applewoodestatesnashua.com/
3.33.152.147301 Moved Permanently 73 B URL HTTP/1.1 applewoodestatesnashua.com/
IP 3.33.152.147:0
File type HTML document, ASCII text
Hash 6e5abe808ff8917cb217929dc87966c4
0991ac5cb85b2e19cf744869bf4fbd32063dc461
83a8d888b70bc6f1f7ba99d1c7051860fd49ea3baf43123045c68cf92381a61f
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: applewoodestatesnashua.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 15 Sep 2022 21:32:37 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 73
Connection: keep-alive
Location: https://www.applewoodestatesnashua.com
Server: ip-100-74-2-217.eu-west-2.compute.internal
X-Request-Id: 81cb9bbb-1ae4-4e1b-8dcf-761d16d49c98
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 15 Sep 2022 21:10:34 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: K5ezaHDT13cJZQ7LGNppazkgNiXprRZDYytfIbkNNmN_biVBTuL_jw==
Age: 1323
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 96daaf84cd2c07756756caf7a2724a29
d24d47c68eec98d44bf341dab9d893df97103e1a
fef9ce9f75ec19e7ae2ccbffb6654db2473a2b4acc94c1b4303e5ec24149465f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20524
Expires: Fri, 16 Sep 2022 03:14:41 GMT
Date: Thu, 15 Sep 2022 21:32:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 15 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fJfXq8H9bZMCk6Uhc1B8KDpv5IaCkkg3vs1rofRVQkJC-Bpzu8IPpA==
age: 61042
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 21:32:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 15 Sep 2022 21:03:22 GMT
Expires: Thu, 15 Sep 2022 21:05:15 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Z38Pi-vmWXAklNFk-QynDE55_OjMkJ850muGI9yOfY8pIAUeUMTMoA==
Age: 1756
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d597af1ab2f21a983bf0f0d105b94209
9d5dd938777abde094c89066b539141a02106b88
a614eb7f969544c8040642be7c852625341e2441e757d063d2af1ff465c8c3f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6337
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 21:32:38 GMT
Last-Modified: Thu, 15 Sep 2022 19:47:01 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.41.98.34101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.98.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FNee/4bEm58nj8wRc3T0mg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QC7MkBAW+vXRSjUjAQ03pczz6W0=
assets.clickfunnels.com/images/closemodal.png
104.16.15.194200 OK 672 B URL HTTP/2 assets.clickfunnels.com/images/closemodal.png
IP 104.16.15.194:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 19754ed4d508cf576c80cf36e0db8c50
f459beac714e5be68aa75349fa806a5642af456a
5216f197f782f4bb872e02a677986af90a488015910f8d3864b796ad68dbd389
GET /images/closemodal.png HTTP/1.1
Host: assets.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 21:32:39 GMT
content-type: image/webp
content-length: 672
cf-ray: 74b479e85ab81c12-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 86601
cache-control: public, max-age=2678400
content-disposition: inline; filename="closemodal.webp"
etag: "630e9cfc-314"
expires: Sun, 16 Oct 2022 21:32:39 GMT
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=788
set-cookie: __cf_bm=eaAFn5sK06h4cTST6joo0Q0ax2aKezMhrygu0ul5c_s-1663277559-0-Af2nmW6Sk8vHTffzKEJ9zhQ7mNQiGKdaWVebBSHFsrCxSMLoKGEPekoUSpxb8PoY80F3FpaKlRzxyMHApTCEo1yfpk3ZM0huagQWoPbVAK0G; path=/; expires=Thu, 15-Sep-22 22:02:39 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7975b33417f675d21a178b997288d616
1d2e957c46d45d6cb2f44389f3dcc66c880b6065
daffff63daade8bb0c2fd63570229df8502c563dd079b4da4103f6ee89fa67e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 21:32:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7975b33417f675d21a178b997288d616
1d2e957c46d45d6cb2f44389f3dcc66c880b6065
daffff63daade8bb0c2fd63570229df8502c563dd079b4da4103f6ee89fa67e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 21:32:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
use.fontawesome.com/releases/v5.9.0/css/all.css
172.64.168.32200 OK 13 kB URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/all.css
IP 172.64.168.32:0
File type ASCII text, with very long lines (55782)
Hash 741e30e77e4ea735d592a9e924995ac0
c0b982da42a167ffc9851b0171fa381d41e5edcf
19780cdadc8abdac9d6b080f73b4a3a8b3c4cbbffae191af7fa996d7d7216c4e
GET /releases/v5.9.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 21:32:39 GMT
content-type: text/css
x-amz-id-2: vC8KBN503iyWKZzHxfJc5rs99Ocw4DSTaifdaL1SsWTbuhhIHZc4Cm+BPlh6dJ7ueugjQrc5cWE=
x-amz-request-id: F0PHW7H6699FG8TW
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 28044581
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RO9sUpFQU1iDwHiwu3BY7AO3Ctv6kr7YeC5PatqjqCZ7b6oL3b5ARP%2FaZKrlWVuBuxFmVqvU2i8s2%2B5QIC5d5%2BYhrPSfUUkAQKI%2F8KyUi3xcsHl5RQ%2BZJNR63TaZE%2BYHVBfjTQJ3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b479e88d017320-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 21:32:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 21:32:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 21:32:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 21:32:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.applewoodestatesnashua.com/optin1588212404482
104.16.12.194200 OK 116 kB URL HTTP/2 www.applewoodestatesnashua.com/optin1588212404482
IP 104.16.12.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10200), with CRLF, LF line terminators
Size 116 kB (116087 bytes)
Hash 5e65201b4180d581a07eedf2f0fcdd6f
fa7762c833b541b6351b0e6de184ae98846058c4
3eed6523c294e3a5f760d5e89dc1017251638e1a9f4d047fb2861a9c3ddae3d5
Analyzer Verdict Alert fortinet Phishing
GET /optin1588212404482 HTTP/1.1
Host: www.applewoodestatesnashua.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __cf_bm=KZI.0x8XJX_f3BeL0i1JeI3cW1TOIG7JUWZSYD7kCEw-1663277558-0-Abpta8lg4zocbyOXEmkL2Rn3R2Y2/+v6JQ+ujnOD6WfPzZcTWtM/J6eMih6QDDUiouR16jeppJgClW/FJXgvZGP1ogUECz0nmoUJMmqOb7Wa
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 21:32:38 GMT
content-type: text/html; charset=utf-8
cf-ray: 74b479e37d9db500-OSL
access-control-allow-origin: *
cache-control: max-age=60, public, s-maxage=600, r-maxage=10
last-modified: Mon, 21 Sep 2020 20:50:41 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: c42dc68661b8cac2033d6c7d9cce529805a77d50
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss, store
x-request-id: 2c61a35eb781c59eb6e8aa55ef787b5f
x-runtime: 0.464551
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Hash 4610010f425c140b99c88b6819ce1c02
a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.applewoodestatesnashua.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:26:57 GMT
expires: Thu, 14 Sep 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 93942
last-modified: Wed, 27 Apr 2022 16:02:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.applewoodestatesnashua.com/assets/userevents/application.js
104.16.12.194200 OK 15 kB URL HTTP/2 www.applewoodestatesnashua.com/assets/userevents/application.js
IP 104.16.12.194:0
File type ASCII text, with very long lines (4947), with no line terminators
Hash 2e721ef1b4575917e503899f3c974565
264df779eed483f91ae5f309c65185ba5846b8c3
d118b939fded02b277c3744bc38093daa942d7db026e054372ddcb4517f3870f
Analyzer Verdict Alert fortinet Phishing
GET /assets/userevents/application.js HTTP/1.1
Host: www.applewoodestatesnashua.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/optin1588212404482
Cookie: __cf_bm=KZI.0x8XJX_f3BeL0i1JeI3cW1TOIG7JUWZSYD7kCEw-1663277558-0-Abpta8lg4zocbyOXEmkL2Rn3R2Y2/+v6JQ+ujnOD6WfPzZcTWtM/J6eMih6QDDUiouR16jeppJgClW/FJXgvZGP1ogUECz0nmoUJMmqOb7Wa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 21:32:39 GMT
content-type: application/x-javascript
cf-ray: 74b479e81a87b500-OSL
access-control-allow-origin: *
age: 62
cache-control: public, max-age=1200
etag: W/"630e9cfc-1353"
expires: Thu, 15 Sep 2022 21:52:39 GMT
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700
142.250.74.10200 OK 16 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700
IP 142.250.74.10:0
Hash dbf746bc0f268fa75da6f34c25f46d4f
bc9fb2f1830fea3ea03151acf312a4e68dda1a80
9754cd2d0b62847a8a5d4cc9a7b860903e78866615aca4f2162b5f83efa030b4
GET /css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Sep 2022 21:32:39 GMT
date: Thu, 15 Sep 2022 21:32:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 21:32:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.applewoodestatesnashua.com/hosted/images/ab/ffd75a2c434c59a59e78f2ab1dca21/applewood-estates-nashua-logo.png
104.16.12.194200 OK 17 kB URL HTTP/2 www.applewoodestatesnashua.com/hosted/images/ab/ffd75a2c434c59a59e78f2ab1dca21/applewood-estates-nashua-logo.png
IP 104.16.12.194:0
File type PNG image data, 700 x 232, 8-bit/color RGBA, non-interlaced\012- data
Hash 8c049cce004a181f0ee2a84ccbadb70b
4369e0da1ab7c8c065eda6e30727d43fa52e4e46
54be4cba97b0fb923860e0dadff518122f063354b5fb38e3098269186f426c2d
GET /hosted/images/ab/ffd75a2c434c59a59e78f2ab1dca21/applewood-estates-nashua-logo.png HTTP/1.1
Host: www.applewoodestatesnashua.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/optin1588212404482
Cookie: __cf_bm=KZI.0x8XJX_f3BeL0i1JeI3cW1TOIG7JUWZSYD7kCEw-1663277558-0-Abpta8lg4zocbyOXEmkL2Rn3R2Y2/+v6JQ+ujnOD6WfPzZcTWtM/J6eMih6QDDUiouR16jeppJgClW/FJXgvZGP1ogUECz0nmoUJMmqOb7Wa
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 21:32:39 GMT
content-type: image/png
content-length: 16969
cf-ray: 74b479e81a8eb500-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "8c049cce004a181f0ee2a84ccbadb70b"
last-modified: Mon, 04 May 2020 12:43:16 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
www.applewoodestatesnashua.com/hosted/images/1e/32a95247fc4d8483a1135f32d69a33/The-Cameo-Floor-Plan-1.png
104.16.12.194200 OK 206 kB URL HTTP/2 www.applewoodestatesnashua.com/hosted/images/1e/32a95247fc4d8483a1135f32d69a33/The-Cameo-Floor-Plan-1.png
IP 104.16.12.194:0
File type PNG image data, 1280 x 509, 8-bit gray+alpha, non-interlaced\012- data
Size 206 kB (206197 bytes)
Hash 9dee7a09a804e96116377394a8119d24
1642abf2e236e2b8e55901f117f90599fa55ac3a
336a1c7ad1ef436568c6c24e046f343001edd9a42c9883cf97c03f61e438da04
GET /hosted/images/1e/32a95247fc4d8483a1135f32d69a33/The-Cameo-Floor-Plan-1.png HTTP/1.1
Host: www.applewoodestatesnashua.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/optin1588212404482
Cookie: __cf_bm=KZI.0x8XJX_f3BeL0i1JeI3cW1TOIG7JUWZSYD7kCEw-1663277558-0-Abpta8lg4zocbyOXEmkL2Rn3R2Y2/+v6JQ+ujnOD6WfPzZcTWtM/J6eMih6QDDUiouR16jeppJgClW/FJXgvZGP1ogUECz0nmoUJMmqOb7Wa
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 21:32:39 GMT
content-type: image/png
content-length: 206197
cf-ray: 74b479e81a88b500-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "9dee7a09a804e96116377394a8119d24"
last-modified: Thu, 30 Apr 2020 03:46:06 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7834
Expires: Thu, 15 Sep 2022 23:43:13 GMT
Date: Thu, 15 Sep 2022 21:32:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7834
Expires: Thu, 15 Sep 2022 23:43:13 GMT
Date: Thu, 15 Sep 2022 21:32:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7834
Expires: Thu, 15 Sep 2022 23:43:13 GMT
Date: Thu, 15 Sep 2022 21:32:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7834
Expires: Thu, 15 Sep 2022 23:43:13 GMT
Date: Thu, 15 Sep 2022 21:32:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ef9865421a37eae9a4df04083d27485
c7cf1f6a259cece60a34261ec83ee00736e1d72b
723b65ba660f22281f85d6caceea23e9cd932ee9084dc905a08a585746c4c4cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9922
x-amzn-requestid: de1e3e45-74ff-41b2-986f-e78473cb6d98
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YVc1SGM7IAMFw0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631edb54-2099524d6f2c338b41eea101;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 07:10:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: g4LYoK2-sx5QTvWPxwsh8yhHjOswmtzMB6d4N9YAvQOvspuvSFbJOA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:17:07 GMT
age: 83732
etag: "c7cf1f6a259cece60a34261ec83ee00736e1d72b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4833535b1650b0ac875704023b650e66
96ab8cd8e14350f730d26731f3445710324e24e2
d2b5a51e39a4890ba56e819d4d5d1d57d4d3cfc50dde42efdf23b8e9be17d1c7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9400
x-amzn-requestid: c1199c77-0340-46ee-b03f-641ec15816e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeJE_H-NoAMFXjQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63225552-08e6daa0169abd8c42a55598;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:27:31 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: zPeaNxhV9P5ORhzsosoaLD5cKZtIXR1Ar2_yRPHZifxpd4P8YlmNPg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 20:21:20 GMT
age: 4279
etag: "96ab8cd8e14350f730d26731f3445710324e24e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1633672fad0b564108cf81ad711dc881
d37ad0f40bc1f3f0022467dd0af2478980bd858a
cc7176a297f6009f07074fb9af796132b4452833be675bf378cc950fe81a582a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9071
x-amzn-requestid: b450f7cf-6cc7-4d1f-aef3-4496f0971727
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeIxuEq6oAMF9jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632254d7-6912ef8731d81fa43b805e5b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:25:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6LDUuDX1W8-Q88pDJma0xCAd5QuJ0YV-VpJ_8LVyDHX9YN1k0fQZ8Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:25:28 GMT
etag: "d37ad0f40bc1f3f0022467dd0af2478980bd858a"
content-type: image/jpeg
age: 83231
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f2157f7cfbdeb607f28ae51eb090f2c3
33d0dcadaa42179b2eae914c8ad16c9c088afbc9
135cd89c2c82f0f5e53d2612d5eac868c175b28a567a07e63a2073942e36a066
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6078
x-amzn-requestid: e09c099f-5a2d-49d7-b6ab-e16f09c28bd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YavJEEM5IAMFreQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f8a0-0fbb7b3d0cd6fbfa04f5a5d2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:39:44 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: IksVsW_2Y1I74dH0vXGeLN2ljxJHljF0Wn20n7v0b8UNPmikrHNkgA==
via: 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 20:21:20 GMT
age: 4279
etag: "33d0dcadaa42179b2eae914c8ad16c9c088afbc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e5f57ba37fac4e6047a9a321a8ec084
f6b742549ea35a4b1345cffb937a8bbcceee08ef
f8c67c54806e47089b9ba297599e3e4cde1fd2e2e38b76acc9e8de0e99d7b77e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6770
x-amzn-requestid: b7c9513c-b8ba-41c7-9f9a-0a9d2266172d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FlpEVRIAMFygA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144fbd-7a4408363cdc46c9355a9f47;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fqj5PljprRruE1jwYAVwKoHkjys-RakUjzuV67_Ued6T4et99JPxPg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:42:04 GMT
age: 85835
etag: "f6b742549ea35a4b1345cffb937a8bbcceee08ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Fira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans%20Pro%7C
142.250.74.10200 OK 5.7 kB URL HTTP/2 fonts.googleapis.com/css?family=Fira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans%20Pro%7C
IP 142.250.74.10:0
Hash c4c5f8921d9968909b7eb3bad9f0fcb3
b68ed1418cacb00d466363a700995d5cb7c833d6
bc26694d40324159f742a35147361a7b87fb8df446144b600518c368cad8540b
GET /css?family=Fira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans+Pro%7CFira+Sans%7CSource+Sans%20Pro%7C HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Sep 2022 21:32:39 GMT
date: Thu, 15 Sep 2022 21:32:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.applewoodestatesnashua.com/hosted/images/d4/e5067141854c1280a6973b24a7398d/braeburn-color.png
104.16.12.194200 OK 1.8 MB URL HTTP/2 www.applewoodestatesnashua.com/hosted/images/d4/e5067141854c1280a6973b24a7398d/braeburn-color.png
IP 104.16.12.194:0
File type PNG image data, 2395 x 896, 8-bit/color RGB, non-interlaced\012- data
Size 1.8 MB (1794515 bytes)
Hash 2dd67a22cba6e62a6a63cc4cf8e49b19
7ab98568ffaf0232b93e9cd831f286f25d8354b5
2d9961056eb5ccc84892803f4bcffa3e6e7e0e4833d3b92d968ad0a6c9dc6525
GET /hosted/images/d4/e5067141854c1280a6973b24a7398d/braeburn-color.png HTTP/1.1
Host: www.applewoodestatesnashua.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/optin1588212404482
Cookie: __cf_bm=KZI.0x8XJX_f3BeL0i1JeI3cW1TOIG7JUWZSYD7kCEw-1663277558-0-Abpta8lg4zocbyOXEmkL2Rn3R2Y2/+v6JQ+ujnOD6WfPzZcTWtM/J6eMih6QDDUiouR16jeppJgClW/FJXgvZGP1ogUECz0nmoUJMmqOb7Wa
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 21:32:39 GMT
content-type: image/png
content-length: 1794515
cf-ray: 74b479e81a8fb500-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "2dd67a22cba6e62a6a63cc4cf8e49b19"
last-modified: Sun, 19 Jul 2020 12:44:29 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
www.applewoodestatesnashua.com/hosted/images/55/04e25089c04c7bbb42c8f508292c07/cameo-color-1.png
104.16.12.194200 OK 1.7 MB URL HTTP/2 www.applewoodestatesnashua.com/hosted/images/55/04e25089c04c7bbb42c8f508292c07/cameo-color-1.png
IP 104.16.12.194:0
File type PNG image data, 2395 x 895, 8-bit/color RGBA, non-interlaced\012- data
Size 1.7 MB (1691682 bytes)
Hash 112e267108e6ce58074740d14b55f57b
75d8353fe84161c99085ff6848bbe959e677181c
c1c0e89157119cc891b907bdd43492a02bfa7920f3bcddb41dd35790b54dcf7b
GET /hosted/images/55/04e25089c04c7bbb42c8f508292c07/cameo-color-1.png HTTP/1.1
Host: www.applewoodestatesnashua.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/optin1588212404482
Cookie: __cf_bm=KZI.0x8XJX_f3BeL0i1JeI3cW1TOIG7JUWZSYD7kCEw-1663277558-0-Abpta8lg4zocbyOXEmkL2Rn3R2Y2/+v6JQ+ujnOD6WfPzZcTWtM/J6eMih6QDDUiouR16jeppJgClW/FJXgvZGP1ogUECz0nmoUJMmqOb7Wa
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 21:32:39 GMT
content-type: image/png
content-length: 1691682
cf-ray: 74b479e81a90b500-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "112e267108e6ce58074740d14b55f57b"
last-modified: Sun, 19 Jul 2020 12:49:25 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
js-agent.newrelic.com/nr-1216.min.js
151.101.86.137200 OK 14 kB URL HTTP/2 js-agent.newrelic.com/nr-1216.min.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (32022)
Hash b7c09cc097b2847f9edc784adba62dcb
5aa648623cf5e3b4b215fe5d068a7904c59f2925
6da450b6a3ba53bdab36f6529e987a245cdfca9a37b77790f06dfd8d5797bdaa
GET /nr-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Vf9xsFZHH0UI6bmTnW+KeBzegICGOxvtMLIWtbljNKoJtdkUEk/MfmbYPFui+bgtiUf/4lC5dk8=
x-amz-request-id: 4AV5AVKCCR961CNG
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "9f533d8cd24b2c5e3b4dc886ecbd43e8"
x-amz-version-id: mHHzJIqOizHibcYt0xqAszRr0gQRiNYy
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 15 Sep 2022 21:32:40 GMT
via: 1.1 varnish
x-served-by: cache-bma1649-BMA
x-cache: HIT
x-cache-hits: 3909
x-timer: S1663277560.247430,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 14391
X-Firefox-Spdy: h2
d2saw6je89goi1.cloudfront.net/uploads/digital_asset/file/708779/applewood-favicon.png
143.204.42.79200 OK 4.6 kB URL HTTP/2 d2saw6je89goi1.cloudfront.net/uploads/digital_asset/file/708779/applewood-favicon.png
IP 143.204.42.79:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 552daa08b508ccbd3e0d67904ffabe1b
7ba45aaa796ed162ceef1dd995c99345fbbf1eef
91651a4726fb367954cdea9308f56a81d31ac1774c4047588d6bb478a7123698
GET /uploads/digital_asset/file/708779/applewood-favicon.png HTTP/1.1
Host: d2saw6je89goi1.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 4599
date: Thu, 15 Sep 2022 21:32:41 GMT
last-modified: Mon, 04 May 2020 23:57:34 GMT
etag: "552daa08b508ccbd3e0d67904ffabe1b"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1O7k4mIhUJ1NEeIfMMR4KHPxs1nNkpOW7VNMLvTCHRP8AV2ZOt-Tnw==
X-Firefox-Spdy: h2
bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2945&ck=1&ref=https://www.applewoodestatesnashua.com/optin1588212404482&ap=471&be=1418&fe=2611&dc=2031&perf=%7B%22timing%22:%7B%22of%22:1663277542111,%22n%22:0,%22f%22:730,%22dn%22:730,%22dne%22:730,%22c%22:730,%22s%22:730,%22ce%22:730,%22rq%22:735,%22rp%22:1393,%22rpe%22:1393,%22dl%22:1402,%22di%22:2017,%22ds%22:2030,%22de%22:2130,%22dc%22:2610,%22l%22:2610,%22le%22:2724%7D,%22navigation%22:%7B%7D%7D&fcp=1718&jsonp=NREUM.setToken
162.247.241.14200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2945&ck=1&ref=https://www.applewoodestatesnashua.com/optin1588212404482&ap=471&be=1418&fe=2611&dc=2031&perf=%7B%22timing%22:%7B%22of%22:1663277542111,%22n%22:0,%22f%22:730,%22dn%22:730,%22dne%22:730,%22c%22:730,%22s%22:730,%22ce%22:730,%22rq%22:735,%22rp%22:1393,%22rpe%22:1393,%22dl%22:1402,%22di%22:2017,%22ds%22:2030,%22de%22:2130,%22dc%22:2610,%22l%22:2610,%22le%22:2724%7D,%22navigation%22:%7B%7D%7D&fcp=1718&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2945&ck=1&ref=https://www.applewoodestatesnashua.com/optin1588212404482&ap=471&be=1418&fe=2611&dc=2031&perf=%7B%22timing%22:%7B%22of%22:1663277542111,%22n%22:0,%22f%22:730,%22dn%22:730,%22dne%22:730,%22c%22:730,%22s%22:730,%22ce%22:730,%22rq%22:735,%22rp%22:1393,%22rpe%22:1393,%22dl%22:1402,%22di%22:2017,%22ds%22:2030,%22de%22:2130,%22dc%22:2610,%22l%22:2610,%22le%22:2724%7D,%22navigation%22:%7B%7D%7D&fcp=1718&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 21:32:40 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 74b479f16ec3b521-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=1d2a900a8650a706; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
www.applewoodestatesnashua.com/
104.16.12.194302 Found 0 B URL HTTP/2 www.applewoodestatesnashua.com/
IP 104.16.12.194:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.applewoodestatesnashua.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Thu, 15 Sep 2022 21:32:38 GMT
content-type: text/html; charset=utf-8
location: https://www.applewoodestatesnashua.com/optin1588212404482
cf-ray: 74b479e0fa2ab500-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 302 Found
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: bb89cd7a311ff5e743f0363342bfd1f6
x-runtime: 0.203612
set-cookie: __cf_bm=KZI.0x8XJX_f3BeL0i1JeI3cW1TOIG7JUWZSYD7kCEw-1663277558-0-Abpta8lg4zocbyOXEmkL2Rn3R2Y2/+v6JQ+ujnOD6WfPzZcTWtM/J6eMih6QDDUiouR16jeppJgClW/FJXgvZGP1ogUECz0nmoUJMmqOb7Wa; path=/; expires=Thu, 15-Sep-22 22:02:38 GMT; domain=.www.applewoodestatesnashua.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
www.applewoodestatesnashua.com/cdn-cgi/rum?
104.16.12.194200 OK 0 B URL HTTP/2 www.applewoodestatesnashua.com/cdn-cgi/rum?
IP 104.16.12.194:0
Analyzer Verdict Alert fortinet Phishing
POST /cdn-cgi/rum? HTTP/1.1
Host: www.applewoodestatesnashua.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 11016
Origin: https://www.applewoodestatesnashua.com
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/optin1588212404482
Cookie: __cf_bm=KZI.0x8XJX_f3BeL0i1JeI3cW1TOIG7JUWZSYD7kCEw-1663277558-0-Abpta8lg4zocbyOXEmkL2Rn3R2Y2/+v6JQ+ujnOD6WfPzZcTWtM/J6eMih6QDDUiouR16jeppJgClW/FJXgvZGP1ogUECz0nmoUJMmqOb7Wa; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:Mzg0MzU0NDA=:visited=true; cf:visitor_id=85390f29-5820-4dde-b1b7-8863a8611f77; addevent_track_cookie=938e2484-10a8-42b9-aa82-74d043a50951
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 21:32:40 GMT
content-type: text/plain
access-control-allow-origin: https://www.applewoodestatesnashua.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 74b479effb8bb500-OSL
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
172.64.168.32200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
IP 172.64.168.32:0
GET /releases/v5.9.0/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 21:32:39 GMT
content-type: text/css
x-amz-id-2: HpuDfuJOnoRBIn1oGWh6kpnFISyPAhBcUuSh2sgaSOixf+diILYpFUsoF1uDkiR93wgKGECAn7k=
x-amz-request-id: F0PPGVAN5CXAHSGM
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"e140a7d32f343530f016095df3cc2ae4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 28044581
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BIkRpz912pV9EpV%2F3Hwgjd3dkOnwj%2F7ut%2BGliHhhpM4lXxgTWKg12dkgujV%2FZ1ExKPjdZp%2B%2FPMnBYZFPDkgja0R7%2FzVFHb6YksXrPCjAEMgb%2Bk%2BLw2g%2FRcrEgVksukEPtwyhBoOp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b479e88d097320-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.applewoodestatesnashua.com/vendor.js
104.16.12.194200 OK 0 B URL HTTP/2 www.applewoodestatesnashua.com/vendor.js
IP 104.16.12.194:0
Analyzer Verdict Alert fortinet Phishing
GET /vendor.js HTTP/1.1
Host: www.applewoodestatesnashua.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/optin1588212404482
Cookie: __cf_bm=KZI.0x8XJX_f3BeL0i1JeI3cW1TOIG7JUWZSYD7kCEw-1663277558-0-Abpta8lg4zocbyOXEmkL2Rn3R2Y2/+v6JQ+ujnOD6WfPzZcTWtM/J6eMih6QDDUiouR16jeppJgClW/FJXgvZGP1ogUECz0nmoUJMmqOb7Wa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 21:32:39 GMT
content-type: application/javascript
cf-ray: 74b479eb8e8ab500-OSL
access-control-allow-origin: *
cache-control: max-age=900, public
etag: W/"7422e50efbaea439fda7ef3b0eb54ee1"
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: 581e49c9b7bdd06dab54c00931f4256b223e620e
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss, store
x-request-id: ab328ba5157b6873b08b142209646f1f
x-runtime: 0.017409
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=Z1JSNURFdmdVN25ocnQxeTUzSFNPZz09LS11VGNEYk10V3NzcHphZmo0YngxQ1VBPT0%3D--fddc58e41f90158039ca6815f2560e1951ff5f4d&page_id=SWZ0MXRlOXp6NFpTem1ud3U4TGMrQT09LS1tMnhTREFTNE1Zc1Y1K3lHOXpFa1ZBPT0%3D--788f5a39b44522ff0114578a50a0c55403263ed3&funnel_step_id=TTl0aklvRTlFYzU0cjlLWWFJV3pMdz09LS1DSmxRaDVadzBzajFUTzRBOTE3dTZBPT0%3D--923f2b2b54338282a49a20bf0b5e7e903fc7f424&user_id=cW92WVArOC9wWWJxekhLYWNsMm5rQT09LS15VDNPZkl3d0M0V2crdEZMSEVSVXZRPT0%3D--43ae5fdbe2d00ed6482978cccc9f6dfd9e093df8&account_id=eUtVRCtJZ3VqK2ovZzRwU0JQS2x3Zz09LS1qOEZ5QWszbVFFRkY4T3F2VXlkYUpnPT0%3D--118cebb68f6b3027036e100a9bb8c166ccb15c34&page_code=Mzg0MzU0NDA%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::PageviewsCreatedSummary&nonce=53ad7165-1895-4e48-ba03-2994d38c6141&url=https%3A%2F%2Fwww.applewoodestatesnashua.com%2Foptin1588212404482
104.16.15.194202 Accepted 0 B URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=Z1JSNURFdmdVN25ocnQxeTUzSFNPZz09LS11VGNEYk10V3NzcHphZmo0YngxQ1VBPT0%3D--fddc58e41f90158039ca6815f2560e1951ff5f4d&page_id=SWZ0MXRlOXp6NFpTem1ud3U4TGMrQT09LS1tMnhTREFTNE1Zc1Y1K3lHOXpFa1ZBPT0%3D--788f5a39b44522ff0114578a50a0c55403263ed3&funnel_step_id=TTl0aklvRTlFYzU0cjlLWWFJV3pMdz09LS1DSmxRaDVadzBzajFUTzRBOTE3dTZBPT0%3D--923f2b2b54338282a49a20bf0b5e7e903fc7f424&user_id=cW92WVArOC9wWWJxekhLYWNsMm5rQT09LS15VDNPZkl3d0M0V2crdEZMSEVSVXZRPT0%3D--43ae5fdbe2d00ed6482978cccc9f6dfd9e093df8&account_id=eUtVRCtJZ3VqK2ovZzRwU0JQS2x3Zz09LS1qOEZ5QWszbVFFRkY4T3F2VXlkYUpnPT0%3D--118cebb68f6b3027036e100a9bb8c166ccb15c34&page_code=Mzg0MzU0NDA%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::PageviewsCreatedSummary&nonce=53ad7165-1895-4e48-ba03-2994d38c6141&url=https%3A%2F%2Fwww.applewoodestatesnashua.com%2Foptin1588212404482
IP 104.16.15.194:0
GET /userevents/?funnel_id=Z1JSNURFdmdVN25ocnQxeTUzSFNPZz09LS11VGNEYk10V3NzcHphZmo0YngxQ1VBPT0%3D--fddc58e41f90158039ca6815f2560e1951ff5f4d&page_id=SWZ0MXRlOXp6NFpTem1ud3U4TGMrQT09LS1tMnhTREFTNE1Zc1Y1K3lHOXpFa1ZBPT0%3D--788f5a39b44522ff0114578a50a0c55403263ed3&funnel_step_id=TTl0aklvRTlFYzU0cjlLWWFJV3pMdz09LS1DSmxRaDVadzBzajFUTzRBOTE3dTZBPT0%3D--923f2b2b54338282a49a20bf0b5e7e903fc7f424&user_id=cW92WVArOC9wWWJxekhLYWNsMm5rQT09LS15VDNPZkl3d0M0V2crdEZMSEVSVXZRPT0%3D--43ae5fdbe2d00ed6482978cccc9f6dfd9e093df8&account_id=eUtVRCtJZ3VqK2ovZzRwU0JQS2x3Zz09LS1qOEZ5QWszbVFFRkY4T3F2VXlkYUpnPT0%3D--118cebb68f6b3027036e100a9bb8c166ccb15c34&page_code=Mzg0MzU0NDA%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::PageviewsCreatedSummary&nonce=53ad7165-1895-4e48-ba03-2994d38c6141&url=https%3A%2F%2Fwww.applewoodestatesnashua.com%2Foptin1588212404482 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.applewoodestatesnashua.com
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Thu, 15 Sep 2022 21:32:39 GMT
content-type: text/html
cf-ray: 74b479ebad3b1c12-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: aede7b1ba75f0130c32d47cdd4604dd7
x-runtime: 0.030319
set-cookie: __cf_bm=kdJw1LZLuKMjeCQb.pXhiS5mER6vIqMSUFLr9T11Gwc-1663277559-0-AUnEgN9ZAzuYl9oLZQmVGhb49VwVDoFfaC+EMXSALkTYNEsN7QPUzSOvvPXe5SLVHjId9KH1zs8zXjNpwUWsSRiyJLYpeS/TfRYDt99j9jVJ; path=/; expires=Thu, 15-Sep-22 22:02:39 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=Z1JSNURFdmdVN25ocnQxeTUzSFNPZz09LS11VGNEYk10V3NzcHphZmo0YngxQ1VBPT0%3D--fddc58e41f90158039ca6815f2560e1951ff5f4d&page_id=SWZ0MXRlOXp6NFpTem1ud3U4TGMrQT09LS1tMnhTREFTNE1Zc1Y1K3lHOXpFa1ZBPT0%3D--788f5a39b44522ff0114578a50a0c55403263ed3&funnel_step_id=TTl0aklvRTlFYzU0cjlLWWFJV3pMdz09LS1DSmxRaDVadzBzajFUTzRBOTE3dTZBPT0%3D--923f2b2b54338282a49a20bf0b5e7e903fc7f424&user_id=cW92WVArOC9wWWJxekhLYWNsMm5rQT09LS15VDNPZkl3d0M0V2crdEZMSEVSVXZRPT0%3D--43ae5fdbe2d00ed6482978cccc9f6dfd9e093df8&account_id=eUtVRCtJZ3VqK2ovZzRwU0JQS2x3Zz09LS1qOEZ5QWszbVFFRkY4T3F2VXlkYUpnPT0%3D--118cebb68f6b3027036e100a9bb8c166ccb15c34&page_code=Mzg0MzU0NDA%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=59f5674a-dee5-4ffd-9e9d-743c83ad4853&url=https%3A%2F%2Fwww.applewoodestatesnashua.com%2Foptin1588212404482
104.16.15.194202 Accepted 0 B URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=Z1JSNURFdmdVN25ocnQxeTUzSFNPZz09LS11VGNEYk10V3NzcHphZmo0YngxQ1VBPT0%3D--fddc58e41f90158039ca6815f2560e1951ff5f4d&page_id=SWZ0MXRlOXp6NFpTem1ud3U4TGMrQT09LS1tMnhTREFTNE1Zc1Y1K3lHOXpFa1ZBPT0%3D--788f5a39b44522ff0114578a50a0c55403263ed3&funnel_step_id=TTl0aklvRTlFYzU0cjlLWWFJV3pMdz09LS1DSmxRaDVadzBzajFUTzRBOTE3dTZBPT0%3D--923f2b2b54338282a49a20bf0b5e7e903fc7f424&user_id=cW92WVArOC9wWWJxekhLYWNsMm5rQT09LS15VDNPZkl3d0M0V2crdEZMSEVSVXZRPT0%3D--43ae5fdbe2d00ed6482978cccc9f6dfd9e093df8&account_id=eUtVRCtJZ3VqK2ovZzRwU0JQS2x3Zz09LS1qOEZ5QWszbVFFRkY4T3F2VXlkYUpnPT0%3D--118cebb68f6b3027036e100a9bb8c166ccb15c34&page_code=Mzg0MzU0NDA%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=59f5674a-dee5-4ffd-9e9d-743c83ad4853&url=https%3A%2F%2Fwww.applewoodestatesnashua.com%2Foptin1588212404482
IP 104.16.15.194:0
GET /userevents/?funnel_id=Z1JSNURFdmdVN25ocnQxeTUzSFNPZz09LS11VGNEYk10V3NzcHphZmo0YngxQ1VBPT0%3D--fddc58e41f90158039ca6815f2560e1951ff5f4d&page_id=SWZ0MXRlOXp6NFpTem1ud3U4TGMrQT09LS1tMnhTREFTNE1Zc1Y1K3lHOXpFa1ZBPT0%3D--788f5a39b44522ff0114578a50a0c55403263ed3&funnel_step_id=TTl0aklvRTlFYzU0cjlLWWFJV3pMdz09LS1DSmxRaDVadzBzajFUTzRBOTE3dTZBPT0%3D--923f2b2b54338282a49a20bf0b5e7e903fc7f424&user_id=cW92WVArOC9wWWJxekhLYWNsMm5rQT09LS15VDNPZkl3d0M0V2crdEZMSEVSVXZRPT0%3D--43ae5fdbe2d00ed6482978cccc9f6dfd9e093df8&account_id=eUtVRCtJZ3VqK2ovZzRwU0JQS2x3Zz09LS1qOEZ5QWszbVFFRkY4T3F2VXlkYUpnPT0%3D--118cebb68f6b3027036e100a9bb8c166ccb15c34&page_code=Mzg0MzU0NDA%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=59f5674a-dee5-4ffd-9e9d-743c83ad4853&url=https%3A%2F%2Fwww.applewoodestatesnashua.com%2Foptin1588212404482 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.applewoodestatesnashua.com
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Thu, 15 Sep 2022 21:32:39 GMT
content-type: text/html
cf-ray: 74b479ebad3e1c12-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 638a34c6d156a6ff5595947a8ca220ad
x-runtime: 0.026830
set-cookie: __cf_bm=XbrHNsAK5vS7F1OqOcnojYbCSIu.UCxFdGD8ghfnUts-1663277559-0-Abj1jmQFtnN4aFfRuYR70w45mqYA0iXNDSXoDdLk9aFPt+kZ3360zjtucfqS1BL1GzwNur9ZSPTDcG9GTd2xakIFpD4jV4g3+f8zYHmTa7Ur; path=/; expires=Thu, 15-Sep-22 22:02:39 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
www.applewoodestatesnashua.com/images/background.png?_unique=0.2690267300683842&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//www.applewoodestatesnashua.com/optin1588212404482&_title=Applewood%20Estates%20Condominium%20Braeburn%20Drive%2C%20Nashua%2C%20NH%2003062&_key=nibee2qf&_page_key=4q0070xq5dilfj84&_fid=9018927&_fspos=1&_fvrs=2&_funnel_stat=1&_location=https://www.applewoodestatesnashua.com/optin1588212404482&_referrer=
104.16.12.194200 OK 0 B URL HTTP/2 www.applewoodestatesnashua.com/images/background.png?_unique=0.2690267300683842&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//www.applewoodestatesnashua.com/optin1588212404482&_title=Applewood%20Estates%20Condominium%20Braeburn%20Drive%2C%20Nashua%2C%20NH%2003062&_key=nibee2qf&_page_key=4q0070xq5dilfj84&_fid=9018927&_fspos=1&_fvrs=2&_funnel_stat=1&_location=https://www.applewoodestatesnashua.com/optin1588212404482&_referrer=
IP 104.16.12.194:0
GET /images/background.png?_unique=0.2690267300683842&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//www.applewoodestatesnashua.com/optin1588212404482&_title=Applewood%20Estates%20Condominium%20Braeburn%20Drive%2C%20Nashua%2C%20NH%2003062&_key=nibee2qf&_page_key=4q0070xq5dilfj84&_fid=9018927&_fspos=1&_fvrs=2&_funnel_stat=1&_location=https://www.applewoodestatesnashua.com/optin1588212404482&_referrer= HTTP/1.1
Host: www.applewoodestatesnashua.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/optin1588212404482
Cookie: __cf_bm=KZI.0x8XJX_f3BeL0i1JeI3cW1TOIG7JUWZSYD7kCEw-1663277558-0-Abpta8lg4zocbyOXEmkL2Rn3R2Y2/+v6JQ+ujnOD6WfPzZcTWtM/J6eMih6QDDUiouR16jeppJgClW/FJXgvZGP1ogUECz0nmoUJMmqOb7Wa; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:Mzg0MzU0NDA=:visited=true; cf:visitor_id=85390f29-5820-4dde-b1b7-8863a8611f77; addevent_track_cookie=938e2484-10a8-42b9-aa82-74d043a50951
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 21:32:40 GMT
content-type: text/javascript; charset=utf-8
cf-ray: 74b479ef5ad5b500-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store, private
strict-transport-security: max-age=0
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
status: 200 OK
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 90309ea0e7b585ffc2704edea792ec6d
x-runtime: 0.022947
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.applewoodestatesnashua.com/assets/lander.js
104.16.12.194200 OK 0 B URL HTTP/2 www.applewoodestatesnashua.com/assets/lander.js
IP 104.16.12.194:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/lander.js HTTP/1.1
Host: www.applewoodestatesnashua.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/optin1588212404482
Cookie: __cf_bm=KZI.0x8XJX_f3BeL0i1JeI3cW1TOIG7JUWZSYD7kCEw-1663277558-0-Abpta8lg4zocbyOXEmkL2Rn3R2Y2/+v6JQ+ujnOD6WfPzZcTWtM/J6eMih6QDDUiouR16jeppJgClW/FJXgvZGP1ogUECz0nmoUJMmqOb7Wa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 21:32:39 GMT
content-type: application/x-javascript
cf-ray: 74b479e82a93b500-OSL
access-control-allow-origin: *
age: 146
cache-control: public, max-age=1200
etag: W/"630e9d40-238fd1"
expires: Thu, 15 Sep 2022 21:52:39 GMT
last-modified: Tue, 30 Aug 2022 23:29:04 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
app.clickfunnels.com/mailcheck.min.js
104.16.15.194200 OK 0 B URL HTTP/2 app.clickfunnels.com/mailcheck.min.js
IP 104.16.15.194:0
GET /mailcheck.min.js HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 21:32:39 GMT
content-type: application/x-javascript
cf-ray: 74b479e87acc1c12-OSL
access-control-allow-origin: *
age: 5043
etag: W/"630e9cfc-a8d"
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=XPJhUFx7FPpe271sTSL5PQOOSsJkm5pVZWgF6HkpCRs-1663277559-0-AYT1xr0WVA2lkZ6xTkmxSCiMjS8pvAJmhMvkH1GA1vpAiLi1IDcnZcMIXJsy2+mzPw1e77peRHWHhD3cUxLrjMtXWncvEWo8OxfxGGUBSt7q; path=/; expires=Thu, 15-Sep-22 22:02:39 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.applewoodestatesnashua.com/assets/pushcrew.js
104.16.12.194200 OK 0 B URL HTTP/2 www.applewoodestatesnashua.com/assets/pushcrew.js
IP 104.16.12.194:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/pushcrew.js HTTP/1.1
Host: www.applewoodestatesnashua.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/optin1588212404482
Cookie: __cf_bm=KZI.0x8XJX_f3BeL0i1JeI3cW1TOIG7JUWZSYD7kCEw-1663277558-0-Abpta8lg4zocbyOXEmkL2Rn3R2Y2/+v6JQ+ujnOD6WfPzZcTWtM/J6eMih6QDDUiouR16jeppJgClW/FJXgvZGP1ogUECz0nmoUJMmqOb7Wa
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 21:32:39 GMT
content-type: application/x-javascript
cf-ray: 74b479e82a96b500-OSL
access-control-allow-origin: *
age: 239
cache-control: public, max-age=1200
etag: W/"630e9cfb-27d"
expires: Thu, 15 Sep 2022 21:52:39 GMT
last-modified: Tue, 30 Aug 2022 23:27:55 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
172.64.156.26200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
IP 172.64.156.26:0
GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.applewoodestatesnashua.com
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 21:32:39 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b479e87cccb518-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=Z1JSNURFdmdVN25ocnQxeTUzSFNPZz09LS11VGNEYk10V3NzcHphZmo0YngxQ1VBPT0%3D--fddc58e41f90158039ca6815f2560e1951ff5f4d&page_id=SWZ0MXRlOXp6NFpTem1ud3U4TGMrQT09LS1tMnhTREFTNE1Zc1Y1K3lHOXpFa1ZBPT0%3D--788f5a39b44522ff0114578a50a0c55403263ed3&funnel_step_id=TTl0aklvRTlFYzU0cjlLWWFJV3pMdz09LS1DSmxRaDVadzBzajFUTzRBOTE3dTZBPT0%3D--923f2b2b54338282a49a20bf0b5e7e903fc7f424&user_id=cW92WVArOC9wWWJxekhLYWNsMm5rQT09LS15VDNPZkl3d0M0V2crdEZMSEVSVXZRPT0%3D--43ae5fdbe2d00ed6482978cccc9f6dfd9e093df8&account_id=eUtVRCtJZ3VqK2ovZzRwU0JQS2x3Zz09LS1qOEZ5QWszbVFFRkY4T3F2VXlkYUpnPT0%3D--118cebb68f6b3027036e100a9bb8c166ccb15c34&page_code=Mzg0MzU0NDA%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniquePageviewsCreatedSummary&nonce=f228a08f-5f44-4107-b327-2c072aa9f83e&url=https%3A%2F%2Fwww.applewoodestatesnashua.com%2Foptin1588212404482
104.16.15.194202 Accepted 0 B URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=Z1JSNURFdmdVN25ocnQxeTUzSFNPZz09LS11VGNEYk10V3NzcHphZmo0YngxQ1VBPT0%3D--fddc58e41f90158039ca6815f2560e1951ff5f4d&page_id=SWZ0MXRlOXp6NFpTem1ud3U4TGMrQT09LS1tMnhTREFTNE1Zc1Y1K3lHOXpFa1ZBPT0%3D--788f5a39b44522ff0114578a50a0c55403263ed3&funnel_step_id=TTl0aklvRTlFYzU0cjlLWWFJV3pMdz09LS1DSmxRaDVadzBzajFUTzRBOTE3dTZBPT0%3D--923f2b2b54338282a49a20bf0b5e7e903fc7f424&user_id=cW92WVArOC9wWWJxekhLYWNsMm5rQT09LS15VDNPZkl3d0M0V2crdEZMSEVSVXZRPT0%3D--43ae5fdbe2d00ed6482978cccc9f6dfd9e093df8&account_id=eUtVRCtJZ3VqK2ovZzRwU0JQS2x3Zz09LS1qOEZ5QWszbVFFRkY4T3F2VXlkYUpnPT0%3D--118cebb68f6b3027036e100a9bb8c166ccb15c34&page_code=Mzg0MzU0NDA%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniquePageviewsCreatedSummary&nonce=f228a08f-5f44-4107-b327-2c072aa9f83e&url=https%3A%2F%2Fwww.applewoodestatesnashua.com%2Foptin1588212404482
IP 104.16.15.194:0
GET /userevents/?funnel_id=Z1JSNURFdmdVN25ocnQxeTUzSFNPZz09LS11VGNEYk10V3NzcHphZmo0YngxQ1VBPT0%3D--fddc58e41f90158039ca6815f2560e1951ff5f4d&page_id=SWZ0MXRlOXp6NFpTem1ud3U4TGMrQT09LS1tMnhTREFTNE1Zc1Y1K3lHOXpFa1ZBPT0%3D--788f5a39b44522ff0114578a50a0c55403263ed3&funnel_step_id=TTl0aklvRTlFYzU0cjlLWWFJV3pMdz09LS1DSmxRaDVadzBzajFUTzRBOTE3dTZBPT0%3D--923f2b2b54338282a49a20bf0b5e7e903fc7f424&user_id=cW92WVArOC9wWWJxekhLYWNsMm5rQT09LS15VDNPZkl3d0M0V2crdEZMSEVSVXZRPT0%3D--43ae5fdbe2d00ed6482978cccc9f6dfd9e093df8&account_id=eUtVRCtJZ3VqK2ovZzRwU0JQS2x3Zz09LS1qOEZ5QWszbVFFRkY4T3F2VXlkYUpnPT0%3D--118cebb68f6b3027036e100a9bb8c166ccb15c34&page_code=Mzg0MzU0NDA%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniquePageviewsCreatedSummary&nonce=f228a08f-5f44-4107-b327-2c072aa9f83e&url=https%3A%2F%2Fwww.applewoodestatesnashua.com%2Foptin1588212404482 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.applewoodestatesnashua.com
Connection: keep-alive
Referer: https://www.applewoodestatesnashua.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Thu, 15 Sep 2022 21:32:39 GMT
content-type: text/html
cf-ray: 74b479ebad3c1c12-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 1e5f93315be7475c6ea7f850042ab08c
x-runtime: 0.038083
set-cookie: __cf_bm=.6QCI_QnuQd8SxaTSw2n6YSmweQ75hSZHvSZ8cXHFr4-1663277559-0-Ace9NFUeor6EeWI/fZtDzTxNbEVMHnEu9p6tnAbGtH0avw3NhvLEBO9qvIX7xtiFRlXZ57JG8K/UYmFOZh/yRgKaPdqHaEjX93++iiKLY03l; path=/; expires=Thu, 15-Sep-22 22:02:39 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2