&hide_cta=false&href=https%3A%2F%2Fwww.facebook.com%2F1stEagleMortgage&locale=en_US&sdk=joey&show_facepile=false&show_posts=true&small_header=false&width=
IP 157.240.200.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58102)
Hash 99ae362ad67ab485e9e21272bf1211b0
5d124849568aa29c8c39dd1a881d34348473fc88
06308f29f9bea764f629886f9ea8757f4529117f7289202d81a00ba6da8a2bb3
GET /plugins/page.php?adapt_container_width=true&app_id=395202813876688&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df1646487a576036%26domain%3D1steaglemortgage.atigraphics.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252F1steaglemortgage.atigraphics.com%252Ff2b5045b1562956%26relation%3Dparent.parent&container_width=313&hide_cover=false&hide_cta=false&href=https%3A%2F%2Fwww.facebook.com%2F1stEagleMortgage&locale=en_US&sdk=joey&show_facepile=false&show_posts=true&small_header=false&width= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: ElZxLVolCCb/CxBKsifv+I+Ksp1x4DZT+w6Ydf/hURVriyDBKBEFYVTJOyHYHQXF+AF2RFMtoAdNfKesg3xLKQ==
date: Tue, 20 Sep 2022 00:59:11 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yo/l/0,cross/-8H7_O6q04w.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yo/l/0,cross/-8H7_O6q04w.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4093)
Hash 28c14ba9829d02f70fee536be15b5b12
8de520733de2423422358987266601215573bce8
b3c50fdea46e7a41fb30ef6342571eaba84efe2bd9fc12fd72f8f06b21565b25
GET /rsrc.php/v3/yo/l/0,cross/-8H7_O6q04w.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 19 Sep 2023 15:50:23 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KMFLqYKdAvcP7lNr4VtbEg==
x-fb-debug: shu8i5YU0IGc+8f7jBLGg0/CUz5aj0NvAckOQToiOv6UOLK/Y0XPRbDYywSvZOOIdS/pd8m59lC7pMtiPMAGmw==
priority: u=3,i
content-length: 5083
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 15 Sep 2023 06:48:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: BWoKeSty6egwJE1HqSdlEHxWsT8EIfiJaW04/EzvcfYdU5s/Q9jvLxzG++a+AE3+hdDZup53g3KTnC0sS9hV6w==
content-length: 827
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yb/l/0,cross/cwBc1FhMd71.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 4.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yb/l/0,cross/cwBc1FhMd71.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (10262)
Hash 42a4a3e1cf28058bc22eb837b4f7d394
94a1e3b3ef7b5b78bc4212044f67677eb3b91c48
4b8a4e5210ff0605bf57f43ea41b0ca2af6ca9aac060626a5457150810db8f2a
GET /rsrc.php/v3/yb/l/0,cross/cwBc1FhMd71.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 03:17:48 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: QqSj4c8oBYvCLrg3tPfTlA==
x-fb-debug: DXG3QxOO+xsgdFbycr0tI49qmIMYA5hKEkbcIoVinLxC3LKXjYaNsmxncR9OuMusnahb4kzywy1jcJxp5tAQaw==
priority: u=3,i
content-length: 4392
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yM/r/a3eZamQ9G_u.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yM/r/a3eZamQ9G_u.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (18569)
Hash 449a21bbd17f4b28e209b62a520f28c0
b63a99e69f6ed688707a0f4851c0a88fe5cb6faa
dda01b644519466b782011bfbd33c652b8b7a691145ac1dfb314ba14ff86077d
GET /rsrc.php/v3/yM/r/a3eZamQ9G_u.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 00:31:25 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: RJohu9F/SyjiCbYqUg8owA==
x-fb-debug: b/9iM3h/ATaWKSyjpM2mDs84WsCeGkA+2fC9MuFXXf5VbF+0pDM4UQMxrk0nMX8kt+zJVcrKHJQ442C8HlUvIQ==
content-length: 91358
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yI/r/p7aKdtolv_W.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yI/r/p7aKdtolv_W.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (5329)
Hash adcd01b197549ab05ed54746a81151f8
edb56528c008d8a431e350179ff6df1aa40c2ae6
e6456b195e1064b44db169404417d1c68777133c14d6188bd9ffdfc60e70393c
GET /rsrc.php/v3/yI/r/p7aKdtolv_W.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 00:46:54 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: rc0BsZdUmrBe1UdGqBFR+A==
x-fb-debug: C07wPTKkFnDbXPQ8vUNI3lcu/5k/bTda27QKkFJ9VZyjj7xORU1WFpcBwCcD6MzV+uZmh6QVmeBURIlfIWfoiw==
content-length: 12252
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yd/r/ntijSEq_uQT.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yd/r/ntijSEq_uQT.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (7367)
Hash 2e6b8fb5c99f65f0290910a108d70b59
259614e8da07b8bb8f9f97145960c80d5a3a8301
d78f36b2062bcb9f609e318cb082657e04ad0d1c89b090d7a88b44d1b390fcd1
GET /rsrc.php/v3/yd/r/ntijSEq_uQT.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 16 Sep 2023 23:46:35 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: LmuPtcmfZfApCRChCNcLWQ==
x-fb-debug: LUWwTcUwRS0T4R3+e9WRpk7hAz8LxkkzaXul5TrzabC5TYzcd6sQiJKekMUomHwOzt3g23mG5qj3hKz0XGqBkA==
priority: u=3,i
content-length: 15970
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/y4/l/en_US/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 23 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/y4/l/en_US/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (42045)
Hash 58dbeeb1a23bb44fabf2c50e0884a170
c3c6a7b58d90c4b7b135758d99911465794dd9a2
b49ba6b6ba373668ac5d82d37a0aa689d913579384477b5a7b8be059c2c2bd96
GET /rsrc.php/v3iEpO4/y4/l/en_US/aToexfaV0S1.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 03:28:06 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: WNvusaI7tE+r8sUOCIShcA==
x-fb-debug: oq1+0XwJ/l7Y+1p4pKPf8/izK4F1q9DyzOR6jTvfLzp0khZaNRSWo56ZhORHMvEe5nyea1vgkVDip2G5avL6cg==
priority: u=3,i
content-length: 23388
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (2052)
Hash 883efc20b86990fd486fab545ffc08f4
da322dda14a98744e03655dcf0da9482b4b1e1d0
e207751970ef4bf6e0a64da5e9480ab3b1ee86408a7904796e2f6e225f8ee612
GET /rsrc.php/v3/yL/r/DJIek1tT3RT.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 15 Sep 2023 23:21:54 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: iD78ILhpkP1Ib6tUX/wI9A==
x-fb-debug: fhsLl0YjqSJqoV13JDQuIhdo/OX0Rs1cu8RUFdHOyPNKeiRXL+6eELxvTCu8eNpLboXkpb1VNLUfW2D1iOJqLg==
priority: u=3,i
content-length: 1689
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/r/rWMYwnsHqve.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 6.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/r/rWMYwnsHqve.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4556)
Hash d162f6af013f19ae6c43e3cfc69a2db4
806a400dc8510158b36d430ac4d2f054da090a83
1a243df2e9541c1c1ab933f2d0bc049426a5de8c8f937e6b53a3093c6d9dea97
GET /rsrc.php/v3/ys/r/rWMYwnsHqve.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 19 Sep 2023 15:49:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 0WL2rwE/Ga5sQ+PPxpottA==
x-fb-debug: p6qANsfnBxVgh0brT/W9N8I+JHRCawPq68RMJzW2Y0VNQcri01NUVwacHeE7nlI/dBv4magunmiUYjL2aG/JFg==
priority: u=3,i
content-length: 6691
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yr/r/52AQ2_Oeh-E.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yr/r/52AQ2_Oeh-E.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (10562)
Hash 9e2bdbe7a93b2f7081ef82b9f0485189
f94f93c1a8edfe7b8d24d38dbef0a252cc9232cb
02eea737d55d4c6031954bce18961d8d5d300835592ca6b3d908f198694d919f
GET /rsrc.php/v3/yr/r/52AQ2_Oeh-E.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 19 Sep 2023 15:49:21 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: nivb56k7L3CB74K58EhRiQ==
x-fb-debug: xSOHPjhfS5TVivp/BrFuVJtP/wu9OX5uWEYXUNmjvDoqBIwIr976xDKb7ZIrNBb7slqEf9gYxnKIEZFUbBmAIQ==
content-length: 5319
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 7.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4129)
Hash 7614efba617e235ae864911e15a63a27
5eb6ee4e1d2db3866ebcbc35b76352c719c36255
3c2783c57f48e1b749c1065ddcdf2f5184582a2bc799b1ee832fdf79c62b9557
GET /rsrc.php/v3/yx/r/kl5QvbCz5Lo.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 01:01:43 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dhTvumF+I1roZJEeFaY6Jw==
x-fb-debug: OoydLzgoCVFNAAphC55+pS2ptG432BfGjzMg+vNj23W3oyMmlVYEtbGv2HcYz9Hst+ZHzroQR+BWc5tiXq9idA==
priority: u=3,i
content-length: 7311
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iLl54/y-/l/en_US/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 8.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iLl54/y-/l/en_US/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (2973)
Hash ffe7b79ce7ca26f6f708ddd1d38ee3e7
6380b17543d221a6934c145232fc385aa965fa1d
9c68febd9ec67b45b9142a70128f1ab52fe3ec35b1d5749d15387ea514c8743a
GET /rsrc.php/v3iLl54/y-/l/en_US/FcvJBB0C3rJ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 01:59:47 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: /+e3nOfKJvb3CN3R047j5w==
x-fb-debug: VvIm+055x0mIOYcGWjtHfkCxCgqQwx7DNk0cC4vXPehgpyX+0OkJIJxLJml7mUn/FNP+JBRLAN0MC50x6FnKWg==
priority: u=3,i
content-length: 8455
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 338 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (327)
Hash 76f593e842677f73cd0a06232874b2c3
25a13f79478d5a0e286a2299dca2f3b296463079
74dcbe026002f10b703960a500b50dabe518862e568a9e689dec7afa243fa44d
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 00:11:14 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dvWT6EJnf3PNCgYjKHSyww==
x-fb-debug: GGZU41/6Z3sSBrvSSR/Xv2Vo3Azq9sdBtvima5pKC2meCDlj6cuqmUZeoWWh6Q1xm0VdAhU2xavV/8mp2X6VZw==
content-length: 338
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yx/r/OnlkVBHmhU5.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yx/r/OnlkVBHmhU5.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (15853)
Hash 23b8fd6c3f4a5154a33f3c1e35dcb90f
4423853ce11522c7524269013e7753c7f6213c8c
835037446a5392ff50b01617d33122a078a8ad886e9d07dbabeb91f02b4c9999
GET /rsrc.php/v3/yx/r/OnlkVBHmhU5.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 01:30:36 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: I7j9bD9KUVSjPzweNdy5Dw==
x-fb-debug: 5b3FNU3YbbPY8rVn7O0fIPXbgWhHgKEBvZNNdTdB4QuWXV4t4DlOVf3MwAmsWv5VzNxPT2CGKYnTw/wlq/5nvQ==
priority: u=3,i
content-length: 16371
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yb/r/DVU7dWqvHXN.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yb/r/DVU7dWqvHXN.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (4719)
Hash 2945746953ed7f2aadd91bc0b2b1ccfe
3639a712bb93ae69c53b001ad51d193cbeece74a
2c84d5c120c9f219e31da05011207463d935bbeface344f9cb09879c3b8ba9ce
GET /rsrc.php/v3/yb/r/DVU7dWqvHXN.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 02:22:20 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KUV0aVPtfyqt2RvAsrHM/g==
x-fb-debug: no6MCEiY+jEV32ubZ05MOEWG2R5qZl9EVs9/Qi0/njwMi/KSDgYhWbnzCA8WhOpN7+/CyWB6hAa9ZF+S0Omjtw==
content-length: 5550
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEBX4/yV/l/en_US/CBpXBwkeiMb.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 8.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEBX4/yV/l/en_US/CBpXBwkeiMb.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (6030)
Hash 8eec5b8222e4e20ae7fde9e9ec03fa5b
0d86a7995567e84f483559569f6dff454ece6c24
af75b48fdd20abff68ab1328c1ac768b379ca856e881928999b2d53ee0de519a
GET /rsrc.php/v3iEBX4/yV/l/en_US/CBpXBwkeiMb.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 17 Sep 2023 02:21:54 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: juxbgiLk4grn/enp7AP6Ww==
x-fb-debug: OeZ6OIjh8Vhq96AdRN2FfJrmZC0HIQsDlTC8LyXjl/cjBdXTj4HOfTzTq2/nD+ASykzAM53hIUmlhfFaMyteJA==
content-length: 8502
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yJ/r/jU6q4erfYTg.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 1.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yJ/r/jU6q4erfYTg.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (1559)
Hash 257f301af966751224add900506c001b
8d466ee4d50c62b259469f7f027517daede9962a
d5e11260ab765b2c28c089c03fd48d879dc403d88b47a5a2ab0756ed6c031024
GET /rsrc.php/v3/yJ/r/jU6q4erfYTg.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 19 Sep 2023 20:13:29 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: JX8wGvlmdRIkrdkAUGwAGw==
x-fb-debug: Eb1wU3CPM7NueZWzDwbszSO6uZG4XC4eNPeuZVW0pTOJnX7SjA3BDpWCepMJm56BYmf+VVfGJcT/1s/9c8a0+Q==
priority: u=3,i
content-length: 1327
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 00:59:11 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
netdna.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.css
104.18.10.207200 OK 0 B URL HTTP/2 netdna.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.css
IP 104.18.10.207:0
GET /font-awesome/4.3.0/css/font-awesome.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://1steaglemortgage.atigraphics.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 00:59:09 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 722, 617
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 2021-07-24 16:53:06
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 2df1db1c1bde5cb32a4cae1ba297613a
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 9075340
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74d69de66ffab52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2