Report - www.bkw55trk.com/cmp/31GJ4Q/SMZ9S/?sub1=71c9c4fa26404a1ea28db1dca51f7240

Report Overview

Submitted URL
www.bkw55trk.com/cmp/31GJ4Q/SMZ9S/?sub1=71c9c4fa26404a1ea28db1dca51f7240
IP
34.120.82.94
ASN
#15169 GOOGLE
Submitted
2023-03-21 22:22:44
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-26T05:35:01Z	379 B	82 kB	142.250.74.168
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-26T05:10:29Z	606 B	127 B	52.88.157.127
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-26T05:18:47Z	682 B	1.6 kB	192.229.221.95
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-25T18:49:55Z	1.2 kB	1.4 kB	216.58.207.227
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-26T05:09:08Z	3.2 kB	56 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-25T18:12:03Z	2.7 kB	7.1 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-25T18:14:26Z	782 B	2.4 kB	35.241.9.150
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-26T05:10:41Z	5.1 kB	10 kB	216.58.211.3
maps.googleapis.com	33876	2019-10-17T17:56:16Z	2023-03-26T05:17:20Z	425 B	57 kB	142.250.74.138
script.hotjar.com	887	2020-11-05T17:23:46Z	2023-03-26T05:09:02Z	382 B	70 kB	54.230.111.44
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-26T06:32:39Z	602 B	592 B	209.85.233.155
ocsp.e2m02.amazontrust.com	unknown	2022-12-07T11:11:00Z	2023-03-26T05:16:56Z	350 B	755 B	54.230.80.227
in.hotjar.com	1746	2018-10-22T19:15:59Z	2023-03-26T05:16:56Z	480 B	287 B	34.248.10.30
www.bkw55trk.com	unknown	2022-03-15T00:06:28Z	2023-03-21T23:21:55Z	403 B	813 B	34.120.82.94
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-26T05:11:12Z	413 B	5.9 kB	34.160.144.191
dot.theonenet.work	321670	2020-11-09T15:52:35Z	2023-03-16T12:42:23Z	585 B	296 B	40.69.169.157
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-26T05:09:01Z	787 B	31 kB	157.240.205.11
static.hotjar.com	641	2014-11-01T06:14:27Z	2023-03-26T05:09:01Z	375 B	4.3 kB	54.230.111.8
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-26T05:11:59Z	333 B	391 B	34.117.237.239
homeotter.com	unknown	2016-01-15T02:46:04Z	2023-03-21T23:21:55Z	9.3 kB	818 kB	3.234.74.4
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-26T06:13:32Z	771 B	2.1 kB	142.250.74.162
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-26T05:15:01Z	771 B	444 B	216.239.32.36
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	733 B	349 B	157.240.205.35
ocsp.r2m02.amazontrust.com	unknown	2022-10-12T16:01:39Z	2023-03-26T05:09:33Z	350 B	889 B	54.230.80.227
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-26T06:13:06Z	370 B	21 kB	142.250.74.174
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-26T05:56:25Z	757 B	24 kB	216.58.211.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-21 22:22:38	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .work TLD
2023-03-21 22:22:38	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .work TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (17)

	URL	Size	First Seen	Last Seen
	www.gstatic.com/wcm/loader.js	3.0 kB	2023-03-07	2024-01-11
Pretty URL www.gstatic.com/wcm/loader.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:11 Last Seen2024-01-11 16:46:08 Times Seen3925 Hash e66aa914d8fee2fef76972626c4e3c95 f16f051bb480753b62e00f92cccb48d0d4864468 9f959aaad80347edc26ed8279c6a68c098efc76876ac2e2f8ccc54b118f197f4 Loading...

	static.hotjar.com/c/hotjar-3103914.js?sv=7	8.9 kB	2023-03-26	2023-03-26
Pretty URL static.hotjar.com/c/hotjar-3103914.js?sv=7 IP 54.230.111.8 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:28:17 Last Seen2023-03-26 13:28:17 Times Seen1 Hash 7bb108f4860d170707788e3906739344 14992445d8283f9ed4498ff086c2a169c895e572 c927aac2c5a0f1dc1516ab5872eb6548423009f88ce8a73da1829569ecad89bf Loading...

	homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514	413 B	2023-03-26	2023-11-08
Pretty URL homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 IP 3.234.74.4 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:28:17 Last Seen2023-11-08 14:23:16 Times Seen4 Hash 1672eb164aeabf49d8a01e6673e59b84 5fd2f27197d9ef3800201c08a8ec1a51167cc10f 2f2ebeee9a4681617633af2d1ceba185cf8e4c69b3eaac72fb3a4d468e1b11c7 Loading...

	homeotter.com/solarV1/static/static/js/main.5b98e372.js	519 kB	2023-03-26	2023-03-26
Pretty URL homeotter.com/solarV1/static/static/js/main.5b98e372.js IP 3.234.74.4 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:28:17 Last Seen2023-03-26 13:28:17 Times Seen1 Hash 4b1549c68b7712415f483934c148c4ad b0ddfce09991795a27cc1848d125e49999a47fcb 0abb37fcf58f2d30df3edc930cb90c8a5ea663cf95e30f21ccbe6d0389edddb2 Loading...

	connect.facebook.net/en_US/fbevents.js	110 kB	2023-03-26	2023-03-29
Pretty URL connect.facebook.net/en_US/fbevents.js IP 157.240.205.11 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 08:49:43 Last Seen2023-03-29 21:45:24 Times Seen2372 Hash b3d7d1fd0029796048820b8f515d1d4f 242f2ec5485fb5048e53a87fd37b2e6eafb664b6 0a19fce040b8127f3e2e3ed609f7800153be329d6420b53295fb79a4f40012ec Loading...

	maps.googleapis.com/maps-api-v3/api/js/52/5/common.js	276 kB	2023-03-26	2023-04-05
Pretty URL maps.googleapis.com/maps-api-v3/api/js/52/5/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 06:56:33 Last Seen2023-04-05 01:44:53 Times Seen391 Hash c681e80d175f2eb7926693528706aa3a 321fea8d77fa03b5e8e3d37cc22a5901d32b6c2e 7ebe3889bc1e74fdf234405bcb94c6c1ea81d57bb38f4a0c1e3e40b19e81f374 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-PBM6RKZ	239 kB	2023-03-26	2023-03-26
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-PBM6RKZ IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:28:17 Last Seen2023-03-26 13:28:17 Times Seen1 Hash f2cce4ce3ab79f3b5c31026e84d1516d 5824121d18484f5627bf884bfd481cd34cae3c2c 009b5b1f3e038ca69d6afe7524d1919d7ecf4943adccaeb6b6b96a993c4d9693 Loading...

	homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514	422 B	2023-03-26	2023-11-08
Pretty URL homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 IP 3.234.74.4 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:28:17 Last Seen2023-11-08 14:23:16 Times Seen4 Hash be0dd25d678627c0356cc6daf9334d69 a2b1df45bb5c1de118d0ac7cd631a0292eecd6ea a5f1e2648a962514d40a12cfda1ba12c9ba696dfe93b5b799cce23fa201a49ce Loading...

	maps.googleapis.com/maps/api/js?key=AIzaSyAJdDZJ1BmGL2tHbydjdMWMLTC9zBI1FX8&libraries=places	175 kB	2023-03-26	2023-03-26
Pretty URL maps.googleapis.com/maps/api/js?key=AIzaSyAJdDZJ1BmGL2tHbydjdMWMLTC9zBI1FX8&libraries=places IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:28:17 Last Seen2023-03-26 13:28:17 Times Seen1 Hash 273ac38e2b01c55500a1a73b837732da afa0bf6dca322dbfdb59602f21731537f3f1a570 e996650ac939f551b3ddc42ec7175d9124e540b56a910b83672513e43f6853a6 Loading...

	connect.facebook.net/signals/config/255175222450573?v=2.9.99&r=stable	388 kB	2023-03-26	2023-03-26
Pretty URL connect.facebook.net/signals/config/255175222450573?v=2.9.99&r=stable IP 157.240.205.11 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:28:17 Last Seen2023-03-26 13:28:17 Times Seen1 Hash ee1225bcf98582b4b3e7da4f8ebc08ef bc0f3878462835c19e98911c62b20f78a67fd523 44aca709086616d5183421b1f635c331ff7e2eaf9aaec4564fc0b99b2c5ac382 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-07-13
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-07-13 05:56:05 Times Seen35105 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.gstatic.com/call-tracking/call-tracking_7.js	56 kB	2023-03-07	2024-07-02
Pretty URL www.gstatic.com/call-tracking/call-tracking_7.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:11 Last Seen2024-07-02 17:12:18 Times Seen4631 Hash 8a8bf04aa59034f517341e59c31593cc 88d8249f054a46229b73bfcaed9ab347408de2bb ff2fde453aa6220144126828a284d4cc227479f1fe83beef3a6b6a4504c7e4df Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/10955186707/?random=1679437358026&cv=11&fst=1679437358026&bg=ffffff&guid=ON&async=1&gtm=45He33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514&hn=www.googleadservices.com&frm=0&tiba=Home%20Otter&auid=1347433269.1679437358&rfmt=3&fmt=4	2.7 kB	2023-03-26	2023-03-26
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/10955186707/?random=1679437358026&cv=11&fst=1679437358026&bg=ffffff&guid=ON&async=1&gtm=45He33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514&hn=www.googleadservices.com&frm=0&tiba=Home%20Otter&auid=1347433269.1679437358&rfmt=3&fmt=4 IP 142.250.74.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:28:17 Last Seen2023-03-26 13:28:17 Times Seen1 Hash 4559e2578f0fdbde59a9efddcd9cfc20 687b62da41ec1687b3284ae546b77ad56db56218 3d935fd8a998de55edd13e8afe9b15406cc38c3b14a08702666856544eb6288f Loading...

	unknown	0 B	2023-03-07	2024-07-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-07-27 03:45:07 Times Seen41184207 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	maps.googleapis.com/maps-api-v3/api/js/52/5/util.js	162 kB	2023-03-26	2023-04-05
Pretty URL maps.googleapis.com/maps-api-v3/api/js/52/5/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 06:56:33 Last Seen2023-04-05 01:44:53 Times Seen422 Hash 2fffa9316e763ccdf15547176b779acd 30f30fe35b11bdbda1f66389a717b71f0b9ba226 eda8d5d196d7e6dd715e320fb734bca74a21eedc7c53f4a6b2ed5fdb18b32202 Loading...

	homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514	295 B	2023-03-26	2023-03-26
Pretty URL homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 IP 3.234.74.4 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:28:17 Last Seen2023-03-26 13:28:17 Times Seen1 Hash 63b6181a9bbabfffb0946c4821d27cfd c953f36047e6e511f19667de94132218e161c4b2 57bc0268957cc17cdea13d46910ee8708086f51947953069e72a16b441a12986 Loading...

	www.googletagmanager.com/gtag/js?id=G-PZB0LD1YTH&l=dataLayer&cx=c	226 kB	2023-03-26	2023-03-26
Pretty URL www.googletagmanager.com/gtag/js?id=G-PZB0LD1YTH&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:28:17 Last Seen2023-03-26 13:28:17 Times Seen1 Hash 9a873770ada5a9272a75e650736f3614 7d5d0bac628429f86cb2406e4488a148c495cd6a e25d19b3198fc783ec1ecc5a8ee4138d8a15325f349eacfe85029af96ff7d9cd Loading...

HTTP Transactions (70)

	URL	IP	Response	Size
	www.bkw55trk.com/cmp/31GJ4Q/SMZ9S/?sub1=71c9c4fa26404a1ea28db1dca51f7240	34.120.82.94	302 Found	179 B
URL HTTP/1.1 www.bkw55trk.com/cmp/31GJ4Q/SMZ9S/?sub1=71c9c4fa26404a1ea28db1dca51f7240 IP 34.120.82.94:0 ASN #15169 GOOGLE File type HTML document, ASCII text Size 179 B (179 bytes) Hash df8c5b3eeaa73f29f460b2f9a8ffea01 4d9e20c1846fe7aa85b656f1cbfbeaebadd18c2a 2c76e02f5b061585e96b8647ee7a7f515f49424408ebb2ce1bbb1cec9cef4a98 HTTP Headers `GET /cmp/31GJ4Q/SMZ9S/?sub1=71c9c4fa26404a1ea28db1dca51f7240 HTTP/1.1 Host: www.bkw55trk.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 302 Found server: nginx date: Tue, 21 Mar 2023 22:22:32 GMT content-type: text/html; charset=utf-8 content-length: 179 accept-ch: Sec-Ch-Ua-Platform-Version location: https://homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 set-cookie: uniqueClick_SMZ9S=b36d1b7f-bf11-4b19-8738-2e6184cb4385:1679437352; Path=/; Expires=Wed, 22 Mar 2023 22:22:32 GMT transaction_id=6b2c8e1f6b4e4472911ab18904cf2778; Path=/; Expires=Mon, 19 Jun 2023 22:22:32 GMT vary: Origin x-eflow-request-id: c1824924-f866-41ed-b8c6-1c1dc8f5586a Via: 1.1 google

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 28774b36cf8bb6b054329393a33f6239 728313ddff6d5ceb6db3eb8445f039779616a140 08378fe6a897ab5a9c8d3bc2748c9670659d0d0d164317fdfac88d23fee78fa0 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "08378FE6A897AB5A9C8D3BC2748C9670659D0D0D164317FDFAC88D23FEE78FA0" Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3226 Expires: Tue, 21 Mar 2023 23:16:19 GMT Date: Tue, 21 Mar 2023 22:22:33 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash ec332b81a27117ce9c16b67a5a8e4fac b6d2afa2c859d000ad830d3d8d73f57bac6ffce2 1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F" Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11621 Expires: Wed, 22 Mar 2023 01:36:14 GMT Date: Tue, 21 Mar 2023 22:22:33 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 4e6141892ec4705c6a0134f3157b969d 4169fdea42b0fa9cb565e14b8e8fdb293575c78e 905537ef3e3a4a9030391b44bd6ac6bb5d7c9ec752b1821d683dfbf483096163 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "905537EF3E3A4A9030391B44BD6AC6BB5D7C9EC752B1821D683DFBF483096163" Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13008 Expires: Wed, 22 Mar 2023 01:59:21 GMT Date: Tue, 21 Mar 2023 22:22:33 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 84db75194692d4afe13196bda6f22da8 4c1f49bc973a4917f146d93c8d598344edc021f6 a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Tue, 21 Mar 2023 22:14:58 GMT content-type: application/json age: 455 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: Cn46WbH2NDB7Yp/tGP3qvmJU/FdK7rEKDcR6vKdQqtVGJls6XMAA+dvx7aE1X6sCm5BGTxjfSQQ= x-amz-request-id: N0GXV9QHE3TH8SMN x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 21 Mar 2023 21:59:17 GMT age: 1396 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Tue, 21 Mar 2023 22:22:33 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.r2m02.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m02.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 5c53fd4f5d52240976e7c486c9ef8a6c c80122dcd4b6eda9998effeb9dde8c3f80c18dc2 380e511cb5cba32dd24bd3b9dfc0b2fb24e3bc94f6c89d48bab784df1b51f6c0 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m02.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Cache-Control: 'max-age=158059' Date: Tue, 21 Mar 2023 22:22:33 GMT Etag: "64180e77-1d7" Server: ECAcc (dcb/7F10) X-Cache: Miss from cloudfront Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: mxHM8xlUaac2uHrSunCUigiO4KtI01vFoLlnivGtCuaykveC0XRj1A==`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Tue, 21 Mar 2023 22:14:33 GMT age: 480 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514	3.234.74.4	200 OK	1.4 kB
URL HTTP/2 homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 IP 3.234.74.4:0 ASN #14618 AMAZON-AES File type data Size 1.4 kB (1431 bytes) Hash 6f3cee5cd2bd5e44b8e565d6eedaf1fe e62e906a50d403266b21c1dc3d25ed792a529091 f2ef3a5d8528cfa8fbc42362dd11bee51ae965f86935dd6b6377736cc1709301 HTTP Headers GET /solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 HTTP/1.1 Host: homeotter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 `HTTP/2 200 OK date: Tue, 21 Mar 2023 22:22:33 GMT content-type: text/html; charset=utf-8 server: nginx/1.19.2 last-modified: Wed, 18 Jan 2023 09:53:38 GMT content-encoding: gzip X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 3e968c0f4319273e79821cbabf3bdbdc 99f1127052594878d49370fdcc61b1e4fbb69e61 82ea5f81bec224fa88a6b83c50481d819586b5de2fbb435d522d24ce1250b6cb HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtm.js?id=GTM-PBM6RKZ	142.250.74.168	200 OK	81 kB
URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PBM6RKZ IP 142.250.74.168:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (19386) Size 81 kB (81123 bytes) Hash 4ee6c84963c8fbd13a8b56d50adee8ef 1a825d14b81eaf8b23cfa9d24654fe17472049c1 b335e70bc3fe930db6a456cc35a9fdcf91e40a74c0322f2daac9df4c306310e4 HTTP Headers `GET /gtm.js?id=GTM-PBM6RKZ HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Tue, 21 Mar 2023 22:22:33 GMT expires: Tue, 21 Mar 2023 22:22:33 GMT cache-control: private, max-age=900 last-modified: Tue, 21 Mar 2023 21:26:44 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 81123 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 3e968c0f4319273e79821cbabf3bdbdc 99f1127052594878d49370fdcc61b1e4fbb69e61 82ea5f81bec224fa88a6b83c50481d819586b5de2fbb435d522d24ce1250b6cb HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	push.services.mozilla.com/	52.88.157.127	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.88.157.127:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: vD7bUZ7ozQGgvbmTknFCug== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: 2mxTkeyZvtsiBci0+dQrDlbr+Bw=`

	homeotter.com/solarV1/static/static/css/main.7d3badae.css	3.234.74.4	200 OK	35 kB
URL HTTP/2 homeotter.com/solarV1/static/static/css/main.7d3badae.css IP 3.234.74.4:0 ASN #14618 AMAZON-AES File type Unicode text, UTF-8 text, with very long lines (35125) Size 35 kB (35172 bytes) Hash 481954b2252f02a89644a461cb4d1af0 900bc080975a997c733619069f4d5796f29bad34 2fe4ddb3ac6a8e5d6feb0cc2f63986fa940e875694b22baa96560f8dc016657c HTTP Headers GET /solarV1/static/static/css/main.7d3badae.css HTTP/1.1 Host: homeotter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Tue, 21 Mar 2023 22:22:33 GMT content-type: text/css; charset=utf-8 content-length: 35172 server: nginx/1.19.2 last-modified: Wed, 18 Jan 2023 09:53:38 GMT etag: 0c786a9e27ab69d654449f3c62863603 X-Firefox-Spdy: h2`

	homeotter.com/solarV1/static/static/js/main.5b98e372.js	3.234.74.4	200 OK	519 kB
URL HTTP/2 homeotter.com/solarV1/static/static/js/main.5b98e372.js IP 3.234.74.4:0 ASN #14618 AMAZON-AES File type ASCII text, with very long lines (65465) Size 519 kB (519299 bytes) Hash 4b1549c68b7712415f483934c148c4ad b0ddfce09991795a27cc1848d125e49999a47fcb 0abb37fcf58f2d30df3edc930cb90c8a5ea663cf95e30f21ccbe6d0389edddb2 HTTP Headers GET /solarV1/static/static/js/main.5b98e372.js HTTP/1.1 Host: homeotter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Tue, 21 Mar 2023 22:22:33 GMT content-type: application/javascript content-length: 519299 server: nginx/1.19.2 last-modified: Wed, 18 Jan 2023 09:53:38 GMT etag: ec581f5baa657e676b128f55bc42d380 X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 28499545d9e1ee225bd565d70964b189 37215cc3a92aca2e612659b82e7a748bf3962cf9 91e43077e5117ff7e97903efe9a6924600c4c3edafab2271a5e92b0594c4873a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "91E43077E5117FF7E97903EFE9A6924600C4C3EDAFAB2271A5E92B0594C4873A" Last-Modified: Mon, 20 Mar 2023 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21302 Expires: Wed, 22 Mar 2023 04:17:36 GMT Date: Tue, 21 Mar 2023 22:22:34 GMT Connection: keep-alive`

	dot.theonenet.work/dot/12513?cbust=4867712719951948&url_path=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514	40.69.169.157	200 OK	43 B
URL HTTP/2 dot.theonenet.work/dot/12513?cbust=4867712719951948&url_path=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514 IP 40.69.169.157:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash db04c7b378cb2db912c3ba8a5a774ee3 dee34bd86c3484d31002182aa2b7caa4699126b8 98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a HTTP Headers GET /dot/12513?cbust=4867712719951948&url_path=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514 HTTP/1.1 Host: dot.theonenet.work User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK cache-control: no-cache pragma: no-cache content-length: 43 content-type: image/gif expires: -1 server: Microsoft-IIS/10.0 x-aspnet-version: 4.0.30319 x-powered-by: ASP.NET date: Tue, 21 Mar 2023 22:22:34 GMT X-Firefox-Spdy: h2`

	homeotter.com/solarV1/static/static/media/ecology-and-environment.60162958eaae389a1986.png	3.234.74.4	200 OK	10 kB
URL HTTP/2 homeotter.com/solarV1/static/static/media/ecology-and-environment.60162958eaae389a1986.png IP 3.234.74.4:0 ASN #14618 AMAZON-AES File type RIFF (little-endian) data, Web/P image\012- data Size 10 kB (10048 bytes) Hash d68650f1011d9e60c7adebb0852f03d9 53ffcd6c4540cdbc5c93203942fa3714a8413277 217b9e513037d894eb6be9cbfb97c9b15601dfb4748a4b7ee683d2e9e7a94de8 HTTP Headers GET /solarV1/static/static/media/ecology-and-environment.60162958eaae389a1986.png HTTP/1.1 Host: homeotter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 Cookie: _gcl_au=1.1.1347433269.1679437358; _ga_PZB0LD1YTH=GS1.1.1679437358.1.0.1679437358.0.0.0; _ga=GA1.1.1578255845.1679437358 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Tue, 21 Mar 2023 22:22:34 GMT content-type: image/png content-length: 10048 server: nginx/1.19.2 last-modified: Wed, 18 Jan 2023 09:53:38 GMT etag: 442f7d76d7e9bffbdb73bad5cdd10ec6 X-Firefox-Spdy: h2`

	homeotter.com/solarV1/static/static/media/solar-cell.3805d30c1e07ea386207.png	3.234.74.4	200 OK	14 kB
URL HTTP/2 homeotter.com/solarV1/static/static/media/solar-cell.3805d30c1e07ea386207.png IP 3.234.74.4:0 ASN #14618 AMAZON-AES File type RIFF (little-endian) data, Web/P image\012- data Size 14 kB (13830 bytes) Hash 1ba913128919d004172bfab87713da85 2cdf1b6b06a55d909ea7f4497fc1992e6e76044b 193d1e8673f9826de3bb1f7b6319f3407f833b36658fcd39a7b73360bc62210a HTTP Headers GET /solarV1/static/static/media/solar-cell.3805d30c1e07ea386207.png HTTP/1.1 Host: homeotter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 Cookie: _gcl_au=1.1.1347433269.1679437358; _ga_PZB0LD1YTH=GS1.1.1679437358.1.0.1679437358.0.0.0; _ga=GA1.1.1578255845.1679437358 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Tue, 21 Mar 2023 22:22:34 GMT content-type: image/png content-length: 13830 server: nginx/1.19.2 last-modified: Wed, 18 Jan 2023 09:53:38 GMT etag: 96a912fa8a219e40587dcfc8337ec504 X-Firefox-Spdy: h2`

	homeotter.com/solarV1/static/static/media/sustainable.8ad6c19d01ac60c182c7.png	3.234.74.4	200 OK	15 kB
URL HTTP/2 homeotter.com/solarV1/static/static/media/sustainable.8ad6c19d01ac60c182c7.png IP 3.234.74.4:0 ASN #14618 AMAZON-AES File type RIFF (little-endian) data, Web/P image\012- data Size 15 kB (14832 bytes) Hash 736284a9b42bed6ccf1a703e8fec7f4b cca44aff1e60fef813b40c6f47084d6f6acfaa00 815eee3ad591db211616b633d26bede08f3d5b6a0da919c72610cad022358651 HTTP Headers GET /solarV1/static/static/media/sustainable.8ad6c19d01ac60c182c7.png HTTP/1.1 Host: homeotter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 Cookie: _gcl_au=1.1.1347433269.1679437358; _ga_PZB0LD1YTH=GS1.1.1679437358.1.0.1679437358.0.0.0; _ga=GA1.1.1578255845.1679437358 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Tue, 21 Mar 2023 22:22:34 GMT content-type: image/png content-length: 14832 server: nginx/1.19.2 last-modified: Wed, 18 Jan 2023 09:53:38 GMT etag: c25504032c154c4079094892359d1540 X-Firefox-Spdy: h2`

	homeotter.com/solarV1/static/static/media/what_you_get.6706b36ef4865fc1251c.png	3.234.74.4	200 OK	42 kB
URL HTTP/2 homeotter.com/solarV1/static/static/media/what_you_get.6706b36ef4865fc1251c.png IP 3.234.74.4:0 ASN #14618 AMAZON-AES File type RIFF (little-endian) data, Web/P image\012- data Size 42 kB (42402 bytes) Hash cc27ef749e86b110b600c0482d7e5c6c f1aec32b7dc2260107c37913d06acae7f76eb154 b514592a614c0c121b42468aef87edd364387c4b093de2529aea590ecbb90057 HTTP Headers GET /solarV1/static/static/media/what_you_get.6706b36ef4865fc1251c.png HTTP/1.1 Host: homeotter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 Cookie: _gcl_au=1.1.1347433269.1679437358; _ga_PZB0LD1YTH=GS1.1.1679437358.1.0.1679437358.0.0.0; _ga=GA1.1.1578255845.1679437358 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Tue, 21 Mar 2023 22:22:34 GMT content-type: image/png content-length: 42402 server: nginx/1.19.2 last-modified: Wed, 18 Jan 2023 09:53:38 GMT etag: 2df3cf6fc5b8a965277f24798ab75603 X-Firefox-Spdy: h2`

	homeotter.com/solarV1/static/static/media/landing_page_house.9c27418b7968f0035929.png	3.234.74.4	200 OK	31 kB
URL HTTP/2 homeotter.com/solarV1/static/static/media/landing_page_house.9c27418b7968f0035929.png IP 3.234.74.4:0 ASN #14618 AMAZON-AES File type RIFF (little-endian) data, Web/P image\012- data Size 31 kB (31200 bytes) Hash e215d8d12308d2aac64de8bce252bae7 8ae145a18a0d3aedbf9c13fbdee15e7509bed765 5418c87b1b70cbbd24e6dd64c931f2ed409cbe47d3c6bd095c9c9fb134846640 HTTP Headers GET /solarV1/static/static/media/landing_page_house.9c27418b7968f0035929.png HTTP/1.1 Host: homeotter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 Cookie: _gcl_au=1.1.1347433269.1679437358; _ga_PZB0LD1YTH=GS1.1.1679437358.1.0.1679437358.0.0.0; _ga=GA1.1.1578255845.1679437358 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Tue, 21 Mar 2023 22:22:34 GMT content-type: image/png content-length: 31200 server: nginx/1.19.2 last-modified: Wed, 18 Jan 2023 09:53:38 GMT etag: d24787723cd769cf71db37a62b2e9c1c X-Firefox-Spdy: h2`

	homeotter.com/solarV1/static/static/media/img1.ece1ddc14068d1c3763c.jpg	3.234.74.4	200 OK	26 kB
URL HTTP/2 homeotter.com/solarV1/static/static/media/img1.ece1ddc14068d1c3763c.jpg IP 3.234.74.4:0 ASN #14618 AMAZON-AES File type RIFF (little-endian) data, Web/P image, VP8 encoding, 573x435, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 26 kB (25862 bytes) Hash d7ea4cf10914e95fab9566a6d0bff2db d2dab0ad77f51b40a096972c9f3f9167c1a73bae 000580fa1e86a5ee19db097eaf07a1eda5eaf161086593972f1d4dec8667e15e HTTP Headers GET /solarV1/static/static/media/img1.ece1ddc14068d1c3763c.jpg HTTP/1.1 Host: homeotter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 Cookie: _gcl_au=1.1.1347433269.1679437358; _ga_PZB0LD1YTH=GS1.1.1679437358.1.0.1679437358.0.0.0; _ga=GA1.1.1578255845.1679437358 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Tue, 21 Mar 2023 22:22:34 GMT content-type: image/jpeg content-length: 25862 server: nginx/1.19.2 last-modified: Wed, 18 Jan 2023 09:53:38 GMT etag: c9645791853060eab0775583f7c30b57 X-Firefox-Spdy: h2`

	homeotter.com/solarV1/static/static/media/map.e82ec0411aa2b9b5b999.png	3.234.74.4	200 OK	45 kB
URL HTTP/2 homeotter.com/solarV1/static/static/media/map.e82ec0411aa2b9b5b999.png IP 3.234.74.4:0 ASN #14618 AMAZON-AES File type RIFF (little-endian) data, Web/P image\012- data Size 45 kB (45222 bytes) Hash 9bf54c89579b17b3a82579f7a7551edb b8cbe8599b157e57f6e1957bb4ec6a8127ec7840 93a2e252ab74f831d2d0454fb3bbbd2c78880bf3978321ee4d84d355a67a15f8 HTTP Headers GET /solarV1/static/static/media/map.e82ec0411aa2b9b5b999.png HTTP/1.1 Host: homeotter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 Cookie: _gcl_au=1.1.1347433269.1679437358; _ga_PZB0LD1YTH=GS1.1.1679437358.1.0.1679437358.0.0.0; _ga=GA1.1.1578255845.1679437358 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Tue, 21 Mar 2023 22:22:34 GMT content-type: image/png content-length: 45222 server: nginx/1.19.2 last-modified: Wed, 18 Jan 2023 09:53:38 GMT etag: 375e6b0aaf2d7b66d8f7f0e0ed79879f X-Firefox-Spdy: h2`

	homeotter.com/solarV1/static/static/media/otter_character_1.b2237061457b1fbea630.png	3.234.74.4	200 OK	22 kB
URL HTTP/2 homeotter.com/solarV1/static/static/media/otter_character_1.b2237061457b1fbea630.png IP 3.234.74.4:0 ASN #14618 AMAZON-AES File type RIFF (little-endian) data, Web/P image\012- data Size 22 kB (21484 bytes) Hash a3b9bed6f71529d0c0484a644ff81dec b294f67645f2b9da63b9ac24be12c3619b4217a9 d1a07315e4e90fcf25761d11d9464aad391ecfc87c2d0194cce74610d6dcaf42 HTTP Headers GET /solarV1/static/static/media/otter_character_1.b2237061457b1fbea630.png HTTP/1.1 Host: homeotter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 Cookie: _gcl_au=1.1.1347433269.1679437358; _ga_PZB0LD1YTH=GS1.1.1679437358.1.0.1679437358.0.0.0; _ga=GA1.1.1578255845.1679437358 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Tue, 21 Mar 2023 22:22:34 GMT content-type: image/png content-length: 21484 server: nginx/1.19.2 last-modified: Wed, 18 Jan 2023 09:53:38 GMT etag: 989c0542a4b960cca193038d740e4598 X-Firefox-Spdy: h2`

	homeotter.com/solarV1/static/static/media/logo_2_1.a3355e9db2d3c303d587cd0ca1503a33.svg	3.234.74.4	200 OK	38 kB
URL HTTP/2 homeotter.com/solarV1/static/static/media/logo_2_1.a3355e9db2d3c303d587cd0ca1503a33.svg IP 3.234.74.4:0 ASN #14618 AMAZON-AES File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (24346) Size 38 kB (38326 bytes) Hash 5633ac2b0c9e6c8e5bfdf132b47e2e50 3f4829e4836959cc19ee90f36e401876f5e60c05 40014bf3037a084e407deb11a04a1129b677ce5e28174b954eeebecd2b0836aa HTTP Headers GET /solarV1/static/static/media/logo_2_1.a3355e9db2d3c303d587cd0ca1503a33.svg HTTP/1.1 Host: homeotter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 Cookie: _gcl_au=1.1.1347433269.1679437358; _ga_PZB0LD1YTH=GS1.1.1679437358.1.0.1679437358.0.0.0; _ga=GA1.1.1578255845.1679437358 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Tue, 21 Mar 2023 22:22:34 GMT content-type: image/svg+xml content-length: 38326 server: nginx/1.19.2 last-modified: Wed, 18 Jan 2023 09:53:38 GMT etag: ee20d9c50a75932c4a04f89a5c93c836 X-Firefox-Spdy: h2`

	homeotter.com/solarV1/static/static/media/otter%20charectors%20-%2002-05.e1538f609fc1a50cb23b.png	3.234.74.4	200 OK	12 kB
URL HTTP/2 homeotter.com/solarV1/static/static/media/otter%20charectors%20-%2002-05.e1538f609fc1a50cb23b.png IP 3.234.74.4:0 ASN #14618 AMAZON-AES File type RIFF (little-endian) data, Web/P image\012- data Size 12 kB (11636 bytes) Hash da53c1e374ee35759d6a18c029c95fe4 af0df2ae014a45b439cbb0d12fc97e49d3e43eda db73d45e5511d375f01160d890c8e6b2f070d24228328ed44c19197567619524 HTTP Headers GET /solarV1/static/static/media/otter%20charectors%20-%2002-05.e1538f609fc1a50cb23b.png HTTP/1.1 Host: homeotter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 Cookie: _gcl_au=1.1.1347433269.1679437358; _ga_PZB0LD1YTH=GS1.1.1679437358.1.0.1679437358.0.0.0; _ga=GA1.1.1578255845.1679437358 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Tue, 21 Mar 2023 22:22:34 GMT content-type: image/png content-length: 11636 server: nginx/1.19.2 last-modified: Wed, 18 Jan 2023 09:53:38 GMT etag: bed455da5848fac0d3b1cf2e17291a62 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 0086fc6b6b52670b2d7ca51fc65d8d44 1d906db50d0373e0e3e1e85031de970218264f4d 24a9078b3b1b7b060c8e68777d0baaa3651c18cebe9107a2598f07981086f830 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:34 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google-analytics.com/analytics.js	142.250.74.174	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 142.250.74.174:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1490) Size 20 kB (20085 bytes) Hash ca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20085 date: Tue, 21 Mar 2023 21:53:25 GMT expires: Tue, 21 Mar 2023 23:53:25 GMT cache-control: public, max-age=7200 age: 1749 last-modified: Tue, 10 Jan 2023 21:29:14 GMT content-type: text/javascript vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.gstatic.com/wcm/loader.js	216.58.211.3	200 OK	1.3 kB
URL HTTP/2 www.gstatic.com/wcm/loader.js IP 216.58.211.3:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1123) Size 1.3 kB (1339 bytes) Hash 22300d54ba7faf32360c95915053014c ea83f097bd99413f9d8fcb08d0312ba7ba1be99f 2c4c9c9d6af1ad12556ab11c8021eb5c254025ce04500bc885b69984dd562ce5 HTTP Headers `GET /wcm/loader.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-encoding: br cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} content-length: 1339 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 21 Mar 2023 21:32:48 GMT expires: Tue, 21 Mar 2023 22:32:48 GMT cache-control: public, max-age=3600 age: 2986 last-modified: Mon, 15 Mar 2021 16:45:00 GMT content-type: text/javascript vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 06adbc463c1bafb4b79a2d2f10791ef8 30a6d093719f89764805f62102b0a07c493016a0 64000d2bedca454efa1fc2de6083ca06cb3e94b33565427ba9ac7c9345a926fb HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:34 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash f86da0dd278dab61512989673262b7b7 0a9e07a3e3001b0fd895cd6be56f4b6929048e7b ac48a2d4cff37e533bcead879c78d3a6f937e6c07fe2aa71a7d0aa4cc5181752 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:34 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.gstatic.com/call-tracking/call-tracking_7.js	216.58.211.3	200 OK	21 kB
URL HTTP/2 www.gstatic.com/call-tracking/call-tracking_7.js IP 216.58.211.3:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (2828) Size 21 kB (21020 bytes) Hash 23db67cc80ab227aeab0967306bd9c1c 7ebb71850d2ebf5d58b26c085a4aa1bbfa11c6ba 58d50b1c5787d1c2d790f6cb3b8bd41378ef47599b0d3050feb9c9ebadf5068d HTTP Headers `GET /call-tracking/call-tracking_7.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-telephony cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="ads-telephony" report-to: {"group":"ads-telephony","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-telephony"}]} content-length: 21020 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 16 Mar 2023 17:35:15 GMT expires: Fri, 15 Mar 2024 17:35:15 GMT cache-control: public, max-age=31536000 age: 449239 last-modified: Wed, 03 Feb 2021 22:45:00 GMT content-type: text/javascript vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	homeotter.com/solarV1/static/logo_2.svg	3.234.74.4	200 OK	3.9 kB
URL HTTP/2 homeotter.com/solarV1/static/logo_2.svg IP 3.234.74.4:0 ASN #14618 AMAZON-AES File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (2014) Size 3.9 kB (3922 bytes) Hash fd71e97bb5b43eb309536a9788d7d1c4 b9905d3dc11305ecbaad69633bfeb38f46ce3369 a4bd2a14d93357c521228aa88eb4ec84ca4e77393ba4ccd3568d6cd906afe66a HTTP Headers GET /solarV1/static/logo_2.svg HTTP/1.1 Host: homeotter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/solarV1/?sub_id=71c9c4fa26404a1ea28db1dca51f7240&offer_id=6b2c8e1f6b4e4472911ab18904cf2778&sub3=81&sub4=0&sub5=1007514 Cookie: _gcl_au=1.1.1347433269.1679437358; _ga_PZB0LD1YTH=GS1.1.1679437358.1.0.1679437358.0.0.0; _ga=GA1.1.1578255845.1679437358 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Tue, 21 Mar 2023 22:22:34 GMT content-type: image/svg+xml content-length: 3922 server: nginx/1.19.2 last-modified: Wed, 18 Jan 2023 09:53:10 GMT etag: f49a6b6111c899a665f6e3e322b20322 X-Firefox-Spdy: h2`

	googleads.g.doubleclick.net/pagead/viewthroughconversion/10955186707/?random=1679437358026&cv=11&fst=1679437358026&bg=ffffff&guid=ON&async=1&gtm=45He33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514&hn=www.googleadservices.com&frm=0&tiba=Home%20Otter&auid=1347433269.1679437358&rfmt=3&fmt=4	142.250.74.162	200 OK	1.3 kB
URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10955186707/?random=1679437358026&cv=11&fst=1679437358026&bg=ffffff&guid=ON&async=1&gtm=45He33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514&hn=www.googleadservices.com&frm=0&tiba=Home%20Otter&auid=1347433269.1679437358&rfmt=3&fmt=4 IP 142.250.74.162:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (2723), with no line terminators Size 1.3 kB (1274 bytes) Hash 13e98e6c0134a27d7d30197773bb9354 09e5b287132165c614d9862b25dd2c3ef56908a5 dd728d5e8285902955d870bbc57dc281f2a1f8be255030ed5a9b498fd2163e8b HTTP Headers GET /pagead/viewthroughconversion/10955186707/?random=1679437358026&cv=11&fst=1679437358026&bg=ffffff&guid=ON&async=1&gtm=45He33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514&hn=www.googleadservices.com&frm=0&tiba=Home%20Otter&auid=1347433269.1679437358&rfmt=3&fmt=4 HTTP/1.1 Host: googleads.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Tue, 21 Mar 2023 22:22:34 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, must-revalidate content-type: text/javascript; charset=UTF-8 x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: br server: cafe content-length: 1274 x-xss-protection: 0 set-cookie: test_cookie=CheckForPermission; expires=Tue, 21-Mar-2023 22:37:34 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.digicert.com/	192.229.221.95	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 192.229.221.95:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash e2ba316dbf0d1c231f12512204d0e832 16271f049892b4d07ab70043935b1873a2e423f9 99a5a7e359df4cc82ef7a931bc93c0252f28c938155c1a6bd886550a0709cb11 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3739 Cache-Control: max-age=141059 Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:34 GMT Etag: "6419a392-1d7" Expires: Thu, 23 Mar 2023 13:33:33 GMT Last-Modified: Tue, 21 Mar 2023 12:31:14 GMT Server: ECAcc (ska/F6D2) X-Cache: HIT Content-Length: 471`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 0086fc6b6b52670b2d7ca51fc65d8d44 1d906db50d0373e0e3e1e85031de970218264f4d 24a9078b3b1b7b060c8e68777d0baaa3651c18cebe9107a2598f07981086f830 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:34 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	maps.googleapis.com/maps/api/js?key=AIzaSyAJdDZJ1BmGL2tHbydjdMWMLTC9zBI1FX8&libraries=places	142.250.74.138	200 OK	57 kB
URL HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyAJdDZJ1BmGL2tHbydjdMWMLTC9zBI1FX8&libraries=places IP 142.250.74.138:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (2456) Size 57 kB (56963 bytes) Hash 257139f50474944ce898181d5c7aab6f bb4254a1bcb497e323b238b2d323bfdf9aa800f2 f9635bb3a4297beb42f8cf84b2fa3c4af79cb75c7fe9641efd418cc7536b2d07 HTTP Headers `GET /maps/api/js?key=AIzaSyAJdDZJ1BmGL2tHbydjdMWMLTC9zBI1FX8&libraries=places HTTP/1.1 Host: maps.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 date: Tue, 21 Mar 2023 22:22:34 GMT expires: Tue, 21 Mar 2023 22:52:34 GMT cache-control: public, max-age=1800 vary: Accept-Language cross-origin-resource-policy: cross-origin timing-allow-origin: * content-encoding: gzip server: mafe content-length: 56963 x-xss-protection: 0 x-frame-options: SAMEORIGIN server-timing: gfet4t7; dur=40 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	connect.facebook.net/en_US/fbevents.js	157.240.205.11	200 OK	28 kB
URL HTTP/2 connect.facebook.net/en_US/fbevents.js IP 157.240.205.11:0 ASN #32934 FACEBOOK File type ASCII text, with very long lines (64348) Size 28 kB (27907 bytes) Hash e5f5bf796d91f271e383cf1ff3ee5af4 70ead02da19095ca752d55e89a48fcdf59d44d33 247f023e282f1556e668df0033858196d682f31f659d1b53ea6dcaeff56c401a HTTP Headers `GET /en_US/fbevents.js HTTP/1.1 Host: connect.facebook.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK vary: Accept-Encoding content-encoding: gzip content-type: application/x-javascript; charset=utf-8 report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"} content-security-policy-report-only: default-src facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; content-security-policy: default-src facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: 'self';script-src .fbcdn.net .facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com;connect-src .fbcdn.net .facebook.net wss://.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report" cross-origin-opener-policy: same-origin-allow-popups pragma: public cache-control: public, max-age=1200 expires: Sat, 01 Jan 2000 00:00:00 GMT x-content-type-options: nosniff x-xss-protection: 0 x-frame-options: DENY strict-transport-security: max-age=31536000; preload; includeSubDomains x-fb-debug: aFfmz6lzN09MJ8rsycdZueyxWa/Fg6gVj6A0VkfdrEv9bl4pxnft3Aps2t8OZBY4LzNhBe0/1QtLygOU68vaJw== content-length: 27907 x-fb-trip-id: 1679558926 date: Tue, 21 Mar 2023 22:22:34 GMT alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	region1.google-analytics.com/g/collect?v=2&tid=G-PZB0LD1YTH&gtm=45je33k0&_p=2010699581&cid=1578255845.1679437358&ul=en-us&sr=1280x1024&_s=1&sid=1679437358&sct=1&seg=0&dl=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514&dt=Home%20Otter&en=page_view&_fv=1&_nsi=1&_ss=1	216.239.32.36	204 No Content	0 B
URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-PZB0LD1YTH&gtm=45je33k0&_p=2010699581&cid=1578255845.1679437358&ul=en-us&sr=1280x1024&_s=1&sid=1679437358&sct=1&seg=0&dl=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514&dt=Home%20Otter&en=page_view&_fv=1&_nsi=1&_ss=1 IP 216.239.32.36:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-PZB0LD1YTH&gtm=45je33k0&_p=2010699581&cid=1578255845.1679437358&ul=en-us&sr=1280x1024&_s=1&sid=1679437358&sct=1&seg=0&dl=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514&dt=Home%20Otter&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 Host: region1.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://homeotter.com Connection: keep-alive Referer: https://homeotter.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/2 204 No Content access-control-allow-origin: https://homeotter.com date: Tue, 21 Mar 2023 22:22:34 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash f86da0dd278dab61512989673262b7b7 0a9e07a3e3001b0fd895cd6be56f4b6929048e7b ac48a2d4cff37e533bcead879c78d3a6f937e6c07fe2aa71a7d0aa4cc5181752 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:34 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 06adbc463c1bafb4b79a2d2f10791ef8 30a6d093719f89764805f62102b0a07c493016a0 64000d2bedca454efa1fc2de6083ca06cb3e94b33565427ba9ac7c9345a926fb HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:34 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.digicert.com/	192.229.221.95	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 192.229.221.95:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash e2ba316dbf0d1c231f12512204d0e832 16271f049892b4d07ab70043935b1873a2e423f9 99a5a7e359df4cc82ef7a931bc93c0252f28c938155c1a6bd886550a0709cb11 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3739 Cache-Control: max-age=141059 Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:34 GMT Etag: "6419a392-1d7" Expires: Thu, 23 Mar 2023 13:33:33 GMT Last-Modified: Tue, 21 Mar 2023 12:31:14 GMT Server: ECAcc (ska/F756) X-Cache: HIT Content-Length: 471`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 8a237b3ec23da41b2cdefc39b643691f 322b5b2a4fb99140ac53a94058d34a4806133519 4d88ec2ff0cf38948e56dabbd03130bb35850d89921fe80e242e762fedde2468 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:34 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d8076782b7586aea6d69480d5434652e 6bd6f10f27f62711c6783bc8b5ea72cb74622e2f ab660e165b0044aa0ca16ab2a42ac38a1922a24a6ae6e879d4e3e1e9c19822c2 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:34 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	script.hotjar.com/modules.efa59efbc2fafa032e07.js	54.230.111.44	200 OK	69 kB
URL HTTP/2 script.hotjar.com/modules.efa59efbc2fafa032e07.js IP 54.230.111.44:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (50842) Size 69 kB (69089 bytes) Hash 704180f05c5d80955b0a845cadcd1605 bfa1a833de42f3d252608518c0f2279e8ea69bf9 4e171fad109895b31a87b1fbd9e545c59bf6c4fa06199b80ddb9f06f3d9850e0 HTTP Headers `GET /modules.efa59efbc2fafa032e07.js HTTP/1.1 Host: script.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript content-length: 69089 date: Tue, 21 Mar 2023 15:02:07 GMT accept-ranges: bytes access-control-allow-origin: * cache-control: max-age=31536000 content-encoding: br cross-origin-resource-policy: cross-origin etag: "704180f05c5d80955b0a845cadcd1605" last-modified: Tue, 21 Mar 2023 15:01:55 GMT strict-transport-security: max-age=2592000; includeSubDomains x-content-type-options: nosniff x-robots-tag: none vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: HKWPCcgwtM1oMj_eTGv5vLBDuZuv_-9m0T8kF_W8L_3tfPH8JW9Yow== age: 26427 X-Firefox-Spdy: h2

	www.google.no/pagead/attribution/wcm?cc=ZZ&dn=8337941267&cl=0pSbCMfO49MDEJPE6-co	216.58.207.227	200 OK	87 B
URL HTTP/2 www.google.no/pagead/attribution/wcm?cc=ZZ&dn=8337941267&cl=0pSbCMfO49MDEJPE6-co IP 216.58.207.227:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 87 B (87 bytes) Hash 36d9ec9a38ee63b6e93115603d96f7a1 efb8de49ffe231ec8a1266a8ca3a97901356a846 30f732c37c76fae3bcf6bcb7c39492d86abc6c3fbf53dadc4533f89df05c71b2 HTTP Headers `GET /pagead/attribution/wcm?cc=ZZ&dn=8337941267&cl=0pSbCMfO49MDEJPE6-co HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Referer: https://homeotter.com/ Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin content-type: application/json; charset=UTF-8 access-control-allow-origin: null access-control-allow-credentials: true x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: gzip date: Tue, 21 Mar 2023 22:22:34 GMT server: cafe cache-control: private content-length: 87 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	static.hotjar.com/c/hotjar-3103914.js?sv=7	54.230.111.8	200 OK	3.6 kB
URL HTTP/2 static.hotjar.com/c/hotjar-3103914.js?sv=7 IP 54.230.111.8:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (7806) Size 3.6 kB (3639 bytes) Hash d8b252c613c15ee39990ff08cf1bbdc7 4a1b753fddb5ebe4e1b8730be7a7e078682ce9bf 0264a176185388c1e8fa24180996752d93b406354e6965950a6632fedffaf161 HTTP Headers `GET /c/hotjar-3103914.js?sv=7 HTTP/1.1 Host: static.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 date: Tue, 21 Mar 2023 22:22:34 GMT access-control-allow-origin: * cache-control: max-age=60 content-encoding: br cross-origin-resource-policy: cross-origin etag: W/7bb108f4860d170707788e3906739344 strict-transport-security: max-age=2592000; includeSubDomains x-cache-hit: 1 x-content-type-options: nosniff vary: Accept-Encoding x-cache: Miss from cloudfront via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: b5O6jE4YJBjVh4lFLpmw-06i8n8LDYI-6YgOCGm8_vTtPLcyPAWNzg== X-Firefox-Spdy: h2

	www.google.no/pagead/1p-user-list/10955186707/?random=1679437358026&cv=11&fst=1679436000000&bg=ffffff&guid=ON&async=1&gtm=45He33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514&frm=0&tiba=Home%20Otter&fmt=3&is_vtc=1&random=4291266573&rmt_tld=1&ipr=y	216.58.207.227	200 OK	42 B
URL HTTP/2 www.google.no/pagead/1p-user-list/10955186707/?random=1679437358026&cv=11&fst=1679436000000&bg=ffffff&guid=ON&async=1&gtm=45He33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514&frm=0&tiba=Home%20Otter&fmt=3&is_vtc=1&random=4291266573&rmt_tld=1&ipr=y IP 216.58.207.227:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /pagead/1p-user-list/10955186707/?random=1679437358026&cv=11&fst=1679436000000&bg=ffffff&guid=ON&async=1&gtm=45He33k0&u_w=1280&u_h=1024&url=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514&frm=0&tiba=Home%20Otter&fmt=3&is_vtc=1&random=4291266573&rmt_tld=1&ipr=y HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Tue, 21 Mar 2023 22:22:34 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif content-security-policy: script-src 'none'; object-src 'none' x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 53c77f4eac44f53913d68abe7c9896d4 27b4242556156f2eaa06ff21ecb364865a50b8d9 15db303474e740477045393c0c00b8d64807d711d65e672e7263427263df6045 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:34 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash ff476bde43022243f6c3f9dddd9360d3 7862bf4ba04f1218f10f85bbddbe2a11aeeeece6 6e8b017b6722c1f95b920e14876ef42e2a38556bbad3b9f4b1b1879634ced74a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:34 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 8a237b3ec23da41b2cdefc39b643691f 322b5b2a4fb99140ac53a94058d34a4806133519 4d88ec2ff0cf38948e56dabbd03130bb35850d89921fe80e242e762fedde2468 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:35 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 9446303f24a6e8e8d138867549399aa2 410a03d7475ec879b8e346f1706aea491e3f1da5 f7d7017ca9dbdf1822739e9baa6f34868504e6ce0d827aeeef82517c5db72960 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:35 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-121037752-5&cid=1578255845.1679437358&jid=391851225&gjid=1576850657&_gid=1887182816.1679437359&_u=YADAAEAAAAAAACAAI~&z=436889231	209.85.233.155	200 OK	4 B
URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-121037752-5&cid=1578255845.1679437358&jid=391851225&gjid=1576850657&_gid=1887182816.1679437359&_u=YADAAEAAAAAAACAAI~&z=436889231 IP 209.85.233.155:0 ASN #15169 GOOGLE File type ASCII text, with no line terminators Size 4 B (4 bytes) Hash 48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a HTTP Headers POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-121037752-5&cid=1578255845.1679437358&jid=391851225&gjid=1576850657&_gid=1887182816.1679437359&_u=YADAAEAAAAAAACAAI~&z=436889231 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://homeotter.com Connection: keep-alive Referer: https://homeotter.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://homeotter.com strict-transport-security: max-age=10886400; includeSubDomains; preload date: Tue, 21 Mar 2023 22:22:35 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 4 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash ff476bde43022243f6c3f9dddd9360d3 7862bf4ba04f1218f10f85bbddbe2a11aeeeece6 6e8b017b6722c1f95b920e14876ef42e2a38556bbad3b9f4b1b1879634ced74a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 21 Mar 2023 22:22:35 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a0d3d7099bbc5fed74a6e78e1a3096bf 96afaf8b3ac053577c56aca5f4a20d8655ecb771 c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12100 Expires: Wed, 22 Mar 2023 01:44:15 GMT Date: Tue, 21 Mar 2023 22:22:35 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a0d3d7099bbc5fed74a6e78e1a3096bf 96afaf8b3ac053577c56aca5f4a20d8655ecb771 c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12100 Expires: Wed, 22 Mar 2023 01:44:15 GMT Date: Tue, 21 Mar 2023 22:22:35 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a0d3d7099bbc5fed74a6e78e1a3096bf 96afaf8b3ac053577c56aca5f4a20d8655ecb771 c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12100 Expires: Wed, 22 Mar 2023 01:44:15 GMT Date: Tue, 21 Mar 2023 22:22:35 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a0d3d7099bbc5fed74a6e78e1a3096bf 96afaf8b3ac053577c56aca5f4a20d8655ecb771 c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA" Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12100 Expires: Wed, 22 Mar 2023 01:44:15 GMT Date: Tue, 21 Mar 2023 22:22:35 GMT Connection: keep-alive`

	ocsp.e2m02.amazontrust.com/	54.230.80.227	200 OK	280 B
URL HTTP/1.1 ocsp.e2m02.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 280 B (280 bytes) Hash 526a5dcf12788e6a6ab3d6bafb95fccc a2b7d87ee461ac7e10678c6b57b22871363dda70 88777d59bcfbba7d3b6804b63fbe43940233ae91052f7100a871556a2cc3faa2 HTTP Headers `POST / HTTP/1.1 Host: ocsp.e2m02.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 280 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Tue, 21 Mar 2023 22:22:35 GMT Last-Modified: Tue, 21 Mar 2023 21:38:51 GMT Server: ECAcc (bsa/EB2E) X-Cache: Miss from cloudfront Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: QJxrM5CFerrTRCIrCSY2UGQ3AthXSf5ShhfMBLPdNRf6BhgTanDufg== Age: 2624`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1f3dbde-5603-4fc9-9c5b-c8735230fcb3.jpeg	34.120.237.76	200 OK	5.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1f3dbde-5603-4fc9-9c5b-c8735230fcb3.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.5 kB (5456 bytes) Hash 59a97c7842690d7acd0ff07d949b1ef3 8719d7d6866855fdfba87e06128fb1969d857732 203b0e030b9bf84a8a2731c1b46d57e60ee50a53cc925845e7b20cbd60362136 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1f3dbde-5603-4fc9-9c5b-c8735230fcb3.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5456 x-amzn-requestid: 545d20a4-ed22-4be4-98aa-23383209dae2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CDDUKFC9IAMF4pw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64177f4d-3e927ea45de99d4b286fcfc8;Sampled=0 x-amzn-remapped-date: Sun, 19 Mar 2023 21:31:57 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: qXn3EwgagFD2MH4PzDYxxVd1eXOQQxHDkNdxXGxwuS-tmPNxWXYukA== via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google date: Tue, 21 Mar 2023 18:00:25 GMT age: 15730 etag: "8719d7d6866855fdfba87e06128fb1969d857732" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7963a1ee-914e-454a-a5e7-9466ab707e33.jpeg	34.120.237.76	200 OK	7.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7963a1ee-914e-454a-a5e7-9466ab707e33.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.7 kB (7695 bytes) Hash 302595cc68fe8cf12121d0f652b3194d e5532a3fed552246e8a63ea2ba75e174273a7b9f 6ca3599a9af06f51d4dc205d4ebd8f7f8b38c54864b6b478eac8c0d1adbc97c6 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7963a1ee-914e-454a-a5e7-9466ab707e33.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7695 x-amzn-requestid: 1009077b-14aa-42e5-86f1-de94b8b2aba0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CDETIHf8oAMFxEA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641780e0-07bbb0376f1c1941731e00ba;Sampled=0 x-amzn-remapped-date: Sun, 19 Mar 2023 21:38:40 GMT x-amz-cf-pop: SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: 388_JExXl_vwNTUh_69QfjoGz-cNeQwwrp6kpAP1Hhv3VvtgeeXbrw== via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 a06140ffee86972bad90c57fc682df36.cloudfront.net (CloudFront), 1.1 google date: Tue, 21 Mar 2023 21:55:32 GMT age: 1623 etag: "e5532a3fed552246e8a63ea2ba75e174273a7b9f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6943b819-ab3e-4698-a81d-266be026b4b8.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6943b819-ab3e-4698-a81d-266be026b4b8.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10855 bytes) Hash f73dbc0fc3d196647ddc1e30450989d4 75d0a1414a5d350ba426dc37333a6ea131f66753 2a6954b3ccf01567c0c0c2911dd8b02c1cd264fc78178cef2eef6a6796c16c3f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6943b819-ab3e-4698-a81d-266be026b4b8.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10855 x-amzn-requestid: bb845712-834d-49b1-97f0-f3750f132741 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CEZD0GCHIAMFq6A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6418087e-4361bbd40ec5f0d10dabdf85;Sampled=0 x-amzn-remapped-date: Mon, 20 Mar 2023 07:17:18 GMT x-amz-cf-pop: SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: gnFLBOJmRcgsHzy_KXjzE6LwwN4CSqz99pIhYMBx8xrHa8UO6O0kJA== via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google date: Tue, 21 Mar 2023 07:30:21 GMT age: 53534 etag: "75d0a1414a5d350ba426dc37333a6ea131f66753" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2ad5022-7f23-468e-8e1f-6388d8cc9db8.jpeg	34.120.237.76	200 OK	6.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2ad5022-7f23-468e-8e1f-6388d8cc9db8.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.5 kB (6511 bytes) Hash 4e5f234aedfabd736b50fef3017380f9 71672a6c3523d9999522e005091863d07ea0e94a 3314df7a93e317d509aeffc1cde69ec450ddad116a27dc197db1abce966da344 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2ad5022-7f23-468e-8e1f-6388d8cc9db8.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6511 x-amzn-requestid: 82d12180-bdcb-4ce0-8588-4239ee27f236 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CGWI_E_eoAMF3sA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6418d09f-2f5df7cd5f6cee4762703d29;Sampled=0 x-amzn-remapped-date: Mon, 20 Mar 2023 21:31:11 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: sTt0-W1XE7yUFGFXg2nPnKw5tKKkrw-cH_TCIbQy8JL-k0QtCNZS8w== via: 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 7545e37b10b5fcf5e3df98185c85194a.cloudfront.net (CloudFront), 1.1 google date: Tue, 21 Mar 2023 22:08:42 GMT age: 833 etag: "71672a6c3523d9999522e005091863d07ea0e94a" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68a4b574-14c9-4d65-81df-d700ef3fa2f4.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68a4b574-14c9-4d65-81df-d700ef3fa2f4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (11336 bytes) Hash e538277f72ecedd22d24c1012250fa9e 4bd955ea3790a6926486e3d56f51c712c56997d7 5f4d374598cfb1a78e7016ec3a0b563e61e7481be202c34b10c9fdfbfc7b638e HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68a4b574-14c9-4d65-81df-d700ef3fa2f4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11336 x-amzn-requestid: 3aaca817-ebbc-449f-806c-d5a2a7559335 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CGWjFEmFIAMFqhg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6418d146-435381723c24efc66eed6b4b;Sampled=0 x-amzn-remapped-date: Mon, 20 Mar 2023 21:33:58 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: ucKJdzsuQMhDuZHuaBcW8q8tDkm1tepcMkqRtTRUuzF-7CIuhAR2MQ== via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google date: Mon, 20 Mar 2023 22:27:44 GMT age: 86091 etag: "4bd955ea3790a6926486e3d56f51c712c56997d7" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg	34.120.237.76	200 OK	8.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.2 kB (8195 bytes) Hash 2a940b362660fdee25faaa51e08c439b 85fa91b5c4e6ddc1f3cf45eb6a4a3facfc6ad68c 18b99e3e890fdc959421c895ce343b8b3ed88819c83fa0009823e8ded23458f1 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8195 x-amzn-requestid: c6844a50-a6b2-4ef4-ad28-f1a0fbcec14f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CDFESEDGoAMFQ8A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6417821b-22fa560d4b7811c233fe07fa;Sampled=0 x-amzn-remapped-date: Sun, 19 Mar 2023 21:43:55 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: WZ5MqPZ-MEjDt3N53EIx1XrerDmUkyvK-5FUXAmI29GXlGe6AaPqEg== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 219e8f088c8c2a564bdacafe44be620a.cloudfront.net (CloudFront), 1.1 google date: Mon, 20 Mar 2023 22:23:21 GMT age: 86354 etag: "85fa91b5c4e6ddc1f3cf45eb6a4a3facfc6ad68c" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.facebook.com/tr/?id=255175222450573&ev=PageView&dl=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514&rl=&if=false&ts=1679437359172&sw=1280&sh=1024&v=2.9.99&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1679437359171.191216227&it=1679437358883&coo=false&rqm=GET	157.240.205.35	200 OK	0 B
URL HTTP/2 www.facebook.com/tr/?id=255175222450573&ev=PageView&dl=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514&rl=&if=false&ts=1679437359172&sw=1280&sh=1024&v=2.9.99&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1679437359171.191216227&it=1679437358883&coo=false&rqm=GET IP 157.240.205.35:0 ASN #32934 FACEBOOK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tr/?id=255175222450573&ev=PageView&dl=https%3A%2F%2Fhomeotter.com%2FsolarV1%2F%3Fsub_id%3D71c9c4fa26404a1ea28db1dca51f7240%26offer_id%3D6b2c8e1f6b4e4472911ab18904cf2778%26sub3%3D81%26sub4%3D0%26sub5%3D1007514&rl=&if=false&ts=1679437359172&sw=1280&sh=1024&v=2.9.99&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1679437359171.191216227&it=1679437358883&coo=false&rqm=GET HTTP/1.1 Host: www.facebook.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK content-type: text/plain access-control-allow-origin: access-control-allow-credentials: true strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin content-length: 0 server: proxygen-bolt alt-svc: h3=":443"; ma=86400 date: Tue, 21 Mar 2023 22:22:35 GMT X-Firefox-Spdy: h2`

	connect.facebook.net/signals/config/255175222450573?v=2.9.99&r=stable	157.240.205.11	200 OK	0 B
URL HTTP/2 connect.facebook.net/signals/config/255175222450573?v=2.9.99&r=stable IP 157.240.205.11:0 ASN #32934 FACEBOOK File type Size 0 B (0 bytes) Hash HTTP Headers `GET /signals/config/255175222450573?v=2.9.99&r=stable HTTP/1.1 Host: connect.facebook.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://homeotter.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK vary: Accept-Encoding content-encoding: gzip content-type: application/x-javascript; charset=utf-8 report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"} content-security-policy: default-src facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: 'self';script-src .fbcdn.net .facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com;connect-src .fbcdn.net .facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report" cross-origin-opener-policy: same-origin-allow-popups pragma: public cache-control: public, max-age=1200 expires: Sat, 01 Jan 2000 00:00:00 GMT x-content-type-options: nosniff x-xss-protection: 0 x-frame-options: DENY strict-transport-security: max-age=31536000; preload; includeSubDomains x-fb-debug: f9xbgN3XOtfjr65G+12E3a2iYm/tukDBl4c56plNxUaTvn+zqKHNHhwLN31adQkO2NpYoDGcQdOKEU8GI1kc0Q== x-fb-trip-id: 1679558926 date: Tue, 21 Mar 2023 22:22:35 GMT alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	in.hotjar.com/api/v2/client/sites/3103914/visit-data?sv=7	34.248.10.30	200 OK	0 B
URL HTTP/2 in.hotjar.com/api/v2/client/sites/3103914/visit-data?sv=7 IP 34.248.10.30:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `POST /api/v2/client/sites/3103914/visit-data?sv=7 HTTP/1.1 Host: in.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain; charset=UTF-8 Content-Length: 130 Origin: https://homeotter.com Connection: keep-alive Referer: https://homeotter.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Tue, 21 Mar 2023 22:22:35 GMT content-type: application/json vary: Accept-Encoding cache-control: no-cache, no-store access-control-allow-origin: * access-control-allow-credentials: true access-control-max-age: 86400 content-encoding: br X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (17)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML