r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b720c31d9c036cd2ef10e35fa29f5345
ac625d2e69284e5080bede4b37c31af62c26338b
323b76eceb5d3ad339a1c55bfa7eea4e39741258e08d5005b691f712a9e9c81c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "323B76ECEB5D3AD339A1C55BFA7EEA4E39741258E08D5005B691F712A9E9C81C"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8538
Expires: Sat, 05 Nov 2022 00:57:28 GMT
Date: Fri, 04 Nov 2022 22:35:10 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cd02b32dbc8416dcb10b468af2166c33
503a9c4cabdb19dfde769f5e2d3ef919c818c364
46ca638514d9d4cf252762fdac37a5e7b1da550fcc9911070b0b26a6aa6150a7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6107
Cache-Control: max-age=131862
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 22:35:10 GMT
Etag: "6364dbd9-1d7"
Expires: Sun, 06 Nov 2022 11:12:52 GMT
Last-Modified: Fri, 04 Nov 2022 09:31:05 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9f3527f898221f8ba6b5015f6decc100
ead93baa0e9d3a6297be3377dc3a624e5a3f509a
73a068f907cc50dd60af18d545b4264dd44bc4b9f40bf9adfceea157fdc33099
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "73A068F907CC50DD60AF18D545B4264DD44BC4B9F40BF9ADFCEEA157FDC33099"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2886
Expires: Fri, 04 Nov 2022 23:23:16 GMT
Date: Fri, 04 Nov 2022 22:35:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /A+Q+ixxnxAb+UhQkHgtC/uqE/I5mnmUOciI6GvvwtVAJzwMC163TeaoX3F8LImzuELOv4729Xw=
x-amz-request-id: A9KRW7NT40V6HKM3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 04 Nov 2022 22:09:45 GMT
age: 1525
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
byfinancialservices.com/es/stirpdsaspeiice
66.29.145.237301 Moved Permanently 258 B URL HTTP/1.1 byfinancialservices.com/es/stirpdsaspeiice
IP 66.29.145.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cf4dbaf17d77c31add473f5627267f15
e118813b529efae9ebe30ba5007df37934fe91be
00958292fa8dc051f60783c193537440b3eb5aeae8d80960cf5e9bd65695ad74
Analyzer Verdict Alert fortinet Malware
GET /es/stirpdsaspeiice HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 04 Nov 2022 22:35:10 GMT
Server: Apache
Location: https://byfinancialservices.com/es/stirpdsaspeiice
Content-Length: 258
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 22:35:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 42a0adacced30df52cf7cad3e200036d
f7b4114defc61f806dbb74fd228bca155d52362a
e4928481739a2a75dce86c03b355c6dff507426e8d851cba5ca8537b1be87c20
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 159
Cache-Control: max-age=120855
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 22:35:11 GMT
Etag: "6364c817-1d7"
Expires: Sun, 06 Nov 2022 08:09:26 GMT
Last-Modified: Fri, 04 Nov 2022 08:06:47 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.89.255.30101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.255.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ij5fzDDXTpiYC54dI57dTw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sPRfk5whyKzBWDl90Bip1qLLb+I=
byfinancialservices.com/es/stirpdsaspeiice
66.29.145.237404 Not Found 9.6 kB URL HTTP/1.1 byfinancialservices.com/es/stirpdsaspeiice
IP 66.29.145.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902), with CRLF, LF line terminators
Hash c8dc727f8d9f8186f9a2af7d83efd99d
f48e2083681a20ec0710177ebd5e18da53ac2949
19eb8e94aecd2256d5667663f19525493a010cf61b654cc9d46a8d74723175e1
Analyzer Verdict Alert fortinet Malware
GET /es/stirpdsaspeiice HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Fri, 04 Nov 2022 22:35:11 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://byfinancialservices.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9641
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
byfinancialservices.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.12
66.29.145.237200 OK 7.6 kB URL HTTP/1.1 byfinancialservices.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.12
IP 66.29.145.237:0
File type ASCII text, with very long lines (28088)
Hash c6ff3e54eda2b13061445deccc15190d
86501cd4f7ca6363326b4941856fec73fc625b83
4e4d6d9a73d0e58cda6d288c4b01ea3ba68c3cb25d65eff50f256d533406e417
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.4.12 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:12 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7642
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash a2f6c296003d839bdee766ef4082e376
013ae64b10cb1355ae9b6ba38dcfa79f71a9b505
703d6582ab3344d6e4a0d5b7e0c9983b8f7e8179d73dd6584c37bbccc8c84308
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 22:35:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d65c94a3bfe8605059e5e626ea0fa57e
b0fbc3577331b82efc8e320095b8d8705a6360d3
0878edd256a972f526d7053cdebceb28241db5662cc7660a10f1b4c3430c43c6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 22:35:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
byfinancialservices.com/wp-content/themes/salient/css/font-awesome.min.css?ver=4.6.4
66.29.145.237200 OK 10 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/font-awesome.min.css?ver=4.6.4
IP 66.29.145.237:0
File type ASCII text, with very long lines (30343)
Hash f8d7770aaccdc24f07d917d23a250cb4
442a55f00f0e4a74f7729e5d84de60f64adc042d
77ccdb7751a9992a021389837ff9c85b9dac624c410bf7c811015caba28e013c
GET /wp-content/themes/salient/css/font-awesome.min.css?ver=4.6.4 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:12 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10246
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.googletagmanager.com/gtag/js?id=UA-172403094-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-172403094-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 89e00aba0fa27ab81a901bbd1434274c
0eb50c3ad30707a172a8f681ccd9c73147ee5b03
73edb284f614591fc4c9e8b7daef6b0db619b504daca0a0de7a2fa95b93a86f2
GET /gtag/js?id=UA-172403094-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 04 Nov 2022 22:35:12 GMT
expires: Fri, 04 Nov 2022 22:35:12 GMT
cache-control: private, max-age=900
last-modified: Fri, 04 Nov 2022 21:09:22 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43533
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3862
Expires: Fri, 04 Nov 2022 23:39:35 GMT
Date: Fri, 04 Nov 2022 22:35:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52bfe915-baee-403a-9240-12d17207ec94.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52bfe915-baee-403a-9240-12d17207ec94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d12961439cd33c86c7b8041ed9d42321
ddb7b18fae0082ce22d8ffa537c7367e1da404a5
d2cc0f7735f04a07c681eb2eae7c52e9f4c75b6d475b3ad4de587899089850a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52bfe915-baee-403a-9240-12d17207ec94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4662
x-amzn-requestid: 32199e11-d856-4403-ad55-65076eac83ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: amd5UFJQIAMFf-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358dd08-1761126e37ed504e46896b4d;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 07:08:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Nu2uC3we8aHv4ERvh7QcmiErm4Ax-NNmdWFovpdU9Or9DguzrIcn5g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 07:26:20 GMT
age: 54533
etag: "ddb7b18fae0082ce22d8ffa537c7367e1da404a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3862
Expires: Fri, 04 Nov 2022 23:39:35 GMT
Date: Fri, 04 Nov 2022 22:35:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ae2b8d827fb2c8bef64febcd36f1645
f7705fcd2d91ce90c58e79324cce1e3abba6c1c8
2dc55e97ef3a85fccb104b80161a8bac16b12d37527c336563677432584c7ad5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11421
x-amzn-requestid: 8436166b-f342-44e9-9a31-e25dcaa7b85c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a2gEOEYRIAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635f46e7-0616a6b95503fffd4f597509;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 03:54:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: g3OtcJnT2JfzIAvUjoLvC8pOzfwGFQ-M0cH4uwNSVcr2T9jYgCihTw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 23:36:56 GMT
age: 82697
etag: "f7705fcd2d91ce90c58e79324cce1e3abba6c1c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3819323-4f77-4bb2-bbbb-6926d5bc62aa.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3819323-4f77-4bb2-bbbb-6926d5bc62aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6ee20d59c5ac266f8eb9c47057271a10
61dc4e78907f114519ff3fdd3c806b36557ab744
2cba117cfe96fa5e1b53981f98d42eb3e5f956083c3435a1d44d1d40784614bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3819323-4f77-4bb2-bbbb-6926d5bc62aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11427
x-amzn-requestid: 0dcc7ef4-d7fa-492e-8ddf-4342b4bc44e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bGHxJGJZoAMFWlw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6365866d-7c3de2ed509a640f37c52843;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 21:38:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PQo9pi8wRbpn53LKPnNqSV9sQphLzJr4bGgUOmn6qhIubpQDQ3DqSQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 21:57:23 GMT
age: 2270
etag: "61dc4e78907f114519ff3fdd3c806b36557ab744"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F621f6bc7-a17b-4b8f-95ef-65d27abd5513.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F621f6bc7-a17b-4b8f-95ef-65d27abd5513.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1fc9b492d6cc0a516998cec9fa5dc2a0
1082e5e96362a4960929c59ff1d4d995cb28f40d
3dc82302d8615c615526cc9a828844d291d775d05ff7174f8d6b82b7172b2908
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F621f6bc7-a17b-4b8f-95ef-65d27abd5513.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9006
x-amzn-requestid: 1a0ea36b-a610-485c-be62-b6950288afbc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bGIVGGG7oAMFXJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63658753-2fc408853092bf61646b7584;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 21:42:43 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FECfZRghEz7FNpuhfzP1Qb3u9K6FmlFnMuKCQwUJ7LbJoMGrpLXbKQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 22:09:46 GMT
age: 1527
etag: "1082e5e96362a4960929c59ff1d4d995cb28f40d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F026ddf6a-a4ad-4c8d-9da5-41a184265e24.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F026ddf6a-a4ad-4c8d-9da5-41a184265e24.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8fd1a79378f8a426e682c599e64e9bdf
d223df60a7340cf3745e981f19c1d3fd9c75d44a
14e3192a87f45d7ed4f809c528e1631bba69e69fc541637574ae3c3f70540408
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F026ddf6a-a4ad-4c8d-9da5-41a184265e24.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4749
x-amzn-requestid: d6545893-af81-4e76-bd31-cd80a0658a28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: asg4QH3HoAMFX7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635b4834-015a8ad175cc388576dcddc5;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 03:10:44 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: X-jIgJtpgLpo-iwJ6pOGyRMrx88ORCvNJx0IpISDxNlz2YgeG5x9jA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 21:52:35 GMT
age: 2558
etag: "d223df60a7340cf3745e981f19c1d3fd9c75d44a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb94b0737-3952-4bbe-b940-e1f79fb95cbe.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb94b0737-3952-4bbe-b940-e1f79fb95cbe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eaf06d0fb99703abfd57b962eb21ce96
ce73b0ad22139bec863ed990e3d3af4bdc3df288
a226250245611193be882c92f2d9920cb6ceeb12823b48c0b9c8fa2aba1c8c0d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb94b0737-3952-4bbe-b940-e1f79fb95cbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6909
x-amzn-requestid: 7c500c29-f514-491c-b2fe-a732a546925f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: awWpEEYHoAMFWdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635cd16d-6d9c4c5c41f4fcd16cabda59;Sampled=0
x-amzn-remapped-date: Sat, 29 Oct 2022 07:08:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lOCFTDiIxZDBzypATpujFz2hjWPabqjokrpq1-5An86y5lZLG5xHxQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 11:01:23 GMT
age: 41630
etag: "ce73b0ad22139bec863ed990e3d3af4bdc3df288"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3862
Expires: Fri, 04 Nov 2022 23:39:35 GMT
Date: Fri, 04 Nov 2022 22:35:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3862
Expires: Fri, 04 Nov 2022 23:39:35 GMT
Date: Fri, 04 Nov 2022 22:35:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3862
Expires: Fri, 04 Nov 2022 23:39:35 GMT
Date: Fri, 04 Nov 2022 22:35:13 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash a2f6c296003d839bdee766ef4082e376
013ae64b10cb1355ae9b6ba38dcfa79f71a9b505
703d6582ab3344d6e4a0d5b7e0c9983b8f7e8179d73dd6584c37bbccc8c84308
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 22:35:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d65c94a3bfe8605059e5e626ea0fa57e
b0fbc3577331b82efc8e320095b8d8705a6360d3
0878edd256a972f526d7053cdebceb28241db5662cc7660a10f1b4c3430c43c6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 22:35:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
byfinancialservices.com/wp-content/plugins/salient-social/css/style.css?ver=1.1
66.29.145.237200 OK 3.2 kB URL HTTP/1.1 byfinancialservices.com/wp-content/plugins/salient-social/css/style.css?ver=1.1
IP 66.29.145.237:0
File type ASCII text, with CRLF line terminators
Hash 2a016449302be4caac935a6f206f7066
0526631c26e0d20d72a6edb1df10e71d24528085
5e520d085447a72c025661e91af6ccad7861634fea54cd39ba6a47b7e816a2ea
GET /wp-content/plugins/salient-social/css/style.css?ver=1.1 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Thu, 23 Sep 2021 14:41:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3157
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-content/plugins/uk-cookie-consent/assets/css/style.css?ver=5.4.12
66.29.145.237200 OK 1.1 kB URL HTTP/1.1 byfinancialservices.com/wp-content/plugins/uk-cookie-consent/assets/css/style.css?ver=5.4.12
IP 66.29.145.237:0
File type ASCII text, with CRLF line terminators
Hash 70bfd015aacf0f89698e53e73322a4d2
27528d8beb369f74e25a584862566d94d438f0b3
d742ed582c9aa664f8841ec9cade44c45624ada242f3e13d47150fddb4b9e88a
GET /wp-content/plugins/uk-cookie-consent/assets/css/style.css?ver=5.4.12 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1085
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-content/themes/salient/style.css?ver=12.1.0
66.29.145.237200 OK 289 B URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/style.css?ver=12.1.0
IP 66.29.145.237:0
File type ASCII text, with CRLF line terminators
Hash c82f313ee1f52776f9d2dd92159d82b3
84560b25e229a748565f33e14d80a4dcd90b7895
dcf801d5e98e935cfbbc18f495c6dfe6990e88cb3df08dc664c93148817fef95
GET /wp-content/themes/salient/style.css?ver=12.1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 289
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-content/themes/salient/css/grid-system.css?ver=12.1.0
66.29.145.237200 OK 6.9 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/grid-system.css?ver=12.1.0
IP 66.29.145.237:0
File type ASCII text, with CRLF line terminators
Hash 17062a5c66e5645a99b8427d9e78aa58
ec30e2b54c071b0d7a2b949154e54f62fa45a56e
6d79c88050510fef6f6f367ebbe37dd6a092c001ace9a5c2debc11ec8e7ffc9b
GET /wp-content/themes/salient/css/grid-system.css?ver=12.1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6854
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-content/themes/salient/css/plugins/jquery.fancybox.css?ver=3.3.1
66.29.145.237200 OK 4.0 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/plugins/jquery.fancybox.css?ver=3.3.1
IP 66.29.145.237:0
Hash eba2dcef3aad47e6c781c04184a548da
3e867c36f8817445174a733e48b7d548f5d129d8
84ebba15d2507c572be7232317df8259e448b80f58e507b04faeb0f58d93eee9
GET /wp-content/themes/salient/css/plugins/jquery.fancybox.css?ver=3.3.1 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4018
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-content/themes/salient-child/style.css?ver=12.1.0
66.29.145.237200 OK 176 B URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient-child/style.css?ver=12.1.0
IP 66.29.145.237:0
File type ASCII text, with CRLF, CR, LF line terminators
Hash 93e7407b4efc65769ce37dda60a5261d
6cd5ccb1371c4790172f42b54c9c16db51783a68
a7ebc6c7d62123db671d0c10ab39b31dc2a7cf74328f4cbb3c8ce6cac2c4126d
GET /wp-content/themes/salient-child/style.css?ver=12.1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 176
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-content/themes/salient/css/responsive.css?ver=12.1.0
66.29.145.237200 OK 16 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/responsive.css?ver=12.1.0
IP 66.29.145.237:0
File type ASCII text, with CRLF line terminators
Hash b9cfa5df8a1f2e6966bfc82507343d33
65a9ae216d4e748f7d23324d38c32e5c7c1326d0
2fd1c819b5ac6ef5d567cbd48abdc8afbc8046db64717d9731159b40325658c1
GET /wp-content/themes/salient/css/responsive.css?ver=12.1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 15717
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
66.29.145.237200 OK 4.0 kB URL HTTP/1.1 byfinancialservices.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 66.29.145.237:0
File type ASCII text, with very long lines (9960)
Hash f56e56fcd4eaa34a30e9a3d14f535624
397592252a3b00c7b244533eb826a2ecf36ded06
1ab6d1ddbecea70518057c95795bc41a95861963711cc860853ef835590a189f
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:22:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4018
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/css/skin-material.css?ver=12.1.0
66.29.145.237200 OK 15 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/skin-material.css?ver=12.1.0
IP 66.29.145.237:0
File type ASCII text, with CRLF line terminators
Hash 90dbac8c908e58f3de701e573300cec5
2abe58320474f53ad5f0ad3492c3ac2f23876dab
fc08abe6ee5cb366062d70b07c660df5f55e3fa226c1e40eaf80e59cf9db1d0f
GET /wp-content/themes/salient/css/skin-material.css?ver=12.1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 15229
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-content/themes/salient/css/salient-dynamic-styles.css?ver=51214
66.29.145.237200 OK 17 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/salient-dynamic-styles.css?ver=51214
IP 66.29.145.237:0
File type assembler source, ASCII text, with CRLF line terminators
Hash 840cc3a2b682ef91f4e822fe178910a6
4b35fe9b1d868fcc7d731c1248c25dac7abf0a90
464e81ed64d0299ae1be01271b2d085e4dd2d740a1c6c0274c6bea60552b5af8
GET /wp-content/themes/salient/css/salient-dynamic-styles.css?ver=51214 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Fri, 24 Sep 2021 11:59:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 16612
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
66.29.145.237200 OK 34 kB URL HTTP/1.1 byfinancialservices.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 66.29.145.237:0
File type ASCII text, with very long lines (31997)
Hash afb006d2dc5590589029bb46c0be238a
bfec2f6488f09c763a2dcb794ff1e6e3c115d9a2
d3357449982048569f2d81bfaf5827fcc7c8f978b0b156b80e513acf58df38ce
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 10:57:43 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 33781
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/css/style.css?ver=12.1.0
66.29.145.237200 OK 86 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/style.css?ver=12.1.0
IP 66.29.145.237:0
File type ASCII text, with CRLF, CR line terminators
Hash 052aa66675208b8c54331a1835f560ee
f433627ee8cc54cf5b6c55209dc8ef8f5a12a858
0875569a54570fae8384309b8589c5402784974626888a95e406151a25ca3e73
GET /wp-content/themes/salient/css/style.css?ver=12.1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
byfinancialservices.com/wp-content/plugins/js_composer_salient/assets/css/js_composer.min.css?ver=6.2.0
66.29.145.237200 OK 14 kB URL HTTP/1.1 byfinancialservices.com/wp-content/plugins/js_composer_salient/assets/css/js_composer.min.css?ver=6.2.0
IP 66.29.145.237:0
File type CSV text\012- , ASCII text, with very long lines (353)
Hash aa9a35b3c0c97f1c630c57df75e6f797
20921bb300360e01726bab1fe8cced86891bd436
cac11d258e41fa849cbb79c3181822fe9b28a7f71631927940f9c62c179e0f2c
GET /wp-content/plugins/js_composer_salient/assets/css/js_composer.min.css?ver=6.2.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 13537
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 22:35:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
byfinancialservices.com/wp-content/plugins/salient-social/js/salient-social.js?ver=1.1
66.29.145.237200 OK 2.1 kB URL HTTP/1.1 byfinancialservices.com/wp-content/plugins/salient-social/js/salient-social.js?ver=1.1
IP 66.29.145.237:0
File type ASCII text, with CRLF, LF line terminators
Hash 572d0cc78f9c4775ebc17abd32fa7c00
182bf60e3925cad6a298a3223bcf3ce3f5d5e9c2
0c799349a5343e6694b2fbf07fb81616750755f79b8c14fce93e8762567f5461
GET /wp-content/plugins/salient-social/js/salient-social.js?ver=1.1 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:42:36 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2120
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/plugins/uk-cookie-consent/assets/js/uk-cookie-consent-js.js?ver=2.3.0
66.29.145.237200 OK 668 B URL HTTP/1.1 byfinancialservices.com/wp-content/plugins/uk-cookie-consent/assets/js/uk-cookie-consent-js.js?ver=2.3.0
IP 66.29.145.237:0
File type ASCII text, with CRLF, LF line terminators
Hash dc8cbdb1a63e8cc9556afd87a194cf69
1c641ffd607faee7e05bfb1e9e9c38c23ad59297
9ac1feb88f46cae4cc81f9911cb0e979ad1928951f6b5481c27cc7a63ce7a38b
GET /wp-content/plugins/uk-cookie-consent/assets/js/uk-cookie-consent-js.js?ver=2.3.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:41:30 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 668
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 22:35:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
byfinancialservices.com/wp-content/themes/salient/js/third-party/jquery.easing.js?ver=1.3
66.29.145.237200 OK 1.9 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/third-party/jquery.easing.js?ver=1.3
IP 66.29.145.237:0
File type Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 79e820d2e5f6e372773d4a20fe6a6e99
7d9eae28af60ef86fd8fc2c39a57e347f41e7376
d67e6e8f130215c9721ef2599b747ce86c43e3f7a6e97d569ff8a9bd03a66b0f
GET /wp-content/themes/salient/js/third-party/jquery.easing.js?ver=1.3 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:51:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1942
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 22:35:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 22:35:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byfinancialservices.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 05:42:51 GMT
expires: Fri, 03 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 147142
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
byfinancialservices.com/wp-content/themes/salient/js/third-party/jquery.mousewheel.js?ver=3.1.13
66.29.145.237200 OK 1.2 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/third-party/jquery.mousewheel.js?ver=3.1.13
IP 66.29.145.237:0
File type ASCII text, with very long lines (2609), with CRLF, LF line terminators
Hash bd732d9fbd51e43b70fbe07590d3882c
9e6bd8013d65387799e2ff3ead53de4a66bf4f49
948aae3d6ef01bfe28876579697c4edab0b49f5d861d8b401314d521de4e1c77
GET /wp-content/themes/salient/js/third-party/jquery.mousewheel.js?ver=3.1.13 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:09:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1249
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/js/priority.js?ver=12.1.0
66.29.145.237200 OK 2.0 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/priority.js?ver=12.1.0
IP 66.29.145.237:0
File type ASCII text, with very long lines (611), with CRLF, LF line terminators
Hash 5064faf3766bdafb654c6159999f76a5
57fed6db0835ba31456ce85ccb9d86149409eca8
912696e56d25ded83d35947e5a47158c2b5daf0d2c410a1cb2e1d31115ee8724
GET /wp-content/themes/salient/js/priority.js?ver=12.1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:52:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1960
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 22:35:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
byfinancialservices.com/wp-content/themes/salient/js/third-party/transit.js?ver=0.9.9
66.29.145.237200 OK 3.8 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/third-party/transit.js?ver=0.9.9
IP 66.29.145.237:0
File type ASCII text, with very long lines (7281), with CRLF, LF line terminators
Hash 4515ec54419c4018506b04342d2f51d3
398b742a6489e31946fbc79406baf954063fc0a8
182a2f51baaa1ea9dc827361b280f4a42d3fee1eac3f7c484dff41fdfb1fbccf
GET /wp-content/themes/salient/js/third-party/transit.js?ver=0.9.9 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:04:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3764
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/plugins/salient-portfolio/js/third-party/imagesLoaded.min.js?ver=4.1.4
66.29.145.237200 OK 1.8 kB URL HTTP/1.1 byfinancialservices.com/wp-content/plugins/salient-portfolio/js/third-party/imagesLoaded.min.js?ver=4.1.4
IP 66.29.145.237:0
File type ASCII text, with very long lines (5478), with CRLF, LF line terminators
Hash 59525a5d0adc98fcba412799704316eb
497e212631f9bb5eaf29ed90a9e3bdce32ef9d42
d34c5fbe495c90ceca3ffed9c796e577c77dbc7e4aaf62c8d21b86574cdfb707
GET /wp-content/plugins/salient-portfolio/js/third-party/imagesLoaded.min.js?ver=4.1.4 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:10:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1817
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/js/third-party/waypoints.js?ver=4.0.1
66.29.145.237200 OK 3.7 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/third-party/waypoints.js?ver=4.0.1
IP 66.29.145.237:0
File type Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash e0f0340f836fcaf7bd8560fad6814908
20e62f3882b31eda65f98217019159fa2b70a7e3
278c01b215a01a7a7451efbba913f6a6e09512d370f21c26d682dd078899f4ad
GET /wp-content/themes/salient/js/third-party/waypoints.js?ver=4.0.1 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:16:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3725
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/js/third-party/hoverintent.js?ver=1.9
66.29.145.237200 OK 948 B URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/third-party/hoverintent.js?ver=1.9
IP 66.29.145.237:0
File type ASCII text, with very long lines (1933), with CRLF, LF line terminators
Hash de6ca13baca1da18678662e201636c6b
acc64005e33a24a25b6c63f7032d5dcd69dc5a6d
15ad9b7978e78ea0680fb057a5ef1938c92f9ea4587a2cb99bd47c49ce5f10d3
GET /wp-content/themes/salient/js/third-party/hoverintent.js?ver=1.9 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 10:58:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 948
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/js/third-party/jquery.fancybox.min.js?ver=3.3.1
66.29.145.237200 OK 22 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/third-party/jquery.fancybox.min.js?ver=3.3.1
IP 66.29.145.237:0
File type HTML document, ASCII text, with very long lines (31972)
Hash e2a4b4406e7f8f3d729098e1fd42ad3d
6b1fc465689ee2b6a935bc231c3c3fe44698d159
d9722e115e13946d6b7f271e2afc1ae9fb5343de13d93b287a11fd85009d3408
GET /wp-content/themes/salient/js/third-party/jquery.fancybox.min.js?ver=3.3.1 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:13:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 22017
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/js/third-party/superfish.js?ver=1.4.8
66.29.145.237200 OK 2.9 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/third-party/superfish.js?ver=1.4.8
IP 66.29.145.237:0
Hash 09caca4d530cc0db4bb7ace04cc5b322
f0ff751513b52bc424c3afff23e0945fec45895e
de2f85295e6ef976df309868e65d55952c41b07e97d75cb473eef6a15103dcdb
GET /wp-content/themes/salient/js/third-party/superfish.js?ver=1.4.8 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 10:56:30 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2945
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/plugins/salient-core/js/third-party/touchswipe.min.js?ver=1.0
66.29.145.237200 OK 3.3 kB URL HTTP/1.1 byfinancialservices.com/wp-content/plugins/salient-core/js/third-party/touchswipe.min.js?ver=1.0
IP 66.29.145.237:0
File type ASCII text, with very long lines (9358), with CRLF, LF line terminators
Hash 5c9e0353e84fa6718401795147bd0a7d
c95eedc083a229149660da49a867514a397095f5
93ddedb2d7a56d152f090eee96ae26a603241837146f8fd20cf6bba389ded34d
GET /wp-content/plugins/salient-core/js/third-party/touchswipe.min.js?ver=1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:02:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3296
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-includes/js/wp-embed.min.js?ver=5.4.12
66.29.145.237200 OK 768 B URL HTTP/1.1 byfinancialservices.com/wp-includes/js/wp-embed.min.js?ver=5.4.12
IP 66.29.145.237:0
File type ASCII text, with very long lines (1392)
Hash 352a066efd0fdb0db61c9249c15552e6
6072996b6f4caa8b7e575ca7a1e3ddfc0003ecf6
fa138ceb67505ce03d99ea9263d0dfd6c9cefd56cf792bdcdec05fff44284515
GET /wp-includes/js/wp-embed.min.js?ver=5.4.12 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 10:58:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 768
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/plugins/js_composer_salient/assets/js/dist/js_composer_front.min.js?ver=6.2.0
66.29.145.237200 OK 7.6 kB URL HTTP/1.1 byfinancialservices.com/wp-content/plugins/js_composer_salient/assets/js/dist/js_composer_front.min.js?ver=6.2.0
IP 66.29.145.237:0
File type ASCII text, with very long lines (3516)
Hash fcd9b2c7013f03b729e71878fafb7bf0
4d5d6915a5af941d03da09a76c60e9d87e011cf3
400dfc97df1302b20b8c40e0d706f3355864a7c43f0e32eeb1b8449f1c5d73ff
GET /wp-content/plugins/js_composer_salient/assets/js/dist/js_composer_front.min.js?ver=6.2.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:48:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7560
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-includes/js/wp-emoji-release.min.js?ver=5.4.12
66.29.145.237200 OK 4.7 kB URL HTTP/1.1 byfinancialservices.com/wp-includes/js/wp-emoji-release.min.js?ver=5.4.12
IP 66.29.145.237:0
File type ASCII text, with very long lines (10927)
Hash 58e46e50c6ed0572a882d65535849b67
7584b10f10eaf1e5de7e91226fcf8765474c01dc
bfdca4f4364d75d2b2005cb87fac913a679f2b7646088decd216688551746e87
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.4.12 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:54:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4650
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/css/fonts/icomoon.woff
66.29.145.237200 OK 21 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/fonts/icomoon.woff
IP 66.29.145.237:0
File type Web Open Font Format, TrueType, length 21272, version 0.0\012- data
Hash 05c0d52abd6ff5f0d0066edd64d53e08
63979dfcd1422311f4ac2f2434b0140e514236bb
16f94be53f5a0f1b422b9fb0f88ecc3b0947c24c8b77ee6b6f62675c82499cc7
GET /wp-content/themes/salient/css/fonts/icomoon.woff HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://byfinancialservices.com/wp-content/themes/salient/css/style.css?ver=12.1.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:14 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Content-Length: 21272
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/woff
byfinancialservices.com/wp-content/themes/salient/css/fonts/fontawesome-webfont.woff?v=4.2
66.29.145.237200 OK 98 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/fonts/fontawesome-webfont.woff?v=4.2
IP 66.29.145.237:0
File type Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Hash fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
GET /wp-content/themes/salient/css/fonts/fontawesome-webfont.woff?v=4.2 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://byfinancialservices.com/wp-content/themes/salient/css/font-awesome.min.css?ver=4.6.4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:14 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Content-Length: 98024
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff
byfinancialservices.com/wp-content/themes/salient/js/init.js?ver=12.1.0
66.29.145.237200 OK 101 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/init.js?ver=12.1.0
IP 66.29.145.237:0
File type Unicode text, UTF-8 text, with very long lines (348), with CRLF line terminators
Size 101 kB (101269 bytes)
Hash b981e74b3c19413adf6a41a3f7872fa9
a1774de0d533322b37e98e98175693281c3baedf
3db91b9e39581c894539a8345afa1ac965ecdc5bf540d01b40fa743c7e53019f
GET /wp-content/themes/salient/js/init.js?ver=12.1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:13 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:49:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 04 Nov 2022 20:41:09 GMT
expires: Fri, 04 Nov 2022 22:41:09 GMT
cache-control: public, max-age=7200
age: 6845
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=631908351&t=pageview&_s=1&dl=https%3A%2F%2Fbyfinancialservices.com%2Fes%2Fstirpdsaspeiice&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20BY%20Financial%20Services&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=404116307&gjid=1922438008&cid=122760141.1667601313&tid=UA-172403094-1&_gid=1358768768.1667601313&_r=1>m=2oub20&z=1207108659
142.250.74.174200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=631908351&t=pageview&_s=1&dl=https%3A%2F%2Fbyfinancialservices.com%2Fes%2Fstirpdsaspeiice&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20BY%20Financial%20Services&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=404116307&gjid=1922438008&cid=122760141.1667601313&tid=UA-172403094-1&_gid=1358768768.1667601313&_r=1>m=2oub20&z=1207108659
IP 142.250.74.174:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j98&a=631908351&t=pageview&_s=1&dl=https%3A%2F%2Fbyfinancialservices.com%2Fes%2Fstirpdsaspeiice&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20BY%20Financial%20Services&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=404116307&gjid=1922438008&cid=122760141.1667601313&tid=UA-172403094-1&_gid=1358768768.1667601313&_r=1>m=2oub20&z=1207108659 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://byfinancialservices.com
Connection: keep-alive
Referer: https://byfinancialservices.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://byfinancialservices.com
date: Fri, 04 Nov 2022 22:35:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
byfinancialservices.com/wp-content/uploads/2020/07/logo-1.svg
66.29.145.237200 OK 272 kB URL HTTP/1.1 byfinancialservices.com/wp-content/uploads/2020/07/logo-1.svg
IP 66.29.145.237:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size 272 kB (272218 bytes)
Hash 172af662dff9e5134c2e0d54b4e9094e
5d5050e458ebe0f2de8c82b81eddcd566472841b
5d787f91f3bb83924aa2ad8737af528ff7ce98a14c427fa704e53425b11bc153
GET /wp-content/uploads/2020/07/logo-1.svg HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:14 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:49:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/svg+xml
byfinancialservices.com/wp-content/uploads/2021/09/cropped-android-chrome-192x192-2-192x192.png
66.29.145.237200 OK 14 kB URL HTTP/1.1 byfinancialservices.com/wp-content/uploads/2021/09/cropped-android-chrome-192x192-2-192x192.png
IP 66.29.145.237:0
File type PNG image data, 192 x 192, 8-bit/color RGB, non-interlaced\012- data
Hash 0df4bd5c97c6bea837d385ed9ac11c5a
f0177cea81ccf2b127ef05d8b07d342cc5374ef8
f049774e1b248f772e13d8f4b1fe797512ffc9ac96cc826704fdaffbbbcbe1b6
GET /wp-content/uploads/2021/09/cropped-android-chrome-192x192-2-192x192.png HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:14 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:43:59 GMT
Accept-Ranges: bytes
Content-Length: 14364
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
byfinancialservices.com/wp-content/uploads/2021/09/cropped-android-chrome-192x192-2-32x32.png
66.29.145.237200 OK 1.2 kB URL HTTP/1.1 byfinancialservices.com/wp-content/uploads/2021/09/cropped-android-chrome-192x192-2-32x32.png
IP 66.29.145.237:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash e247a443e0e8992487860ab9733b7d55
49dda18b71f072f3de96434cb08a273406a006d4
8a375f700dca56b3ad2a8fdb160aa33164e40f2104cabc2b067e7749d23e9b55
GET /wp-content/uploads/2021/09/cropped-android-chrome-192x192-2-32x32.png HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:14 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:43:59 GMT
Accept-Ranges: bytes
Content-Length: 1168
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
byfinancialservices.com/wp-content/uploads//2020/07/logo-1.svg
66.29.145.237200 OK 272 kB URL HTTP/1.1 byfinancialservices.com/wp-content/uploads//2020/07/logo-1.svg
IP 66.29.145.237:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size 272 kB (272218 bytes)
Hash 172af662dff9e5134c2e0d54b4e9094e
5d5050e458ebe0f2de8c82b81eddcd566472841b
5d787f91f3bb83924aa2ad8737af528ff7ce98a14c427fa704e53425b11bc153
GET /wp-content/uploads//2020/07/logo-1.svg HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/stirpdsaspeiice
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 22:35:14 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:49:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/svg+xml
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700&subset=latin%2Clatin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700&subset=latin%2Clatin-ext
IP 142.250.74.10:0
GET /css?family=Open+Sans%3A300%2C400%2C600%2C700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 04 Nov 2022 22:35:12 GMT
date: Fri, 04 Nov 2022 22:35:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2