Overview

URLallsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
IP 66.29.146.34 (United States)
ASN#22612 NAMECHEAP-NET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-09 03:56:00 UTC
StatusLoading report..
IDS alerts0
Blocklist alert6
urlquery alerts No alerts detected
Tags None

Domain Summary (21)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
trk-keingent.com (1) 0 2022-08-16 09:30:10 UTC 2022-12-08 21:17:21 UTC 172.64.195.23 Unknown ranking
r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-12-08 17:12:06 UTC 23.36.76.226
allsolarincentives.com (27) 0 2021-06-05 06:02:12 UTC 2022-12-09 03:43:21 UTC 66.29.146.34 Unknown ranking
ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2022-12-08 17:15:52 UTC 93.184.220.29
e1.o.lencr.org (2) 6159 2021-08-20 07:36:30 UTC 2022-12-08 17:11:00 UTC 23.36.77.32
img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-12-08 15:50:00 UTC 34.120.237.76
analytics.tiktok.com (4) 1182 2020-02-29 13:09:05 UTC 2022-12-08 17:18:07 UTC 23.36.79.32
create.leadid.com (7) 14598 2014-01-22 13:55:11 UTC 2022-12-08 12:46:36 UTC 3.225.33.96
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-12-08 17:14:01 UTC 34.117.237.239
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-12-08 17:20:00 UTC 34.216.192.228
ocsp.sca1b.amazontrust.com (4) 1015 2016-02-14 02:37:56 UTC 2019-03-27 04:05:54 UTC 143.204.42.158
api.trustedform.com (5) 23021 2012-10-29 05:30:13 UTC 2022-12-08 04:51:23 UTC 3.225.128.243
event.trk-keingent.com (1) 0 2022-10-02 14:13:05 UTC 2022-12-07 11:02:52 UTC 172.64.194.23 Unknown ranking
create.lidstatic.com (2) 24133 2015-09-23 19:42:02 UTC 2022-12-08 04:58:29 UTC 104.22.38.182
firefox.settings.services.mozilla.com (2) 867 2020-05-25 20:06:39 UTC 2022-12-08 17:12:32 UTC 35.241.9.150
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-12-08 17:21:04 UTC 34.160.144.191
ocsp.sectigo.com (1) 487 2018-12-17 11:31:55 UTC 2022-12-08 17:18:07 UTC 104.18.32.68
ocsp.pki.goog (1) 175 2017-06-14 07:23:31 UTC 2022-12-08 17:12:01 UTC 142.250.74.131
fonts.googleapis.com (1) 8877 2012-05-23 12:41:44 UTC 2022-12-08 17:12:12 UTC 142.250.74.106
cdn.trustedform.com (2) 24659 2020-08-26 23:38:48 UTC 2022-12-08 17:38:45 UTC 54.230.111.91
info.leadid.com (1) 50650 2016-04-12 23:36:12 UTC 2022-12-06 16:23:29 UTC 54.172.72.101

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-12-09 2 allsolarincentives.com/assets/js/jquery.min.js Malware
2022-12-09 2 allsolarincentives.com/assets/js/bootstrap.min.js Malware
2022-12-09 2 allsolarincentives.com/assets/js/jquery.validate.min.js Malware
2022-12-09 2 allsolarincentives.com/assets/js/additional-methods.min.js Malware
2022-12-09 2 allsolarincentives.com/assets/js/form.js Malware
2022-12-09 2 allsolarincentives.com/assets/js/jquery.inputmask.bundle.js Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 66.29.146.34
Date UQ / IDS / BL URL IP
2022-12-09 03:56:00 +0000 0 - 0 - 6 allsolarincentives.com/?reqid=2845540&bhn_mid (...) 66.29.146.34
2022-11-24 03:18:02 +0000 0 - 0 - 6 allsolarincentives.com/?reqid=2818928 66.29.146.34
2022-11-22 22:07:42 +0000 0 - 0 - 7 allsolarincentives.com/?reqid=2817292 66.29.146.34
2022-11-22 04:03:01 +0000 0 - 0 - 6 allsolarincentives.com/?reqid=2815946&bhn_mid (...) 66.29.146.34
2022-11-12 03:31:03 +0000 0 - 0 - 7 allsolarincentives.com/?reqid=2797272 66.29.146.34


Last 5 reports on ASN: NAMECHEAP-NET
Date UQ / IDS / BL URL IP
2023-02-08 14:17:42 +0000 0 - 2 - 2 wattadik.com/newDocument/87878687_8778878/_87 (...) 162.0.232.168
2023-02-08 14:03:20 +0000 0 - 0 - 2 premium180.web-hosting.com/~bluevznb/ad.php?u (...) 162.0.209.168
2023-02-08 13:18:13 +0000 0 - 4 - 0 fxkudi.com/support/login.php 198.54.114.201
2023-02-08 12:34:22 +0000 0 - 0 - 10 162.213.249.4/login 162.213.249.4
2023-02-08 12:08:23 +0000 0 - 1 - 2 63.250.44.245/kvt/jmelre.zip 63.250.44.245


Last 5 reports on domain: allsolarincentives.com
Date UQ / IDS / BL URL IP
2022-12-09 03:56:00 +0000 0 - 0 - 6 allsolarincentives.com/?reqid=2845540&bhn_mid (...) 66.29.146.34
2022-11-24 03:18:02 +0000 0 - 0 - 6 allsolarincentives.com/?reqid=2818928 66.29.146.34
2022-11-22 22:07:42 +0000 0 - 0 - 7 allsolarincentives.com/?reqid=2817292 66.29.146.34
2022-11-22 04:03:01 +0000 0 - 0 - 6 allsolarincentives.com/?reqid=2815946&bhn_mid (...) 66.29.146.34
2022-11-12 03:31:03 +0000 0 - 0 - 7 allsolarincentives.com/?reqid=2797272 66.29.146.34


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-11-24 03:18:02 +0000 0 - 0 - 6 allsolarincentives.com/?reqid=2818928 66.29.146.34
2022-11-22 22:07:42 +0000 0 - 0 - 7 allsolarincentives.com/?reqid=2817292 66.29.146.34
2022-11-22 04:03:01 +0000 0 - 0 - 6 allsolarincentives.com/?reqid=2815946&bhn_mid (...) 66.29.146.34
2022-11-15 03:12:51 +0000 0 - 0 - 6 echo4.bluehornet.com/ct/101642012:TbyxP3VN9:m (...) 54.149.14.76
2022-11-12 03:31:03 +0000 0 - 0 - 7 allsolarincentives.com/?reqid=2797272 66.29.146.34

JavaScript

Executed Scripts (21)

Executed Evals (1)
#1 JavaScript::Eval (size: 14) - SHA256: 0510de046e8325540849bad09f31eaaa3e9256fafd330c5d57327dc948812a33
/*@cc_on!@*/ !1

Executed Writes (0)


HTTP Transactions (81)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5098
Expires: Fri, 09 Dec 2022 05:20:47 GMT
Date: Fri, 09 Dec 2022 03:55:49 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7606
Expires: Fri, 09 Dec 2022 06:02:35 GMT
Date: Fri, 09 Dec 2022 03:55:49 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4763
Expires: Fri, 09 Dec 2022 05:15:12 GMT
Date: Fri, 09 Dec 2022 03:55:49 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.241.9.150
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 03:08:17 GMT
age: 2852
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    bf0c602d32b3c14606f22a86183b5e3c
Sha1:   6eabd8d83475eba731968abe1a05a8bfd272f160
Sha256: 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: bo+ZCOLnYTqR+nXA99EvwsujI9k2NJ3TWPc+VTV6pUMsh46WNYnU3tEJ+XIFqrFV9ZuLvQ1XjAA=
x-amz-request-id: F9PA67H3V4XKGRFS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 03:50:06 GMT
age: 343
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    53341dea33f4f3d9b4966f80589f429a
Sha1:   20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
Sha256: 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
                                        
                                            GET /?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642 HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         66.29.146.34
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
keep-alive: timeout=5, max=100
content-length: 707
date: Fri, 09 Dec 2022 03:55:49 GMT
server: LiteSpeed
location: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
x-turbo-charged-by: LiteSpeed


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 09 Dec 2022 03:55:49 GMT
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.241.9.150
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 03:07:55 GMT
age: 2875
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3806
Cache-Control: 'max-age=158059'
Date: Fri, 09 Dec 2022 03:55:50 GMT
Last-Modified: Fri, 09 Dec 2022 02:52:24 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Dec 2022 03:55:50 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 13:18:42 GMT
Expires: Wed, 14 Dec 2022 13:18:41 GMT
Etag: "7117385972a37e14afaad489904322a9c9ddf19b"
Cache-Control: max-age=465170,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776aceb6ff3c0b4d-OSL

                                        
                                            GET /?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642 HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
x-powered-by: PHP/7.2.34
content-length: 6166
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (871)
Size:   6166
Md5:    c26260b7d1b738332662c6fdf302c7dc
Sha1:   887bcab2c543ce0815285d9138cb3aa45d2cd1bf
Sha256: f7bd13e7d15cbf3f2a430460b7c1f15c749c8dfc2b44acf3154116ef0f2e2d95
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Dec 2022 03:55:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sBgYRZJUb8/srQ1FoF9epQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         34.216.192.228
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /3xZ142EzRM0v42zKkbtap6pW6o=

                                        
                                            GET /css?family=Roboto HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.106
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 03:55:50 GMT
date: Fri, 09 Dec 2022 03:55:50 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /assets/css/style-top.css HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Tue, 06 Dec 2022 21:44:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 341
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   341
Md5:    dac9812c0975c8133cd06d98c4a386d9
Sha1:   24ee6ccd72b133255d1f368caefc1505fc61dfb7
Sha256: e13a3ddeb74dc12d2d943e0584e8a798d94ce23cdbaa5061c1c75765548525b6
                                        
                                            GET /assets/form/bootstrap.min.css HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:17:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20694
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65324)
Size:   20694
Md5:    5934a8d43b72e42a3b7cee2576433c8d
Sha1:   00f3e15c7dd2506f7b8094f4a6fc10c42adeeea0
Sha256: be4fe5fb8981c681b615d7328f949d20b22ff4344d473ad8f96e0883f868deca
                                        
                                            GET /assets/form/bootstrap-modal-ios.css HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:17:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 277
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   277
Md5:    9591038e0025898cc7816767860fdbc1
Sha1:   15fa886da46d62af3a4411d065f0291110ec6e19
Sha256: 20b890c3b0e6047589d61196dcf6fee1593aaf2f20b34d3c4070847af01fb002
                                        
                                            GET /assets/form/new.css HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Mon, 14 Jun 2021 21:25:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2675
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2675
Md5:    5f4984fda4dbc7199e4c6427709237aa
Sha1:   e9f1b6a3d0b9baa1e8d64f9e068dc93af5a516b5
Sha256: c009d1a3cd4a5d927aa6a623dfc535bd33eeb4d4cdffbef2c2ab036cab1bdb52
                                        
                                            GET /assets/css/style-bottom.css HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Tue, 06 Dec 2022 21:59:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3503
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3503
Md5:    f18beab25a97f3db66006468c207364d
Sha1:   e1ca5d008360722918d991119363d64b7a9063fb
Sha256: 6c6a5f5470e415f15a7a88b4d6e8f85dc2396770948d3f6550ad96a90697a149
                                        
                                            GET /assets/images/cropped-logo.png HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:18:12 GMT
accept-ranges: bytes
content-length: 6727
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 240 x 61, 8-bit/color RGBA, non-interlaced\012- data
Size:   6727
Md5:    ecf5cd152a75ef25812bd215e6b8a015
Sha1:   b49043b0b2570ce79d0cde6787cb57316426dec9
Sha256: dd1cbb5bbf1158e9f5d0212e0d1dfbde3c8c3e64c2499415992154df0de55fad
                                        
                                            GET /assets/images/roof-1.png HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:18:26 GMT
accept-ranges: bytes
content-length: 17258
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 161 x 161, 8-bit/color RGB, non-interlaced\012- data
Size:   17258
Md5:    31da4638b549918f0628edceaea5e621
Sha1:   d585b21098f25ca441cb38763cbccc9ad2dbb8e4
Sha256: c0f3ad1e6d1b6cd736bed7e3818e6c74f8c9da0d8b04844a089d6e044503405c
                                        
                                            GET /assets/images/roof-2.png HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:18:30 GMT
accept-ranges: bytes
content-length: 21352
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 161 x 161, 8-bit/color RGB, non-interlaced\012- data
Size:   21352
Md5:    b76be140ead06173b2e5bf4524dd6062
Sha1:   b6bb0a28bbaf91736de6385543ca716c19b75558
Sha256: b327f19e8b130fb2a69481d2fbeb5d9fd70b04f1ee0590fae7f4252d44b1a44c
                                        
                                            GET /assets/images/roof-3.png HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:18:30 GMT
accept-ranges: bytes
content-length: 22879
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 161 x 161, 8-bit/color RGB, non-interlaced\012- data
Size:   22879
Md5:    8d769804d9e22071a3eef6eab7be78be
Sha1:   5edb2bb99a3d48b395fedf033f07d046b3f2a444
Sha256: e7b570a45c96b82165e4d47007cf5ca7037b8adaaca0220c1ba18e2cbe4fbd63
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "483C3654A2EFC32E45A2EF444DD6394B3AEC8F85BA4619E6528E502F5881538A"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16345
Expires: Fri, 09 Dec 2022 08:28:16 GMT
Date: Fri, 09 Dec 2022 03:55:51 GMT
Connection: keep-alive

                                        
                                            GET /assets/images/patner-2.jpg HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:18:22 GMT
accept-ranges: bytes
content-length: 8381
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 216x56, components 3\012- data
Size:   8381
Md5:    5af08e760f249ec0d47ea4d968f92730
Sha1:   a6c87372ae9e8f05a3a44ad9e77d2106a1c620dc
Sha256: 5543541017a9411fda32aff2515bdc566908318fb4f04f5d861f47a780b5ec93
                                        
                                            GET /assets/images/patner-3.jpg HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:18:26 GMT
accept-ranges: bytes
content-length: 11340
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 216x56, components 3\012- data
Size:   11340
Md5:    1bd12ea43b64450f2c8c321217ea2c36
Sha1:   f1293ad4e0c43fd05ae0b6eac62f169bd0b2ddc0
Sha256: 3438c64ce188c5d4f2b5d33de91161b4b7d12a8780f69abdaa0d82941a0c31ce
                                        
                                            GET /assets/images/patner-4.jpg HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:18:26 GMT
accept-ranges: bytes
content-length: 11350
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 216x56, components 3\012- data
Size:   11350
Md5:    3a2a271f4e7bd94e0a6f0d67d5ed9209
Sha1:   c024d6506c2327f840aaddc5bb7fe3ab5772f5ca
Sha256: 6a0ed5e5d1c6686958d0c14ec53d2862aac4b213f8b2086cc335b4c077df2ab3
                                        
                                            GET /assets/images/patner-5.jpg HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:18:26 GMT
accept-ranges: bytes
content-length: 8073
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 216x56, components 3\012- data
Size:   8073
Md5:    61e90b9af1369912a03138ef82f9be26
Sha1:   c70b34cf42ac41a02a429a67a985658cded5756c
Sha256: eb291a6c9a2662657fe6f90ed9e1da8908334c7a878839261397bcbdbb6452c8
                                        
                                            GET /assets/images/patner-1.jpg HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:18:22 GMT
accept-ranges: bytes
content-length: 9502
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 216x56, components 3\012- data
Size:   9502
Md5:    9eb88a6fc34c17d1585d6c363b1b21ff
Sha1:   7586ac76617f1325f632c6ce560c7b291224c7b8
Sha256: b1226072d8321954731801a8d20fb22cc1eb73718724c66354a043bf9b22ef7e
                                        
                                            GET /assets/images/ficon.png HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:18:12 GMT
accept-ranges: bytes
content-length: 3586
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size:   3586
Md5:    5c6f090ac18f8b1381be7d4a38575929
Sha1:   f1ad72f8060d2b6b46d8dd71c731df8fce33c074
Sha256: 57d784eeddb3e5baa0e8e1add4fce2abe87e74a12dedba11def8ae4b6a0add40
                                        
                                            GET /assets/images/sicon.png HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:18:32 GMT
accept-ranges: bytes
content-length: 2201
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size:   2201
Md5:    c88aa5bae8f109ac105899b7b7923eca
Sha1:   da8e04827bba4d4f3f2499dd555de409befa19bb
Sha256: 422ffd9f8d6441e2d990c594c803432b98e10a05caaca520164861915ac197e3
                                        
                                            GET /assets/js/jquery.min.js HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:18:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 24162
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65245)
Size:   24162
Md5:    10e9fb124ae79240559c555c4f5ad003
Sha1:   78a665be9dc0584d9fffd4b3666ad763653d6320
Sha256: 06be215c7cec84ae63d4a745aa979c940ec92c83f958f09f8c69b2579d8bf237

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /assets/js/bootstrap.min.js HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:18:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14245
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (59895)
Size:   14245
Md5:    794d41c91c335425af557dd64d85b3d5
Sha1:   0412c5076a39eaf56200e560751e00d32e344f8e
Sha256: 3c5b97ff1a55efa7dd01be8ba08b98169903eab02f6ba1a7e3ff4ea86379cc78

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /assets/js/jquery.validate.min.js HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:18:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6547
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (20952)
Size:   6547
Md5:    b64e76f99d74d19f9fc755b4f19a0141
Sha1:   8f7d328986f13d9700fa2e676306e3952c31b36f
Sha256: 39bcf6ec0c7b9ff847fc220cb9bb10b2e7d326eb816916e83462dd80a586564e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /assets/js/additional-methods.min.js HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:18:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5158
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (17654)
Size:   5158
Md5:    fd1c3af9125934e4777da94567b82194
Sha1:   4704df75bb22aab0fc112c40b6db369ae563d888
Sha256: f7f11307ed51bab10893095c162b47dd76dcaf39cbbd118220cfcf323b86dfff

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /assets/js/form.js HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Tue, 15 Nov 2022 12:54:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 723
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   723
Md5:    111103e48cb02fdd2995c7f47e2defe2
Sha1:   872ef039475ada7a432a3f47e6151730eb924376
Sha256: 577325399f6d6f7bdd53862ca2e3fc1b3d895a4cac4e33d2d34c3e5ee42321f1

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /assets/js/jquery.inputmask.bundle.js HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:50 GMT
last-modified: Thu, 10 Jun 2021 22:18:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 24791
date: Fri, 09 Dec 2022 03:55:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (400)
Size:   24791
Md5:    5c608c2ce3ddafffc0cc4e19b7041f15
Sha1:   92a74d091e4b29a8ea69bdc5860943730ccb2dc6
Sha256: 8d75a0e8d04d80b18c5801ac8d88bc151fb0b588a759f5f0acffe1ced271d44e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3298
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 03:55:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3298
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 03:55:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3298
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 03:55:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3298
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 03:55:51 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f25ad59-b8ed-49ea-9611-21f63c20c8fb.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7960
x-amzn-requestid: beadd240-39d0-407d-a890-6a095657cac3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEd8HC0oAMFUag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb459-44d4f63c62f58684782ef14a;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kTEbkncBnAJmQE8cdAqvDtejiwaetpRBsVcpLXy1h52lO4iUkzmOGA==
via: 1.1 74aa91fe819001bcedd882694f52b436.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 16:28:48 GMT
age: 41223
etag: "cfb1e5bcab2148a777889680e6e36b9d7e8917ec"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7960
Md5:    eb00a2a503a690cee3e4dd729b5bc9bd
Sha1:   cfb1e5bcab2148a777889680e6e36b9d7e8917ec
Sha256: 7e4583ae78ab597639f53669ac2d67d1ebd26be3278c2fc3fc95af934178c116
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: N-zFZ8yeL7RrOZ5xfqvfBaE3zcXWecvr6Jd-93nKiUZlCXp2n2_Bgw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:41:46 GMT
age: 845
etag: "7558222788f06623ddae6e883413e38e1146281e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7897
Md5:    8c3214044657f3b876d1f1848bca5684
Sha1:   7558222788f06623ddae6e883413e38e1146281e
Sha256: e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
                                        
                                            GET /assets/images/arrow_right.png HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/assets/css/style-bottom.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:51 GMT
last-modified: Thu, 10 Jun 2021 22:18:04 GMT
accept-ranges: bytes
content-length: 233
date: Fri, 09 Dec 2022 03:55:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 17 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   233
Md5:    9fb5ca6fbd2f9949fb5d68e5c8966ea9
Sha1:   7e4ec4275d47cea2801513e43826fc6c12325e05
Sha256: bcbbec70db90a7e20c1142c535c5be0c3db1934a8efa45a6d1510093644c15f0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7557
x-amzn-requestid: 400d1465-ecbf-4d95-8aa8-4dce5dca0716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctluwGo4oAMFhTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee991-6dba29ae7065d5347a1a420d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Lazl-stakC-31gMuQ2WzH9uFkIb0g7HaaM3xkwSFdFJMWKTaKqrBEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 12:33:10 GMT
age: 55361
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7557
Md5:    5de5d319f43d9c9c641419d96655541f
Sha1:   cde4c7fa0145d3645af17e34c83c63c08f76a076
Sha256: fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f3c5738-c186-4a1f-a431-33143797bcd5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8345
x-amzn-requestid: 4e42c335-cc27-41bc-8d5c-cbe3dcc1f623
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cpwRBF_gIAMFdCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d60d3-254d38575d76726a4462c66f;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 03:09:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Z2JMjvOva19O3uj7la6UmjCpwleEyo3y2IfRCp4qp5iuob0AYN9Mng==
via: 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 12:37:33 GMT
age: 55098
etag: "4792b0893827924e84cc51450012407717da4d2b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8345
Md5:    659b6eb1f1c430e2780758c7787b9a23
Sha1:   4792b0893827924e84cc51450012407717da4d2b
Sha256: f14393b6bcc036fa9ed61114944ebb25192adfec72c09807eb7948a88c790d69
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F884d1162-4377-487f-a056-b21117ef5001.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8204
x-amzn-requestid: cf54b5f8-ede8-49d5-aa56-5d9de98e3ab8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjtKfEiToAMFSXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af576-6ddfe35c0b31074d6a07076f;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:06:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UfqFAlLedF6ZkfbGXhyYDcvu0porNJb6LPaeQ8p4dqWqsFD6iRgWLw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 15:12:28 GMT
age: 45803
etag: "6cee6b1828c709f68b995197ca943a5c393f86fb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8204
Md5:    9cb76c68a8cd472600106cc118067868
Sha1:   6cee6b1828c709f68b995197ca943a5c393f86fb
Sha256: 009d9ba19043b03b5aceeb80b69bf249f19a0a225bdbfef7ab8691669cb64130
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12748
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjuciEptIAMFj9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 13:49:59 GMT
age: 50752
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12748
Md5:    730ba1a8edb79ba6f83b46d1ba5aed7b
Sha1:   55a236fedf6f5f7ca2bb88ae13e20846a50fd36d
Sha256: f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "483C3654A2EFC32E45A2EF444DD6394B3AEC8F85BA4619E6528E502F5881538A"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16345
Expires: Fri, 09 Dec 2022 08:28:16 GMT
Date: Fri, 09 Dec 2022 03:55:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2665
Cache-Control: 'max-age=158059'
Date: Fri, 09 Dec 2022 03:55:51 GMT
Etag: "639243f6-118"
Last-Modified: Fri, 09 Dec 2022 03:11:27 GMT
Server: ECS (amb/6BB5)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /i18n/pixel/events.js?sdkid=CE4FJI3C77U8BHMEK19G&lib=ttq HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.36.79.32
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 20221209035551A4DC928046F58CA5FF3E
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6044faeb2b99c092c97016c61fe0db1beb29a903d51f2fcf63164750b3b6180ca43e47d9fdb949136066f6ee12514e16988df5b1f8e961134195af3dd6eddb9cce42e6e9a1fc3c57b468720cca0915fc57
content-encoding: gzip
content-length: 1146
x-origin-response-time: 7,23.218.220.137
x-akamai-request-id: 26b0e43d.429b7da6
expires: Fri, 09 Dec 2022 03:55:51 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 03:55:51 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2If27lzEdIPBN4t3Sh0fM4297Jl; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-218-220-137.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=99, origin; dur=7, inner; dur=2
x-parent-response-time: 106,23.36.79.28
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2343)
Size:   1146
Md5:    bdcb728c0935df62aa19db6249ec5d5e
Sha1:   26b4672a05effe1980fd32fabccb2a1f3d7d4fd9
Sha256: db3b4de65e31c34f110885e8a62f44d98c1a2279286bed6deba2bee5a0a392e0
                                        
                                            GET /i18n/pixel/static/main.MTk2NTc4NGU0MQ.js HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/
Cookie: _ttp=2If27lzEdIPBN4t3Sh0fM4297Jl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         23.36.79.32
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20221206132756F4B46C855D9C808CF174
x-tt-trace-host: 01da38724b6c03af27c6a22a4a90be02ba7c21c7d3e03a1c6eb54f2c0a02e79b48555f61a59cd710993a9e267fa31d9b3f264e27678d1c78dfc76682bbc1efeb2195aeaf1bbe4c5e1853f4bdd2fe4d29b2
content-encoding: gzip
date: Fri, 09 Dec 2022 03:55:51 GMT
content-length: 68693
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 429b7dd7
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21716)
Size:   68693
Md5:    6fa6b54cb6bd45806a60e7d8aba1efd2
Sha1:   6758479fe949e635097a9e3917013d94f8d23416
Sha256: 172a6bf2d498068b7485cfbbe3ffcf3edf0cb08dae967873ee17623bab748e3a
                                        
                                            GET /assets/images/banner.v2.jpg HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/assets/css/style-bottom.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:51 GMT
last-modified: Thu, 10 Jun 2021 22:18:08 GMT
accept-ranges: bytes
content-length: 210342
date: Fri, 09 Dec 2022 03:55:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1280, components 3\012- data
Size:   210342
Md5:    4b11f1626dddcb4a6b47eacf3b2a5766
Sha1:   2b24b3d70069492411a7aaa24f7a0c679deb8f2e
Sha256: 2e08e8101b4758a905961741a383b0a54cd8feaa9abe08291c5bda54e99f1865
                                        
                                            GET /scripts/push/script/l3e4o5mdvy?url=allsolarincentives.com&alturl=/ HTTP/1.1 
Host: trk-keingent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         172.64.195.23
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
                                        
date: Fri, 09 Dec 2022 03:55:51 GMT
expires: 0
cache-control: no-cache, no-store, max-age=0, must-revalidate
x-xss-protection: 1; mode=block
pragma: no-cache
x-frame-options: DENY
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src https://* data:; font-src 'self' data:
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
x-content-type-options: nosniff
feature-policy: geolocation 'none'; midi 'none'; sync-xhr 'none'; microphone 'none'; camera 'none'; magnetometer 'none'; gyroscope 'none'; speaker 'none'; fullscreen 'self'; payment 'none'
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lxs8KuF4CBSy%2BZ8YrymsKDZvjZtIPqjMfmkVfuAaT8slwBgZAQgxUQ39SQRzeo6dCQV8iyJUuepx2rJc6afrgqu3NuWbspsimVnz1DN%2FsMh%2BOJ2dzFSMDsA29Jx%2Bidw%2B2lHC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 776acebe8a477723-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6940)
Size:   3381
Md5:    d31135455c06fb280b4565a2cb120274
Sha1:   2e371ae87d9d24d84da22e77083aa79e5268841a
Sha256: 6f90718d3ff99ba19dd427ab6f8b0be5318353e899267a61fb435d1d15bf312c
                                        
                                            GET /i18n/pixel/static/identify_7373d.js HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/
Cookie: _ttp=2If27lzEdIPBN4t3Sh0fM4297Jl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         23.36.79.32
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20221206132745F774E1DED7BF563B9D05
x-tt-trace-host: 017bcdfb1f342efa6ce7e8ef248837e909b29e38c81383d97aa45a1f344cf919c8a599ec6c025c616e50bcaf3d3e28b0e81315201e77a8c36d9dceb999beae4aa6616a7661fd70d5a724b0816ae855e12b
content-encoding: gzip
date: Fri, 09 Dec 2022 03:55:52 GMT
content-length: 30877
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 429b7df3
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   30877
Md5:    905f25a6763488baff0582a11e6d4650
Sha1:   cbf906634f07d5e983cb8f5f30195d24a219ca41
Sha256: 73bf06623dd0515ca31a2f3c352cf6efce03e0ff7e7bf3ae990a19745787deda
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=144687
Date: Fri, 09 Dec 2022 03:55:51 GMT
Etag: "639243f6-118"
Expires: Sat, 10 Dec 2022 20:07:19 GMT
Last-Modified: Thu, 08 Dec 2022 20:07:18 GMT
Server: nginx
Content-Length: 280

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.158
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=156547
Date: Fri, 09 Dec 2022 03:55:52 GMT
Etag: "63925d49-1d7"
Expires: Sat, 10 Dec 2022 23:24:59 GMT
Last-Modified: Thu, 08 Dec 2022 21:55:21 GMT
Server: ECS (dcb/7EC8)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KWXlP1oO09mkZ6aaHaZA38hVsSE2g-cc4SSxetEYQNAW2JRsS8wtLQ==
Age: 5378

                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 805
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Cookie: _ttp=2If27lzEdIPBN4t3Sh0fM4297Jl
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         23.36.79.32
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221209035552A4DC928046F58CA5FF55
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6044faeb2b99c092c97016c61fe0db1beb29a903d51f2fcf63164750b3b6180ca496e1fda20c4732f0de83f95c4382759ec251febaf8d0c587d845d3575770b5377a219b8326d609c3ade050d389db290b
x-origin-response-time: 22,23.218.220.137
x-akamai-request-id: 26b0ea18.429b7df5
expires: Fri, 09 Dec 2022 03:55:52 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 03:55:52 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-218-220-137.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=106, origin; dur=22, inner; dur=19
x-parent-response-time: 125,23.36.79.28
X-Firefox-Spdy: h2

                                        
                                            GET /trustedform.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16705581509810.7102159459314501 HTTP/1.1 
Host: api.trustedform.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         3.225.128.243
HTTP/2 301 Moved Permanently
content-type: text/html
                                        
server: awselb/2.0
date: Fri, 09 Dec 2022 03:55:52 GMT
content-length: 134
location: https://cdn.trustedform.com:443/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16705581509810.7102159459314501
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   134
Md5:    4aa7a432bb447f094408f1bd6229c605
Sha1:   1965c4952cc8c082a6307ed67061a57aab6632fa
Sha256: 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
                                        
                                            OPTIONS /register/event_log/l4ev5rz2g1 HTTP/1.1 
Host: event.trk-keingent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://allsolarincentives.com/
Origin: https://allsolarincentives.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         172.64.194.23
HTTP/2 200 OK
                                        
date: Fri, 09 Dec 2022 03:55:52 GMT
content-length: 0
access-control-allow-headers: content-type
access-control-expose-headers: Authorization, Link, X-Total-Count
access-control-allow-origin: https://allsolarincentives.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 1800
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=huA%2FkDTjdp01QWmF%2BlFL16OZjSKL%2F4GiexVEBcz0h169EzOnp5vKf1GwxlqocnL2LfKjPqQnMjiMYVfcVJlM715HKU%2BRrEr3lOMBSYpMjxZ%2B1jXqJme%2BB7byCF8o8JFg5EfO17dhl7HV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 776acec34f0571a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16705581509810.7102159459314501 HTTP/1.1 
Host: cdn.trustedform.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allsolarincentives.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.91
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 09 Dec 2022 03:55:53 GMT
last-modified: Tue, 29 Nov 2022 19:24:00 GMT
x-amz-version-id: jCFTHa4_D.dnuiumCq7.wUY_tmObizl8
etag: W/"226cf2375a4ea1f8ea8315621d70424b"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jW82LqD6GWM8A1FLGm_8vHh_xHx1C3hoZC6AtwDKE86ZavrB5AeZ1g==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (8097)
Size:   3252
Md5:    de823f50b63a44e92ae1912a554674e5
Sha1:   909792efcdcd42a4e4f8e4882f27f1b63f644e10
Sha256: ed515b26205cda1c0cf6feef836cb9b0d306893c30a43551e5b6af1af71a497e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.158
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=119349
Date: Fri, 09 Dec 2022 03:55:53 GMT
Etag: "6391d4c8-1d7"
Expires: Sat, 10 Dec 2022 13:05:02 GMT
Last-Modified: Thu, 08 Dec 2022 12:12:56 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Ff0kuBvPxcPEpy1qJ4uvI_1X3R34A1DGigoDCXwyPUT_D-etW3ttQw==
Age: 3126

                                        
                                            GET /assets/images/cropped-logo-32x32.png HTTP/1.1 
Host: allsolarincentives.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2845540&bhn_mid=64640253&bhn_rid=3441029642
Cookie: _tt_enable_cookie=1; _ttp=uxMDiKJd4Eblmb2Dd8QkFBLDX7G
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         66.29.146.34
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 03:55:53 GMT
last-modified: Thu, 10 Jun 2021 22:18:08 GMT
accept-ranges: bytes
content-length: 1826
date: Fri, 09 Dec 2022 03:55:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   1826
Md5:    6929a790426c45c0dcfe93596c2f33a1
Sha1:   3d402255a10a9246088939f96fc4e707476ade12
Sha256: ce4efba444e9f0b27361bfdc6867111d5a7de1cd50fb8fe6fd8198bfba04e352
                                        
                                            POST /certs HTTP/1.1 
Host: api.trustedform.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 638
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         3.225.128.243
HTTP/2 201 Created
content-type: application/json; charset=utf-8
                                        
date: Fri, 09 Dec 2022 03:55:53 GMT
content-length: 475
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (475), with no line terminators
Size:   475
Md5:    05060ce1df51867296604e0530ab9d24
Sha1:   faa15f163a0eeec3b259cceac6c723c97590b80c
Sha256: 97efa19e4930cf6a62e27263c39539b693d16e590e588e2f38f289bcd581065f
                                        
                                            POST /2.11.9/GenerateToken?msn=1&pid=c94a0887-4633-4f00-b1a0-1922b82251c5&_=196666518 HTTP/1.1 
Host: create.leadid.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 232
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         3.225.33.96
HTTP/2 200 OK
content-type: text/plain;charset=UTF-8
                                        
date: Fri, 09 Dec 2022 03:55:53 GMT
server: nginx
set-cookie: rgisanonymous=false; expires=Sun, 08-Jan-2023 03:55:53 GMT; Max-Age=2592000; path=/ rguserid=ac844b92-c2a5-4d0e-a66d-0b1f28174f7e; expires=Sun, 08-Jan-2023 03:55:53 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Sun, 08-Jan-2023 03:55:53 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Sun, 08-Jan-2023 03:55:53 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   1505
Md5:    c7b8a74ac3cb418252a62dc568385654
Sha1:   4266366eddf28fd6f3604abdd56d542a08e03e80
Sha256: e68d65c4ae77f2bd841053f2ebf82fdf9cdd45b5f69656d4cc1fae884dde0f74
                                        
                                            GET /campaign/ab1e69ed-e8bb-83d1-7ed3-96e3e663c438.js?snippet_version=2 HTTP/1.1 
Host: create.lidstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.22.38.182
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Fri, 09 Dec 2022 03:55:52 GMT
x-amz-id-2: aM6V+QWNDA0VTpxib0igQ/wZdWKOTepnGUxUJwtWYZewgqm+6W0D/QZhoows3ziK3/vUwAButfI=
x-amz-request-id: 3SQKY8X6VRFV83SS
x-amz-replication-status: COMPLETED
last-modified: Fri, 12 Nov 2021 01:04:08 GMT
etag: W/"92009d655f15883690eb08e4789b3fbc"
cache-control: max-age=1800
x-amz-version-id: MP6u_s_mhViOgBnCmvJMe8MBN4AykkRK
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 776acec2a8ab0a21-ARN
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (32003)
Size:   39741
Md5:    6b0168fe0dae76935fab714f9785cc23
Sha1:   1e56a3a11bee2b163a050cc0c0e1b92e212c8270
Sha256: 38ebd81cb436792081985482231f3a5bd43a5dc4f60eee48e7a5e4b843070fb6
                                        
                                            POST /certs/042a22dafc0b05ad403812ff25b4e52d206b21f0/events HTTP/1.1 
Host: api.trustedform.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 570
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         3.225.128.243
HTTP/2 204 No Content
                                        
date: Fri, 09 Dec 2022 03:55:53 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2

                                        
                                            POST /certs/042a22dafc0b05ad403812ff25b4e52d206b21f0/fingerprints HTTP/1.1 
Host: api.trustedform.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 219
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         3.225.128.243
HTTP/2 204 No Content
                                        
date: Fri, 09 Dec 2022 03:55:53 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.158
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=132091
Date: Fri, 09 Dec 2022 03:55:53 GMT
Etag: "639208dc-1d7"
Expires: Sat, 10 Dec 2022 16:37:24 GMT
Last-Modified: Thu, 08 Dec 2022 15:55:08 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: IK3ZLYC0uY9tyRpLIFZpitj3N_YlDGGrUxLIotU-SKw4XPC57LDfdA==
Age: 2536

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.158
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=103413
Date: Fri, 09 Dec 2022 03:55:54 GMT
Etag: "639192ba-1d7"
Expires: Sat, 10 Dec 2022 08:39:27 GMT
Last-Modified: Thu, 08 Dec 2022 07:31:06 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qgxMcMtjWbRgPCX7X1TGAiXbXfHqdQmIvah6q0BZfZHnsa0sqqinjg==
Age: 4101

                                        
                                            POST /certs/042a22dafc0b05ad403812ff25b4e52d206b21f0/events HTTP/1.1 
Host: api.trustedform.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 222
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         3.225.128.243
HTTP/2 204 No Content
                                        
date: Fri, 09 Dec 2022 03:55:54 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7217
x-amzn-requestid: be9196fc-3d43-49db-8522-8781cbf5a247
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUEDEWpIAMFqUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e66e6-04b24220213872ba378d3538;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4QlJZW4ZiPNVhOJbcRldanR8veym3l0sIBGa1Ym-4FOTT_utMQeZQg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 08:39:07 GMT
age: 69411
etag: "2506152cdd1056533116feb9350124356e570e54"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7217
Md5:    955c6ac69b89f6cbd497df53fcb2ae1b
Sha1:   2506152cdd1056533116feb9350124356e570e54
Sha256: fca1b303a554aa9cdd13c4769a1088e1905ef888ed703de17864fe76ff880abe
                                        
                                            POST /info?msn=5&pid=c94a0887-4633-4f00-b1a0-1922b82251c5&token=46FB4764-C26C-9BCB-0838-0EB8A44FC303&_=196666522 HTTP/1.1 
Host: info.leadid.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 629
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         54.172.72.101
HTTP/2 200 OK
content-type: text/plain;charset=UTF-8
                                        
date: Fri, 09 Dec 2022 03:55:54 GMT
server: nginx
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /2.11.9/Snap?msn=6&pid=c94a0887-4633-4f00-b1a0-1922b82251c5&token=46FB4764-C26C-9BCB-0838-0EB8A44FC303&_=196666524 HTTP/1.1 
Host: create.leadid.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 44344
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         3.225.33.96
HTTP/2 200 OK
content-type: text/plain;charset=UTF-8
                                        
date: Fri, 09 Dec 2022 03:55:55 GMT
server: nginx
set-cookie: rgisanonymous=false; expires=Sun, 08-Jan-2023 03:55:55 GMT; Max-Age=2592000; path=/ rguserid=5d937584-8931-447c-b9e9-45af8bcbc64b; expires=Sun, 08-Jan-2023 03:55:55 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Sun, 08-Jan-2023 03:55:55 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Sun, 08-Jan-2023 03:55:55 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /2.11.9/Snap?msn=5&pid=c94a0887-4633-4f00-b1a0-1922b82251c5&token=46FB4764-C26C-9BCB-0838-0EB8A44FC303&_=196666523 HTTP/1.1 
Host: create.leadid.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 171694
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         3.225.33.96
HTTP/2 200 OK
content-type: text/plain;charset=UTF-8
                                        
date: Fri, 09 Dec 2022 03:55:55 GMT
server: nginx
set-cookie: rgisanonymous=false; expires=Sun, 08-Jan-2023 03:55:55 GMT; Max-Age=2592000; path=/ rguserid=3c14db43-b720-43d9-a08a-4a4c6234b3e8; expires=Sun, 08-Jan-2023 03:55:55 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Sun, 08-Jan-2023 03:55:55 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Sun, 08-Jan-2023 03:55:55 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /campaign/fc0690c0-0564-e295-a5f5-a161835c894f.js?snippet_version=2 HTTP/1.1 
Host: create.lidstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.22.38.182
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Fri, 09 Dec 2022 03:55:52 GMT
x-amz-id-2: P+9QEEebhMcrw+Rn3rFJCnpPtzpKmAUachNOxbjpbcC3rlnrj5bbgkB+ehpJbffme47P+KHkb/M=
x-amz-request-id: 3SQVTMVQ4AZHHSDQ
x-amz-replication-status: COMPLETED
last-modified: Fri, 12 Nov 2021 01:29:28 GMT
etag: W/"a6c7ac3853f405ee86360e1e7cae6877"
cache-control: max-age=1800
x-amz-version-id: 9eo3W8._zntZ4j.NDzuhZaRXb.6ja.Q2
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 776acec1a8090a21-ARN
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /2.11.9/InitFormData?msn=4&pid=c94a0887-4633-4f00-b1a0-1922b82251c5&token=46FB4764-C26C-9BCB-0838-0EB8A44FC303&_=196666521 HTTP/1.1 
Host: create.leadid.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 1080
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         3.225.33.96
HTTP/2 200 OK
content-type: text/plain;charset=UTF-8
                                        
date: Fri, 09 Dec 2022 03:55:53 GMT
server: nginx
set-cookie: rgisanonymous=false; expires=Sun, 08-Jan-2023 03:55:53 GMT; Max-Age=2592000; path=/ rguserid=d2c9eb3d-8a03-4cf2-8983-d65b58cd37bd; expires=Sun, 08-Jan-2023 03:55:53 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Sun, 08-Jan-2023 03:55:53 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Sun, 08-Jan-2023 03:55:53 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /2.11.9/SaveDom?msn=2&pid=c94a0887-4633-4f00-b1a0-1922b82251c5&token=46FB4764-C26C-9BCB-0838-0EB8A44FC303&_=196666519 HTTP/1.1 
Host: create.leadid.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 512
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         3.225.33.96
HTTP/2 200 OK
content-type: text/plain;charset=UTF-8
                                        
date: Fri, 09 Dec 2022 03:55:53 GMT
server: nginx
set-cookie: rgisanonymous=false; expires=Sun, 08-Jan-2023 03:55:53 GMT; Max-Age=2592000; path=/ rguserid=e836d3cb-bf0d-4156-99cd-f8dcca9c7a9a; expires=Sun, 08-Jan-2023 03:55:53 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Sun, 08-Jan-2023 03:55:53 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Sun, 08-Jan-2023 03:55:53 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /trustedform-1.8.31.js HTTP/1.1 
Host: cdn.trustedform.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         54.230.111.91
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 29 Nov 2022 19:24:00 GMT
x-amz-version-id: zyVp10qBIDUkm0kSLQCBEAAE6CiOCr9w
server: AmazonS3
content-encoding: gzip
date: Fri, 09 Dec 2022 03:55:53 GMT
etag: W/"642f630e75dc2888743ef1bcac8f0de0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AcjSojkwQPAupidVwUCuR1Y0QC2dxARCTCtU8ThrViOYxjXfqaGMsw==
age: 12
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /2.11.9/InitFormData?msn=3&pid=c94a0887-4633-4f00-b1a0-1922b82251c5&token=46FB4764-C26C-9BCB-0838-0EB8A44FC303&_=196666520 HTTP/1.1 
Host: create.leadid.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 5553
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         3.225.33.96
HTTP/2 200 OK
content-type: text/plain;charset=UTF-8
                                        
date: Fri, 09 Dec 2022 03:55:53 GMT
server: nginx
set-cookie: rgisanonymous=false; expires=Sun, 08-Jan-2023 03:55:53 GMT; Max-Age=2592000; path=/ rguserid=0d526e0c-fb88-4309-be2d-5652b89f3b73; expires=Sun, 08-Jan-2023 03:55:53 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Sun, 08-Jan-2023 03:55:53 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Sun, 08-Jan-2023 03:55:53 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /2.11.9/SaveDeviceId.js?lac=F40D8E20-41F1-B4BD-E8A5-306E058A694D&lck=FC0690C0-0564-E295-A5F5-A161835C894F&methods=48&token=46FB4764-C26C-9BCB-0838-0EB8A44FC303&uuid=0dd29187c06c4436b2c30f543a4f0bb7 HTTP/1.1 
Host: create.leadid.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deviceid.trueleadid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         3.225.33.96
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
                                        
date: Fri, 09 Dec 2022 03:55:54 GMT
server: nginx
set-cookie: rgisanonymous=false; expires=Sun, 08-Jan-2023 03:55:54 GMT; Max-Age=2592000; path=/ rguserid=2f38743e-e4ba-4826-b989-9bdbe7dcdb83; expires=Sun, 08-Jan-2023 03:55:54 GMT; Max-Age=2592000; path=/ rguuid=true; expires=Sun, 08-Jan-2023 03:55:54 GMT; Max-Age=2592000; path=/ rgisanonymous=true; expires=Sun, 08-Jan-2023 03:55:54 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---