Report - www.ncvtracks.com/7MT768/CL62GX/?sub3=6514adae5a03df000117d853&sub2=701&sub1=1651456&sub5=display

Report Overview

Visited public
2023-09-27 22:34:03
Tags
URL
www.ncvtracks.com/7MT768/CL62GX/?sub3=6514adae5a03df000117d853&sub2=701&sub1=1651456&sub5=display
Finishing URL
rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
IP / ASN
34.95.116.176
#15169 GOOGLE
Title
RentalAssistance.net

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
bids.proper.io	9666	2014-12-24	2017-01-30 07:45:59	2023-09-27 21:31:31	504 B	169 B	44.239.180.127
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-09-26 22:20:28	892 B	158 kB	142.250.74.168
ocsp.r2m02.amazontrust.com	unknown	2007-05-11	2022-10-12 16:01:39	2023-09-26 23:09:56	1.4 kB	3.8 kB	143.204.48.16
referrer.disqus.com	6065	2006-12-07	2014-02-25 01:54:56	2023-09-26 21:11:46	1.6 kB	674 B	199.232.196.134
realtime.services.disqus.com	7694	2006-12-07	2012-05-26 11:36:22	2023-09-27 18:05:51	1.1 kB	914 B	54.227.133.51
ocsp.starfieldtech.com	6616	2003-03-06	2012-06-22 20:08:50	2023-09-26 18:15:51	672 B	5.3 kB	192.124.249.41
host1.easypolls.net	589469	2009-06-03	2014-06-14 22:02:17	2023-09-25 01:21:23	2.1 kB	172 kB	54.173.157.100
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18 02:37:31	2023-09-26 18:52:10	898 B	91 kB	104.18.10.207
event.trk-keingent.com	unknown	2022-08-15	2022-10-02 16:13:05	2023-09-26 01:18:28	535 B	1.6 kB	172.64.139.7
ocsp.godaddy.com	698	1999-03-02	2012-05-20 21:28:57	2023-09-26 18:19:28	330 B	2.6 kB	192.124.249.23
usync.proper.io	5374	2014-12-24	2020-12-15 12:21:11	2023-09-26 05:59:32	659 B	306 B	35.164.5.126
reachms.bfmio.com	4028	2015-03-03	2017-01-30 06:07:36	2023-09-27 14:23:15	1.7 kB	702 B	100.24.169.147
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-09-26 18:52:10	1.3 kB	24 kB	104.17.24.14
use.fontawesome.com	942	2012-10-18	2017-01-30 05:43:25	2023-09-26 18:13:04	479 B	56 kB	172.64.102.11
links.services.disqus.com	11149	2006-12-07	2012-11-01 13:22:51	2023-09-26 19:24:54	1.5 kB	2.5 kB	199.232.192.64
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-09-26 22:04:41	1.5 kB	23 kB	142.250.74.138
player.propervideo.io	23769	2019-06-06	2019-07-26 17:29:01	2023-09-27 14:23:14	420 B	129 kB	104.17.182.240
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2023-09-26 23:59:14	889 B	125 kB	142.250.74.106
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-09-26 18:12:02	3.0 kB	6.3 kB	142.250.74.131
benefitsdepot-net.disqus.com	unknown	2006-12-07	2022-07-20 21:26:34	2023-09-25 01:21:24	846 B	48 kB	199.232.192.134
static.vidazoo.com	2758	2014-07-19	2017-01-30 06:05:50	2023-09-27 18:48:56	1.3 kB	66 kB	104.18.6.81
global.proper.io	9148	2014-12-24	2016-10-06 07:36:57	2023-09-27 21:31:30	1.1 kB	809 kB	104.16.15.119
abcheck.proper.io	15991	2014-12-24	2022-01-15 20:14:09	2023-09-27 21:31:31	1.3 kB	2.7 kB	104.16.15.119
prebid.a-mo.net	1148	2017-09-08	2020-07-14 19:45:55	2023-09-27 03:48:16	578 B	310 B	145.40.97.66
prebid.cootlogix.com	17442	2017-08-21	2019-03-28 14:05:50	2023-09-27 03:48:16	3.8 kB	2.7 kB	69.55.49.188
rentalassistance.net	540818	2021-01-25	2021-01-28 06:51:25	2023-09-25 01:21:47	18 kB	262 kB	209.212.148.7
eb.proper.io	12930	2014-12-24	2019-10-30 10:04:31	2023-09-27 15:24:13	691 B	1.5 kB	104.16.15.119
disqus.com	1759	2006-12-07	2012-05-21 09:51:22	2023-09-27 07:36:03	6.5 kB	65 kB	151.101.0.134
trk-keingent.com	unknown	2022-08-15	2022-08-16 11:30:10	2023-09-26 01:22:47	474 B	3.7 kB	172.64.139.7
ib.adnxs.com	241	2008-05-27	2012-05-20 21:01:49	2023-09-25 18:12:02	505 B	1.9 kB	37.252.171.85
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-09-26 23:54:24	4.3 kB	173 kB	216.58.207.227
c.disquscdn.com	3983	2013-06-21	2017-02-11 03:19:07	2023-09-26 22:16:12	7.5 kB	434 kB	143.204.55.72
c2shb.pubgw.yahoo.com	2120	1995-01-18	2021-10-14 22:15:14	2023-09-27 18:17:37	7.7 kB	6.4 kB	35.157.246.167
ocsp.sectigo.com	487	2018-08-16	2019-11-29 12:50:24	2023-09-26 21:38:32	1.7 kB	4.8 kB	104.18.14.101
www.ncvtracks.com	unknown	2019-07-25	2019-07-30 20:18:01	2023-09-26 08:29:30	1.3 kB	1.9 kB	34.95.116.176

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2023-09-27	medium	static.vidazoo.com/basev/vwpt.js	Code and strings of plugins from the Tetris framework loaded by Swid

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (55)

	URL	From	Size	First Seen	Last Seen
	c.disquscdn.com/next/recommendations/recommendations.load.e92e17edc4ee90d40c8117e92cd2348c.js	ScriptElement	923 B	2023-09-09	2023-09-30
Pretty URL c.disquscdn.com/next/recommendations/recommendations.load.e92e17edc4ee90d40c8117e92cd2348c.js IP 143.204.55.72 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-09 21:13 Last Seen2023-09-30 17:08 Times Seen72 Hash 6b19f56752392897240d8cb27e00a09f 85beed4cc46f489f9955057c4982e48962797011 a4b8bc61f249b1497f45d629df065ac0b1c8fdd8d30cd856ebd24ee951a58dcd Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js	ScriptElement	21 kB	2023-03-07	2025-05-10
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-05-10 21:16 Times Seen9724 Hash 56456db9d72a4b380ed3cb63095e6022 6dbce88aee15b42f29083df7a07513cf3b486ba0 66f3a07e1fa9b64a686b66381e4458dbc8abf3dbbff954720c4eec07b84411c2 Loading...

	rentalassistance.net/defaults/js/tipped.js	ScriptElement	75 kB	2023-03-08	2025-04-02
Pretty URL rentalassistance.net/defaults/js/tipped.js IP 209.212.148.7 ASN #32181 ASN-GIGENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37 Last Seen2025-04-02 20:36 Times Seen37 Hash 123ce0435733333752af5433a51b72d8 9dfc0f5fe1b7bf77dba1f88c15b681f07ddc7682 7b0fc94d83150b73dc566b933bc5c823621e210de6d45621d1101207202d0a15 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-11
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 01:36 Times Seen341010 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	rentalassistance.net/article/sandbox%20eval%20code		147 B	2023-04-11	2025-05-11
Pretty URL rentalassistance.net/article/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 01:36 Times Seen341812 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	global.proper.io/payloads/latest.js	ScriptElement	797 kB	2023-09-25	2023-11-21
Pretty URL global.proper.io/payloads/latest.js IP 104.16.15.119 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-25 01:21 Last Seen2023-11-21 00:57 Times Seen89 Hash 92107fa5d89faed523789dd568d29147 f1ebe2ba31ecfe2af8363da892beedb20d6ec273 917b1aacb88b1952b2faccc7f57ff45e552580a73e9e22b06e0603dec864abd6 Loading...

	unknown	Function	79 B	2023-04-11	2025-05-11
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38 Last Seen2025-05-11 01:13 Times Seen112463 Hash aa049e2749b8531cb8f233c2f64fc2b2 b611a5a62c1813ae5b4763378b3a4a565556530a e52e51d5897d7a179089ddcf8f5de7aeb3ef4f27b054b63e937cf308b685c9e2 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js	ScriptElement	93 kB	2023-03-07	2025-05-10
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 21:23 Times Seen10313 Hash e0e0559014b222245deb26b6ae8bd940 e2f3603e23711f6446f278a411d905623d65201e 89a15e9c40bc6b14809f236ee8cd3ed1ea42393c1f6ca55c7855cd779b3f922e Loading...

	maxcdn.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js	ScriptElement	58 kB	2023-03-07	2025-05-10
Pretty URL maxcdn.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js IP 104.18.10.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 22:11 Times Seen11667 Hash e1d98d47689e00f8ecbc5d9f61bdb42e 6778fed3cf095a318141a31f455c8f4663885bde 0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b Loading...

	c.disquscdn.com/next/embed/lounge.bundle.9afa89eebe6bbc95928fca003dbc8884.js	ScriptElement	525 kB	2023-09-20	2023-10-02
Pretty URL c.disquscdn.com/next/embed/lounge.bundle.9afa89eebe6bbc95928fca003dbc8884.js IP 143.204.55.72 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-20 13:45 Last Seen2023-10-02 07:33 Times Seen71 Hash 5ea76020646b7d6c6a787247421ab3cf afde365e853c042881792b7a577ad26915c09d38 d91e9d886683d0b738455179f4e0fc544a1fc5f94982073e4c7ad9a2a5497c74 Loading...

	c.disquscdn.com/next/embed/common.bundle.f2a270bb37834887ad900431f6cb27eb.js	ScriptElement	286 kB	2023-08-21	2023-10-25
Pretty URL c.disquscdn.com/next/embed/common.bundle.f2a270bb37834887ad900431f6cb27eb.js IP 143.204.55.72 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-21 19:49 Last Seen2023-10-25 23:06 Times Seen425 Hash fd9c72c5e565b68435ce33f5d79f2677 ce5d73f5272e740b4f8f1321b448b80e348e59c6 17dfdeb0ea6a4edf44cba4f38a953e89af8094d116796ef91157a2a86a459a1a Loading...

	rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91	ScriptElement	334 B	2023-06-17	2024-08-21
Pretty URL rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91 IP 209.212.148.7 ASN #32181 ASN-GIGENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-17 23:02 Last Seen2024-08-21 08:51 Times Seen14 Hash 592c350ce457f306f362e931da9ad65e 5b74e69be328dbabd64fb342e5b0638d2ff8c3c7 bbac3b52f955ea1f5ca7f7a15521cb4194dad86ca9e20f0990421db77583e582 Loading...

	rentalassistance.net/article/sandbox%20eval%20code		148 B	2023-05-05	2025-05-10
Pretty URL rentalassistance.net/article/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 22:57 Last Seen2025-05-10 23:47 Times Seen12679 Hash f019f144761e15f741f6ab1e4cf566a5 1c73bccb222e44ae4633750eda7c357460a81a03 4cacaf0fd3e370c4840c87c79f923f1ffb69ff7ce5d8172390783c8f83861d62 Loading...

	static.vidazoo.com/basev/tcf/1.0.2/tcf.js	ScriptElement	16 kB	2023-08-14	2024-08-21
Pretty URL static.vidazoo.com/basev/tcf/1.0.2/tcf.js IP 104.18.6.81 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-14 16:17 Last Seen2024-08-21 08:44 Times Seen398 Hash 3503157ffaddc94483af59f0acb99141 37f4a308997842b4336819c14664bb0864954cd9 e602d10aeab60c205781599d1dd4e46d615c1938e62f66d5752fb08ad800fa2d Loading...

	disqus.com/next/config.js	ScriptElement	19 kB	2023-09-28	2023-10-02
Pretty URL disqus.com/next/config.js IP 151.101.0.134 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-28 00:34 Last Seen2023-10-02 07:33 Times Seen21 Hash 3342e31f9ce131efddaa67a43e49a30c d0d787ac19bbbbb1b1c12e6050d112f9f1459387 b84b2674999e681b8a7670954141d72790595c47a305397c5b2d7dfd8681b6f3 Loading...

	benefitsdepot-net.disqus.com/recommendations.js	ScriptElement	65 kB	2023-09-28	2023-09-28
Pretty URL benefitsdepot-net.disqus.com/recommendations.js IP 199.232.192.134 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-28 00:34 Last Seen2023-09-28 00:34 Times Seen1 Hash a6d9bdfbcb3870659c852b7f11124233 475fed91c97ddd039968a98ae72857ae5f6e6f32 faf382ed0d47e6efdfc360b05127479312e287bead3f4b004c3c6cab80a3e570 Loading...

	rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91	ScriptElement	551 B	2023-03-08	2025-04-02
Pretty URL rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91 IP 209.212.148.7 ASN #32181 ASN-GIGENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 19:37 Last Seen2025-04-02 20:36 Times Seen18 Hash 2a86eefce8ed8ee0faecb26609432725 9b2f7adc1fcee54436794bdcf47cee5061fa7744 4f808d4ed20b3c38e03e39553dedba4ea976ea3d33fcaeea68cce9ab50fded72 Loading...

	host1.easypolls.net/ext/scripts/emPoll.js?p=5d66c61fe4b067f237f9e485	ScriptElement	4.8 kB	2023-03-08	2023-11-10
Pretty URL host1.easypolls.net/ext/scripts/emPoll.js?p=5d66c61fe4b067f237f9e485 IP 54.173.157.100 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37 Last Seen2023-11-10 20:59 Times Seen16 Hash 61ef3fde42ab270669d4ba44a455105e fec7f72b57f5aaa2649b6ab710571af37258d156 90efb9879ba1ebfaf5db63ec1104af7ea46d8d075789e8755e45e4c49a4d1a99 Loading...

	rentalassistance.net/article/sandbox%20eval%20code		136 B	2023-04-11	2025-05-10
Pretty URL rentalassistance.net/article/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:23 Last Seen2025-05-10 23:47 Times Seen41627 Hash fb4eb094524daea58bf7f82331598541 f5ca39eb98fa1685f8647514a627d3d7f216f7ef 7cbf1e77bb9277bac7030ded2087246adf5c59564a5a1f28ce8c09be6ef48683 Loading...

	securepubads.g.doubleclick.net/tag/js/gpt.js	ScriptElement	13 kB	2023-04-05	2025-05-10
Pretty URL securepubads.g.doubleclick.net/tag/js/gpt.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 04:46 Last Seen2025-05-10 23:47 Times Seen39451 Hash 0c9ed134ae3d5ffe972da2a3e59dc428 620df222551395592e46e4c5f425cf23dcdad891 5f9efa604bfe2aee8c1a90376125a098306ba390530a6f9b2ecb0a67cdac178d Loading...

	rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91	ScriptElement	357 B	2023-06-17	2024-08-21
Pretty URL rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91 IP 209.212.148.7 ASN #32181 ASN-GIGENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-17 23:02 Last Seen2024-08-21 08:51 Times Seen13 Hash 9b52ce17baeb6a5e61b7ee4c9b96b19d 6bdf23d46ff87d16c8fea0d51aa96eba19d6132d 5eec6e8ef1013480c75e8507a8bba3eafd0f91eb1a940c8e5f0b81a6d606ea14 Loading...

	rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91	ScriptElement	161 B	2023-03-12	2025-03-30
Pretty URL rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91 IP 209.212.148.7 ASN #32181 ASN-GIGENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 14:22 Last Seen2025-03-30 17:31 Times Seen11 Hash 7b6ea475482bd35bb89b8abc07b43fd7 952c63f02c48946e8df0a41a0c367f5ab7ab48a4 66f5ed2451209b292deb718c924213fd7fe137cd04493e1821da25281b5cd367 Loading...

	rentalassistance.net/js/forms.v2.js?id=1cea2f7e69931dfa6059	ScriptElement	81 kB	2023-06-17	2023-11-10
Pretty URL rentalassistance.net/js/forms.v2.js?id=1cea2f7e69931dfa6059 IP 209.212.148.7 ASN #32181 ASN-GIGENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-17 23:02 Last Seen2023-11-10 20:59 Times Seen15 Hash 1cea2f7e69931dfa60596a8c3f192315 73b77cdf530e99fe8eed2988719891c7e49d944a dc0dc6d45f9bb3e8da7e7d21bdb023b9b49e19d46ba2b115d1a91c492d730ac6 Loading...

	disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900	ScriptElement	786 B	2023-04-05	2025-02-27
Pretty URL disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 15:39 Last Seen2025-02-27 20:48 Times Seen2329 Hash 8cf574959678c88903c50801f1b86b0d ecf35711b4f888262e26f94772784ba4167d5adb 9c7d8ba17d8c59ee0667cf9978273226bbd711635e6bd8504df63c317c95f9b9 Loading...

	host1.easypolls.net/api/poll/5d66c61fe4b067f237f9e485?jsoncallback=jQuery110207616346564008278_1695854023228&command=getPoll&pollId=5d66c61fe4b067f237f9e485&containerId=&_=1695854023229	ScriptElement	9.3 kB	2024-08-21	2024-08-21
Pretty URL host1.easypolls.net/api/poll/5d66c61fe4b067f237f9e485?jsoncallback=jQuery110207616346564008278_1695854023228&command=getPoll&pollId=5d66c61fe4b067f237f9e485&containerId=&_=1695854023229 IP 54.173.157.100 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 05:38 Last Seen2024-08-21 05:38 Times Seen1 Hash 5b6c76f6da0c39c488681006281c6fec 207aad92caeab65d83df552770aa7f175d9872dd 7b152a42b1459f2e74500ff9af071c8cc232b67363cc9e0ade727955f56168d9 Loading...

	host1.easypolls.net/ext/scripts/poll.js	ScriptElement	154 kB	2023-03-08	2024-08-21
Pretty URL host1.easypolls.net/ext/scripts/poll.js IP 54.173.157.100 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37 Last Seen2024-08-21 08:51 Times Seen16 Hash 50d971817d9965f3067e4ed6d79b48c9 ed5d17450490a74d3990e4001b1a3b1d575ff216 5e68b9ba1318581a41eebe35348f3c70ad30c61d5d1bf1b59d6c8376c1bb78c8 Loading...

	benefitsdepot-net.disqus.com/embed.js	ScriptElement	80 kB	2023-09-28	2023-09-28
Pretty URL benefitsdepot-net.disqus.com/embed.js IP 199.232.192.134 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-28 00:34 Last Seen2023-09-28 00:34 Times Seen1 Hash 9d8818ad1181ab94a7a98605410a441b e9921ac2cc94fdaf8b9e380debb9e006375c25fd 09da12a737a2633e41fbe2d10822861cdc27d123c5edabcbbe4e471cff7c2932 Loading...

	rentalassistance.net/js/site_survey.js?id=df0bd7b2a2f287f6f2ea	ScriptElement	39 kB	2023-09-10	2024-08-21
Pretty URL rentalassistance.net/js/site_survey.js?id=df0bd7b2a2f287f6f2ea IP 209.212.148.7 ASN #32181 ASN-GIGENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-10 17:50 Last Seen2024-08-21 07:08 Times Seen11 Hash df0bd7b2a2f287f6f2ead026a190c1d2 6e5ac4d989d391d575d9b72d1a32f3adec3be30a 950202e213a5a8f457285d735bbc73a712eb868d9540ebdc6007e3b5bf82579a Loading...

	rentalassistance.net/js/alpine.js?id=a9cef5dfc27b0838cb90	ScriptElement	39 kB	2023-07-22	2024-08-21
Pretty URL rentalassistance.net/js/alpine.js?id=a9cef5dfc27b0838cb90 IP 209.212.148.7 ASN #32181 ASN-GIGENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-22 14:56 Last Seen2024-08-21 08:51 Times Seen14 Hash a9cef5dfc27b0838cb90388a606df0c6 615e28f22c298090a9043a634d134552adad16df 53e6cf700a973f6af37be2ff3c0b74c816e107920209d6965555f71c18c666de Loading...

	c.disquscdn.com/next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js	ScriptElement	80 kB	2023-03-07	2025-05-10
Pretty URL c.disquscdn.com/next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js IP 143.204.55.72 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 05:44 Times Seen2588 Hash 6a2058c1873047f445835a25ca19ca8c c05084762dc4cfafe00c2a7daab90e27ae94d783 9efb3d5e1b082a66bd94908b42afb4cf6fe0e8eb8f50b8d2a18f6a5da03e6a18 Loading...

	c.disquscdn.com/next/recommendations/common.bundle.31b4f5178221dd17c6ba875de58310e2.js	ScriptElement	268 kB	2023-08-25	2023-10-25
Pretty URL c.disquscdn.com/next/recommendations/common.bundle.31b4f5178221dd17c6ba875de58310e2.js IP 143.204.55.72 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 00:22 Last Seen2023-10-25 17:10 Times Seen139 Hash 7d9f51ffaea5dd5bdaff317577d6f991 641b1feed67468407ce83cccf4508f55b01dc9c8 c61340cb0ec75dd5fe9c1b61c0829fa5c1eecb80ed568ba08e45be875b32434b Loading...

	trk-keingent.com/scripts/push/script/yld8v9vgm2?url=rentalassistance.net&alturl=/article/7007	ScriptElement	7.3 kB	2023-03-12	2024-08-21
Pretty URL trk-keingent.com/scripts/push/script/yld8v9vgm2?url=rentalassistance.net&alturl=/article/7007 IP 172.64.139.7 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:22 Last Seen2024-08-21 08:32 Times Seen10 Hash ee8afc9f6e400b7dcd4eb076de370cfe 4b7dcdf6e7cfc45f717b97f03fe4d00729484948 18653db5e0245a7e2e5d7d20d6b9d2528656dca880fdbc24fe8ceec36dc98ff9 Loading...

	static.vidazoo.com/basev/cmp/1.0.0/cmp.js	ScriptElement	3.4 kB	2023-09-28	2023-10-16
Pretty URL static.vidazoo.com/basev/cmp/1.0.0/cmp.js IP 104.18.6.81 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-28 00:33 Last Seen2023-10-16 04:01 Times Seen26 Hash 58e6c56b21cfa1ed94891eb4a90501e8 e20b4b900e345dd337d197d3eb19a271139a76e6 c473cad95bab41269291531bd9b8391faf29958a7b27e58bcdc58f0a850ee1ed Loading...

	cdnjs.cloudflare.com/ajax/libs/axios/1.2.4/axios.min.js	ScriptElement	31 kB	2023-03-13	2025-04-02
Pretty URL cdnjs.cloudflare.com/ajax/libs/axios/1.2.4/axios.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:50 Last Seen2025-04-02 20:36 Times Seen158 Hash b843d5d6f3c9912a2c5b5056e378f3f2 2463f7b88c39d73a0c1bfa38d494c2d37cdd7590 994d6e124d837856735298c59b571c79f9f61e448c84ad6b742e6f6ba05cbf93 Loading...

	rentalassistance.net/js/main.js?id=ffb2a62d1666817be9f0	ScriptElement	91 kB	2023-07-22	2024-08-21
Pretty URL rentalassistance.net/js/main.js?id=ffb2a62d1666817be9f0 IP 209.212.148.7 ASN #32181 ASN-GIGENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-22 14:56 Last Seen2024-08-21 08:51 Times Seen14 Hash ffb2a62d1666817be9f06ee18933e247 98b5a28e6940af4388c6eded071f1fa247baf83c 2849e8f88f3a5d49e9ce8c080b066b6ea02676a8e17fe2e307e4992ac179acc1 Loading...

	rentalassistance.net/js/i8l-form.js?id=966ad046a118100f3ff3	ScriptElement	229 kB	2023-09-25	2024-08-21
Pretty URL rentalassistance.net/js/i8l-form.js?id=966ad046a118100f3ff3 IP 209.212.148.7 ASN #32181 ASN-GIGENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-25 01:21 Last Seen2024-08-21 05:49 Times Seen7 Hash 8fea9f4de2cc309da4ca28f0131d9348 f14886522314bcb6562e763af02060728512d1f3 6f526778cc6b3317ece175a833d5390b6c593357d4fdf80c85af7093c70ac887 Loading...

	disqus.com/recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net#version=e92e17edc4ee90d40c8117e92cd2348c	ScriptElement	814 B	2023-04-05	2025-02-27
Pretty URL disqus.com/recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net#version=e92e17edc4ee90d40c8117e92cd2348c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 09:47 Last Seen2025-02-27 07:15 Times Seen940 Hash 215fa37f25d2ba0762d6ae1aff0dfbe8 e5f6bce9fecd580d525b629be8d98f63b2d4d44e 0cfefca1cea3afbb940d966a9813555d2d3f58bd28d7f9ba991ec3359eadada0 Loading...

	c.amazon-adsystem.com/aax2/apstag.js	ScriptElement	1.6 kB	2023-05-05	2025-05-10
Pretty URL c.amazon-adsystem.com/aax2/apstag.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 22:57 Last Seen2025-05-10 23:47 Times Seen12434 Hash 7099d0c144c906961206e41b26b23c05 59a67da2d27d4e5fc0e183bb2baeebe39404f553 3f19f9cf504b435adb7e62aac1b420facfc0048d6a4950910fd6f126548cc69e Loading...

	unknown	Function	54 B	2023-04-11	2025-05-10
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 22:34 Last Seen2025-05-10 17:37 Times Seen1568 Hash 21ad6a5e027895d7fef5bee4de0a6c02 1997f8ca0f217c1001a42318dc5976a0d5a56469 6e97ed48cf9a0f9bf4e5199bc5546e24c1067a10e7a582b886143be40f479bb5 Loading...

	static.vidazoo.com/basev/vwpt.js	ScriptElement	235 kB	2023-09-28	2023-10-16
Pretty URL static.vidazoo.com/basev/vwpt.js IP 104.18.6.81 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-28 00:33 Last Seen2023-10-16 04:01 Times Seen26 Hash 743fb5aca052436b451e369876adadba 628e4f1e37f300b39704042b8b117a0f0bf127ed 3c24255cb67d92e525fd52e4a630c6494a914a6333b82eeadbcf57a0c7985f28 Loading...

	player.propervideo.io/new_rtp/main.js	ScriptElement	128 kB	2023-03-08	2024-08-21
Pretty URL player.propervideo.io/new_rtp/main.js IP 104.17.182.240 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37 Last Seen2024-08-21 08:51 Times Seen46 Hash 39cf873df7c93c672abbff2a8af95a81 b3a141858723a93b477d28a92a3ca8a48d693e62 66eec5ff1f5907c3bfb3d9fc41b7a9dba1cb34f81ee6cd1dc5f07da29ba5e977 Loading...

	c.disquscdn.com/next/recommendations/recommendations.bundle.eafbbb421f86bc4475d4beca94ec3812.js	ScriptElement	67 kB	2023-09-09	2023-10-31
Pretty URL c.disquscdn.com/next/recommendations/recommendations.bundle.eafbbb421f86bc4475d4beca94ec3812.js IP 143.204.55.72 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-09 21:13 Last Seen2023-10-31 07:56 Times Seen165 Hash e652602c66bc33549eb049dc637ac7ec e7e1ef3e94a77c3f623109bae84a840def9052f2 8a406724903a0f83bddfe975281ff1ab03cee0e1b8e351997787e5e9a11b9da7 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js	ScriptElement	87 kB	2023-03-07	2025-05-11
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 00:23 Times Seen57529 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91	ScriptElement	427 B	2023-03-12	2025-04-02
Pretty URL rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91 IP 209.212.148.7 ASN #32181 ASN-GIGENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 14:22 Last Seen2025-04-02 20:36 Times Seen25 Hash 3af4f8c83aa6956680d600ff0a77c819 de35bda140dcd84a98e84b4c15765b7a5415c2b4 fe9d1b90db0baed8800bc3b176131624bd94d92a02c4e0dddb8c4d7651afb9a7 Loading...

	unknown	Function	420 B	2023-05-07	2024-08-21
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-05-07 22:21 Last Seen2024-08-21 09:28 Times Seen43 Hash fe8ab88e0f95a52b68f7247313dd7104 47fb5cdad3ad9eba073121ed03818ed5ecaf0757 4250b8584b1b795d60e883c16e701af9baed8d7a81508b1d2f1bb44af6c6159e Loading...

	c.disquscdn.com/next/embed/lounge.load.62db764f4f0426e1eaaed71de8896900.js	ScriptElement	1.2 kB	2023-09-20	2023-10-02
Pretty URL c.disquscdn.com/next/embed/lounge.load.62db764f4f0426e1eaaed71de8896900.js IP 143.204.55.72 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-20 13:45 Last Seen2023-10-02 07:33 Times Seen71 Hash 3187559af6048b462b654ffe3f4370d1 30fb4f140cefbedef63eff73a7bba4bbfc96bcf0 ceaf148b8332b81c551c93aa9124cbdbbbd6192fbb9bfe8dab8501547b35083e Loading...

	rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91	ScriptElement	590 B	2024-08-21	2024-08-21
Pretty URL rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91 IP 209.212.148.7 ASN #32181 ASN-GIGENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 05:38 Last Seen2024-08-21 05:38 Times Seen1 Hash a25992fc7a724bd839f516bff6f0284a 215795adf0dcf802a7837dda32c74661179ed5aa bc451987920be32b2cbc8dd778961ce073a77c784b02f50b5fa0dd10e0bea306 Loading...

	rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91	ScriptElement	874 B	2023-03-08	2024-08-21
Pretty URL rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91 IP 209.212.148.7 ASN #32181 ASN-GIGENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 19:37 Last Seen2024-08-21 08:51 Times Seen12 Hash 545d629089063085ae2892bb65f7b0df aa39e2e7c6ca3a94605d2322d1d145144fb43925 0a4474146b6c8af42d913f284216b1548d63ba46a192ac064df6b17c8bcdc34e Loading...

	www.googletagmanager.com/gtag/js?id=G-41K3WBWRF3	ScriptElement	274 kB	2023-09-28	2023-09-28
Pretty URL www.googletagmanager.com/gtag/js?id=G-41K3WBWRF3 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-28 00:34 Last Seen2023-09-28 00:34 Times Seen1 Hash 31ccf178e756590dda8b19845bf526b9 19cbf48f58d1fc004d5c7bc1520ba271dbca507c d2584157f11343ba7f7834eb77bc35cf7f476f1eaa0519fc0b301743577b9910 Loading...

	unknown	Function	37 B	2023-04-11	2025-05-11
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31 Last Seen2025-05-11 01:13 Times Seen263629 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	www.googletagmanager.com/gtag/js?id=UA-149686528-25&l=dataLayer&cx=c	ScriptElement	176 kB	2023-09-28	2023-09-28
Pretty URL www.googletagmanager.com/gtag/js?id=UA-149686528-25&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-28 00:34 Last Seen2023-09-28 00:34 Times Seen1 Hash 0f54c9655b51f9445d2a87bc7c86402a 7423a91bb69a06f65bbac465dc0df0283c2f4261 a5bd5b63fcee56617eae1f608d5eaf86c0a1830e6f380996c7c543e8728c7e1b Loading...

	global.proper.io/rentalassistance.min.js	ScriptElement	30 kB	2023-08-18	2023-09-28
Pretty URL global.proper.io/rentalassistance.min.js IP 104.16.15.119 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-18 01:49 Last Seen2023-09-28 00:34 Times Seen8 Hash f3f297f212e18bc60bfe02f3e78f1c40 fd5f409f98f922c00c62c5d8fa9b8a589968a1ad 3a8083fe4b3fa0015f786f9a0f58c8507cda745727417861df373cf84b95cd0e Loading...

		Size	First Seen	Last Seen
	#1 Write - bb1dc92a90053df765b632ac1cfcb7ef	142 B	2023-03-08 19:37	2024-08-21 08:51
Pretty Observations First Seen2023-03-08 19:37 Last Seen2024-08-21 08:51 Times Seen16 Hash bb1dc92a90053df765b632ac1cfcb7ef c19c48ed1354c049f3372a97c2e3f5e4b7dd8fa6 ca20144af5d3fe720f442bc89a34a89f926f70b2c32aa950d1d04325e95712dc Loading...

	#2 Write - 3118b0662959097c2eca742d7a184cf6	346 B	2023-03-07 01:24	2025-02-08 20:33
Pretty Observations First Seen2023-03-07 01:24 Last Seen2025-02-08 20:33 Times Seen568 Hash 3118b0662959097c2eca742d7a184cf6 773c12c5def49ef0bfd2d21d191c7f0026c03390 963461f4deff4c2acfbd14a9c4d0d2a17f7912cd7369d27d848d5fbf7b1d99b4 Loading...

	#3 Write - 37618a8e5ef0bc0c56d6a8c43457606b	346 B	2023-03-07 01:24	2025-02-08 20:33
Pretty Observations First Seen2023-03-07 01:24 Last Seen2025-02-08 20:33 Times Seen569 Hash 37618a8e5ef0bc0c56d6a8c43457606b 24385adecb98716a1fe222c0571fd53593e30ac2 049baf67d9a9a73f299a33f9587df1ed129213616e256878e9723db3dc1f09d7 Loading...

HTTP Transactions (132)

URL IP Response Size

ocsp.starfieldtech.com/

192.124.249.41

2.1 kB

URL
ocsp.starfieldtech.com/
IP
192.124.249.41:0
ASN
#30148 SUCURI-SEC

File type
data
Size
2.1 kB (2149 bytes)
Hash
dee7a699a8b8445d0cf49ad3575eaea7
b43a7701b07a14979c0abc52d39ee8721be9e58d
2d2010f7d92564a37a5d3966999480f57e10aa4595803873ee1778e3dd6bbb07

HTTP Headers

POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 27 Sep 2023 22:33:40 GMT
Content-Type: application/ocsp-response
Content-Length: 2149
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 27 Sep 2023 21:33:15 GMT
Expires: Thu, 28 Sep 2023 21:33:15 GMT
ETag: "b43a7701b07a14979c0abc52d39ee8721be9e58d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

www.ncvtracks.com/7MT768/CL62GX/?sub3=6514adae5a03df000117d853&sub2=701&sub1=1651456&sub5=display

34.95.116.176

302 Found

269 B

URL User Request GET HTTP/2
www.ncvtracks.com/7MT768/CL62GX/?sub3=6514adae5a03df000117d853&sub2=701&sub1=1651456&sub5=display
IP
34.95.116.176:443
ASN
#15169 GOOGLE

Certificate
IssuerStarfield Technologies, Inc.
Subjectncvtracks.com
FingerprintFA:B8:A1:E4:BD:48:95:16:A2:89:27:04:FD:B4:6B:E9:86:79:81:53
ValidityFri, 18 Aug 2023 14:52:27 GMT - Wed, 18 Sep 2024 14:52:27 GMT

File type
HTML document, ASCII text
Size
269 B (269 bytes)
Hash
fc646bb940fbc2abfe4ff36d7d7b66ce
9f65235a1c5b6dba3f69d4d1938835827978c756
c17f44dd84b873190fbdbce4c1e54b12a2476f542bc0bb606f886f63436990f6

HTTP Headers

GET /7MT768/CL62GX/?sub3=6514adae5a03df000117d853&sub2=701&sub1=1651456&sub5=display HTTP/1.1
Host: www.ncvtracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx
date: Wed, 27 Sep 2023 22:33:39 GMT
content-type: text/html; charset=utf-8
content-length: 269
accept-ch: Sec-Ch-Ua-Platform-Version
location: https://www.ncvtracks.com/7MT768/CQBNNQ/?__rpt=0&__po=214&__ptid=a9ab9c266c7c4dfc98d66b1385027e53&__rpa=0&__rc=1&sub1=1651456&sub2=701&sub3=6514adae5a03df000117d853&sub4=&sub5=display&source_id=&__pcd=9
set-cookie: uniqueClick_CL62GX=09c72afc-4069-4b86-b461-1397017c481a:1695854019; Path=/; Expires=Fri, 27 Oct 2023 22:33:39 GMT; Secure; SameSite=None
vary: Origin
x-eflow-request-id: 079d185e-bee8-45c0-8d85-09331f4fe788
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.starfieldtech.com/

192.124.249.22

2.1 kB

URL
ocsp.starfieldtech.com/
IP
192.124.249.22:0
ASN
#30148 SUCURI-SEC

File type
data
Size
2.1 kB (2149 bytes)
Hash
dee7a699a8b8445d0cf49ad3575eaea7
b43a7701b07a14979c0abc52d39ee8721be9e58d
2d2010f7d92564a37a5d3966999480f57e10aa4595803873ee1778e3dd6bbb07

HTTP Headers

POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 27 Sep 2023 22:33:40 GMT
Content-Type: application/ocsp-response
Content-Length: 2149
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 27 Sep 2023 21:33:15 GMT
Expires: Thu, 28 Sep 2023 21:33:15 GMT
ETag: "b43a7701b07a14979c0abc52d39ee8721be9e58d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

www.ncvtracks.com/7MT768/CQBNNQ/?__rpt=0&__po=214&__ptid=a9ab9c266c7c4dfc98d66b1385027e53&__rpa=0&__rc=1&sub1=1651456&sub2=701&sub3=6514adae5a03df000117d853&sub4=&sub5=display&source_id=&__pcd=9

34.95.116.176

302 Found

188 B

URL User Request GET HTTP/2
www.ncvtracks.com/7MT768/CQBNNQ/?__rpt=0&__po=214&__ptid=a9ab9c266c7c4dfc98d66b1385027e53&__rpa=0&__rc=1&sub1=1651456&sub2=701&sub3=6514adae5a03df000117d853&sub4=&sub5=display&source_id=&__pcd=9
IP
34.95.116.176:443
ASN
#15169 GOOGLE

Certificate
IssuerStarfield Technologies, Inc.
Subjectncvtracks.com
FingerprintFA:B8:A1:E4:BD:48:95:16:A2:89:27:04:FD:B4:6B:E9:86:79:81:53
ValidityFri, 18 Aug 2023 14:52:27 GMT - Wed, 18 Sep 2024 14:52:27 GMT

File type
HTML document, ASCII text
Size
188 B (188 bytes)
Hash
c13e87337e9f4f3e9bf4108240734875
a41e383f4b2e1228342b9333e2091b8b9f010c95
4a9a1675178bec4ad7cb465170681351b48dd1d545bbef87b0dd9ec869f48ad5

HTTP Headers

GET /7MT768/CQBNNQ/?__rpt=0&__po=214&__ptid=a9ab9c266c7c4dfc98d66b1385027e53&__rpa=0&__rc=1&sub1=1651456&sub2=701&sub3=6514adae5a03df000117d853&sub4=&sub5=display&source_id=&__pcd=9 HTTP/1.1
Host: www.ncvtracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: uniqueClick_CL62GX=09c72afc-4069-4b86-b461-1397017c481a:1695854019
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: nginx
date: Wed, 27 Sep 2023 22:33:39 GMT
content-type: text/html; charset=utf-8
content-length: 188
accept-ch: Sec-Ch-Ua-Platform-Version
location: https://rentalassistance.net/view_article.php?id=7007&sub1=1651456&sub2=701&affiliate_id=147&transaction_id=e3ee37d75be7491394e2468e16996c91&ft=1
set-cookie: uniqueClick_CQBNNQ=fc823293-5337-4611-b8bd-4aa3ef95986e:1695854019; Path=/; Expires=Fri, 27 Oct 2023 22:33:39 GMT; Secure; SameSite=None
transaction_id=e3ee37d75be7491394e2468e16996c91; Path=/; Expires=Tue, 26 Dec 2023 22:33:39 GMT; Secure; SameSite=None
vary: Origin
x-eflow-request-id: 686d312f-8677-4bc3-864c-b22a948a4423
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

rentalassistance.net/view_article.php?id=7007&sub1=1651456&sub2=701&affiliate_id=147&transaction_id=e3ee37d75be7491394e2468e16996c91&ft=1

209.212.148.7

301 Moved Permanently

890 B

URL User Request GET HTTP/1.1
rentalassistance.net/view_article.php?id=7007&sub1=1651456&sub2=701&affiliate_id=147&transaction_id=e3ee37d75be7491394e2468e16996c91&ft=1
IP
209.212.148.7:443
ASN
#32181 ASN-GIGENET

Certificate
IssuerLet's Encrypt
Subjectrentalassistance.net
Fingerprint98:3B:BD:51:D2:38:EE:D2:27:81:FD:D2:17:B8:CB:C6:4F:40:7B:3A
ValidityThu, 10 Aug 2023 21:06:06 GMT - Wed, 08 Nov 2023 21:06:05 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (361)
Size
890 B (890 bytes)
Hash
609e0a606fef07043693eda63c85eca5
d73e159e14a9e9f4dd2f0852cda63f01ee982cd8
944b7fd17a12a38b7a2b532aa9a9d8c151cf35dab3dfd5bf4da7f018b18e48eb

HTTP Headers

GET /view_article.php?id=7007&sub1=1651456&sub2=701&affiliate_id=147&transaction_id=e3ee37d75be7491394e2468e16996c91&ft=1 HTTP/1.1
Host: rentalassistance.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
server: nginx
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
date: Wed, 27 Sep 2023 22:33:40 GMT
location: https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
set-cookie: XSRF-TOKEN=eyJpdiI6IkI4T0tEUGYzOVRici9Dc09VeVRJeGc9PSIsInZhbHVlIjoiUVBKa25sSUV3Vk5YeE4wZzBRR3BOSmdLKzY0MFg5akYxQklidE1pK1ZzUVlyV0FsbFNSa2FNa2UrNmpzNEdFaUJ5RE51c1doWldDVWdWRWJ5K29nUGpXd2QrN1dmSGlmYUdmWEhteW9jK0J1OGZjVWxmZ3V4UTBPVitMN1htK00iLCJtYWMiOiIyNDA4ZDY5ZDIyMWY1YjA4Nzg1MzcwYWJmM2UwNDgwZGU0ZWU2YzZlOGZlYWQ1ZGRiZTBmZjkxMzY0NDQ2MjFkIiwidGFnIjoiIn0%3D; expires=Thu, 28-Sep-2023 00:33:40 GMT; Max-Age=7200; path=/; samesite=lax
datacontrol_nxt_session=eyJpdiI6IkZVZG1maDRhc09URnFDcXAzWW5iL3c9PSIsInZhbHVlIjoiZW01aUJ6TEQwcG9DUVpaUXZlT3NYYjB6K0JIb2VsakxyZUxqYjFERTlpWFlFbmZQOGYxa2IrS2tHV3NsTVM3aXZ4WjVObzVCRGUrQzdDZ2xpcFJEVGx3Tnl0cFRGVTRrUFJOUUI1WEJJVmhhamxlc1BGU3NtODhlbFl5MjFDaTciLCJtYWMiOiI0Y2U3MzVjOWNkNzFlNzhkMzliZjdjMDk0M2MxMDk3OTdhNzgyMDE0MDEwOGNiNTE5ZGY3MTFiMDJmZDMyYzZmIiwidGFnIjoiIn0%3D; expires=Thu, 28-Sep-2023 00:33:40 GMT; Max-Age=7200; path=/; httponly; samesite=lax
referrer-policy: no-referrer-when-downgrade

rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91

209.212.148.7

200 OK

6.8 kB

URL User Request GET HTTP/1.1
rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
IP
209.212.148.7:443
ASN
#32181 ASN-GIGENET

Certificate
IssuerLet's Encrypt
Subjectrentalassistance.net
Fingerprint98:3B:BD:51:D2:38:EE:D2:27:81:FD:D2:17:B8:CB:C6:4F:40:7B:3A
ValidityThu, 10 Aug 2023 21:06:06 GMT - Wed, 08 Nov 2023 21:06:05 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (522), with CRLF, LF line terminators
Size
6.8 kB (6783 bytes)
Hash
08a4317eb92078681ea1f5b7de6fe561
6f40561d18e16fbe000afb759d504d3978ad8415
2d9bb7e0ebf6d6766440ebec414123454a01e43ff30b7933defab465f6db2366

HTTP Headers

GET /article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91 HTTP/1.1
Host: rentalassistance.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IkI4T0tEUGYzOVRici9Dc09VeVRJeGc9PSIsInZhbHVlIjoiUVBKa25sSUV3Vk5YeE4wZzBRR3BOSmdLKzY0MFg5akYxQklidE1pK1ZzUVlyV0FsbFNSa2FNa2UrNmpzNEdFaUJ5RE51c1doWldDVWdWRWJ5K29nUGpXd2QrN1dmSGlmYUdmWEhteW9jK0J1OGZjVWxmZ3V4UTBPVitMN1htK00iLCJtYWMiOiIyNDA4ZDY5ZDIyMWY1YjA4Nzg1MzcwYWJmM2UwNDgwZGU0ZWU2YzZlOGZlYWQ1ZGRiZTBmZjkxMzY0NDQ2MjFkIiwidGFnIjoiIn0%3D; datacontrol_nxt_session=eyJpdiI6IkZVZG1maDRhc09URnFDcXAzWW5iL3c9PSIsInZhbHVlIjoiZW01aUJ6TEQwcG9DUVpaUXZlT3NYYjB6K0JIb2VsakxyZUxqYjFERTlpWFlFbmZQOGYxa2IrS2tHV3NsTVM3aXZ4WjVObzVCRGUrQzdDZ2xpcFJEVGx3Tnl0cFRGVTRrUFJOUUI1WEJJVmhhamxlc1BGU3NtODhlbFl5MjFDaTciLCJtYWMiOiI0Y2U3MzVjOWNkNzFlNzhkMzliZjdjMDk0M2MxMDk3OTdhNzgyMDE0MDEwOGNiNTE5ZGY3MTFiMDJmZDMyYzZmIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
server: nginx
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
cache-control: no-cache, private
date: Wed, 27 Sep 2023 22:33:40 GMT
set-cookie: XSRF-TOKEN=eyJpdiI6IjdqTWx1THdTQTNrQmpZL0hZcVh0bmc9PSIsInZhbHVlIjoiVE9aeVRLYnRBeHROemJHWlJvbFRJWXRQUGoxSEZ3YklyNjN5WlJSOG12eWt4bENxZHFSM1p2MTdUQ1hCalE4bkpiMVBjdkR0TUpzdnR3VHlqTVpRNER3R0FZQUtKTGZiekZDYzZYdmpzSG0vd1ZmVEVkd2M2SVJ5OTVyU0RxUkYiLCJtYWMiOiI4ZjNmZmNhNTY1NTAzMThkODM1ZGE4YzJkOWVjMmE0Yjg0ZjhhZWMyYjgxNzFlMTEzMGM2ZWFiNjlkNjRhNDM4IiwidGFnIjoiIn0%3D; expires=Thu, 28-Sep-2023 00:33:40 GMT; Max-Age=7200; path=/; samesite=lax
datacontrol_nxt_session=eyJpdiI6InVjTTZyYlZqRk1HcldkVGYydis0dmc9PSIsInZhbHVlIjoiVFVEbXU2bjhCb010aFJOcGQ0NmtEcnk2c1g1aDdUVDR6OXM0Z1NqVStpZll0eVQ1bXhYdWNIN3poT3Zrcmw1Mjh6U1hOUjBQUDEzRHpzeElTK1doWGJJQXFaRS9RV0EyY1Q2K09hTWxkQUx3Y2JFeVZ1ZVlQcit2SU5mMG9OWFMiLCJtYWMiOiJhNTQwNDAyNjJhMGViMzAzM2IzNDFjNzQxOTk2MDMyMmM5YzcyMTNiNmMwODlkNzlkNDdiNmM2Yjc3N2QxYmU5IiwidGFnIjoiIn0%3D; expires=Thu, 28-Sep-2023 00:33:40 GMT; Max-Age=7200; path=/; httponly; samesite=lax
referrer-policy: no-referrer-when-downgrade
content-encoding: gzip

cdnjs.cloudflare.com/ajax/libs/axios/1.2.4/axios.min.js

104.17.24.14

200 OK

10 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/axios/1.2.4/axios.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (31114)
Size
10 kB (10499 bytes)
Hash
b843d5d6f3c9912a2c5b5056e378f3f2
2463f7b88c39d73a0c1bfa38d494c2d37cdd7590
994d6e124d837856735298c59b571c79f9f61e448c84ad6b742e6f6ba05cbf93

HTTP Headers

GET /ajax/libs/axios/1.2.4/axios.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: application/javascript; charset=utf-8
content-length: 10499
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64942756-2903"
last-modified: Thu, 22 Jun 2023 10:49:58 GMT
cf-cdnjs-via: cfworker/r2
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2346506
expires: Mon, 16 Sep 2024 22:33:41 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qCi9WK55SaYaB1inWo%2Fp29VLFBZnhaiVUbzJNH6hTiFjFjv8%2F1%2BjbuXsen%2Bdd%2FhTutzSc9sj3W89XqXpaQuvF%2BgZj%2B2mZ%2BBXLZXJO%2FKpIDMf%2FvnOkJXQoBbgTAKZvKeueovjq57X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 80d735b1dcfbb4f9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css

104.17.24.14

200 OK

4.2 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65348)
Size
4.2 kB (4220 bytes)
Hash
c0be8e53226ac34833fd9b5dbc01ebc5
b81ef1b22de26af8a7a4656f565fbc91a69d7518
5fbaeb9f8e25d7e0143bae61d4b1802c16ce7390b96ceb2d498b0d96ff4c853f

HTTP Headers

GET /ajax/libs/animate.css/4.1.1/animate.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: text/css; charset=utf-8
content-length: 4220
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6494263c-107c"
last-modified: Thu, 22 Jun 2023 10:45:16 GMT
cf-cdnjs-via: cfworker/r2
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2371668
expires: Mon, 16 Sep 2024 22:33:41 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j1wEjswggy71nTPxhikmHZDoZncJtOj82YvOVyP8t%2BElUxYBiZs%2FG6h%2BlMCqcNM0ETrA%2B7dzE4hfPrmcsBKr1xbRjMIS29fBjygWSqPPRIYUo3LRKfuWjZ%2FagwMj1Ec3jZ1o7bUQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 80d735b1e9e9b4ff-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js

104.17.24.14

200 OK

6.6 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (20831)
Size
6.6 kB (6645 bytes)
Hash
56456db9d72a4b380ed3cb63095e6022
6dbce88aee15b42f29083df7a07513cf3b486ba0
66f3a07e1fa9b64a686b66381e4458dbc8abf3dbbff954720c4eec07b84411c2

HTTP Headers

GET /ajax/libs/popper.js/1.14.7/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: application/javascript; charset=utf-8
content-length: 6645
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64942d85-19f5"
last-modified: Thu, 22 Jun 2023 11:16:21 GMT
cf-cdnjs-via: cfworker/r2
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2369312
expires: Mon, 16 Sep 2024 22:33:41 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D93VIKya3kqA6yRXHi9WTI5iFAQIC0zfGZn4Db%2FLdyHHHAqQnzU%2F21TfEO9vurU4jE2RMJ%2FGLZ2kY6LtYf4MVJT56xlnN78ioDZgrIfSTEKEAcQ68lvWz6sfvVimWk9HXnZg44ny"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 80d735b1f9ebb4ff-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0bbd1e938700d156e361c1ab8640f3bd
20e70357b360a225b5094714bc89889fd045aa14
7e4f05e6aba3abeaf61da9d17ed8d5518df3bc493c3b319eb29faa4c282fb8db

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 22:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

rentalassistance.net/js/main.js?id=ffb2a62d1666817be9f0

209.212.148.7

200 OK

37 kB

URL GET HTTP/1.1
rentalassistance.net/js/main.js?id=ffb2a62d1666817be9f0
IP
209.212.148.7:443
ASN
#32181 ASN-GIGENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerLet's Encrypt
Subjectrentalassistance.net
Fingerprint98:3B:BD:51:D2:38:EE:D2:27:81:FD:D2:17:B8:CB:C6:4F:40:7B:3A
ValidityThu, 10 Aug 2023 21:06:06 GMT - Wed, 08 Nov 2023 21:06:05 GMT

File type
Unicode text, UTF-8 text, with very long lines (65278)
Size
37 kB (36779 bytes)
Hash
ffb2a62d1666817be9f06ee18933e247
98b5a28e6940af4388c6eded071f1fa247baf83c
2849e8f88f3a5d49e9ce8c080b066b6ea02676a8e17fe2e307e4992ac179acc1

HTTP Headers

GET /js/main.js?id=ffb2a62d1666817be9f0 HTTP/1.1
Host: rentalassistance.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjdqTWx1THdTQTNrQmpZL0hZcVh0bmc9PSIsInZhbHVlIjoiVE9aeVRLYnRBeHROemJHWlJvbFRJWXRQUGoxSEZ3YklyNjN5WlJSOG12eWt4bENxZHFSM1p2MTdUQ1hCalE4bkpiMVBjdkR0TUpzdnR3VHlqTVpRNER3R0FZQUtKTGZiekZDYzZYdmpzSG0vd1ZmVEVkd2M2SVJ5OTVyU0RxUkYiLCJtYWMiOiI4ZjNmZmNhNTY1NTAzMThkODM1ZGE4YzJkOWVjMmE0Yjg0ZjhhZWMyYjgxNzFlMTEzMGM2ZWFiNjlkNjRhNDM4IiwidGFnIjoiIn0%3D; datacontrol_nxt_session=eyJpdiI6InVjTTZyYlZqRk1HcldkVGYydis0dmc9PSIsInZhbHVlIjoiVFVEbXU2bjhCb010aFJOcGQ0NmtEcnk2c1g1aDdUVDR6OXM0Z1NqVStpZll0eVQ1bXhYdWNIN3poT3Zrcmw1Mjh6U1hOUjBQUDEzRHpzeElTK1doWGJJQXFaRS9RV0EyY1Q2K09hTWxkQUx3Y2JFeVZ1ZVlQcit2SU5mMG9OWFMiLCJtYWMiOiJhNTQwNDAyNjJhMGViMzAzM2IzNDFjNzQxOTk2MDMyMmM5YzcyMTNiNmMwODlkNzlkNDdiNmM2Yjc3N2QxYmU5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
server: nginx
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 26 Sep 2023 05:47:03 GMT
transfer-encoding: chunked
vary: Accept-Encoding
etag: W/"65127057-163f5"
access-control-allow-origin: *
content-encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0bbd1e938700d156e361c1ab8640f3bd
20e70357b360a225b5094714bc89889fd045aa14
7e4f05e6aba3abeaf61da9d17ed8d5518df3bc493c3b319eb29faa4c282fb8db

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 22:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
cbb6b90952f5230c043b0bbe8fb528b1
8e990f9e4448fdfb0b2c4dce68a9f5d6e3a843d9
2aaceb74eb7e1e69517de5bb254cdd373aa0abbd1c51acd3495756fec52ec5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 22:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

rentalassistance.net/defaults/css/tipped.css

209.212.148.7

200 OK

3.4 kB

URL GET HTTP/1.1
rentalassistance.net/defaults/css/tipped.css
IP
209.212.148.7:443
ASN
#32181 ASN-GIGENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerLet's Encrypt
Subjectrentalassistance.net
Fingerprint98:3B:BD:51:D2:38:EE:D2:27:81:FD:D2:17:B8:CB:C6:4F:40:7B:3A
ValidityThu, 10 Aug 2023 21:06:06 GMT - Wed, 08 Nov 2023 21:06:05 GMT

File type
ASCII text
Size
3.4 kB (3428 bytes)
Hash
f9c4c37457a619ad34de8b736707a3b4
d44af25580c814acaca579cd7c3c5b809d0442dc
65796617cd732441a55998a27bf1e0c3a8245acdef4d99d0e9e9753c02d389cb

HTTP Headers

GET /defaults/css/tipped.css HTTP/1.1
Host: rentalassistance.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjdqTWx1THdTQTNrQmpZL0hZcVh0bmc9PSIsInZhbHVlIjoiVE9aeVRLYnRBeHROemJHWlJvbFRJWXRQUGoxSEZ3YklyNjN5WlJSOG12eWt4bENxZHFSM1p2MTdUQ1hCalE4bkpiMVBjdkR0TUpzdnR3VHlqTVpRNER3R0FZQUtKTGZiekZDYzZYdmpzSG0vd1ZmVEVkd2M2SVJ5OTVyU0RxUkYiLCJtYWMiOiI4ZjNmZmNhNTY1NTAzMThkODM1ZGE4YzJkOWVjMmE0Yjg0ZjhhZWMyYjgxNzFlMTEzMGM2ZWFiNjlkNjRhNDM4IiwidGFnIjoiIn0%3D; datacontrol_nxt_session=eyJpdiI6InVjTTZyYlZqRk1HcldkVGYydis0dmc9PSIsInZhbHVlIjoiVFVEbXU2bjhCb010aFJOcGQ0NmtEcnk2c1g1aDdUVDR6OXM0Z1NqVStpZll0eVQ1bXhYdWNIN3poT3Zrcmw1Mjh6U1hOUjBQUDEzRHpzeElTK1doWGJJQXFaRS9RV0EyY1Q2K09hTWxkQUx3Y2JFeVZ1ZVlQcit2SU5mMG9OWFMiLCJtYWMiOiJhNTQwNDAyNjJhMGViMzAzM2IzNDFjNzQxOTk2MDMyMmM5YzcyMTNiNmMwODlkNzlkNDdiNmM2Yjc3N2QxYmU5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
server: nginx
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: text/css
last-modified: Tue, 26 Sep 2023 05:47:03 GMT
transfer-encoding: chunked
vary: Accept-Encoding
etag: W/"65127057-32d0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
pragma: public
cache-control: max-age=315360000, public, must-revalidate, proxy-revalidate
access-control-allow-origin: *
content-encoding: gzip

ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js

142.250.74.106

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT

File type
ASCII text, with very long lines (65451)
Size
30 kB (30399 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 25 Sep 2023 17:49:37 GMT
expires: Tue, 24 Sep 2024 17:49:37 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 189844
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-41K3WBWRF3

142.250.74.168

200 OK

92 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-41K3WBWRF3
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT

File type
ASCII text, with very long lines (7470)
Size
92 kB (92208 bytes)
Hash
31ccf178e756590dda8b19845bf526b9
19cbf48f58d1fc004d5c7bc1520ba271dbca507c
d2584157f11343ba7f7834eb77bc35cf7f476f1eaa0519fc0b301743577b9910

HTTP Headers

GET /gtag/js?id=G-41K3WBWRF3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 27 Sep 2023 22:33:41 GMT
expires: Wed, 27 Sep 2023 22:33:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92208
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.r2m02.amazontrust.com/

143.204.48.16

471 B

URL
ocsp.r2m02.amazontrust.com/
IP
143.204.48.16:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
95f4fee8bdcffd613fdf95e913879ae4
2d7fbc8788cce60a2aea9efc7ae2e70a397ce0a1
2948cb4061e936cc770688d3a19846a2a241e0c498409d98a3f52da828f46244

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 27 Sep 2023 22:33:41 GMT
Last-Modified: Wed, 27 Sep 2023 21:44:09 GMT
Server: ECAcc (amb/6B51)
X-Cache: Miss from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7KG-pWhV7IaN6_XjVi4bcSxG9t-lbs2ouk8QK6omViHPxybCKWiJAw==
Age: 2972

rentalassistance.net/js/site_survey.js?id=df0bd7b2a2f287f6f2ea

209.212.148.7

200 OK

14 kB

URL GET HTTP/1.1
rentalassistance.net/js/site_survey.js?id=df0bd7b2a2f287f6f2ea
IP
209.212.148.7:443
ASN
#32181 ASN-GIGENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerLet's Encrypt
Subjectrentalassistance.net
Fingerprint98:3B:BD:51:D2:38:EE:D2:27:81:FD:D2:17:B8:CB:C6:4F:40:7B:3A
ValidityThu, 10 Aug 2023 21:06:06 GMT - Wed, 08 Nov 2023 21:06:05 GMT

File type
ASCII text, with very long lines (38748), with no line terminators
Size
14 kB (14170 bytes)
Hash
df0bd7b2a2f287f6f2ead026a190c1d2
6e5ac4d989d391d575d9b72d1a32f3adec3be30a
950202e213a5a8f457285d735bbc73a712eb868d9540ebdc6007e3b5bf82579a

HTTP Headers

GET /js/site_survey.js?id=df0bd7b2a2f287f6f2ea HTTP/1.1
Host: rentalassistance.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjdqTWx1THdTQTNrQmpZL0hZcVh0bmc9PSIsInZhbHVlIjoiVE9aeVRLYnRBeHROemJHWlJvbFRJWXRQUGoxSEZ3YklyNjN5WlJSOG12eWt4bENxZHFSM1p2MTdUQ1hCalE4bkpiMVBjdkR0TUpzdnR3VHlqTVpRNER3R0FZQUtKTGZiekZDYzZYdmpzSG0vd1ZmVEVkd2M2SVJ5OTVyU0RxUkYiLCJtYWMiOiI4ZjNmZmNhNTY1NTAzMThkODM1ZGE4YzJkOWVjMmE0Yjg0ZjhhZWMyYjgxNzFlMTEzMGM2ZWFiNjlkNjRhNDM4IiwidGFnIjoiIn0%3D; datacontrol_nxt_session=eyJpdiI6InVjTTZyYlZqRk1HcldkVGYydis0dmc9PSIsInZhbHVlIjoiVFVEbXU2bjhCb010aFJOcGQ0NmtEcnk2c1g1aDdUVDR6OXM0Z1NqVStpZll0eVQ1bXhYdWNIN3poT3Zrcmw1Mjh6U1hOUjBQUDEzRHpzeElTK1doWGJJQXFaRS9RV0EyY1Q2K09hTWxkQUx3Y2JFeVZ1ZVlQcit2SU5mMG9OWFMiLCJtYWMiOiJhNTQwNDAyNjJhMGViMzAzM2IzNDFjNzQxOTk2MDMyMmM5YzcyMTNiNmMwODlkNzlkNDdiNmM2Yjc3N2QxYmU5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
server: nginx
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 26 Sep 2023 05:47:03 GMT
transfer-encoding: chunked
vary: Accept-Encoding
etag: W/"65127057-975c"
access-control-allow-origin: *
content-encoding: gzip

rentalassistance.net/templates/rentalassistance.net/css/styles.css

209.212.148.7

200 OK

8.6 kB

URL GET HTTP/1.1
rentalassistance.net/templates/rentalassistance.net/css/styles.css
IP
209.212.148.7:443
ASN
#32181 ASN-GIGENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerLet's Encrypt
Subjectrentalassistance.net
Fingerprint98:3B:BD:51:D2:38:EE:D2:27:81:FD:D2:17:B8:CB:C6:4F:40:7B:3A
ValidityThu, 10 Aug 2023 21:06:06 GMT - Wed, 08 Nov 2023 21:06:05 GMT

File type
assembler source, Unicode text, UTF-8 text
Size
8.6 kB (8551 bytes)
Hash
cbf9e3ea6fc8b8f070d022366491aa28
62c6333f4adf25dd6645023157902b15351d42bf
1c4426b17c5ab2dcae4d2744727ef488914a54a8896b7ecf016687ecdefef3a0

HTTP Headers

GET /templates/rentalassistance.net/css/styles.css HTTP/1.1
Host: rentalassistance.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjdqTWx1THdTQTNrQmpZL0hZcVh0bmc9PSIsInZhbHVlIjoiVE9aeVRLYnRBeHROemJHWlJvbFRJWXRQUGoxSEZ3YklyNjN5WlJSOG12eWt4bENxZHFSM1p2MTdUQ1hCalE4bkpiMVBjdkR0TUpzdnR3VHlqTVpRNER3R0FZQUtKTGZiekZDYzZYdmpzSG0vd1ZmVEVkd2M2SVJ5OTVyU0RxUkYiLCJtYWMiOiI4ZjNmZmNhNTY1NTAzMThkODM1ZGE4YzJkOWVjMmE0Yjg0ZjhhZWMyYjgxNzFlMTEzMGM2ZWFiNjlkNjRhNDM4IiwidGFnIjoiIn0%3D; datacontrol_nxt_session=eyJpdiI6InVjTTZyYlZqRk1HcldkVGYydis0dmc9PSIsInZhbHVlIjoiVFVEbXU2bjhCb010aFJOcGQ0NmtEcnk2c1g1aDdUVDR6OXM0Z1NqVStpZll0eVQ1bXhYdWNIN3poT3Zrcmw1Mjh6U1hOUjBQUDEzRHpzeElTK1doWGJJQXFaRS9RV0EyY1Q2K09hTWxkQUx3Y2JFeVZ1ZVlQcit2SU5mMG9OWFMiLCJtYWMiOiJhNTQwNDAyNjJhMGViMzAzM2IzNDFjNzQxOTk2MDMyMmM5YzcyMTNiNmMwODlkNzlkNDdiNmM2Yjc3N2QxYmU5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
server: nginx
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: text/css
last-modified: Tue, 26 Sep 2023 05:47:03 GMT
transfer-encoding: chunked
vary: Accept-Encoding
etag: W/"65127057-8046"
expires: Thu, 31 Dec 2037 23:55:55 GMT
pragma: public
cache-control: max-age=315360000, public, must-revalidate, proxy-revalidate
access-control-allow-origin: *
content-encoding: gzip

rentalassistance.net/defaults/css/defaults.css

209.212.148.7

200 OK

365 B

URL GET HTTP/1.1
rentalassistance.net/defaults/css/defaults.css
IP
209.212.148.7:443
ASN
#32181 ASN-GIGENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerLet's Encrypt
Subjectrentalassistance.net
Fingerprint98:3B:BD:51:D2:38:EE:D2:27:81:FD:D2:17:B8:CB:C6:4F:40:7B:3A
ValidityThu, 10 Aug 2023 21:06:06 GMT - Wed, 08 Nov 2023 21:06:05 GMT

File type
ASCII text
Size
365 B (365 bytes)
Hash
88d58176f8410735b375953cbdbe4778
fe29c95576ac6b520eca6b922577d70bd62e6425
bad3e566fceb42c0ff9191627be3d1a717653eb47f4c7c3e0ae77b5336f35fc7

HTTP Headers

GET /defaults/css/defaults.css HTTP/1.1
Host: rentalassistance.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjdqTWx1THdTQTNrQmpZL0hZcVh0bmc9PSIsInZhbHVlIjoiVE9aeVRLYnRBeHROemJHWlJvbFRJWXRQUGoxSEZ3YklyNjN5WlJSOG12eWt4bENxZHFSM1p2MTdUQ1hCalE4bkpiMVBjdkR0TUpzdnR3VHlqTVpRNER3R0FZQUtKTGZiekZDYzZYdmpzSG0vd1ZmVEVkd2M2SVJ5OTVyU0RxUkYiLCJtYWMiOiI4ZjNmZmNhNTY1NTAzMThkODM1ZGE4YzJkOWVjMmE0Yjg0ZjhhZWMyYjgxNzFlMTEzMGM2ZWFiNjlkNjRhNDM4IiwidGFnIjoiIn0%3D; datacontrol_nxt_session=eyJpdiI6InVjTTZyYlZqRk1HcldkVGYydis0dmc9PSIsInZhbHVlIjoiVFVEbXU2bjhCb010aFJOcGQ0NmtEcnk2c1g1aDdUVDR6OXM0Z1NqVStpZll0eVQ1bXhYdWNIN3poT3Zrcmw1Mjh6U1hOUjBQUDEzRHpzeElTK1doWGJJQXFaRS9RV0EyY1Q2K09hTWxkQUx3Y2JFeVZ1ZVlQcit2SU5mMG9OWFMiLCJtYWMiOiJhNTQwNDAyNjJhMGViMzAzM2IzNDFjNzQxOTk2MDMyMmM5YzcyMTNiNmMwODlkNzlkNDdiNmM2Yjc3N2QxYmU5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
server: nginx
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: text/css
last-modified: Tue, 26 Sep 2023 05:47:03 GMT
transfer-encoding: chunked
vary: Accept-Encoding
etag: W/"65127057-325"
expires: Thu, 31 Dec 2037 23:55:55 GMT
pragma: public
cache-control: max-age=315360000, public, must-revalidate, proxy-revalidate
access-control-allow-origin: *
content-encoding: gzip

rentalassistance.net/js/alpine.js?id=a9cef5dfc27b0838cb90

209.212.148.7

200 OK

16 kB

URL GET HTTP/1.1
rentalassistance.net/js/alpine.js?id=a9cef5dfc27b0838cb90
IP
209.212.148.7:443
ASN
#32181 ASN-GIGENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerLet's Encrypt
Subjectrentalassistance.net
Fingerprint98:3B:BD:51:D2:38:EE:D2:27:81:FD:D2:17:B8:CB:C6:4F:40:7B:3A
ValidityThu, 10 Aug 2023 21:06:06 GMT - Wed, 08 Nov 2023 21:06:05 GMT

File type
ASCII text, with very long lines (38945), with no line terminators
Size
16 kB (15805 bytes)
Hash
a9cef5dfc27b0838cb90388a606df0c6
615e28f22c298090a9043a634d134552adad16df
53e6cf700a973f6af37be2ff3c0b74c816e107920209d6965555f71c18c666de

HTTP Headers

GET /js/alpine.js?id=a9cef5dfc27b0838cb90 HTTP/1.1
Host: rentalassistance.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjdqTWx1THdTQTNrQmpZL0hZcVh0bmc9PSIsInZhbHVlIjoiVE9aeVRLYnRBeHROemJHWlJvbFRJWXRQUGoxSEZ3YklyNjN5WlJSOG12eWt4bENxZHFSM1p2MTdUQ1hCalE4bkpiMVBjdkR0TUpzdnR3VHlqTVpRNER3R0FZQUtKTGZiekZDYzZYdmpzSG0vd1ZmVEVkd2M2SVJ5OTVyU0RxUkYiLCJtYWMiOiI4ZjNmZmNhNTY1NTAzMThkODM1ZGE4YzJkOWVjMmE0Yjg0ZjhhZWMyYjgxNzFlMTEzMGM2ZWFiNjlkNjRhNDM4IiwidGFnIjoiIn0%3D; datacontrol_nxt_session=eyJpdiI6InVjTTZyYlZqRk1HcldkVGYydis0dmc9PSIsInZhbHVlIjoiVFVEbXU2bjhCb010aFJOcGQ0NmtEcnk2c1g1aDdUVDR6OXM0Z1NqVStpZll0eVQ1bXhYdWNIN3poT3Zrcmw1Mjh6U1hOUjBQUDEzRHpzeElTK1doWGJJQXFaRS9RV0EyY1Q2K09hTWxkQUx3Y2JFeVZ1ZVlQcit2SU5mMG9OWFMiLCJtYWMiOiJhNTQwNDAyNjJhMGViMzAzM2IzNDFjNzQxOTk2MDMyMmM5YzcyMTNiNmMwODlkNzlkNDdiNmM2Yjc3N2QxYmU5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
server: nginx
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 26 Sep 2023 05:47:03 GMT
transfer-encoding: chunked
vary: Accept-Encoding
etag: W/"65127057-9821"
access-control-allow-origin: *
content-encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0bbd1e938700d156e361c1ab8640f3bd
20e70357b360a225b5094714bc89889fd045aa14
7e4f05e6aba3abeaf61da9d17ed8d5518df3bc493c3b319eb29faa4c282fb8db

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 22:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
cbb6b90952f5230c043b0bbe8fb528b1
8e990f9e4448fdfb0b2c4dce68a9f5d6e3a843d9
2aaceb74eb7e1e69517de5bb254cdd373aa0abbd1c51acd3495756fec52ec5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 22:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0bbd1e938700d156e361c1ab8640f3bd
20e70357b360a225b5094714bc89889fd045aa14
7e4f05e6aba3abeaf61da9d17ed8d5518df3bc493c3b319eb29faa4c282fb8db

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 22:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

rentalassistance.net/js/forms.v2.js?id=1cea2f7e69931dfa6059

209.212.148.7

200 OK

32 kB

URL GET HTTP/1.1
rentalassistance.net/js/forms.v2.js?id=1cea2f7e69931dfa6059
IP
209.212.148.7:443
ASN
#32181 ASN-GIGENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerLet's Encrypt
Subjectrentalassistance.net
Fingerprint98:3B:BD:51:D2:38:EE:D2:27:81:FD:D2:17:B8:CB:C6:4F:40:7B:3A
ValidityThu, 10 Aug 2023 21:06:06 GMT - Wed, 08 Nov 2023 21:06:05 GMT

File type
Unicode text, UTF-8 text, with very long lines (65274)
Size
32 kB (32476 bytes)
Hash
1cea2f7e69931dfa60596a8c3f192315
73b77cdf530e99fe8eed2988719891c7e49d944a
dc0dc6d45f9bb3e8da7e7d21bdb023b9b49e19d46ba2b115d1a91c492d730ac6

HTTP Headers

GET /js/forms.v2.js?id=1cea2f7e69931dfa6059 HTTP/1.1
Host: rentalassistance.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjdqTWx1THdTQTNrQmpZL0hZcVh0bmc9PSIsInZhbHVlIjoiVE9aeVRLYnRBeHROemJHWlJvbFRJWXRQUGoxSEZ3YklyNjN5WlJSOG12eWt4bENxZHFSM1p2MTdUQ1hCalE4bkpiMVBjdkR0TUpzdnR3VHlqTVpRNER3R0FZQUtKTGZiekZDYzZYdmpzSG0vd1ZmVEVkd2M2SVJ5OTVyU0RxUkYiLCJtYWMiOiI4ZjNmZmNhNTY1NTAzMThkODM1ZGE4YzJkOWVjMmE0Yjg0ZjhhZWMyYjgxNzFlMTEzMGM2ZWFiNjlkNjRhNDM4IiwidGFnIjoiIn0%3D; datacontrol_nxt_session=eyJpdiI6InVjTTZyYlZqRk1HcldkVGYydis0dmc9PSIsInZhbHVlIjoiVFVEbXU2bjhCb010aFJOcGQ0NmtEcnk2c1g1aDdUVDR6OXM0Z1NqVStpZll0eVQ1bXhYdWNIN3poT3Zrcmw1Mjh6U1hOUjBQUDEzRHpzeElTK1doWGJJQXFaRS9RV0EyY1Q2K09hTWxkQUx3Y2JFeVZ1ZVlQcit2SU5mMG9OWFMiLCJtYWMiOiJhNTQwNDAyNjJhMGViMzAzM2IzNDFjNzQxOTk2MDMyMmM5YzcyMTNiNmMwODlkNzlkNDdiNmM2Yjc3N2QxYmU5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
server: nginx
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 26 Sep 2023 05:47:03 GMT
transfer-encoding: chunked
vary: Accept-Encoding
etag: W/"65127057-13b57"
access-control-allow-origin: *
content-encoding: gzip

rentalassistance.net/defaults/js/tipped.js

209.212.148.7

200 OK

24 kB

URL GET HTTP/1.1
rentalassistance.net/defaults/js/tipped.js
IP
209.212.148.7:443
ASN
#32181 ASN-GIGENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerLet's Encrypt
Subjectrentalassistance.net
Fingerprint98:3B:BD:51:D2:38:EE:D2:27:81:FD:D2:17:B8:CB:C6:4F:40:7B:3A
ValidityThu, 10 Aug 2023 21:06:06 GMT - Wed, 08 Nov 2023 21:06:05 GMT

File type
ASCII text, with very long lines (32122)
Size
24 kB (23617 bytes)
Hash
123ce0435733333752af5433a51b72d8
9dfc0f5fe1b7bf77dba1f88c15b681f07ddc7682
7b0fc94d83150b73dc566b933bc5c823621e210de6d45621d1101207202d0a15

HTTP Headers

GET /defaults/js/tipped.js HTTP/1.1
Host: rentalassistance.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjdqTWx1THdTQTNrQmpZL0hZcVh0bmc9PSIsInZhbHVlIjoiVE9aeVRLYnRBeHROemJHWlJvbFRJWXRQUGoxSEZ3YklyNjN5WlJSOG12eWt4bENxZHFSM1p2MTdUQ1hCalE4bkpiMVBjdkR0TUpzdnR3VHlqTVpRNER3R0FZQUtKTGZiekZDYzZYdmpzSG0vd1ZmVEVkd2M2SVJ5OTVyU0RxUkYiLCJtYWMiOiI4ZjNmZmNhNTY1NTAzMThkODM1ZGE4YzJkOWVjMmE0Yjg0ZjhhZWMyYjgxNzFlMTEzMGM2ZWFiNjlkNjRhNDM4IiwidGFnIjoiIn0%3D; datacontrol_nxt_session=eyJpdiI6InVjTTZyYlZqRk1HcldkVGYydis0dmc9PSIsInZhbHVlIjoiVFVEbXU2bjhCb010aFJOcGQ0NmtEcnk2c1g1aDdUVDR6OXM0Z1NqVStpZll0eVQ1bXhYdWNIN3poT3Zrcmw1Mjh6U1hOUjBQUDEzRHpzeElTK1doWGJJQXFaRS9RV0EyY1Q2K09hTWxkQUx3Y2JFeVZ1ZVlQcit2SU5mMG9OWFMiLCJtYWMiOiJhNTQwNDAyNjJhMGViMzAzM2IzNDFjNzQxOTk2MDMyMmM5YzcyMTNiNmMwODlkNzlkNDdiNmM2Yjc3N2QxYmU5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
server: nginx
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 26 Sep 2023 05:47:03 GMT
transfer-encoding: chunked
vary: Accept-Encoding
etag: W/"65127057-12680"
access-control-allow-origin: *
content-encoding: gzip

host1.easypolls.net/ext/scripts/emPoll.js?p=5d66c61fe4b067f237f9e485

54.173.157.100

200 OK

4.8 kB

URL GET HTTP/2
host1.easypolls.net/ext/scripts/emPoll.js?p=5d66c61fe4b067f237f9e485
IP
54.173.157.100:443
ASN
#14618 AMAZON-AES

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerAmazon
Subject*.easypolls.net
FingerprintC2:CA:75:66:0E:2D:31:DF:4A:66:BF:D7:FF:16:D2:C6:DF:32:2B:0C
ValidityThu, 23 Feb 2023 00:00:00 GMT - Wed, 03 Jan 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (4750), with no line terminators
Size
4.8 kB (4750 bytes)
Hash
61ef3fde42ab270669d4ba44a455105e
fec7f72b57f5aaa2649b6ab710571af37258d156
90efb9879ba1ebfaf5db63ec1104af7ea46d8d075789e8755e45e4c49a4d1a99

HTTP Headers

GET /ext/scripts/emPoll.js?p=5d66c61fe4b067f237f9e485 HTTP/1.1
Host: host1.easypolls.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: application/javascript
content-length: 4750
set-cookie: AWSALBTG=63N2vUjw2jrqo3jAosJV9I/UwSmhrguWZVuu2/sp6TUhMhpj3dpV8v1CVUhUYTfv+bbt+KhWWOTqZZke9qizhDxEMNR5MtR0FxgRXTX+DIXZBESZFvjRkG+0Y86KVHvVlWIKxsxFCCwH0GPTLTJ75oCPil1VWXIT2DUq714wIMU7; Expires=Wed, 04 Oct 2023 22:33:41 GMT; Path=/
AWSALBTGCORS=63N2vUjw2jrqo3jAosJV9I/UwSmhrguWZVuu2/sp6TUhMhpj3dpV8v1CVUhUYTfv+bbt+KhWWOTqZZke9qizhDxEMNR5MtR0FxgRXTX+DIXZBESZFvjRkG+0Y86KVHvVlWIKxsxFCCwH0GPTLTJ75oCPil1VWXIT2DUq714wIMU7; Expires=Wed, 04 Oct 2023 22:33:41 GMT; Path=/; SameSite=None; Secure
AWSALB=w4rAn0cpFc+ImJWvd0qApsd5Ir04ydTZFuSoPMqv+bBf5CVZdxZI88CAqCkmEhiDPqFVHwloPJGmweE3oi7UxvnLXkHr02WZVhIJryuIU0NslgzmnbwB1MC7M9pk; Expires=Wed, 04 Oct 2023 22:33:41 GMT; Path=/
AWSALBCORS=w4rAn0cpFc+ImJWvd0qApsd5Ir04ydTZFuSoPMqv+bBf5CVZdxZI88CAqCkmEhiDPqFVHwloPJGmweE3oi7UxvnLXkHr02WZVhIJryuIU0NslgzmnbwB1MC7M9pk; Expires=Wed, 04 Oct 2023 22:33:41 GMT; Path=/; SameSite=None; Secure
server: nginx
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
last-modified: Wednesday, 27-Sep-2023 22:33:41 UTC
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
accept-ranges: bytes
X-Firefox-Spdy: h2

rentalassistance.net/js/i8l-form.js?id=966ad046a118100f3ff3

209.212.148.7

200 OK

90 kB

URL GET HTTP/1.1
rentalassistance.net/js/i8l-form.js?id=966ad046a118100f3ff3
IP
209.212.148.7:443
ASN
#32181 ASN-GIGENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerLet's Encrypt
Subjectrentalassistance.net
Fingerprint98:3B:BD:51:D2:38:EE:D2:27:81:FD:D2:17:B8:CB:C6:4F:40:7B:3A
ValidityThu, 10 Aug 2023 21:06:06 GMT - Wed, 08 Nov 2023 21:06:05 GMT

File type
Unicode text, UTF-8 text, with very long lines (65274)
Size
90 kB (89577 bytes)
Hash
8fea9f4de2cc309da4ca28f0131d9348
f14886522314bcb6562e763af02060728512d1f3
6f526778cc6b3317ece175a833d5390b6c593357d4fdf80c85af7093c70ac887

HTTP Headers

GET /js/i8l-form.js?id=966ad046a118100f3ff3 HTTP/1.1
Host: rentalassistance.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjdqTWx1THdTQTNrQmpZL0hZcVh0bmc9PSIsInZhbHVlIjoiVE9aeVRLYnRBeHROemJHWlJvbFRJWXRQUGoxSEZ3YklyNjN5WlJSOG12eWt4bENxZHFSM1p2MTdUQ1hCalE4bkpiMVBjdkR0TUpzdnR3VHlqTVpRNER3R0FZQUtKTGZiekZDYzZYdmpzSG0vd1ZmVEVkd2M2SVJ5OTVyU0RxUkYiLCJtYWMiOiI4ZjNmZmNhNTY1NTAzMThkODM1ZGE4YzJkOWVjMmE0Yjg0ZjhhZWMyYjgxNzFlMTEzMGM2ZWFiNjlkNjRhNDM4IiwidGFnIjoiIn0%3D; datacontrol_nxt_session=eyJpdiI6InVjTTZyYlZqRk1HcldkVGYydis0dmc9PSIsInZhbHVlIjoiVFVEbXU2bjhCb010aFJOcGQ0NmtEcnk2c1g1aDdUVDR6OXM0Z1NqVStpZll0eVQ1bXhYdWNIN3poT3Zrcmw1Mjh6U1hOUjBQUDEzRHpzeElTK1doWGJJQXFaRS9RV0EyY1Q2K09hTWxkQUx3Y2JFeVZ1ZVlQcit2SU5mMG9OWFMiLCJtYWMiOiJhNTQwNDAyNjJhMGViMzAzM2IzNDFjNzQxOTk2MDMyMmM5YzcyMTNiNmMwODlkNzlkNDdiNmM2Yjc3N2QxYmU5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
server: nginx
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 26 Sep 2023 05:47:03 GMT
transfer-encoding: chunked
vary: Accept-Encoding
etag: W/"65127057-37e16"
access-control-allow-origin: *
content-encoding: gzip

rentalassistance.net/templates/rentalassistance.net/images/svg/site-logo.svg

209.212.148.7

200 OK

14 kB

URL GET HTTP/1.1
rentalassistance.net/templates/rentalassistance.net/images/svg/site-logo.svg
IP
209.212.148.7:443
ASN
#32181 ASN-GIGENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerLet's Encrypt
Subjectrentalassistance.net
Fingerprint98:3B:BD:51:D2:38:EE:D2:27:81:FD:D2:17:B8:CB:C6:4F:40:7B:3A
ValidityThu, 10 Aug 2023 21:06:06 GMT - Wed, 08 Nov 2023 21:06:05 GMT

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
14 kB (13716 bytes)
Hash
aa6189f9cb83090bc0f8c688503b7ea4
d13290c9751a6d3e09a7dba9932c62120c52d9f0
6cb81ff017c33214596ee7b4f93bf1428e34b81db4161a237c4b88cca5268e2c

HTTP Headers

GET /templates/rentalassistance.net/images/svg/site-logo.svg HTTP/1.1
Host: rentalassistance.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjdqTWx1THdTQTNrQmpZL0hZcVh0bmc9PSIsInZhbHVlIjoiVE9aeVRLYnRBeHROemJHWlJvbFRJWXRQUGoxSEZ3YklyNjN5WlJSOG12eWt4bENxZHFSM1p2MTdUQ1hCalE4bkpiMVBjdkR0TUpzdnR3VHlqTVpRNER3R0FZQUtKTGZiekZDYzZYdmpzSG0vd1ZmVEVkd2M2SVJ5OTVyU0RxUkYiLCJtYWMiOiI4ZjNmZmNhNTY1NTAzMThkODM1ZGE4YzJkOWVjMmE0Yjg0ZjhhZWMyYjgxNzFlMTEzMGM2ZWFiNjlkNjRhNDM4IiwidGFnIjoiIn0%3D; datacontrol_nxt_session=eyJpdiI6InVjTTZyYlZqRk1HcldkVGYydis0dmc9PSIsInZhbHVlIjoiVFVEbXU2bjhCb010aFJOcGQ0NmtEcnk2c1g1aDdUVDR6OXM0Z1NqVStpZll0eVQ1bXhYdWNIN3poT3Zrcmw1Mjh6U1hOUjBQUDEzRHpzeElTK1doWGJJQXFaRS9RV0EyY1Q2K09hTWxkQUx3Y2JFeVZ1ZVlQcit2SU5mMG9OWFMiLCJtYWMiOiJhNTQwNDAyNjJhMGViMzAzM2IzNDFjNzQxOTk2MDMyMmM5YzcyMTNiNmMwODlkNzlkNDdiNmM2Yjc3N2QxYmU5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
server: nginx
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: image/svg+xml
content-length: 13716
last-modified: Tue, 26 Sep 2023 05:47:03 GMT
etag: "65127057-3594"
expires: Thu, 31 Dec 2037 23:55:55 GMT
pragma: public
cache-control: max-age=315360000, public, must-revalidate, proxy-revalidate
access-control-allow-origin: *
accept-ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c84db2aa974ecd33b439a3a6124cea47
a55ea70feb23dfce1365b7aeb60cd3047b0ca1bb
5b6308af9df276542b1f5542a75827208cc0cb612feffc28efd3ef79da97d97a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 22:33:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c84db2aa974ecd33b439a3a6124cea47
a55ea70feb23dfce1365b7aeb60cd3047b0ca1bb
5b6308af9df276542b1f5542a75827208cc0cb612feffc28efd3ef79da97d97a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 22:33:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2

216.58.207.227

200 OK

28 kB

URL GET HTTP/2
fonts.gstatic.com/s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28064, version 1.0\012- data
Size
28 kB (28064 bytes)
Hash
314d6364bbee6681d0b2364ee3555e2e
c5aab803abe36bf664d7b7e2a3731cd849337006
5a42c91e1ecc9b09346a1520d9a6f98074c13eebfb1cc87c4e82e5992beb685b

HTTP Headers

GET /s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28064
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 21:04:00 GMT
expires: Sat, 21 Sep 2024 21:04:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:22:14 GMT
content-type: font/woff2
age: 437382
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2

216.58.207.227

200 OK

28 kB

URL GET HTTP/2
fonts.gstatic.com/s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28064, version 1.0\012- data
Size
28 kB (28064 bytes)
Hash
314d6364bbee6681d0b2364ee3555e2e
c5aab803abe36bf664d7b7e2a3731cd849337006
5a42c91e1ecc9b09346a1520d9a6f98074c13eebfb1cc87c4e82e5992beb685b

HTTP Headers

GET /s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28064
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 21:04:00 GMT
expires: Sat, 21 Sep 2024 21:04:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:22:14 GMT
content-type: font/woff2
age: 437382
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

rentalassistance.net/templates/rentalassistance.net/images/svg/icon-search.svg

209.212.148.7

200 OK

1.3 kB

URL GET HTTP/1.1
rentalassistance.net/templates/rentalassistance.net/images/svg/icon-search.svg
IP
209.212.148.7:443
ASN
#32181 ASN-GIGENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerLet's Encrypt
Subjectrentalassistance.net
Fingerprint98:3B:BD:51:D2:38:EE:D2:27:81:FD:D2:17:B8:CB:C6:4F:40:7B:3A
ValidityThu, 10 Aug 2023 21:06:06 GMT - Wed, 08 Nov 2023 21:06:05 GMT

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.3 kB (1285 bytes)
Hash
7c28cddd99dfdefc95229c9ac9bdafa8
253df86afd333e582063bb7bbc60a79d6d0b58ee
aad02338567c96ff7f2924eec32cee049f2d1e6ef2366086f3bb264b5fb606a1

HTTP Headers

GET /templates/rentalassistance.net/images/svg/icon-search.svg HTTP/1.1
Host: rentalassistance.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/templates/rentalassistance.net/css/styles.css
Cookie: XSRF-TOKEN=eyJpdiI6IjdqTWx1THdTQTNrQmpZL0hZcVh0bmc9PSIsInZhbHVlIjoiVE9aeVRLYnRBeHROemJHWlJvbFRJWXRQUGoxSEZ3YklyNjN5WlJSOG12eWt4bENxZHFSM1p2MTdUQ1hCalE4bkpiMVBjdkR0TUpzdnR3VHlqTVpRNER3R0FZQUtKTGZiekZDYzZYdmpzSG0vd1ZmVEVkd2M2SVJ5OTVyU0RxUkYiLCJtYWMiOiI4ZjNmZmNhNTY1NTAzMThkODM1ZGE4YzJkOWVjMmE0Yjg0ZjhhZWMyYjgxNzFlMTEzMGM2ZWFiNjlkNjRhNDM4IiwidGFnIjoiIn0%3D; datacontrol_nxt_session=eyJpdiI6InVjTTZyYlZqRk1HcldkVGYydis0dmc9PSIsInZhbHVlIjoiVFVEbXU2bjhCb010aFJOcGQ0NmtEcnk2c1g1aDdUVDR6OXM0Z1NqVStpZll0eVQ1bXhYdWNIN3poT3Zrcmw1Mjh6U1hOUjBQUDEzRHpzeElTK1doWGJJQXFaRS9RV0EyY1Q2K09hTWxkQUx3Y2JFeVZ1ZVlQcit2SU5mMG9OWFMiLCJtYWMiOiJhNTQwNDAyNjJhMGViMzAzM2IzNDFjNzQxOTk2MDMyMmM5YzcyMTNiNmMwODlkNzlkNDdiNmM2Yjc3N2QxYmU5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
server: nginx
date: Wed, 27 Sep 2023 22:33:42 GMT
content-type: image/svg+xml
content-length: 1285
last-modified: Tue, 26 Sep 2023 05:47:03 GMT
etag: "65127057-505"
expires: Thu, 31 Dec 2037 23:55:55 GMT
pragma: public
cache-control: max-age=315360000, public, must-revalidate, proxy-revalidate
access-control-allow-origin: *
accept-ranges: bytes

fonts.gstatic.com/s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2

216.58.207.227

200 OK

28 kB

URL GET HTTP/2
fonts.gstatic.com/s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28064, version 1.0\012- data
Size
28 kB (28064 bytes)
Hash
314d6364bbee6681d0b2364ee3555e2e
c5aab803abe36bf664d7b7e2a3731cd849337006
5a42c91e1ecc9b09346a1520d9a6f98074c13eebfb1cc87c4e82e5992beb685b

HTTP Headers

GET /s/quicksand/v31/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28064
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 21:04:00 GMT
expires: Sat, 21 Sep 2024 21:04:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:22:14 GMT
content-type: font/woff2
age: 437382
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c84db2aa974ecd33b439a3a6124cea47
a55ea70feb23dfce1365b7aeb60cd3047b0ca1bb
5b6308af9df276542b1f5542a75827208cc0cb612feffc28efd3ef79da97d97a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 22:33:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-149686528-25&l=dataLayer&cx=c

142.250.74.168

200 OK

65 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=UA-149686528-25&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT

File type
ASCII text, with very long lines (2952)
Size
65 kB (64863 bytes)
Hash
0f54c9655b51f9445d2a87bc7c86402a
7423a91bb69a06f65bbac465dc0df0283c2f4261
a5bd5b63fcee56617eae1f608d5eaf86c0a1830e6f380996c7c543e8728c7e1b

HTTP Headers

GET /gtag/js?id=UA-149686528-25&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 27 Sep 2023 22:33:42 GMT
expires: Wed, 27 Sep 2023 22:33:42 GMT
cache-control: private, max-age=900
last-modified: Wed, 27 Sep 2023 22:08:23 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64863
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js

142.250.74.106

200 OK

93 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT

File type
ASCII text, with very long lines (32072)
Size
93 kB (93100 bytes)
Hash
e0e0559014b222245deb26b6ae8bd940
e2f3603e23711f6446f278a411d905623d65201e
89a15e9c40bc6b14809f236ee8cd3ed1ea42393c1f6ca55c7855cd779b3f922e

HTTP Headers

GET /ajax/libs/jquery/1.10.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 93100
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 26 Sep 2023 04:14:18 GMT
expires: Wed, 25 Sep 2024 04:14:18 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 152364
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

maxcdn.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css

104.18.10.207

200 OK

31 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65324)
Size
31 kB (31384 bytes)
Hash
a15c2ac3234aa8f6064ef9c1f7383c37
6e10354828454898fda80f55f3decb347fd9ed21
60b19e5da6a9234ff9220668a5ec1125c157a268513256188ee80f2d2c8d8d36

HTTP Headers

GET /bootstrap/4.3.1/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:08 GMT
cdn-cachedat: 08/11/2021 05:41:31
cdn-edgestorageid: 756
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.0
cdn-requestid: 313ad02a214f6bc0a71a4ade9593c82e
cdn-cache: HIT
cf-cache-status: HIT
age: 2372699
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 80d735b15b2fb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

benefitsdepot-net.disqus.com/embed.js

199.232.192.134

200 OK

25 kB

URL GET HTTP/1.1
benefitsdepot-net.disqus.com/embed.js
IP
199.232.192.134:443
ASN
#54113 FASTLY

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerSectigo Limited
Subject*.disqus.com
FingerprintB7:D2:67:1F:60:9E:37:2D:5A:10:2F:B0:70:75:32:44:91:61:67:D5
ValidityThu, 13 Apr 2023 00:00:00 GMT - Sat, 20 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32007)
Size
25 kB (25398 bytes)
Hash
9d8818ad1181ab94a7a98605410a441b
e9921ac2cc94fdaf8b9e380debb9e006375c25fd
09da12a737a2633e41fbe2d10822861cdc27d123c5edabcbbe4e471cff7c2932

HTTP Headers

GET /embed.js HTTP/1.1
Host: benefitsdepot-net.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 25398
Server: openresty
Content-Type: application/javascript; charset=utf-8
X-Service: router
Content-Encoding: gzip
Date: Wed, 27 Sep 2023 22:33:43 GMT
Age: 0
Vary: Accept-Encoding
Cache-Control: private, max-age=60
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect

trk-keingent.com/scripts/push/script/yld8v9vgm2?url=rentalassistance.net&alturl=/article/7007

172.64.139.7

200 OK

2.3 kB

URL GET HTTP/2
trk-keingent.com/scripts/push/script/yld8v9vgm2?url=rentalassistance.net&alturl=/article/7007
IP
172.64.139.7:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerGoogle Trust Services LLC
Subjecttrk-keingent.com
FingerprintF9:B9:93:E7:3D:BB:69:8E:4F:AE:4F:F2:13:46:4E:EA:7A:A0:44:34
ValiditySat, 05 Aug 2023 01:51:02 GMT - Fri, 03 Nov 2023 01:51:01 GMT

File type
ASCII text, with very long lines (7347)
Size
2.3 kB (2326 bytes)
Hash
ee8afc9f6e400b7dcd4eb076de370cfe
4b7dcdf6e7cfc45f717b97f03fe4d00729484948
18653db5e0245a7e2e5d7d20d6b9d2528656dca880fdbc24fe8ceec36dc98ff9

HTTP Headers

GET /scripts/push/script/yld8v9vgm2?url=rentalassistance.net&alturl=/article/7007 HTTP/1.1
Host: trk-keingent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:42 GMT
content-type: application/javascript;charset=UTF-8
expires: 0
cache-control: max-age=14400, must-revalidate
x-xss-protection: 1; mode=block
pragma: no-cache
x-frame-options: DENY
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src https://* data:; font-src 'self' data:
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-content-type-options: nosniff
feature-policy: geolocation 'none'; midi 'none'; sync-xhr 'none'; microphone 'none'; camera 'none'; magnetometer 'none'; gyroscope 'none'; fullscreen 'self'; payment 'none'
cf-cache-status: MISS
last-modified: Wed, 27 Sep 2023 22:33:42 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cDuREAnNJcBevBM9vjF%2FPo4Rb%2FYEQijiuqU4m0uHktoKvzseMuC1yXgr59eldQWwaQYP4Hge7L2zCL6STAOC7XW1H%2Bt%2FZdkn%2BoTtBHQi5y%2B7%2Bph8pa2LQcV0nMjKtW1o9hb5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d735b6bf0e385e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

host1.easypolls.net/ext/scripts/poll.js

54.173.157.100

200 OK

154 kB

URL GET HTTP/2
host1.easypolls.net/ext/scripts/poll.js
IP
54.173.157.100:443
ASN
#14618 AMAZON-AES

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerAmazon
Subject*.easypolls.net
FingerprintC2:CA:75:66:0E:2D:31:DF:4A:66:BF:D7:FF:16:D2:C6:DF:32:2B:0C
ValidityThu, 23 Feb 2023 00:00:00 GMT - Wed, 03 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
154 kB (153564 bytes)
Hash
50d971817d9965f3067e4ed6d79b48c9
ed5d17450490a74d3990e4001b1a3b1d575ff216
5e68b9ba1318581a41eebe35348f3c70ad30c61d5d1bf1b59d6c8376c1bb78c8

HTTP Headers

GET /ext/scripts/poll.js HTTP/1.1
Host: host1.easypolls.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Cookie: AWSALBTGCORS=63N2vUjw2jrqo3jAosJV9I/UwSmhrguWZVuu2/sp6TUhMhpj3dpV8v1CVUhUYTfv+bbt+KhWWOTqZZke9qizhDxEMNR5MtR0FxgRXTX+DIXZBESZFvjRkG+0Y86KVHvVlWIKxsxFCCwH0GPTLTJ75oCPil1VWXIT2DUq714wIMU7; AWSALBCORS=w4rAn0cpFc+ImJWvd0qApsd5Ir04ydTZFuSoPMqv+bBf5CVZdxZI88CAqCkmEhiDPqFVHwloPJGmweE3oi7UxvnLXkHr02WZVhIJryuIU0NslgzmnbwB1MC7M9pk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:42 GMT
content-type: application/javascript
content-length: 153564
set-cookie: AWSALBTG=HKWFZF7xghDiHv5H9OW3DYXLlkhjKURbiWTJRNJnhRo/vbPtNVVyv6j2vqJnxleHzqxMcNeRtdgRIL+Nto3uN7GVF5BjdlDvfAYxbiJcehjesrEZzNz9LUWMJMng+ZGw+P2dy3+oWUw0cjIJyaUgKvCmau8NTy4mbgwfHpFsc1Og; Expires=Wed, 04 Oct 2023 22:33:42 GMT; Path=/
AWSALBTGCORS=HKWFZF7xghDiHv5H9OW3DYXLlkhjKURbiWTJRNJnhRo/vbPtNVVyv6j2vqJnxleHzqxMcNeRtdgRIL+Nto3uN7GVF5BjdlDvfAYxbiJcehjesrEZzNz9LUWMJMng+ZGw+P2dy3+oWUw0cjIJyaUgKvCmau8NTy4mbgwfHpFsc1Og; Expires=Wed, 04 Oct 2023 22:33:42 GMT; Path=/; SameSite=None; Secure
AWSALB=WLSn6FicFzFOemycQtuDfQMLeJw0fM5+2AKCH7Um6rln8nNAMo0dQvnm82VhOKaLoSQDiCt+oj0+x0APc1JZMYxvHw0LWl4DmRLB9jnLdrbPaVwxZ8ghX3z/gKY/; Expires=Wed, 04 Oct 2023 22:33:42 GMT; Path=/
AWSALBCORS=WLSn6FicFzFOemycQtuDfQMLeJw0fM5+2AKCH7Um6rln8nNAMo0dQvnm82VhOKaLoSQDiCt+oj0+x0APc1JZMYxvHw0LWl4DmRLB9jnLdrbPaVwxZ8ghX3z/gKY/; Expires=Wed, 04 Oct 2023 22:33:42 GMT; Path=/; SameSite=None; Secure
server: nginx
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
last-modified: Wednesday, 27-Sep-2023 22:33:42 UTC
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
accept-ranges: bytes
X-Firefox-Spdy: h2

event.trk-keingent.com/register/event_log/zngxj99zdo

172.64.139.7

200 OK

0 B

URL OPTIONS HTTP/2
event.trk-keingent.com/register/event_log/zngxj99zdo
IP
172.64.139.7:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerGoogle Trust Services LLC
Subjecttrk-keingent.com
FingerprintF9:B9:93:E7:3D:BB:69:8E:4F:AE:4F:F2:13:46:4E:EA:7A:A0:44:34
ValiditySat, 05 Aug 2023 01:51:02 GMT - Fri, 03 Nov 2023 01:51:01 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /register/event_log/zngxj99zdo HTTP/1.1
Host: event.trk-keingent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 103
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:43 GMT
content-length: 0
expires: 0
cache-control: no-cache, no-store, max-age=0, must-revalidate
x-xss-protection: 1; mode=block
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
x-pushplatformapp-params: 
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src https://* data:; font-src 'self' data:
x-pushplatformapp-alert: pushPlatformApp.pushSubscription.deleted
x-frame-options: DENY
access-control-expose-headers: Authorization, Link, X-Total-Count
access-control-allow-origin: https://rentalassistance.net
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
x-content-type-options: nosniff
feature-policy: geolocation 'none'; midi 'none'; sync-xhr 'none'; microphone 'none'; camera 'none'; magnetometer 'none'; gyroscope 'none'; fullscreen 'self'; payment 'none'
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PoOEm0G%2FjBUpLQs1TpXSkai2eYBp01eioMru6rmGkIlvCZrbURL0qC7Xm1dfSNT3PkhE0GSu8PIZfJf37NIffrd4C9pnkqnqDwOAwG44WjpC2beemH9ml9AxcfYLsgaxgcJf92%2FhFIWA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d735bc5ecb770e-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.vidazoo.com/basev/vwpt.js

104.18.6.81

200 OK

56 kB

URL GET HTTP/2
static.vidazoo.com/basev/vwpt.js
IP
104.18.6.81:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8A:2B:3C:18:DD:DB:A7:AE:57:BB:2A:EE:F9:F1:C9:39:1F:C6:B6:DB
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65382)
Size
56 kB (56282 bytes)
Hash
743fb5aca052436b451e369876adadba
628e4f1e37f300b39704042b8b117a0f0bf127ed
3c24255cb67d92e525fd52e4a630c6494a914a6333b82eeadbcf57a0c7985f28

Detections

Analyzer	Verdict	Alert
Public Nextron YARA rules	malware	Code and strings of plugins from the Tetris framework loaded by Swid

HTTP Headers

GET /basev/vwpt.js HTTP/1.1
Host: static.vidazoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:43 GMT
content-type: application/javascript
content-length: 56282
x-amz-id-2: 91w6f1Tcx64aftYNvHj44MbmB5leILR9/V9gTY5j77/X+mDcKdQbVFrrHJcoBtTC0GwQeCqWU50=
x-amz-request-id: M3JFZ971PP6SXQ6D
last-modified: Tue, 26 Sep 2023 11:54:21 GMT
etag: "53e3ecc5715a6451613450c82d5cfad0"
x-amz-server-side-encryption: AES256
content-encoding: gzip
cf-cache-status: HIT
age: 38360
expires: Thu, 28 Sep 2023 22:33:43 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
server: cloudflare
cf-ray: 80d735be8b8056cb-OSL
X-Firefox-Spdy: h2

global.proper.io/rentalassistance.min.js

104.16.15.119

200 OK

10 kB

URL GET HTTP/2
global.proper.io/rentalassistance.min.js
IP
104.16.15.119:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerCloudflare, Inc.
Subjectproper.io
FingerprintB6:E6:ED:AB:1F:4C:1D:D2:FD:E4:CF:D9:C5:F5:3F:8D:BF:9E:37:D3
ValidityFri, 07 Apr 2023 00:00:00 GMT - Sat, 06 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (18768)
Size
10 kB (10418 bytes)
Hash
f3f297f212e18bc60bfe02f3e78f1c40
fd5f409f98f922c00c62c5d8fa9b8a589968a1ad
3a8083fe4b3fa0015f786f9a0f58c8507cda745727417861df373cf84b95cd0e

HTTP Headers

GET /rentalassistance.min.js HTTP/1.1
Host: global.proper.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:43 GMT
content-type: application/javascript
cf-ray: 80d735b60b8d0b06-OSL
cf-cache-status: MISS
access-control-allow-origin: *
cache-control: public, max-age=300
etag: W/"64de5e0a-757a"
expires: Wed, 27 Sep 2023 22:38:42 GMT
last-modified: Thu, 17 Aug 2023 17:51:06 GMT
vary: Accept-Encoding
set-cookie: sovrn_dfpi_rentalassistance=1; Max-Age=1620; Path=/; Domain=global.proper.io; SameSite=none; Secure; HttpOnly
__cf_bm=VPQbo.LCkrERvOyFMnARUzgurEWlLww77WKR1NL9yAY-1695854023-0-AcXBLPAI+6XwtC+xn5DciGymhRfxtyVwCCWL9u3rxsiu3ysAr/oGZ1VpJ5ewhGc8qFgbBi3qRD5wxdcJAhhqSkFny/KiMZXpq7gXeQqvG0ef; path=/; expires=Wed, 27-Sep-23 23:03:43 GMT; domain=.proper.io; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

abcheck.proper.io/px.gif?ch=1&rn=0.5858480385987206

104.16.15.119

200 OK

842 B

URL GET HTTP/2
abcheck.proper.io/px.gif?ch=1&rn=0.5858480385987206
IP
104.16.15.119:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerCloudflare, Inc.
Subjectproper.io
FingerprintB6:E6:ED:AB:1F:4C:1D:D2:FD:E4:CF:D9:C5:F5:3F:8D:BF:9E:37:D3
ValidityFri, 07 Apr 2023 00:00:00 GMT - Sat, 06 Apr 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
842 B (842 bytes)
Hash
04b36c8411ae7bf7a8c369fa94b30e56
a9d2c7f6c7c53ec972b72bc2bcec2a3817946824
48d611c460406f0653185a1447f5bf797eec3afa7c080b74205f4a8ea2729f3c

HTTP Headers

GET /px.gif?ch=1&rn=0.5858480385987206 HTTP/1.1
Host: abcheck.proper.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Cookie: __cf_bm=VPQbo.LCkrERvOyFMnARUzgurEWlLww77WKR1NL9yAY-1695854023-0-AcXBLPAI+6XwtC+xn5DciGymhRfxtyVwCCWL9u3rxsiu3ysAr/oGZ1VpJ5ewhGc8qFgbBi3qRD5wxdcJAhhqSkFny/KiMZXpq7gXeQqvG0ef
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:43 GMT
content-type: image/gif
content-length: 842
x-amz-id-2: qzasc+qDiOWGL+FQftjAsJKeRBR5I/SdbwGb6GR997pzdLEXyk1ZlVXDnSb0LRF3TJOqLdCgCpk=
x-amz-request-id: 5XFYCS3Y1WVNY1FT
last-modified: Thu, 06 Jan 2022 18:51:44 GMT
etag: "04b36c8411ae7bf7a8c369fa94b30e56"
cf-cache-status: MISS
expires: Thu, 28 Sep 2023 02:33:43 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d735bd1dee0b06-OSL
X-Firefox-Spdy: h2

abcheck.proper.io/px.gif?ch=2&rn=0.5858480385987206

104.16.15.119

200 OK

842 B

URL GET HTTP/2
abcheck.proper.io/px.gif?ch=2&rn=0.5858480385987206
IP
104.16.15.119:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerCloudflare, Inc.
Subjectproper.io
FingerprintB6:E6:ED:AB:1F:4C:1D:D2:FD:E4:CF:D9:C5:F5:3F:8D:BF:9E:37:D3
ValidityFri, 07 Apr 2023 00:00:00 GMT - Sat, 06 Apr 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
842 B (842 bytes)
Hash
04b36c8411ae7bf7a8c369fa94b30e56
a9d2c7f6c7c53ec972b72bc2bcec2a3817946824
48d611c460406f0653185a1447f5bf797eec3afa7c080b74205f4a8ea2729f3c

HTTP Headers

GET /px.gif?ch=2&rn=0.5858480385987206 HTTP/1.1
Host: abcheck.proper.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Cookie: __cf_bm=VPQbo.LCkrERvOyFMnARUzgurEWlLww77WKR1NL9yAY-1695854023-0-AcXBLPAI+6XwtC+xn5DciGymhRfxtyVwCCWL9u3rxsiu3ysAr/oGZ1VpJ5ewhGc8qFgbBi3qRD5wxdcJAhhqSkFny/KiMZXpq7gXeQqvG0ef
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:43 GMT
content-type: image/gif
content-length: 842
x-amz-id-2: whPBNZHTWu8wabyjEb5jGEQVzjGyl+WERrmkc0IqXz1MlMo0D6npgjCpOy+7SfM6WIxR1Wkb9rA=
x-amz-request-id: 5XFKBHV7SE21YB8E
last-modified: Thu, 06 Jan 2022 18:51:44 GMT
etag: "04b36c8411ae7bf7a8c369fa94b30e56"
cf-cache-status: MISS
expires: Thu, 28 Sep 2023 02:33:43 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d735bd1def0b06-OSL
X-Firefox-Spdy: h2

prebid.a-mo.net/cchain/0?cb=https%3A%2F%2Fusync.proper.io%2Fv1%2Fusersync%3Fbidder%3Dadaptmx%26proper_uid%3Dea856988-1d53-42f8-bf4c-c2c8b1975606%26uid%3D&&callback=window.proper_bba6e16c_9a26f62a_1

145.40.97.66

302 Found

0 B

URL GET HTTP/2
prebid.a-mo.net/cchain/0?cb=https%3A%2F%2Fusync.proper.io%2Fv1%2Fusersync%3Fbidder%3Dadaptmx%26proper_uid%3Dea856988-1d53-42f8-bf4c-c2c8b1975606%26uid%3D&&callback=window.proper_bba6e16c_9a26f62a_1
IP
145.40.97.66:443
ASN
#54825 PACKET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerLet's Encrypt
Subject*.a-mo.net
Fingerprint9C:BE:25:2E:26:14:F7:0D:D3:51:CF:F9:46:05:19:44:2D:70:43:23
ValidityMon, 07 Aug 2023 14:39:52 GMT - Sun, 05 Nov 2023 14:39:51 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cchain/0?cb=https%3A%2F%2Fusync.proper.io%2Fv1%2Fusersync%3Fbidder%3Dadaptmx%26proper_uid%3Dea856988-1d53-42f8-bf4c-c2c8b1975606%26uid%3D&&callback=window.proper_bba6e16c_9a26f62a_1 HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Wed, 27 Sep 2023 22:33:43 GMT
location: https://usync.proper.io/v1/usersync?bidder=adaptmx&proper_uid=ea856988-1d53-42f8-bf4c-c2c8b1975606&uid=
server: envoy
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2

static.vidazoo.com/basev/cmp/1.0.0/cmp.js

104.18.6.81

200 OK

1.3 kB

URL GET HTTP/2
static.vidazoo.com/basev/cmp/1.0.0/cmp.js
IP
104.18.6.81:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8A:2B:3C:18:DD:DB:A7:AE:57:BB:2A:EE:F9:F1:C9:39:1F:C6:B6:DB
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (3271)
Size
1.3 kB (1347 bytes)
Hash
58e6c56b21cfa1ed94891eb4a90501e8
e20b4b900e345dd337d197d3eb19a271139a76e6
c473cad95bab41269291531bd9b8391faf29958a7b27e58bcdc58f0a850ee1ed

HTTP Headers

GET /basev/cmp/1.0.0/cmp.js HTTP/1.1
Host: static.vidazoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:43 GMT
content-type: application/javascript
content-length: 1347
x-amz-id-2: 8SvAcCy+QN76l4sqDh1K8Xqo+MX2l2+FNKukxUbmHz7JGMDvSo8khRG8hSr5fa1ayXwobrVXKkc=
x-amz-request-id: Q5NDF19K5QV47D34
last-modified: Tue, 26 Sep 2023 11:00:36 GMT
etag: "5b345449e7bad0f9fe28ed80c722ec50"
x-amz-server-side-encryption: AES256
content-encoding: gzip
cf-cache-status: HIT
age: 41583
expires: Thu, 28 Sep 2023 22:33:43 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
server: cloudflare
cf-ray: 80d735bfcc7e56cb-OSL
X-Firefox-Spdy: h2

static.vidazoo.com/basev/tcf/1.0.2/tcf.js

104.18.6.81

200 OK

5.1 kB

URL GET HTTP/2
static.vidazoo.com/basev/tcf/1.0.2/tcf.js
IP
104.18.6.81:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8A:2B:3C:18:DD:DB:A7:AE:57:BB:2A:EE:F9:F1:C9:39:1F:C6:B6:DB
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (15980)
Size
5.1 kB (5069 bytes)
Hash
3503157ffaddc94483af59f0acb99141
37f4a308997842b4336819c14664bb0864954cd9
e602d10aeab60c205781599d1dd4e46d615c1938e62f66d5752fb08ad800fa2d

HTTP Headers

GET /basev/tcf/1.0.2/tcf.js HTTP/1.1
Host: static.vidazoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:43 GMT
content-type: application/javascript
content-length: 5069
x-amz-id-2: lzJuUmdMeFpweJwYlLwxawLHcJ+GYJ3VaozRpgfnU0ljDR7eWEjcRAtzT6V3vKAowObMQB/wdnR9ejUg/HfsgadnVkRBDeJG
x-amz-request-id: NJXNSJHP7D1788Z5
last-modified: Thu, 27 Jul 2023 14:01:24 GMT
etag: "ccd7d1f71f0b08742cb487f337f006fb"
x-amz-server-side-encryption: AES256
content-encoding: gzip
cf-cache-status: HIT
age: 22595
expires: Thu, 28 Sep 2023 22:33:43 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept ,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Length, Accept-Language, Accept-Encoding, Referer, Range
server: cloudflare
cf-ray: 80d735bfdc8056cb-OSL
X-Firefox-Spdy: h2

c.disquscdn.com/next/embed/lounge.load.62db764f4f0426e1eaaed71de8896900.js

143.204.55.72

200 OK

620 B

URL GET HTTP/2
c.disquscdn.com/next/embed/lounge.load.62db764f4f0426e1eaaed71de8896900.js
IP
143.204.55.72:443
ASN
#16509 AMAZON-02

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerAmazon
Subjecta.disquscdn.com
FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB
ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1247), with no line terminators
Size
620 B (620 bytes)
Hash
3187559af6048b462b654ffe3f4370d1
30fb4f140cefbedef63eff73a7bba4bbfc96bcf0
ceaf148b8332b81c551c93aa9124cbdbbbd6192fbb9bfe8dab8501547b35083e

HTTP Headers

GET /next/embed/lounge.load.62db764f4f0426e1eaaed71de8896900.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://disqus.com
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 620
date: Wed, 20 Sep 2023 11:16:38 GMT
server: nginx
last-modified: Wed, 20 Sep 2023 10:55:06 GMT
etag: "650acf8a-26c"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Thu, 19 Sep 2024 11:16:38 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YDgk7YqW5cgMs42aGS3zw7mVLNMFZ2LykraIvREgFjdgPXzm2CZYMw==
age: 645425
X-Firefox-Spdy: h2

ocsp.godaddy.com/

192.124.249.23

2.1 kB

URL
ocsp.godaddy.com/
IP
192.124.249.23:0
ASN
#30148 SUCURI-SEC

File type
data
Size
2.1 kB (2108 bytes)
Hash
1fa0a5d4a0b18031ec14e22644adb9d6
ce44e41fe049004817ae7c5f806120be03274508
9548f770e89e866ec7229ad9dc93615a23ea66a615e73fa39dd4fc755ecbafc6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 27 Sep 2023 22:33:43 GMT
Content-Type: application/ocsp-response
Content-Length: 2108
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 27 Sep 2023 21:31:57 GMT
Expires: Thu, 28 Sep 2023 21:31:57 GMT
ETag: "ce44e41fe049004817ae7c5f806120be03274508"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

c2shb.pubgw.yahoo.com/bidRequest

35.157.246.167

200 OK

0 B

URL POST HTTP/2
c2shb.pubgw.yahoo.com/bidRequest
IP
35.157.246.167:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerDigiCert Inc
Subjectweb.ssp.yahoo.com
Fingerprint80:9D:B9:04:AC:99:AB:37:77:35:AB:9C:F3:C1:1E:ED:CF:7B:95:55
ValidityTue, 23 May 2023 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://rentalassistance.net/
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:44 GMT
content-length: 0
server: ATS/9.1.10.75
access-control-allow-origin: https://rentalassistance.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2

c2shb.pubgw.yahoo.com/bidRequest

35.157.246.167

200 OK

0 B

URL POST HTTP/2
c2shb.pubgw.yahoo.com/bidRequest
IP
35.157.246.167:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerDigiCert Inc
Subjectweb.ssp.yahoo.com
Fingerprint80:9D:B9:04:AC:99:AB:37:77:35:AB:9C:F3:C1:1E:ED:CF:7B:95:55
ValidityTue, 23 May 2023 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://rentalassistance.net/
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:44 GMT
content-length: 0
server: ATS/9.1.10.75
access-control-allow-origin: https://rentalassistance.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2

c2shb.pubgw.yahoo.com/bidRequest

35.157.246.167

200 OK

0 B

URL POST HTTP/2
c2shb.pubgw.yahoo.com/bidRequest
IP
35.157.246.167:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerDigiCert Inc
Subjectweb.ssp.yahoo.com
Fingerprint80:9D:B9:04:AC:99:AB:37:77:35:AB:9C:F3:C1:1E:ED:CF:7B:95:55
ValidityTue, 23 May 2023 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://rentalassistance.net/
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:44 GMT
content-length: 0
server: ATS/9.1.10.75
access-control-allow-origin: https://rentalassistance.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2

c2shb.pubgw.yahoo.com/bidRequest

35.157.246.167

200 OK

0 B

URL POST HTTP/2
c2shb.pubgw.yahoo.com/bidRequest
IP
35.157.246.167:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerDigiCert Inc
Subjectweb.ssp.yahoo.com
Fingerprint80:9D:B9:04:AC:99:AB:37:77:35:AB:9C:F3:C1:1E:ED:CF:7B:95:55
ValidityTue, 23 May 2023 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://rentalassistance.net/
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:44 GMT
content-length: 0
server: ATS/9.1.10.75
access-control-allow-origin: https://rentalassistance.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2

c2shb.pubgw.yahoo.com/bidRequest

35.157.246.167

200 OK

0 B

URL POST HTTP/2
c2shb.pubgw.yahoo.com/bidRequest
IP
35.157.246.167:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerDigiCert Inc
Subjectweb.ssp.yahoo.com
Fingerprint80:9D:B9:04:AC:99:AB:37:77:35:AB:9C:F3:C1:1E:ED:CF:7B:95:55
ValidityTue, 23 May 2023 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://rentalassistance.net/
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:44 GMT
content-length: 0
server: ATS/9.1.10.75
access-control-allow-origin: https://rentalassistance.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2

c2shb.pubgw.yahoo.com/bidRequest

35.157.246.167

200 OK

0 B

URL POST HTTP/2
c2shb.pubgw.yahoo.com/bidRequest
IP
35.157.246.167:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerDigiCert Inc
Subjectweb.ssp.yahoo.com
Fingerprint80:9D:B9:04:AC:99:AB:37:77:35:AB:9C:F3:C1:1E:ED:CF:7B:95:55
ValidityTue, 23 May 2023 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://rentalassistance.net/
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:44 GMT
content-length: 0
server: ATS/9.1.10.75
access-control-allow-origin: https://rentalassistance.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2

c2shb.pubgw.yahoo.com/bidRequest

35.157.246.167

200 OK

0 B

URL POST HTTP/2
c2shb.pubgw.yahoo.com/bidRequest
IP
35.157.246.167:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerDigiCert Inc
Subjectweb.ssp.yahoo.com
Fingerprint80:9D:B9:04:AC:99:AB:37:77:35:AB:9C:F3:C1:1E:ED:CF:7B:95:55
ValidityTue, 23 May 2023 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-openrtb-version
Referer: https://rentalassistance.net/
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:44 GMT
content-length: 0
server: ATS/9.1.10.75
access-control-allow-origin: https://rentalassistance.net
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,X-Openrtb-Version
access-control-allow-credentials: true
access-control-max-age: 600
age: 0
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.14.101

472 B

URL
ocsp.sectigo.com/
IP
104.18.14.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
ca6521f0ab55dd4a52f532147e6775c5
e24d9527b8857a6fc349341ff43b5f10505e4c81
a7e4f2cc8ebd4012cda0f6611e0d024fc85864edd5f165fa39c27534e1a7f56b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 22:33:44 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 26 Sep 2023 20:51:50 GMT
Expires: Tue, 03 Oct 2023 20:51:49 GMT
Etag: "e24d9527b8857a6fc349341ff43b5f10505e4c81"
Cache-Control: max-age=512433,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 80d735c36b725696-OSL

ocsp.sectigo.com/

104.18.14.101

472 B

URL
ocsp.sectigo.com/
IP
104.18.14.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
ca6521f0ab55dd4a52f532147e6775c5
e24d9527b8857a6fc349341ff43b5f10505e4c81
a7e4f2cc8ebd4012cda0f6611e0d024fc85864edd5f165fa39c27534e1a7f56b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 22:33:44 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 26 Sep 2023 20:51:50 GMT
Expires: Tue, 03 Oct 2023 20:51:49 GMT
Etag: "e24d9527b8857a6fc349341ff43b5f10505e4c81"
Cache-Control: max-age=512485,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 80d735c36dbfb518-OSL

ocsp.sectigo.com/

104.18.14.101

472 B

URL
ocsp.sectigo.com/
IP
104.18.14.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
ca6521f0ab55dd4a52f532147e6775c5
e24d9527b8857a6fc349341ff43b5f10505e4c81
a7e4f2cc8ebd4012cda0f6611e0d024fc85864edd5f165fa39c27534e1a7f56b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 22:33:44 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 26 Sep 2023 20:51:50 GMT
Expires: Tue, 03 Oct 2023 20:51:49 GMT
Etag: "e24d9527b8857a6fc349341ff43b5f10505e4c81"
Cache-Control: max-age=512433,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 80d735c36dc2b518-OSL

ocsp.sectigo.com/

104.18.14.101

472 B

URL
ocsp.sectigo.com/
IP
104.18.14.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
ca6521f0ab55dd4a52f532147e6775c5
e24d9527b8857a6fc349341ff43b5f10505e4c81
a7e4f2cc8ebd4012cda0f6611e0d024fc85864edd5f165fa39c27534e1a7f56b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 22:33:44 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 26 Sep 2023 20:51:50 GMT
Expires: Tue, 03 Oct 2023 20:51:49 GMT
Etag: "e24d9527b8857a6fc349341ff43b5f10505e4c81"
Cache-Control: max-age=512310,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 80d735c36949569f-OSL

ocsp.sectigo.com/

104.18.14.101

472 B

URL
ocsp.sectigo.com/
IP
104.18.14.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
ca6521f0ab55dd4a52f532147e6775c5
e24d9527b8857a6fc349341ff43b5f10505e4c81
a7e4f2cc8ebd4012cda0f6611e0d024fc85864edd5f165fa39c27534e1a7f56b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 22:33:44 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 26 Sep 2023 20:51:50 GMT
Expires: Tue, 03 Oct 2023 20:51:49 GMT
Etag: "e24d9527b8857a6fc349341ff43b5f10505e4c81"
Cache-Control: max-age=512310,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 80d735c36fbc568b-OSL

c2shb.pubgw.yahoo.com/bidRequest

35.157.246.167

200 OK

84 B

URL POST HTTP/2
c2shb.pubgw.yahoo.com/bidRequest
IP
35.157.246.167:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerDigiCert Inc
Subjectweb.ssp.yahoo.com
Fingerprint80:9D:B9:04:AC:99:AB:37:77:35:AB:9C:F3:C1:1E:ED:CF:7B:95:55
ValidityTue, 23 May 2023 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
84 B (84 bytes)
Hash
bf8fa856b954b150552e646b6bae7709
dda4ecfb2ec4e77a47b9a868dbce0bc7b8611d67
59ea8a84036d775fa890d5fe6a06d7829e38043dfcb8c36e217a077b47822a9f

HTTP Headers

POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 1064
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:44 GMT
content-type: application/json;charset=utf-8
content-length: 84
server: ATS/9.1.10.75
access-control-allow-origin: https://rentalassistance.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-encoding: gzip
age: 0
X-Firefox-Spdy: h2

c2shb.pubgw.yahoo.com/bidRequest

35.157.246.167

200 OK

84 B

URL POST HTTP/2
c2shb.pubgw.yahoo.com/bidRequest
IP
35.157.246.167:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerDigiCert Inc
Subjectweb.ssp.yahoo.com
Fingerprint80:9D:B9:04:AC:99:AB:37:77:35:AB:9C:F3:C1:1E:ED:CF:7B:95:55
ValidityTue, 23 May 2023 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
84 B (84 bytes)
Hash
bf8fa856b954b150552e646b6bae7709
dda4ecfb2ec4e77a47b9a868dbce0bc7b8611d67
59ea8a84036d775fa890d5fe6a06d7829e38043dfcb8c36e217a077b47822a9f

HTTP Headers

POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 1081
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:44 GMT
content-type: application/json;charset=utf-8
content-length: 84
server: ATS/9.1.10.75
access-control-allow-origin: https://rentalassistance.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-encoding: gzip
age: 0
X-Firefox-Spdy: h2

bids.proper.io/api/bidding

44.239.180.127

200 OK

0 B

URL POST HTTP/1.1
bids.proper.io/api/bidding
IP
44.239.180.127:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerGoDaddy.com, Inc.
Subject*.proper.io
Fingerprint64:75:EC:B6:91:5B:5C:A7:03:A6:32:D4:C0:55:79:EE:11:90:C1:10
ValidityWed, 25 Jan 2023 22:43:17 GMT - Thu, 25 Jan 2024 22:43:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/bidding HTTP/1.1
Host: bids.proper.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1347
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Content-Type: application/octet-stream
Date: Wed, 27 Sep 2023 22:33:44 GMT
Content-Length: 0
Connection: keep-alive

c2shb.pubgw.yahoo.com/bidRequest

35.157.246.167

200 OK

84 B

URL POST HTTP/2
c2shb.pubgw.yahoo.com/bidRequest
IP
35.157.246.167:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerDigiCert Inc
Subjectweb.ssp.yahoo.com
Fingerprint80:9D:B9:04:AC:99:AB:37:77:35:AB:9C:F3:C1:1E:ED:CF:7B:95:55
ValidityTue, 23 May 2023 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
84 B (84 bytes)
Hash
bf8fa856b954b150552e646b6bae7709
dda4ecfb2ec4e77a47b9a868dbce0bc7b8611d67
59ea8a84036d775fa890d5fe6a06d7829e38043dfcb8c36e217a077b47822a9f

HTTP Headers

POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 1063
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:44 GMT
content-type: application/json;charset=utf-8
content-length: 84
server: ATS/9.1.10.75
access-control-allow-origin: https://rentalassistance.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-encoding: gzip
age: 0
X-Firefox-Spdy: h2

c2shb.pubgw.yahoo.com/bidRequest

35.157.246.167

200 OK

84 B

URL POST HTTP/2
c2shb.pubgw.yahoo.com/bidRequest
IP
35.157.246.167:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerDigiCert Inc
Subjectweb.ssp.yahoo.com
Fingerprint80:9D:B9:04:AC:99:AB:37:77:35:AB:9C:F3:C1:1E:ED:CF:7B:95:55
ValidityTue, 23 May 2023 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
84 B (84 bytes)
Hash
bf8fa856b954b150552e646b6bae7709
dda4ecfb2ec4e77a47b9a868dbce0bc7b8611d67
59ea8a84036d775fa890d5fe6a06d7829e38043dfcb8c36e217a077b47822a9f

HTTP Headers

POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 1064
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:44 GMT
content-type: application/json;charset=utf-8
content-length: 84
server: ATS/9.1.10.75
access-control-allow-origin: https://rentalassistance.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-encoding: gzip
age: 0
X-Firefox-Spdy: h2

c2shb.pubgw.yahoo.com/bidRequest

35.157.246.167

200 OK

84 B

URL POST HTTP/2
c2shb.pubgw.yahoo.com/bidRequest
IP
35.157.246.167:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerDigiCert Inc
Subjectweb.ssp.yahoo.com
Fingerprint80:9D:B9:04:AC:99:AB:37:77:35:AB:9C:F3:C1:1E:ED:CF:7B:95:55
ValidityTue, 23 May 2023 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
84 B (84 bytes)
Hash
bf8fa856b954b150552e646b6bae7709
dda4ecfb2ec4e77a47b9a868dbce0bc7b8611d67
59ea8a84036d775fa890d5fe6a06d7829e38043dfcb8c36e217a077b47822a9f

HTTP Headers

POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 1064
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:44 GMT
content-type: application/json;charset=utf-8
content-length: 84
server: ATS/9.1.10.75
access-control-allow-origin: https://rentalassistance.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-encoding: gzip
age: 0
X-Firefox-Spdy: h2

c.disquscdn.com/next/embed/common.bundle.f2a270bb37834887ad900431f6cb27eb.js

143.204.55.72

200 OK

94 kB

URL GET HTTP/2
c.disquscdn.com/next/embed/common.bundle.f2a270bb37834887ad900431f6cb27eb.js
IP
143.204.55.72:443
ASN
#16509 AMAZON-02

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerAmazon
Subjecta.disquscdn.com
FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB
ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32023)
Size
94 kB (94118 bytes)
Hash
fd9c72c5e565b68435ce33f5d79f2677
ce5d73f5272e740b4f8f1321b448b80e348e59c6
17dfdeb0ea6a4edf44cba4f38a953e89af8094d116796ef91157a2a86a459a1a

HTTP Headers

GET /next/embed/common.bundle.f2a270bb37834887ad900431f6cb27eb.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 94118
date: Thu, 14 Sep 2023 01:17:31 GMT
server: nginx
last-modified: Wed, 13 Sep 2023 20:48:30 GMT
etag: "6502201e-16fa6"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 13 Sep 2024 01:17:31 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XLllBbHGdtbEmOto6c7mkgSpS06fiFAupk6-5SwoVS0JJidsSqrMwg==
age: 1199773
X-Firefox-Spdy: h2

c2shb.pubgw.yahoo.com/bidRequest

35.157.246.167

200 OK

84 B

URL POST HTTP/2
c2shb.pubgw.yahoo.com/bidRequest
IP
35.157.246.167:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerDigiCert Inc
Subjectweb.ssp.yahoo.com
Fingerprint80:9D:B9:04:AC:99:AB:37:77:35:AB:9C:F3:C1:1E:ED:CF:7B:95:55
ValidityTue, 23 May 2023 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
84 B (84 bytes)
Hash
bf8fa856b954b150552e646b6bae7709
dda4ecfb2ec4e77a47b9a868dbce0bc7b8611d67
59ea8a84036d775fa890d5fe6a06d7829e38043dfcb8c36e217a077b47822a9f

HTTP Headers

POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 1064
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:44 GMT
content-type: application/json;charset=utf-8
content-length: 84
server: ATS/9.1.10.75
access-control-allow-origin: https://rentalassistance.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-encoding: gzip
age: 0
X-Firefox-Spdy: h2

c2shb.pubgw.yahoo.com/bidRequest

35.157.246.167

200 OK

84 B

URL POST HTTP/2
c2shb.pubgw.yahoo.com/bidRequest
IP
35.157.246.167:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerDigiCert Inc
Subjectweb.ssp.yahoo.com
Fingerprint80:9D:B9:04:AC:99:AB:37:77:35:AB:9C:F3:C1:1E:ED:CF:7B:95:55
ValidityTue, 23 May 2023 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
84 B (84 bytes)
Hash
bf8fa856b954b150552e646b6bae7709
dda4ecfb2ec4e77a47b9a868dbce0bc7b8611d67
59ea8a84036d775fa890d5fe6a06d7829e38043dfcb8c36e217a077b47822a9f

HTTP Headers

POST /bidRequest HTTP/1.1
Host: c2shb.pubgw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-openrtb-version: 2.5
Content-Type: application/json
Content-Length: 1082
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:44 GMT
content-type: application/json;charset=utf-8
content-length: 84
server: ATS/9.1.10.75
access-control-allow-origin: https://rentalassistance.net
access-control-allow-methods: POST,GET,HEAD,OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Accept-Encoding, User-Agent
access-control-allow-credentials: true
content-encoding: gzip
age: 0
X-Firefox-Spdy: h2

prebid.cootlogix.com/prebid/multi/638f9e20ba1056ce9c06add8

69.55.49.188

204 No Content

0 B

URL POST HTTP/2
prebid.cootlogix.com/prebid/multi/638f9e20ba1056ce9c06add8
IP
69.55.49.188:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerSectigo Limited
Subject*.cootlogix.com
Fingerprint87:77:06:95:F7:2F:77:34:3F:B9:3D:32:15:7B:5C:BC:B2:50:61:C1
ValidityMon, 14 Nov 2022 00:00:00 GMT - Tue, 14 Nov 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /prebid/multi/638f9e20ba1056ce9c06add8 HTTP/1.1
Host: prebid.cootlogix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 982
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
access-control-allow-origin: https://rentalassistance.net
cache-control: max-age=0, no-cache, must-revalidate, proxy-revalidate
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Content-Range, Cache-Control
content-length: 0
date: Wed, 27 Sep 2023 22:33:44 GMT
X-Firefox-Spdy: h2

prebid.cootlogix.com/prebid/multi/638f9e20ba1056ce9c06add8

69.55.49.188

204 No Content

0 B

URL POST HTTP/2
prebid.cootlogix.com/prebid/multi/638f9e20ba1056ce9c06add8
IP
69.55.49.188:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerSectigo Limited
Subject*.cootlogix.com
Fingerprint87:77:06:95:F7:2F:77:34:3F:B9:3D:32:15:7B:5C:BC:B2:50:61:C1
ValidityMon, 14 Nov 2022 00:00:00 GMT - Tue, 14 Nov 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /prebid/multi/638f9e20ba1056ce9c06add8 HTTP/1.1
Host: prebid.cootlogix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 982
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
access-control-allow-origin: https://rentalassistance.net
cache-control: max-age=0, no-cache, must-revalidate, proxy-revalidate
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Content-Range, Cache-Control
content-length: 0
date: Wed, 27 Sep 2023 22:33:44 GMT
X-Firefox-Spdy: h2

prebid.cootlogix.com/prebid/multi/638f9e20ba1056ce9c06add8

69.55.49.188

204 No Content

0 B

URL POST HTTP/2
prebid.cootlogix.com/prebid/multi/638f9e20ba1056ce9c06add8
IP
69.55.49.188:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerSectigo Limited
Subject*.cootlogix.com
Fingerprint87:77:06:95:F7:2F:77:34:3F:B9:3D:32:15:7B:5C:BC:B2:50:61:C1
ValidityMon, 14 Nov 2022 00:00:00 GMT - Tue, 14 Nov 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /prebid/multi/638f9e20ba1056ce9c06add8 HTTP/1.1
Host: prebid.cootlogix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 980
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
access-control-allow-origin: https://rentalassistance.net
cache-control: max-age=0, no-cache, must-revalidate, proxy-revalidate
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Content-Range, Cache-Control
content-length: 0
date: Wed, 27 Sep 2023 22:33:44 GMT
X-Firefox-Spdy: h2

prebid.cootlogix.com/prebid/multi/638f9e20ba1056ce9c06add8

69.55.49.188

204 No Content

0 B

URL POST HTTP/2
prebid.cootlogix.com/prebid/multi/638f9e20ba1056ce9c06add8
IP
69.55.49.188:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerSectigo Limited
Subject*.cootlogix.com
Fingerprint87:77:06:95:F7:2F:77:34:3F:B9:3D:32:15:7B:5C:BC:B2:50:61:C1
ValidityMon, 14 Nov 2022 00:00:00 GMT - Tue, 14 Nov 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /prebid/multi/638f9e20ba1056ce9c06add8 HTTP/1.1
Host: prebid.cootlogix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 982
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
access-control-allow-origin: https://rentalassistance.net
cache-control: max-age=0, no-cache, must-revalidate, proxy-revalidate
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Content-Range, Cache-Control
content-length: 0
date: Wed, 27 Sep 2023 22:33:44 GMT
X-Firefox-Spdy: h2

ocsp.r2m02.amazontrust.com/

143.204.48.16

471 B

URL
ocsp.r2m02.amazontrust.com/
IP
143.204.48.16:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
1132632e0bd9000c8cce07e91fdc9ab1
2c9682cd55ddc7fc925710b30e66ddf6c7b831d1
8a33fd15f20b128cb15562163204c65bc4b8f7b4a4b7bcf5796a91497d9e3ebf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 27 Sep 2023 22:33:44 GMT
Last-Modified: Wed, 27 Sep 2023 21:49:55 GMT
Server: ECAcc (ska/F756)
X-Cache: Miss from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aMpK9mb9hvy5DuR6l8bHcm6HZUfMXXRqR2uADHeyYj2-1Yrd-b0nOw==
Age: 2629

ocsp.r2m02.amazontrust.com/

143.204.48.16

471 B

URL
ocsp.r2m02.amazontrust.com/
IP
143.204.48.16:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
1132632e0bd9000c8cce07e91fdc9ab1
2c9682cd55ddc7fc925710b30e66ddf6c7b831d1
8a33fd15f20b128cb15562163204c65bc4b8f7b4a4b7bcf5796a91497d9e3ebf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 27 Sep 2023 22:33:44 GMT
Last-Modified: Wed, 27 Sep 2023 21:51:29 GMT
Server: ECAcc (ska/F7A3)
X-Cache: Miss from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YL51Y-sE-thri4TnPKiG9yh2_SeSaROUtxB1ahIVTlVILbIj-fupmg==
Age: 2535

ocsp.r2m02.amazontrust.com/

143.204.48.16

471 B

URL
ocsp.r2m02.amazontrust.com/
IP
143.204.48.16:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
1132632e0bd9000c8cce07e91fdc9ab1
2c9682cd55ddc7fc925710b30e66ddf6c7b831d1
8a33fd15f20b128cb15562163204c65bc4b8f7b4a4b7bcf5796a91497d9e3ebf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 27 Sep 2023 22:33:44 GMT
Last-Modified: Wed, 27 Sep 2023 21:52:38 GMT
Server: ECAcc (ska/F790)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CM-lfBO37iAFq5GI1KCNTulHW3kveB7-8dL9eHMp-z0ZErRBe3HKcQ==
Age: 2466

usync.proper.io/v1/usersync?bidder=adaptmx&proper_uid=ea856988-1d53-42f8-bf4c-c2c8b1975606&uid=

35.164.5.126

400 Bad Request

157 B

URL GET HTTP/2
usync.proper.io/v1/usersync?bidder=adaptmx&proper_uid=ea856988-1d53-42f8-bf4c-c2c8b1975606&uid=
IP
35.164.5.126:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerGoDaddy.com, Inc.
Subject*.proper.io
Fingerprint64:75:EC:B6:91:5B:5C:A7:03:A6:32:D4:C0:55:79:EE:11:90:C1:10
ValidityWed, 25 Jan 2023 22:43:17 GMT - Thu, 25 Jan 2024 22:43:17 GMT

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
157 B (157 bytes)
Hash
57ba4007dac1b7b433d3c22f5cb325ce
05bcc75c36c3aed03cf525e7ed66f008ed75f8bc
72d212c482a7ce61c521f3c4f8da9a4b9314535aac9b6ebc9ee5abec76e9f125

HTTP Headers

GET /v1/usersync?bidder=adaptmx&proper_uid=ea856988-1d53-42f8-bf4c-c2c8b1975606&uid= HTTP/1.1
Host: usync.proper.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Cookie: __cf_bm=VPQbo.LCkrERvOyFMnARUzgurEWlLww77WKR1NL9yAY-1695854023-0-AcXBLPAI+6XwtC+xn5DciGymhRfxtyVwCCWL9u3rxsiu3ysAr/oGZ1VpJ5ewhGc8qFgbBi3qRD5wxdcJAhhqSkFny/KiMZXpq7gXeQqvG0ef
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 400 Bad Request
date: Wed, 27 Sep 2023 22:33:44 GMT
content-type: text/html
content-length: 157
server: nginx/1.18.0
X-Firefox-Spdy: h2

prebid.cootlogix.com/prebid/multi/638f9e20ba1056ce9c06add8

69.55.49.188

204 No Content

0 B

URL POST HTTP/2
prebid.cootlogix.com/prebid/multi/638f9e20ba1056ce9c06add8
IP
69.55.49.188:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerSectigo Limited
Subject*.cootlogix.com
Fingerprint87:77:06:95:F7:2F:77:34:3F:B9:3D:32:15:7B:5C:BC:B2:50:61:C1
ValidityMon, 14 Nov 2022 00:00:00 GMT - Tue, 14 Nov 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /prebid/multi/638f9e20ba1056ce9c06add8 HTTP/1.1
Host: prebid.cootlogix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 982
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
access-control-allow-origin: https://rentalassistance.net
cache-control: max-age=0, no-cache, must-revalidate, proxy-revalidate
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Content-Range, Cache-Control
content-length: 0
date: Wed, 27 Sep 2023 22:33:44 GMT
X-Firefox-Spdy: h2

prebid.cootlogix.com/prebid/multi/638f9e20ba1056ce9c06add8

69.55.49.188

204 No Content

0 B

URL POST HTTP/2
prebid.cootlogix.com/prebid/multi/638f9e20ba1056ce9c06add8
IP
69.55.49.188:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerSectigo Limited
Subject*.cootlogix.com
Fingerprint87:77:06:95:F7:2F:77:34:3F:B9:3D:32:15:7B:5C:BC:B2:50:61:C1
ValidityMon, 14 Nov 2022 00:00:00 GMT - Tue, 14 Nov 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /prebid/multi/638f9e20ba1056ce9c06add8 HTTP/1.1
Host: prebid.cootlogix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1000
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
access-control-allow-origin: https://rentalassistance.net
cache-control: max-age=0, no-cache, must-revalidate, proxy-revalidate
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Content-Range, Cache-Control
content-length: 0
date: Wed, 27 Sep 2023 22:33:44 GMT
X-Firefox-Spdy: h2

prebid.cootlogix.com/prebid/multi/638f9e20ba1056ce9c06add8

69.55.49.188

204 No Content

0 B

URL POST HTTP/2
prebid.cootlogix.com/prebid/multi/638f9e20ba1056ce9c06add8
IP
69.55.49.188:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerSectigo Limited
Subject*.cootlogix.com
Fingerprint87:77:06:95:F7:2F:77:34:3F:B9:3D:32:15:7B:5C:BC:B2:50:61:C1
ValidityMon, 14 Nov 2022 00:00:00 GMT - Tue, 14 Nov 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /prebid/multi/638f9e20ba1056ce9c06add8 HTTP/1.1
Host: prebid.cootlogix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1002
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
access-control-allow-origin: https://rentalassistance.net
cache-control: max-age=0, no-cache, must-revalidate, proxy-revalidate
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, Content-Range, Cache-Control
content-length: 0
date: Wed, 27 Sep 2023 22:33:44 GMT
X-Firefox-Spdy: h2

reachms.bfmio.com/bid.json?exchange_id=eb1985cf-693d-419b-ee26-3d1a81c96314

100.24.169.147

204 No Content

0 B

URL POST HTTP/2
reachms.bfmio.com/bid.json?exchange_id=eb1985cf-693d-419b-ee26-3d1a81c96314
IP
100.24.169.147:443
ASN
#14618 AMAZON-AES

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerAmazon
Subject*.bfmio.com
Fingerprint4F:72:43:4D:33:48:2E:A1:41:92:F0:35:4B:61:93:87:41:7D:8A:FC
ValidityFri, 17 Mar 2023 00:00:00 GMT - Sun, 14 Apr 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /bid.json?exchange_id=eb1985cf-693d-419b-ee26-3d1a81c96314 HTTP/1.1
Host: reachms.bfmio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 764
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 27 Sep 2023 22:33:44 GMT
access-control-allow-origin: https://rentalassistance.net
vary: Origin
access-control-allow-credentials: true
access-control-expose-headers: location
X-Firefox-Spdy: h2

reachms.bfmio.com/bid.json?exchange_id=eb1985cf-693d-419b-ee26-3d1a81c96314

100.24.169.147

204 No Content

0 B

URL POST HTTP/2
reachms.bfmio.com/bid.json?exchange_id=eb1985cf-693d-419b-ee26-3d1a81c96314
IP
100.24.169.147:443
ASN
#14618 AMAZON-AES

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerAmazon
Subject*.bfmio.com
Fingerprint4F:72:43:4D:33:48:2E:A1:41:92:F0:35:4B:61:93:87:41:7D:8A:FC
ValidityFri, 17 Mar 2023 00:00:00 GMT - Sun, 14 Apr 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /bid.json?exchange_id=eb1985cf-693d-419b-ee26-3d1a81c96314 HTTP/1.1
Host: reachms.bfmio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 764
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 27 Sep 2023 22:33:44 GMT
access-control-allow-origin: https://rentalassistance.net
vary: Origin
access-control-allow-credentials: true
access-control-expose-headers: location
X-Firefox-Spdy: h2

reachms.bfmio.com/bid.json?exchange_id=eb1985cf-693d-419b-ee26-3d1a81c96314

100.24.169.147

204 No Content

0 B

URL POST HTTP/2
reachms.bfmio.com/bid.json?exchange_id=eb1985cf-693d-419b-ee26-3d1a81c96314
IP
100.24.169.147:443
ASN
#14618 AMAZON-AES

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerAmazon
Subject*.bfmio.com
Fingerprint4F:72:43:4D:33:48:2E:A1:41:92:F0:35:4B:61:93:87:41:7D:8A:FC
ValidityFri, 17 Mar 2023 00:00:00 GMT - Sun, 14 Apr 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /bid.json?exchange_id=eb1985cf-693d-419b-ee26-3d1a81c96314 HTTP/1.1
Host: reachms.bfmio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 764
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 27 Sep 2023 22:33:44 GMT
access-control-allow-origin: https://rentalassistance.net
vary: Origin
access-control-allow-credentials: true
access-control-expose-headers: location
X-Firefox-Spdy: h2

c.disquscdn.com/next/embed/styles/lounge.dbc47866f009f9d6f1556cd58214d9a3.css

143.204.55.72

200 OK

33 kB

URL GET HTTP/2
c.disquscdn.com/next/embed/styles/lounge.dbc47866f009f9d6f1556cd58214d9a3.css
IP
143.204.55.72:443
ASN
#16509 AMAZON-02

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerAmazon
Subjecta.disquscdn.com
FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB
ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65469)
Size
33 kB (33282 bytes)
Hash
f858ca6db5248292eb007a3e8be26b0e
3510f64da62385f3deea82760b65bf7a5b0deaff
61779c74768b5eb298860ceb7d7cf06f2b228fdc53df72b530490a792a5b8a59

HTTP Headers

GET /next/embed/styles/lounge.dbc47866f009f9d6f1556cd58214d9a3.css HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 33282
date: Sat, 22 Jul 2023 16:09:12 GMT
server: nginx
last-modified: Wed, 12 Jul 2023 14:04:56 GMT
etag: "64aeb308-8202"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sun, 21 Jul 2024 16:09:12 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: weG0yH5WoiWYc52jly83LuhoC7Ar8iADTxZfIRTVeOMbhttde14NnA==
age: 5811872
X-Firefox-Spdy: h2

c.disquscdn.com/next/embed/lounge.bundle.9afa89eebe6bbc95928fca003dbc8884.js

143.204.55.72

200 OK

131 kB

URL GET HTTP/2
c.disquscdn.com/next/embed/lounge.bundle.9afa89eebe6bbc95928fca003dbc8884.js
IP
143.204.55.72:443
ASN
#16509 AMAZON-02

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerAmazon
Subjecta.disquscdn.com
FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB
ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32024)
Size
131 kB (130976 bytes)
Hash
5ea76020646b7d6c6a787247421ab3cf
afde365e853c042881792b7a577ad26915c09d38
d91e9d886683d0b738455179f4e0fc544a1fc5f94982073e4c7ad9a2a5497c74

HTTP Headers

GET /next/embed/lounge.bundle.9afa89eebe6bbc95928fca003dbc8884.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 130976
date: Wed, 20 Sep 2023 11:16:39 GMT
server: nginx
last-modified: Wed, 20 Sep 2023 10:55:06 GMT
etag: "650acf8a-1ffa0"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Thu, 19 Sep 2024 11:16:39 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PrY8qJnZosp8Fo3Dp-qMBe-asWHO-b94md5SfW4sEfNkTd6vukPmWA==
age: 645425
X-Firefox-Spdy: h2

disqus.com/next/config.js

151.101.0.134

200 OK

19 kB

URL GET HTTP/1.1
disqus.com/next/config.js
IP
151.101.0.134:443
ASN
#54113 FASTLY

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerSectigo Limited
Subject*.disqus.com
FingerprintB7:D2:67:1F:60:9E:37:2D:5A:10:2F:B0:70:75:32:44:91:61:67:D5
ValidityThu, 13 Apr 2023 00:00:00 GMT - Sat, 20 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (18882), with no line terminators
Size
19 kB (18882 bytes)
Hash
3342e31f9ce131efddaa67a43e49a30c
d0d787ac19bbbbb1b1c12e6050d112f9f1459387
b84b2674999e681b8a7670954141d72790595c47a305397c5b2d7dfd8681b6f3

HTTP Headers

GET /next/config.js HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 18882
Server: nginx
Content-Type: application/javascript; charset=UTF-8
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Cache-Control: public, stale-while-revalidate=300, s-stalewhilerevalidate=3600, max-age=60
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 27 Sep 2023 22:33:44 GMT
Age: 4
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains

benefitsdepot-net.disqus.com/recommendations.js

199.232.192.134

200 OK

21 kB

URL GET HTTP/1.1
benefitsdepot-net.disqus.com/recommendations.js
IP
199.232.192.134:443
ASN
#54113 FASTLY

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerSectigo Limited
Subject*.disqus.com
FingerprintB7:D2:67:1F:60:9E:37:2D:5A:10:2F:B0:70:75:32:44:91:61:67:D5
ValidityThu, 13 Apr 2023 00:00:00 GMT - Sat, 20 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32056)
Size
21 kB (21153 bytes)
Hash
a6d9bdfbcb3870659c852b7f11124233
475fed91c97ddd039968a98ae72857ae5f6e6f32
faf382ed0d47e6efdfc360b05127479312e287bead3f4b004c3c6cab80a3e570

HTTP Headers

GET /recommendations.js HTTP/1.1
Host: benefitsdepot-net.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 21153
Server: openresty
Content-Type: application/javascript; charset=utf-8
Cache-Control: stale-while-revalidate=60, public, stale-if-error=86400, max-age=60
X-Service: router
Content-Encoding: gzip
Date: Wed, 27 Sep 2023 22:33:45 GMT
Age: 0
Vary: Accept-Encoding, Accept, Accept-Encoding, X-Forwarded-Proto, X-Disqus-Shortname, X-Disqus-Device, X-Disqus-Experiment, X-Disqus-Is-Private, X-Disqus-Development-Base
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect

c.disquscdn.com/next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js

143.204.55.72

200 OK

27 kB

URL GET HTTP/2
c.disquscdn.com/next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js
IP
143.204.55.72:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerAmazon
Subjecta.disquscdn.com
FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB
ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32024)
Size
27 kB (26578 bytes)
Hash
6a2058c1873047f445835a25ca19ca8c
c05084762dc4cfafe00c2a7daab90e27ae94d783
9efb3d5e1b082a66bd94908b42afb4cf6fe0e8eb8f50b8d2a18f6a5da03e6a18

HTTP Headers

GET /next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 26578
date: Wed, 26 Jul 2023 02:14:17 GMT
server: nginx
last-modified: Tue, 25 Jul 2023 21:40:14 GMT
etag: "64c0413e-67d2"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Thu, 25 Jul 2024 02:14:17 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MdrHQuZbpYa0gXyFSrPJa7tDmmKLDXFsaBbpAp4Q0XfrmBkS2jZYRw==
age: 5516368
X-Firefox-Spdy: h2

disqus.com/api/3.0/forums/details?forum=benefitsdepot-net&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F

151.101.0.134

200 OK

3.0 kB

URL GET HTTP/1.1
disqus.com/api/3.0/forums/details?forum=benefitsdepot-net&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
IP
151.101.0.134:443
ASN
#54113 FASTLY

Requested by
https://disqus.com/recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net#version=e92e17edc4ee90d40c8117e92cd2348c
Certificate
IssuerSectigo Limited
Subject*.disqus.com
FingerprintB7:D2:67:1F:60:9E:37:2D:5A:10:2F:B0:70:75:32:44:91:61:67:D5
ValidityThu, 13 Apr 2023 00:00:00 GMT - Sat, 20 Apr 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (3039), with no line terminators
Size
3.0 kB (3039 bytes)
Hash
e76feb09fad4173766927f8a2559ed96
a1df8ecbda5276762436d1dd8dc9ce5878687f32
59c3493bcee061cd6fd4692bcab22927608f708ba61b3b846b46d45d2d4033c4

HTTP Headers

GET /api/3.0/forums/details?forum=benefitsdepot-net&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 3039
Server: nginx
Content-Type: application/json
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 27 Sep 2023 22:33:45 GMT
Age: 0
Vary: Origin, Cookie
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains

c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg

143.204.55.72

200 OK

13 kB

URL GET HTTP/2
c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
IP
143.204.55.72:443
ASN
#16509 AMAZON-02

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerAmazon
Subjecta.disquscdn.com
FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB
ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (13079), with no line terminators
Size
13 kB (13079 bytes)
Hash
4da5413f5086c5755b46094b813dbfcd
87669f231ce245cdd9b7d80ebf8194e2ae62e7b1
3270642c89180c12db93775e2a774b6dadd9bd98cffc963075c85afd2c17b6e4

HTTP Headers

GET /next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.dbc47866f009f9d6f1556cd58214d9a3.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 13079
date: Sun, 23 Jul 2023 02:22:37 GMT
server: nginx
last-modified: Wed, 12 Jul 2023 14:04:56 GMT
etag: "64aeb308-3317"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Mon, 22 Jul 2024 02:22:37 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NkG6guHDgktI6HG_nh8Bim1GzCtI9OWd6P-rWPOi72p4krQLWriqGQ==
age: 5775067
X-Firefox-Spdy: h2

c.disquscdn.com/next/embed/assets/img/email.727e30eb9b6c1e85cb010b9c8eb04c7e.svg

143.204.55.72

200 OK

840 B

URL GET HTTP/2
c.disquscdn.com/next/embed/assets/img/email.727e30eb9b6c1e85cb010b9c8eb04c7e.svg
IP
143.204.55.72:443
ASN
#16509 AMAZON-02

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerAmazon
Subjecta.disquscdn.com
FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB
ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (736)
Size
840 B (840 bytes)
Hash
727e30eb9b6c1e85cb010b9c8eb04c7e
5b7ed3f88c4d25d1d9e15bbd15af68daf5c573b4
0589c5845288117448d7aa710af60618b151d78efd1a2653f89a0b57f7eb3de8

HTTP Headers

GET /next/embed/assets/img/email.727e30eb9b6c1e85cb010b9c8eb04c7e.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.dbc47866f009f9d6f1556cd58214d9a3.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 840
date: Tue, 18 Jul 2023 06:46:45 GMT
server: nginx
last-modified: Wed, 12 Jul 2023 14:04:56 GMT
etag: "64aeb308-348"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 17 Jul 2024 06:46:45 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QBea6C_Jd83AlvX0CRNIvke-whfetEszkBxwfUQD2CxBEW-d7H6Hlg==
age: 6191220
X-Firefox-Spdy: h2

c.disquscdn.com/next/embed/assets/img/privacy.8c96be6b50de1c3fab838c5f050e0be5.svg

143.204.55.72

200 OK

891 B

URL GET HTTP/2
c.disquscdn.com/next/embed/assets/img/privacy.8c96be6b50de1c3fab838c5f050e0be5.svg
IP
143.204.55.72:443
ASN
#16509 AMAZON-02

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerAmazon
Subjecta.disquscdn.com
FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB
ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (787)
Size
891 B (891 bytes)
Hash
8c96be6b50de1c3fab838c5f050e0be5
d0eb4a80710c083c77020cc3b6cd6756cf0bca60
068753b8f09b32ad8a3283199c7252090d0076a56924df724dda72828ae31b95

HTTP Headers

GET /next/embed/assets/img/privacy.8c96be6b50de1c3fab838c5f050e0be5.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.dbc47866f009f9d6f1556cd58214d9a3.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 891
date: Wed, 26 Jul 2023 18:48:11 GMT
server: nginx
last-modified: Wed, 26 Jul 2023 16:31:55 GMT
etag: "64c14a7b-37b"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Thu, 25 Jul 2024 18:48:11 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BKdXIMNbdeqMFKroRyimgj1aNBwnl38GVZsxIvAWZN24v-K5MgeL8w==
age: 5456734
X-Firefox-Spdy: h2

eb.proper.io/s2s

104.16.15.119

200 OK

831 B

URL POST HTTP/2
eb.proper.io/s2s
IP
104.16.15.119:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerCloudflare, Inc.
Subjectproper.io
FingerprintB6:E6:ED:AB:1F:4C:1D:D2:FD:E4:CF:D9:C5:F5:3F:8D:BF:9E:37:D3
ValidityFri, 07 Apr 2023 00:00:00 GMT - Sat, 06 Apr 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
831 B (831 bytes)
Hash
7b7a58ac4e63903b6b7880f1b7c67cac
873cfe8d9c879cbb638e33409a239a9ca0c269b4
742ccc3e8d3fcb8a4d27ac63396833d19d8d6ec482b4239c92046ed6adccd295

HTTP Headers

POST /s2s HTTP/1.1
Host: eb.proper.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1773
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Cookie: __cf_bm=VPQbo.LCkrERvOyFMnARUzgurEWlLww77WKR1NL9yAY-1695854023-0-AcXBLPAI+6XwtC+xn5DciGymhRfxtyVwCCWL9u3rxsiu3ysAr/oGZ1VpJ5ewhGc8qFgbBi3qRD5wxdcJAhhqSkFny/KiMZXpq7gXeQqvG0ef
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:44 GMT
content-type: application/json
access-control-allow-origin: https://rentalassistance.net
cache-control: private, no-cache, no-store, must-revalidate
expires: -1
set-cookie: __cf_bm=VPQbo.LCkrERvOyFMnARUzgurEWlLww77WKR1NL9yAY-1695854023-0-AcXBLPAI%2B6XwtC%2Bxn5DciGymhRfxtyVwCCWL9u3rxsiu3ysAr%2FoGZ1VpJ5ewhGc8qFgbBi3qRD5wxdcJAhhqSkFny%2FKiMZXpq7gXeQqvG0ef; Max-Age=5184000; Path=/; Domain=.proper.io; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
server-timing: dur:223
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d735c6a91f0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2

c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2

143.204.55.72

200 OK

7.9 kB

URL GET HTTP/2
c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
IP
143.204.55.72:443
ASN
#16509 AMAZON-02

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerAmazon
Subjecta.disquscdn.com
FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB
ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7900, version 1.0\012- data
Size
7.9 kB (7900 bytes)
Hash
4cc7a703d2fdfe684151ff8ac24d45f1
046adee74e5ce76db11491906a21c09399391571
f2a341fc815d45c21da726d4c843c2c5d3e1f333465347c3c75d040d556df4e5

HTTP Headers

GET /next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2 HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
DNT: 1
Connection: keep-alive
Referer: https://c.disquscdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
content-length: 7900
date: Tue, 18 Jul 2023 03:34:32 GMT
server: nginx
last-modified: Wed, 12 Jul 2023 14:04:56 GMT
etag: "64aeb308-1edc"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 17 Jul 2024 03:34:32 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BFzGDYY7KL-J_rcTMiUAlUhqXHYqxINcDVZ8E5KaB1P6PV0xkuUgjA==
age: 6202753
X-Firefox-Spdy: h2

disqus.com/recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net

151.101.0.134

2.3 kB

URL
disqus.com/recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net
IP
151.101.0.134:0
ASN
#54113 FASTLY

Certificate
IssuerSectigo Limited
Subject*.disqus.com
FingerprintB7:D2:67:1F:60:9E:37:2D:5A:10:2F:B0:70:75:32:44:91:61:67:D5
ValidityThu, 13 Apr 2023 00:00:00 GMT - Sat, 20 Apr 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2792)
Size
2.3 kB (2275 bytes)
Hash
d4cfd8e10bc131032af2db9e08dfba2a
c11b1748bcc81572234b23f460e5494afbf9f71a
7c89e0921133790e02aa77eea74f6c8864d364ff80814d77da95818f73da8ce8

HTTP Headers

GET /recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 2275
Server: nginx
Content-Type: text/html; charset=utf-8
Content-Security-Policy: script-src https://*.twitter.com:* https://www.gstatic.com/recaptcha/ https://a.disquscdn.com https://c.disquscdn.com c.disquscdn.com https://*.services.disqus.com:* https://cdn.boomtrain.com/p13n/ https://com-disqus.netmng.com:* 'unsafe-inline' https://referrer.disqus.com/juggler/ https://connect.facebook.net/en_US/sdk.js https://cdn.syndication.twimg.com/tweets.json https://apis.google.com https://www.google.com/recaptcha/ https://cf.ignitionone.com:* https://disqus.com
Last-Modified: Sun, 10 Sep 2023 10:22:43 GMT
Link: <https://c.disquscdn.com>;rel=preconnect,<https://c.disquscdn.com>;rel=dns-prefetch
Cache-Control: stale-while-revalidate=30, no-cache, must-revalidate, stale-if-error=3600, public
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Date: Wed, 27 Sep 2023 22:33:45 GMT
Age: 0
Vary: Accept-Encoding
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains

fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,500;0,600;0,700;1,400;1,700&display=swap

142.250.74.138

200 OK

846 B

URL GET HTTP/3
fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,500;0,600;0,700;1,400;1,700&display=swap
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT

File type
ASCII text
Size
846 B (846 bytes)
Hash
8e9e6359b14174ad205d3481f54d91a5
4b5aeb8d47e6b223d42055596865da571a1fa546
4dbc45bd7ed8caf2aeeae8de34e519d874987d5285c79b5b4a93a1d670a929c4

HTTP Headers

GET /css2?family=Roboto:ital,wght@0,400;0,500;0,600;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 27 Sep 2023 22:33:45 GMT
date: Wed, 27 Sep 2023 22:33:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

c.disquscdn.com/next/embed/styles/realtime.b23ff3c36dd0169627f8e54ca1621eca.css

143.204.55.72

200 OK

244 B

URL GET HTTP/2
c.disquscdn.com/next/embed/styles/realtime.b23ff3c36dd0169627f8e54ca1621eca.css
IP
143.204.55.72:443
ASN
#16509 AMAZON-02

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerAmazon
Subjecta.disquscdn.com
FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB
ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (337), with no line terminators
Size
244 B (244 bytes)
Hash
23160ce2574c610ecb597f18fa8236b4
de6a70e48d7864a9218c1a9ad5930c2a081336e4
c284dcb06ef882b1b45e11e0a16baa223b4117eca94e243c8e725c4ce3f909b3

HTTP Headers

GET /next/embed/styles/realtime.b23ff3c36dd0169627f8e54ca1621eca.css HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 244
date: Sun, 27 Aug 2023 02:36:00 GMT
server: nginx
last-modified: Thu, 24 Aug 2023 14:31:56 GMT
etag: "64e769dc-f4"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Mon, 26 Aug 2024 02:36:00 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: S3YNMJ4-Y1aXrjOlh_k2ouLsuVsb9yWkjMbss0JEHCvYX956HnYZUA==
age: 2750265
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 10:05:24 GMT
expires: Sat, 21 Sep 2024 10:05:24 GMT
cache-control: public, max-age=31536000
age: 476901
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://disqus.com/recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net#version=e92e17edc4ee90d40c8117e92cd2348c
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 04:50:55 GMT
expires: Fri, 20 Sep 2024 04:50:55 GMT
cache-control: public, max-age=31536000
age: 582170
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 15:25:53 GMT
expires: Fri, 20 Sep 2024 15:25:53 GMT
cache-control: public, max-age=31536000
age: 544072
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2

216.58.207.227

200 OK

17 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Size
17 kB (17368 bytes)
Hash
abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9

HTTP Headers

GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 15:08:23 GMT
expires: Fri, 20 Sep 2024 15:08:23 GMT
cache-control: public, max-age=31536000
age: 545122
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2

216.58.207.227

200 OK

17 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17032, version 1.0\012- data
Size
17 kB (17032 bytes)
Hash
05a47f9e469d408c629f931cd33ff8b2
823f21f7b1d456db889c3afea393f0d2b9581c38
6be97ca17228a69c406231d89c003194c3dfba7401eaa9fe9e9ed0ef1c18dc38

HTTP Headers

GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17032
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 10:40:56 GMT
expires: Sun, 22 Sep 2024 10:40:56 GMT
cache-control: public, max-age=31536000
age: 388369
last-modified: Wed, 11 May 2022 19:24:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

c.disquscdn.com/next/recommendations/recommendations.load.e92e17edc4ee90d40c8117e92cd2348c.js

143.204.55.72

200 OK

447 B

URL GET HTTP/2
c.disquscdn.com/next/recommendations/recommendations.load.e92e17edc4ee90d40c8117e92cd2348c.js
IP
143.204.55.72:443
ASN
#16509 AMAZON-02

Requested by
https://disqus.com/recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net#version=e92e17edc4ee90d40c8117e92cd2348c
Certificate
IssuerAmazon
Subjecta.disquscdn.com
FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB
ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (923), with no line terminators
Size
447 B (447 bytes)
Hash
6b19f56752392897240d8cb27e00a09f
85beed4cc46f489f9955057c4982e48962797011
a4b8bc61f249b1497f45d629df065ac0b1c8fdd8d30cd856ebd24ee951a58dcd

HTTP Headers

GET /next/recommendations/recommendations.load.e92e17edc4ee90d40c8117e92cd2348c.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://disqus.com
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 447
date: Tue, 05 Sep 2023 19:25:43 GMT
server: nginx
last-modified: Tue, 05 Sep 2023 18:32:14 GMT
etag: "64f7742e-1bf"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 04 Sep 2024 19:25:43 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2eCjaaGk1Jq2yUyyrGpkF86PKA_-djJRtZ0kAkoofXWb4mdHanl7QA==
age: 1912082
X-Firefox-Spdy: h2

c.disquscdn.com/next/recommendations/common.bundle.31b4f5178221dd17c6ba875de58310e2.js

143.204.55.72

200 OK

89 kB

URL GET HTTP/2
c.disquscdn.com/next/recommendations/common.bundle.31b4f5178221dd17c6ba875de58310e2.js
IP
143.204.55.72:443
ASN
#16509 AMAZON-02

Requested by
https://disqus.com/recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net#version=e92e17edc4ee90d40c8117e92cd2348c
Certificate
IssuerAmazon
Subjecta.disquscdn.com
FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB
ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32023)
Size
89 kB (88818 bytes)
Hash
7d9f51ffaea5dd5bdaff317577d6f991
641b1feed67468407ce83cccf4508f55b01dc9c8
c61340cb0ec75dd5fe9c1b61c0829fa5c1eecb80ed568ba08e45be875b32434b

HTTP Headers

GET /next/recommendations/common.bundle.31b4f5178221dd17c6ba875de58310e2.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 88818
date: Thu, 14 Sep 2023 03:57:47 GMT
server: nginx
last-modified: Wed, 13 Sep 2023 20:48:30 GMT
etag: "6502201e-15af2"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 13 Sep 2024 03:57:47 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Hig2eumc9Sut5GQxbRx9A4eFZ0AEiEMG3kye-yEDQuf3PpglCne6mg==
age: 1190158
X-Firefox-Spdy: h2

referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=725&event=init_embed&thread=9872410217&forum=benefitsdepot-net&forum_id=5869869&imp=5dfiq7lilfen3&thread_slug=rentalassistancenet_20387502&user_type=anon&referrer=https%3A%2F%2Frentalassistance.net%2F&theme=next&dnt=1&tracking_enabled=0&experiment=prebidbidisrequired_hidden&variant=active&service=dynamic&promoted_enabled=false&max_enabled=false

199.232.196.134

200 OK

43 B

URL GET HTTP/1.1
referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=725&event=init_embed&thread=9872410217&forum=benefitsdepot-net&forum_id=5869869&imp=5dfiq7lilfen3&thread_slug=rentalassistancenet_20387502&user_type=anon&referrer=https%3A%2F%2Frentalassistance.net%2F&theme=next&dnt=1&tracking_enabled=0&experiment=prebidbidisrequired_hidden&variant=active&service=dynamic&promoted_enabled=false&max_enabled=false
IP
199.232.196.134:443
ASN
#54113 FASTLY

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerSectigo Limited
Subject*.disqus.com
FingerprintB7:D2:67:1F:60:9E:37:2D:5A:10:2F:B0:70:75:32:44:91:61:67:D5
ValidityThu, 13 Apr 2023 00:00:00 GMT - Sat, 20 Apr 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /juggler/event.gif?abe=0&embed_hidden=0&load_time=725&event=init_embed&thread=9872410217&forum=benefitsdepot-net&forum_id=5869869&imp=5dfiq7lilfen3&thread_slug=rentalassistancenet_20387502&user_type=anon&referrer=https%3A%2F%2Frentalassistance.net%2F&theme=next&dnt=1&tracking_enabled=0&experiment=prebidbidisrequired_hidden&variant=active&service=dynamic&promoted_enabled=false&max_enabled=false HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 27 Sep 2023 22:33:45 GMT
Cross-Origin-Resource-Policy: cross-origin

c.disquscdn.com/next/recommendations/styles/recommendations.10022a97346f1c6e3798931bbd8e4bb5.css

143.204.55.72

200 OK

3.0 kB

URL GET HTTP/2
c.disquscdn.com/next/recommendations/styles/recommendations.10022a97346f1c6e3798931bbd8e4bb5.css
IP
143.204.55.72:443
ASN
#16509 AMAZON-02

Requested by
https://disqus.com/recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net#version=e92e17edc4ee90d40c8117e92cd2348c
Certificate
IssuerAmazon
Subjecta.disquscdn.com
FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB
ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (14286), with no line terminators
Size
3.0 kB (2968 bytes)
Hash
ab396baf8c17df5fb6a6a8e2632f2fef
dc6faa2a85c8b906848c45fc2a7a98d7480b10b6
ad59b3c437a380375b4205e22d9bf50856690b094d2fa425ae90971f5b58758e

HTTP Headers

GET /next/recommendations/styles/recommendations.10022a97346f1c6e3798931bbd8e4bb5.css HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 2968
date: Sun, 23 Jul 2023 23:07:52 GMT
server: nginx
last-modified: Wed, 12 Jul 2023 14:04:56 GMT
etag: "64aeb308-b98"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Mon, 22 Jul 2024 23:07:52 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TzSJae1BukxxA3Olu5fZlRmu5AFsF3Xg8AuYosr2-KgMDAoOdzKdig==
age: 5700353
X-Firefox-Spdy: h2

c.disquscdn.com/next/recommendations/recommendations.bundle.eafbbb421f86bc4475d4beca94ec3812.js

143.204.55.72

200 OK

20 kB

URL GET HTTP/2
c.disquscdn.com/next/recommendations/recommendations.bundle.eafbbb421f86bc4475d4beca94ec3812.js
IP
143.204.55.72:443
ASN
#16509 AMAZON-02

Requested by
https://disqus.com/recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net#version=e92e17edc4ee90d40c8117e92cd2348c
Certificate
IssuerAmazon
Subjecta.disquscdn.com
FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB
ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (32081)
Size
20 kB (20362 bytes)
Hash
e652602c66bc33549eb049dc637ac7ec
e7e1ef3e94a77c3f623109bae84a840def9052f2
8a406724903a0f83bddfe975281ff1ab03cee0e1b8e351997787e5e9a11b9da7

HTTP Headers

GET /next/recommendations/recommendations.bundle.eafbbb421f86bc4475d4beca94ec3812.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 20362
date: Fri, 15 Sep 2023 22:23:56 GMT
server: nginx
last-modified: Wed, 13 Sep 2023 20:48:30 GMT
etag: "6502201e-4f8a"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 14 Sep 2024 22:23:56 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: d4JfrtHox_l9xE9r0hoUUkWI2YElw-u56ZfPLV5oAhi3egdwFwmMyA==
age: 1037389
X-Firefox-Spdy: h2

disqus.com/next/config.js

151.101.0.134

200 OK

19 kB

URL GET HTTP/1.1
disqus.com/next/config.js
IP
151.101.0.134:443
ASN
#54113 FASTLY

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerSectigo Limited
Subject*.disqus.com
FingerprintB7:D2:67:1F:60:9E:37:2D:5A:10:2F:B0:70:75:32:44:91:61:67:D5
ValidityThu, 13 Apr 2023 00:00:00 GMT - Sat, 20 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (18882), with no line terminators
Size
19 kB (18882 bytes)
Hash
3342e31f9ce131efddaa67a43e49a30c
d0d787ac19bbbbb1b1c12e6050d112f9f1459387
b84b2674999e681b8a7670954141d72790595c47a305397c5b2d7dfd8681b6f3

HTTP Headers

GET /next/config.js HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 18882
Server: nginx
Content-Type: application/javascript; charset=UTF-8
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Cache-Control: public, stale-while-revalidate=300, s-stalewhilerevalidate=3600, max-age=60
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 27 Sep 2023 22:33:45 GMT
Age: 5
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains

realtime.services.disqus.com/ws/2/thread/9872410217?

54.227.133.51

0 B

URL
realtime.services.disqus.com/ws/2/thread/9872410217?
IP
54.227.133.51:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ws/2/thread/9872410217? HTTP/1.1
Host: realtime.services.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://disqus.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DGuEfWSbsvos4wzWS+MduA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Wed, 27 Sep 2023 22:33:45 GMT
Content-Length: 0
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://disqus.com
Sec-WebSocket-Accept: BaGjjBmSFh1/GIOXI5o/kBaNeQE=
Upgrade: websocket
X-Served-By: realtime-8
X-Cache: MISS
X-Cache-Hits: 0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block

disqus.com/api/3.0/forums/details?forum=benefitsdepot-net&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F

151.101.0.134

200 OK

3.0 kB

URL GET HTTP/1.1
disqus.com/api/3.0/forums/details?forum=benefitsdepot-net&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
IP
151.101.0.134:443
ASN
#54113 FASTLY

Requested by
https://disqus.com/recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net#version=e92e17edc4ee90d40c8117e92cd2348c
Certificate
IssuerSectigo Limited
Subject*.disqus.com
FingerprintB7:D2:67:1F:60:9E:37:2D:5A:10:2F:B0:70:75:32:44:91:61:67:D5
ValidityThu, 13 Apr 2023 00:00:00 GMT - Sat, 20 Apr 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with very long lines (3039), with no line terminators
Size
3.0 kB (3039 bytes)
Hash
e76feb09fad4173766927f8a2559ed96
a1df8ecbda5276762436d1dd8dc9ce5878687f32
59c3493bcee061cd6fd4692bcab22927608f708ba61b3b846b46d45d2d4033c4

HTTP Headers

GET /api/3.0/forums/details?forum=benefitsdepot-net&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 3039
Server: nginx
Content-Type: application/json
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 27 Sep 2023 22:33:45 GMT
Age: 1
Vary: Origin, Cookie
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains

links.services.disqus.com/api/ping

199.232.192.64

200 OK

316 B

URL POST HTTP/1.1
links.services.disqus.com/api/ping
IP
199.232.192.64:443
ASN
#54113 FASTLY

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerGlobalSign nv-sa
Subject*.services.disqus.com
Fingerprint50:A1:DE:0D:FF:87:C9:55:D3:07:CE:35:8A:C5:E9:9D:3F:9E:78:9E
ValidityTue, 08 Aug 2023 17:50:10 GMT - Sun, 08 Sep 2024 17:50:09 GMT

File type
ASCII text, with very long lines (316), with no line terminators
Size
316 B (316 bytes)
Hash
79305a4e334e0da7b10d5d85b064e768
e371561c64ecdc6cc15a9fdf78df0513cc66ad60
8d4a36b754eba9617165adf20389a0a120036db9df082228bfaff78085cae98b

HTTP Headers

POST /api/ping HTTP/1.1
Host: links.services.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 274
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 316
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://rentalassistance.net
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Date: Wed, 27 Sep 2023 22:33:45 GMT

fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,500;0,600;0,700;1,400;1,700&display=swap

142.250.74.138

200 OK

17 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,500;0,600;0,700;1,400;1,700&display=swap
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT

File type
gzip compressed data, max compression\012- data
Size
17 kB (16590 bytes)
Hash
272057bd0945560a6faa6490941aad55
8927bdde219330ae2bee7ed360e1c7528483ef22
965b3bac7a9e57f01ffb08bec36e2bb50d6f80a85eb1f30a3b1004a12d9a33b4

HTTP Headers

GET /css2?family=Roboto:ital,wght@0,400;0,500;0,600;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 27 Sep 2023 22:33:45 GMT
date: Wed, 27 Sep 2023 22:33:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

links.services.disqus.com/api/sync.gif?key=cfdfcf52dffd0a702a61bad27507376d

199.232.192.64

403 Forbidden

979 B

URL GET HTTP/1.1
links.services.disqus.com/api/sync.gif?key=cfdfcf52dffd0a702a61bad27507376d
IP
199.232.192.64:443
ASN
#54113 FASTLY

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerGlobalSign nv-sa
Subject*.services.disqus.com
Fingerprint50:A1:DE:0D:FF:87:C9:55:D3:07:CE:35:8A:C5:E9:9D:3F:9E:78:9E
ValidityTue, 08 Aug 2023 17:50:10 GMT - Sun, 08 Sep 2024 17:50:09 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (979), with no line terminators
Size
979 B (979 bytes)
Hash
1edc3fac1e0eb87ed6b19d4ecd08f8ef
bc58af52fa6a97e7506db76cb9e5a1895c92dcfd
613acec36f8b4ee7869a9907bc4b81eb6c24bcdd373520d6ee3a9b040d78ed98

HTTP Headers

GET /api/sync.gif?key=cfdfcf52dffd0a702a61bad27507376d HTTP/1.1
Host: links.services.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Connection: keep-alive
Content-Length: 979
Content-Language: en
Content-Type: text/html;charset=utf-8
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Server: Apache-Coyote/1.1
Date: Wed, 27 Sep 2023 22:33:46 GMT

links.services.disqus.com/api/domains

199.232.192.64

200 OK

41 B

URL POST HTTP/1.1
links.services.disqus.com/api/domains
IP
199.232.192.64:443
ASN
#54113 FASTLY

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerGlobalSign nv-sa
Subject*.services.disqus.com
Fingerprint50:A1:DE:0D:FF:87:C9:55:D3:07:CE:35:8A:C5:E9:9D:3F:9E:78:9E
ValidityTue, 08 Aug 2023 17:50:10 GMT - Sun, 08 Sep 2024 17:50:09 GMT

File type
ASCII text, with no line terminators
Size
41 B (41 bytes)
Hash
158a3a1bdac97b8da09f6cc5bd6d0d81
a6b89f08a7aac132ce642d308bf0dbce6d4d0b3f
ded3f32cc151c6968ab94bdb08de48ca09cfc3c8390adb109067d5db04ad3aa1

HTTP Headers

POST /api/domains HTTP/1.1
Host: links.services.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 293
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 41
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://rentalassistance.net
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Date: Wed, 27 Sep 2023 22:33:46 GMT

disqus.com/api/3.0/discovery/listRecommendations.json?forum=benefitsdepot-net&thread=url%3Ahttps%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&limit=8&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F

151.101.0.134

200 OK

24 B

URL GET HTTP/1.1
disqus.com/api/3.0/discovery/listRecommendations.json?forum=benefitsdepot-net&thread=url%3Ahttps%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&limit=8&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
IP
151.101.0.134:443
ASN
#54113 FASTLY

Requested by
https://disqus.com/recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net#version=e92e17edc4ee90d40c8117e92cd2348c
Certificate
IssuerSectigo Limited
Subject*.disqus.com
FingerprintB7:D2:67:1F:60:9E:37:2D:5A:10:2F:B0:70:75:32:44:91:61:67:D5
ValidityThu, 13 Apr 2023 00:00:00 GMT - Sat, 20 Apr 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
24 B (24 bytes)
Hash
ec5f8e68ab7bb63a2f3aac4f8fb5e29a
4b5421c8899b758f568522c99f600a25b115d178
bb92785c8078031646452e7e873a8e5100f45535fdf53d3503105126fd449ace

HTTP Headers

GET /api/3.0/discovery/listRecommendations.json?forum=benefitsdepot-net&thread=url%3Ahttps%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&limit=8&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 24
Server: nginx
Content-Type: application/json
Cache-Control: stale-while-revalidate=450, public, max-age=1800
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 27 Sep 2023 22:33:46 GMT
Age: 0
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains

referrer.disqus.com/juggler/stat.gif?event=failed_recommendations.server.undefined

199.232.196.134

200 OK

43 B

URL GET HTTP/1.1
referrer.disqus.com/juggler/stat.gif?event=failed_recommendations.server.undefined
IP
199.232.196.134:443
ASN
#54113 FASTLY

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerSectigo Limited
Subject*.disqus.com
FingerprintB7:D2:67:1F:60:9E:37:2D:5A:10:2F:B0:70:75:32:44:91:61:67:D5
ValidityThu, 13 Apr 2023 00:00:00 GMT - Sat, 20 Apr 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /juggler/stat.gif?event=failed_recommendations.server.undefined HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 27 Sep 2023 22:33:46 GMT
Cross-Origin-Resource-Policy: cross-origin

realtime.services.disqus.com/ws/2/thread/9872410217?

54.227.133.51

101 Switching Protocols

0 B

URL GET HTTP/1.1
realtime.services.disqus.com/ws/2/thread/9872410217?
IP
54.227.133.51:443
ASN
#14618 AMAZON-AES

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerSectigo Limited
Subject*.services.disqus.com
FingerprintB1:CE:D8:1A:B7:9E:FA:D7:E4:CC:61:83:93:28:8F:66:49:75:77:00
ValidityThu, 13 Apr 2023 00:00:00 GMT - Sat, 20 Apr 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ws/2/thread/9872410217? HTTP/1.1
Host: realtime.services.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://disqus.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DGuEfWSbsvos4wzWS+MduA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Wed, 27 Sep 2023 22:33:45 GMT
Content-Length: 0
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://disqus.com
Sec-WebSocket-Accept: BaGjjBmSFh1/GIOXI5o/kBaNeQE=
Upgrade: websocket
X-Served-By: realtime-8
X-Cache: MISS
X-Cache-Hits: 0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block

c.disquscdn.com/next/embed/assets/img/warning.3bc0b4bff6c268a4ceaf404014b9be42.svg

143.204.55.72

200 OK

605 B

URL GET HTTP/2
c.disquscdn.com/next/embed/assets/img/warning.3bc0b4bff6c268a4ceaf404014b9be42.svg
IP
143.204.55.72:443
ASN
#16509 AMAZON-02

Requested by
https://disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default#version=62db764f4f0426e1eaaed71de8896900
Certificate
IssuerAmazon
Subjecta.disquscdn.com
FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB
ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (622), with no line terminators
Size
605 B (605 bytes)
Hash
42f720cd9165933c2acbbc45faf69988
dec0b27e319d96382bf20d7ac9b4e04634e4db25
a991dd9d67b9d20c51c34da2d5984bccd9dda2fa546ce6b1c665fb7a0aae7131

HTTP Headers

GET /next/embed/assets/img/warning.3bc0b4bff6c268a4ceaf404014b9be42.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.dbc47866f009f9d6f1556cd58214d9a3.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 605
date: Thu, 14 Sep 2023 03:57:58 GMT
server: nginx
last-modified: Wed, 13 Sep 2023 20:48:30 GMT
etag: "6502201e-25d"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 13 Sep 2024 03:57:58 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7Q733DBR3NbsqzZrSG__IvlJAQkvxK0ZprvK2l2HdtSuoATqPlfz_A==
age: 1190147
X-Firefox-Spdy: h2

ib.adnxs.com/ut/v3/prebid

37.252.171.85

200 OK

699 B

URL POST HTTP/2
ib.adnxs.com/ut/v3/prebid
IP
37.252.171.85:443
ASN
#29990 ASN-APPNEX

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerDigiCert Inc
Subject*.adnxs.com
Fingerprint30:E1:57:C8:5A:77:64:AE:54:99:08:F7:2B:B8:C7:F4:28:85:56:08
ValidityMon, 13 Feb 2023 00:00:00 GMT - Fri, 15 Mar 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (789), with no line terminators
Size
699 B (699 bytes)
Hash
5380b52df88b6065c0b21478fac682df
cedfdb6d525446a9ee8fd9dd3aea336bdc4b3438
c9ba7cda9ce8a54d85aa55233fa1d1d0cd97fa6f8c64438b7593f3b6fa21d45d

HTTP Headers

POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2329
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.21.3
date: Wed, 27 Sep 2023 22:33:44 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
cache-control: no-store, no-cache, private
pragma: no-cache
expires: Sat, 15 Nov 2008 16:00:00 GMT
p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
x-xss-protection: 0
access-control-allow-credentials: true
access-control-allow-origin: https://rentalassistance.net
accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
an-x-request-uuid: f326bfb7-013e-4f56-9df6-cce32c34785b
set-cookie: icu=ChgIi-19EAoYASABKAEwyNvSqAY4AUABSAEQyNvSqAYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 26-Dec-2023 22:33:44 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=8457444490897841146; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 26-Dec-2023 22:33:44 GMT; Domain=.adnxs.com; Secure; HttpOnly
x-proxy-origin: 91.90.42.154; 91.90.42.154; 1006.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
content-encoding: gzip
X-Firefox-Spdy: h2

host1.easypolls.net/api/poll/5d66c61fe4b067f237f9e485?jsoncallback=jQuery110207616346564008278_1695854023228&command=getPoll&pollId=5d66c61fe4b067f237f9e485&containerId=&_=1695854023229

54.173.157.100

200 OK

9.3 kB

URL GET HTTP/2
host1.easypolls.net/api/poll/5d66c61fe4b067f237f9e485?jsoncallback=jQuery110207616346564008278_1695854023228&command=getPoll&pollId=5d66c61fe4b067f237f9e485&containerId=&_=1695854023229
IP
54.173.157.100:443
ASN
#14618 AMAZON-AES

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerAmazon
Subject*.easypolls.net
FingerprintC2:CA:75:66:0E:2D:31:DF:4A:66:BF:D7:FF:16:D2:C6:DF:32:2B:0C
ValidityThu, 23 Feb 2023 00:00:00 GMT - Wed, 03 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (11505), with no line terminators
Size
9.3 kB (9301 bytes)
Hash
975c519b6d6cde8e9452e3e4c7fa4082
3d86e77898aa39bd424bb29d617450b0ef8b6836
d5ddcc8d7f30b38ed955e89b0c7dbe88cec72bc215fa85ce0de6b9ebb3aabe1f

HTTP Headers

GET /api/poll/5d66c61fe4b067f237f9e485?jsoncallback=jQuery110207616346564008278_1695854023228&command=getPoll&pollId=5d66c61fe4b067f237f9e485&containerId=&_=1695854023229 HTTP/1.1
Host: host1.easypolls.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Cookie: AWSALBTGCORS=HKWFZF7xghDiHv5H9OW3DYXLlkhjKURbiWTJRNJnhRo/vbPtNVVyv6j2vqJnxleHzqxMcNeRtdgRIL+Nto3uN7GVF5BjdlDvfAYxbiJcehjesrEZzNz9LUWMJMng+ZGw+P2dy3+oWUw0cjIJyaUgKvCmau8NTy4mbgwfHpFsc1Og; AWSALBCORS=WLSn6FicFzFOemycQtuDfQMLeJw0fM5+2AKCH7Um6rln8nNAMo0dQvnm82VhOKaLoSQDiCt+oj0+x0APc1JZMYxvHw0LWl4DmRLB9jnLdrbPaVwxZ8ghX3z/gKY/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:45 GMT
content-type: application/javascript; charset=utf-8
set-cookie: AWSALBTG=J82Ec4mkZy9Smy8TCKpS+MVp9jeYG6fc/pTy8Wxx9pdfajKZDbl0+V2lOk6XfMRDgOW9gh7220v1lWvc5UNPYFyVJnWTSNyVA7++spDlgkIQWkSEwy4OYTRP0PpPXiQrKa824ODisR0+4Vw6l17b1ei+6pUSMws6M7iQKGhPu89w; Expires=Wed, 04 Oct 2023 22:33:45 GMT; Path=/
AWSALBTGCORS=J82Ec4mkZy9Smy8TCKpS+MVp9jeYG6fc/pTy8Wxx9pdfajKZDbl0+V2lOk6XfMRDgOW9gh7220v1lWvc5UNPYFyVJnWTSNyVA7++spDlgkIQWkSEwy4OYTRP0PpPXiQrKa824ODisR0+4Vw6l17b1ei+6pUSMws6M7iQKGhPu89w; Expires=Wed, 04 Oct 2023 22:33:45 GMT; Path=/; SameSite=None; Secure
AWSALB=ccPSQHi+wZhoZEp2QT41HuB/CqM7lOyv7sELMiJWvgveFNcx8f/NiT6EN1tpzhW0J3KBwhrRsT0uLYispd3I40BKQ6pfWBzESQiytzyetGf/1D/lEnYpwA+KReA+; Expires=Wed, 04 Oct 2023 22:33:45 GMT; Path=/
AWSALBCORS=ccPSQHi+wZhoZEp2QT41HuB/CqM7lOyv7sELMiJWvgveFNcx8f/NiT6EN1tpzhW0J3KBwhrRsT0uLYispd3I40BKQ6pfWBzESQiytzyetGf/1D/lEnYpwA+KReA+; Expires=Wed, 04 Oct 2023 22:33:45 GMT; Path=/; SameSite=None; Secure
server: nginx
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, PUT, PATCH, DELETE
access-control-allow-headers: X-Requested-With,content-type
access-control-allow-credentials: true
etag: W/"2455-IHqtksrqtl2D31UncKp/F12Yct0"
vary: Accept-Encoding
content-encoding: gzip
last-modified: Wednesday, 27-Sep-2023 22:33:45 UTC
cache-control: no-store, no-cache
X-Firefox-Spdy: h2

global.proper.io/payloads/latest.js

104.16.15.119

200 OK

797 kB

URL GET HTTP/2
global.proper.io/payloads/latest.js
IP
104.16.15.119:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerCloudflare, Inc.
Subjectproper.io
FingerprintB6:E6:ED:AB:1F:4C:1D:D2:FD:E4:CF:D9:C5:F5:3F:8D:BF:9E:37:D3
ValidityFri, 07 Apr 2023 00:00:00 GMT - Sat, 06 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (12238)
Size
797 kB (797179 bytes)
Hash
92107fa5d89faed523789dd568d29147
f1ebe2ba31ecfe2af8363da892beedb20d6ec273
917b1aacb88b1952b2faccc7f57ff45e552580a73e9e22b06e0603dec864abd6

HTTP Headers

GET /payloads/latest.js HTTP/1.1
Host: global.proper.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Cookie: sovrn_dfpi_rentalassistance=1; __cf_bm=VPQbo.LCkrERvOyFMnARUzgurEWlLww77WKR1NL9yAY-1695854023-0-AcXBLPAI+6XwtC+xn5DciGymhRfxtyVwCCWL9u3rxsiu3ysAr/oGZ1VpJ5ewhGc8qFgbBi3qRD5wxdcJAhhqSkFny/KiMZXpq7gXeQqvG0ef
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:43 GMT
content-type: application/javascript
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=1255275
etag: W/"64e3e713-13276b"
last-modified: Mon, 21 Aug 2023 22:37:07 GMT
cf-cache-status: HIT
age: 783974
expires: Wed, 27 Sep 2023 22:38:43 GMT
cache-control: public, max-age=300
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d735bd2df20b06-OSL
content-encoding: br
X-Firefox-Spdy: h2

player.propervideo.io/new_rtp/main.js

104.17.182.240

200 OK

128 kB

URL GET HTTP/2
player.propervideo.io/new_rtp/main.js
IP
104.17.182.240:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA8:6D:EB:3B:ED:CC:D3:FD:62:4A:3C:29:34:2B:5A:61:04:1A:C4:1B
ValidityTue, 11 Apr 2023 00:00:00 GMT - Wed, 10 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (13715)
Size
128 kB (128129 bytes)
Hash
39cf873df7c93c672abbff2a8af95a81
b3a141858723a93b477d28a92a3ca8a48d693e62
66eec5ff1f5907c3bfb3d9fc41b7a9dba1cb34f81ee6cd1dc5f07da29ba5e977

HTTP Headers

GET /new_rtp/main.js HTTP/1.1
Host: player.propervideo.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:43 GMT
content-type: application/javascript
cache-control: public, max-age=300
cf-bgj: minify
cf-polished: origSize=191559
etag: W/"63af1675-2ec47"
expires: Wed, 27 Sep 2023 22:38:43 GMT
last-modified: Fri, 30 Dec 2022 16:48:53 GMT
cf-cache-status: HIT
age: 2366177
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d735bf787356af-OSL
content-encoding: br
X-Firefox-Spdy: h2

disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default

151.101.0.134

200 OK

6.6 kB

URL GET HTTP/1.1
disqus.com/embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default
IP
151.101.0.134:443
ASN
#54113 FASTLY

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerSectigo Limited
Subject*.disqus.com
FingerprintB7:D2:67:1F:60:9E:37:2D:5A:10:2F:B0:70:75:32:44:91:61:67:D5
ValidityThu, 13 Apr 2023 00:00:00 GMT - Sat, 20 Apr 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (7150), with no line terminators
Size
6.6 kB (6622 bytes)
Hash
86db3bda5c783f92913fc8f9dc73ef79
c50920ec7c5cccfd2e561166970df90f5616e63d
cfad9bb27353dcf8b3001a05254c8c2a3d5953bc7303b53a64c9de84736159bd

HTTP Headers

GET /embed/comments/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net&s_o=default HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 2802
Server: nginx
Content-Type: text/html; charset=utf-8
Content-Security-Policy: script-src https://*.twitter.com:* https://www.gstatic.com/recaptcha/ https://a.disquscdn.com https://c.disquscdn.com c.disquscdn.com https://*.services.disqus.com:* https://cdn.boomtrain.com/p13n/ https://com-disqus.netmng.com:* 'unsafe-inline' https://referrer.disqus.com/juggler/ https://connect.facebook.net/en_US/sdk.js https://cdn.syndication.twimg.com/tweets.json https://apis.google.com https://www.google.com/recaptcha/ https://cf.ignitionone.com:* https://disqus.com
Last-Modified: Wed, 27 Sep 2023 22:33:43 GMT
ETag: W/"lounge:view:9872410217.0323a6ad60425f1c662f06e6f271c116.2"
Link: <https://c.disquscdn.com>;rel=preconnect,<https://c.disquscdn.com>;rel=dns-prefetch
Cache-Control: stale-if-error=3600, s-stalewhilerevalidate=3600, stale-while-revalidate=30, no-cache, must-revalidate, public, s-maxage=5
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Referrer-Policy: no-referrer-when-downgrade
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Date: Wed, 27 Sep 2023 22:33:43 GMT
Age: 0
Vary: Accept-Encoding
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains

fonts.googleapis.com/css2?family=Quicksand:wght@300;500;700&display=swap

142.250.74.138

200 OK

3.6 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Quicksand:wght@300;500;700&display=swap
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT

File type
ASCII text, with very long lines (3663), with no line terminators
Size
3.6 kB (3582 bytes)
Hash
43fd5e9c6e1f9f9f777bc2152a218a96
ef9f2f0c4ebba1c9dac625f20f47b589f2632853
a74d7b272f543a193a75def3d80988c75fe943f619a5869b8b8e49c1b21307ec

HTTP Headers

GET /css2?family=Quicksand:wght@300;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 27 Sep 2023 22:33:41 GMT
date: Wed, 27 Sep 2023 22:33:41 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

151.101.0.134

200 OK

5.5 kB

URL GET HTTP/1.1
disqus.com/recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net
IP
151.101.0.134:443
ASN
#54113 FASTLY

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerSectigo Limited
Subject*.disqus.com
FingerprintB7:D2:67:1F:60:9E:37:2D:5A:10:2F:B0:70:75:32:44:91:61:67:D5
ValidityThu, 13 Apr 2023 00:00:00 GMT - Sat, 20 Apr 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5916), with no line terminators
Size
5.5 kB (5499 bytes)
Hash
5f3ab92dd75d72613fa26e6d5d16a277
ac4c752543f4fe0ab319837f2f18a7e1b28123c5
39ca25f24a84bc884f1404291203bfd193a88139f60b34f64b34a0e492061b08

HTTP Headers

GET /recommendations/?base=default&f=benefitsdepot-net&t_u=https%3A%2F%2Frentalassistance.net%2Farticle%2F7007%3Faffiliate_id%3D147%26ft%3D1%26id%3D7007%26sub1%3D1651456%26sub2%3D701%26transaction_id%3De3ee37d75be7491394e2468e16996c91&t_d=RentalAssistance.net&t_t=RentalAssistance.net HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 2275
Server: nginx
Content-Type: text/html; charset=utf-8
Content-Security-Policy: script-src https://*.twitter.com:* https://www.gstatic.com/recaptcha/ https://a.disquscdn.com https://c.disquscdn.com c.disquscdn.com https://*.services.disqus.com:* https://cdn.boomtrain.com/p13n/ https://com-disqus.netmng.com:* 'unsafe-inline' https://referrer.disqus.com/juggler/ https://connect.facebook.net/en_US/sdk.js https://cdn.syndication.twimg.com/tweets.json https://apis.google.com https://www.google.com/recaptcha/ https://cf.ignitionone.com:* https://disqus.com
Last-Modified: Sun, 10 Sep 2023 10:22:43 GMT
Link: <https://c.disquscdn.com>;rel=preconnect,<https://c.disquscdn.com>;rel=dns-prefetch
Cache-Control: stale-while-revalidate=30, no-cache, must-revalidate, stale-if-error=3600, public
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Date: Wed, 27 Sep 2023 22:33:45 GMT
Age: 0
Vary: Accept-Encoding
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains

use.fontawesome.com/releases/v5.7.0/css/all.css

172.64.102.11

200 OK

55 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.7.0/css/all.css
IP
172.64.102.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerGoogle Trust Services LLC
Subjectuse.fontawesome.com
Fingerprint23:04:2D:9B:C5:BA:9D:AA:AC:6A:FD:14:B0:96:18:D6:EB:A5:B3:65
ValidityFri, 01 Sep 2023 05:27:58 GMT - Thu, 30 Nov 2023 05:27:57 GMT

File type
ASCII text, with very long lines (54456)
Size
55 kB (54641 bytes)
Hash
251d28bd755f5269a4531df8a81d5664
c0f035b41b23c6e8fab735f618aa3cff0897b4f9
afdc6bf2de981ffd7d370b76f44e7580572f197efbe214b9cfa4005d189d8eae

HTTP Headers

GET /releases/v5.7.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rentalassistance.net
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: text/css
x-amz-id-2: qQF/E0y5CxX1+b6J/BPHjCGpfquq6CTe+UPVY1kUHEaAgZkZxRnhiPLyNg1RWC4T/Hi4q0aTXL8=
x-amz-request-id: QR1M1AQGZR0R4M1A
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:45:15 GMT
etag: W/"251d28bd755f5269a4531df8a81d5664"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 101460
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AKuz3f7CdjvLKPGmK5oPUECCCkWAbjwPMM6HORMrWaKjjHbngSY476MYnDyQKcM83vx4Bjsuv9w96z9MPW4c5%2Bz%2BnK7nptyE%2FdLkft68MuL%2B4DRAb9PvmtOYU%2Bot35a8OiCuxCRn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d735b23ae3886d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js

104.18.10.207

200 OK

58 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (57791)
Size
58 kB (58072 bytes)
Hash
e1d98d47689e00f8ecbc5d9f61bdb42e
6778fed3cf095a318141a31f455c8f4663885bde
0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b

HTTP Headers

GET /bootstrap/4.3.1/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rentalassistance.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 22:33:41 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:08 GMT
cdn-cachedat: 2021-08-02 21:50:12
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 0838fea08fb3e365d8cd8f1eca354a8e
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 2382566
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 80d735b1ab5db50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rentalassistance.net/templates/rentalassistance.net/images/site-icon.png

209.212.148.7

200 OK

8.1 kB

URL GET HTTP/1.1
rentalassistance.net/templates/rentalassistance.net/images/site-icon.png
IP
209.212.148.7:443
ASN
#32181 ASN-GIGENET

Requested by
https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
Certificate
IssuerLet's Encrypt
Subjectrentalassistance.net
Fingerprint98:3B:BD:51:D2:38:EE:D2:27:81:FD:D2:17:B8:CB:C6:4F:40:7B:3A
ValidityThu, 10 Aug 2023 21:06:06 GMT - Wed, 08 Nov 2023 21:06:05 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
8.1 kB (8103 bytes)
Hash
40094d2b125411a68bf03158cf3effb3
c9e18071644453ec3a92856acadc85b2b30e6490
228047287f91c9bd242826166cda44eca493a36e0216103e1c98483466b574a8

HTTP Headers

GET /templates/rentalassistance.net/images/site-icon.png HTTP/1.1
Host: rentalassistance.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rentalassistance.net/article/7007?affiliate_id=147&ft=1&id=7007&sub1=1651456&sub2=701&transaction_id=e3ee37d75be7491394e2468e16996c91
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IjdqTWx1THdTQTNrQmpZL0hZcVh0bmc9PSIsInZhbHVlIjoiVE9aeVRLYnRBeHROemJHWlJvbFRJWXRQUGoxSEZ3YklyNjN5WlJSOG12eWt4bENxZHFSM1p2MTdUQ1hCalE4bkpiMVBjdkR0TUpzdnR3VHlqTVpRNER3R0FZQUtKTGZiekZDYzZYdmpzSG0vd1ZmVEVkd2M2SVJ5OTVyU0RxUkYiLCJtYWMiOiI4ZjNmZmNhNTY1NTAzMThkODM1ZGE4YzJkOWVjMmE0Yjg0ZjhhZWMyYjgxNzFlMTEzMGM2ZWFiNjlkNjRhNDM4IiwidGFnIjoiIn0%3D; datacontrol_nxt_session=eyJpdiI6InVjTTZyYlZqRk1HcldkVGYydis0dmc9PSIsInZhbHVlIjoiVFVEbXU2bjhCb010aFJOcGQ0NmtEcnk2c1g1aDdUVDR6OXM0Z1NqVStpZll0eVQ1bXhYdWNIN3poT3Zrcmw1Mjh6U1hOUjBQUDEzRHpzeElTK1doWGJJQXFaRS9RV0EyY1Q2K09hTWxkQUx3Y2JFeVZ1ZVlQcit2SU5mMG9OWFMiLCJtYWMiOiJhNTQwNDAyNjJhMGViMzAzM2IzNDFjNzQxOTk2MDMyMmM5YzcyMTNiNmMwODlkNzlkNDdiNmM2Yjc3N2QxYmU5IiwidGFnIjoiIn0%3D; _ga_41K3WBWRF3=GS1.1.1695854022.1.0.1695854022.0.0.0; _ga=GA1.1.678154391.1695854023
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
server: nginx
date: Wed, 27 Sep 2023 22:33:42 GMT
content-type: image/png
last-modified: Tue, 26 Sep 2023 05:47:03 GMT
transfer-encoding: chunked
vary: Accept-Encoding
etag: W/"65127057-1fa7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
pragma: public
cache-control: max-age=315360000, public, must-revalidate, proxy-revalidate
access-control-allow-origin: *
content-encoding: gzip

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (55)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash