Overview

URL w1.mssmmz.com/prod/93ded6c2-37c3-4433-b3ef-ee1a3ca8c6ff/0d77fb81-2c6a-46a6-bf41-9e810b03f83b
IP34.204.222.45
ASNAMAZON-AES
Location United States
Report completed2022-09-21 06:00:50 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-21 2 w1.mssmmz.com/prod/93ded6c2-37c3-4433-b3ef-ee1a3ca8c6ff/0d77fb81-2c6a-46a6- (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (42)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-21 04:20:37 UTC 44.240.207.158
mnemonic passive DNS pixel-geo.prfct.co (10) 15774 2015-03-12 00:26:44 UTC 2022-09-21 05:55:10 UTC 52.18.110.32
mnemonic passive DNS status.geotrust.com (2) 3662 2017-12-01 08:55:31 UTC 2022-09-21 04:28:33 UTC 93.184.220.29
mnemonic passive DNS l.sharethis.com (1) 4794 2012-05-21 21:59:04 UTC 2022-09-21 04:03:11 UTC 52.57.102.63
mnemonic passive DNS ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2022-09-21 04:07:23 UTC 93.184.220.29
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-21 04:08:37 UTC 23.36.76.226
mnemonic passive DNS ocsp.godaddy.com (1) 698 2012-05-20 19:28:57 UTC 2022-09-21 04:19:35 UTC 192.124.249.22
mnemonic passive DNS secureservercdn.net (38) 14983 2017-10-20 12:02:59 UTC 2022-09-21 05:54:21 UTC 192.124.249.16
mnemonic passive DNS google-analytics.com (1) 8401 2015-07-16 11:22:22 UTC 2022-09-21 05:29:15 UTC 216.58.211.4
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-21 04:18:30 UTC 142.251.1.157
mnemonic passive DNS buttons-config.sharethis.com (1) 6006 2019-10-19 08:44:23 UTC 2022-09-21 04:32:43 UTC 54.230.111.117
mnemonic passive DNS w1.mssmmz.com (1) 0 2022-06-08 13:03:12 UTC 2022-09-21 04:48:52 UTC 3.223.208.36 Unknown ranking
mnemonic passive DNS img-getpocket.cdn.mozilla.net (5) 1631 2017-09-01 03:40:57 UTC 2022-09-21 04:18:21 UTC 34.120.237.76
mnemonic passive DNS secure.adnxs.com (4) 396 2012-05-22 16:37:37 UTC 2022-09-21 04:18:46 UTC 185.89.211.132
mnemonic passive DNS ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.158
mnemonic passive DNS analytics.twitter.com (1) 526 2013-04-10 19:53:18 UTC 2022-09-21 04:20:41 UTC 104.244.42.67
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-09-20 09:43:46 UTC 142.250.74.3
mnemonic passive DNS ocsp.starfieldtech.com (5) 6616 2012-06-22 18:08:50 UTC 2022-09-21 04:19:13 UTC 192.124.249.22
mnemonic passive DNS ocsp.globalsign.com (2) 2075 2012-05-25 06:20:55 UTC 2022-09-21 04:23:28 UTC 104.18.21.226
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-20 22:30:14 UTC 142.250.74.164
mnemonic passive DNS ocsp.pki.goog (14) 175 2017-06-14 07:23:31 UTC 2022-09-20 04:47:45 UTC 142.250.74.3
mnemonic passive DNS nebula.wsimg.com (1) 42287 2013-04-19 14:16:11 UTC 2022-09-21 01:39:48 UTC 23.36.79.43
mnemonic passive DNS ocsp.sectigo.com (1) 487 2018-12-17 11:31:55 UTC 2022-09-21 05:19:15 UTC 104.18.32.68
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-21 04:08:31 UTC 142.250.74.174
mnemonic passive DNS events.api.secureserver.net (2) 125179 2020-06-23 03:18:34 UTC 2022-09-21 04:23:11 UTC 104.84.152.58
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-20 04:47:04 UTC 34.117.237.239
mnemonic passive DNS img6.wsimg.com (2) 15438 2020-02-20 07:56:58 UTC 2022-09-21 04:23:10 UTC 23.36.79.43
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-21 04:18:29 UTC 142.250.74.72
mnemonic passive DNS tag.perfectaudience.com (1) 18353 2012-10-11 17:08:50 UTC 2022-09-21 05:55:10 UTC 151.101.86.217
mnemonic passive DNS cm.g.doubleclick.net (2) 202 2013-05-30 23:19:45 UTC 2022-09-21 04:34:06 UTC 142.250.74.66
mnemonic passive DNS tallwoodbrokers.com (1) 0 2021-01-31 19:06:40 UTC 2022-09-21 01:29:45 UTC 192.124.249.67 Unknown ranking
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-21 04:18:32 UTC 143.204.55.110
mnemonic passive DNS cdnjs.cloudflare.com (1) 235 2020-10-20 10:17:36 UTC 2022-09-21 05:35:37 UTC 104.17.24.14
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-08-29 13:43:22 UTC 2022-09-21 04:18:17 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS pixel.rubiconproject.com (1) 314 2012-10-09 03:17:38 UTC 2022-09-21 04:20:43 UTC 213.19.162.80
mnemonic passive DNS koi-3qnsv6bzui.marketingautomation.services (1) 0 2022-07-20 12:10:40 UTC 2022-09-12 10:42:57 UTC 107.178.240.224 Domain (marketingautomation.services) ranked at: 12857
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-21 04:18:25 UTC 143.204.55.36
mnemonic passive DNS us-u.openx.net (1) 357 2013-08-30 19:43:55 UTC 2022-09-21 04:30:54 UTC 35.244.159.8
mnemonic passive DNS ups.analytics.yahoo.com (2) 287 2019-05-09 15:57:40 UTC 2022-09-21 04:20:43 UTC 18.156.0.31
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-21 05:17:10 UTC 142.250.74.10
mnemonic passive DNS platform-api.sharethis.com (1) 5118 2021-08-13 01:30:50 UTC 2022-09-21 01:14:55 UTC 143.204.55.106
mnemonic passive DNS img1.wsimg.com (3) 9893 2012-06-20 14:42:31 UTC 2022-09-21 04:19:35 UTC 23.36.79.43


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 34.204.222.45

Date UQ / IDS / BL URL IP
2022-09-28 04:45:13 +0000
0 - 0 - 1 w1.mssprr.com/prod/689e3b8a-29b9-48a4-966f-10 (...) 34.204.222.45
2022-09-28 04:00:09 +0000
0 - 0 - 1 w1.mssprr.com/prod/open/0ccd2225-477b-4dce-8c (...) 34.204.222.45
2022-09-28 04:00:08 +0000
0 - 0 - 1 w1.mssprr.com/prod/unsubscribe-confirm/131100 (...) 34.204.222.45
2022-09-28 01:04:52 +0000
0 - 0 - 1 w1.mssxhb.com/prod/e56683ce-fb04-41d6-9018-19 (...) 34.204.222.45
2022-09-26 15:00:51 +0000
0 - 0 - 1 w1.msstmc.com/prod/unsubscribe-confirm/fc1cf8 (...) 34.204.222.45

Last 5 reports on ASN: AMAZON-AES

Date UQ / IDS / BL URL IP
2022-11-30 02:56:47 +0000
3 - 0 - 1 authol.duckdns.org/ 44.204.185.195
2022-11-30 02:53:38 +0000
0 - 0 - 1 cpcontacts.foibank.com/ 54.161.222.85
2022-11-30 02:49:01 +0000
0 - 0 - 1 hitmanjazz.com/language/login.alibaba.com 52.3.70.11
2022-11-30 02:44:18 +0000
0 - 0 - 11 techreportscuratedreport.com/18849-131445/731 (...) 50.19.16.20
2022-11-30 02:44:18 +0000
0 - 0 - 2 techreportscuratedreport.com/follow-trail 50.19.16.20

Last 5 reports on domain: mssmmz.com

Date UQ / IDS / BL URL IP
2022-09-24 15:14:20 +0000
0 - 0 - 1 w1.mssmmz.com/prod/unsubscribe-confirm/aac4b8 (...) 3.223.208.36
2022-09-22 19:26:16 +0000
0 - 0 - 1 w1.mssmmz.com/prod/unsubscribe-confirm/aac4b8 (...) 34.204.222.45
2022-09-22 08:49:59 +0000
0 - 0 - 1 w1.mssmmz.com/prod/4d5ca423-e646-4fe1-9068-c8 (...) 3.223.208.36
2022-09-22 08:15:56 +0000
0 - 0 - 1 w1.mssmmz.com/prod/unsubscribe-confirm/aac4b8 (...) 34.204.222.45
2022-09-21 10:29:41 +0000
0 - 0 - 1 w1.mssmmz.com/prod/unsubscribe-confirm/aac4b8 (...) 3.223.208.36

No other reports with similar screenshot



JavaScript

Executed Scripts (33)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (129)


Request Response
                                        
                                            GET /prod/93ded6c2-37c3-4433-b3ef-ee1a3ca8c6ff/0d77fb81-2c6a-46a6-bf41-9e810b03f83b HTTP/1.1 
Host: w1.mssmmz.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         3.223.208.36
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Date: Wed, 21 Sep 2022 06:00:39 GMT
Content-Length: 184
Connection: keep-alive
X-Powered-By: Express
Location: https://tallwoodbrokers.com/?msID=0d77fb81-2c6a-46a6-bf41-9e810b03f83b
Vary: Accept


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   184
Md5:    ea9aab658fa1364e9f40e2be1e7978ec
Sha1:   1a10bbdfe4b577055a290e8269ee387297396200
Sha256: 944cff45ec9295029fb6bcffdea9d2ff69567164b9ec11c5d5c6937e9679226d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Retry-After, Content-Type, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 05:13:32 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Sj5us6nBz3FaRh7JH5Sp1X4XoqoTU7EtzwCHHd4V-nn_QsvbIgLaOg==
Age: 2827


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5876
Expires: Wed, 21 Sep 2022 07:38:35 GMT
Date: Wed, 21 Sep 2022 06:00:39 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yBDlHWWkHfBohgTwKgdVYXp89aw9_Ryc2Zj3-J_mbMh1T-ESgjLvLg==
age: 5126
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:39 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.22
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Wed, 21 Sep 2022 06:00:39 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 20 Sep 2022 23:26:54 GMT
Expires: Wed, 21 Sep 2022 23:26:54 GMT
ETag: "bb5704e529d01405257891d684d320c38df1a6f5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    1b02f831a3c429d3f4024971f1bd8ce4
Sha1:   bb5704e529d01405257891d684d320c38df1a6f5
Sha256: b63ad91fe1765b0ae9510abd2b37eb13e46c33230ce91f5cfb8588eae261a3b2
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 21 Sep 2022 05:03:22 GMT
Cache-Control: max-age=3600
Expires: Wed, 21 Sep 2022 05:38:02 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lkk0rGhIBOJs3H9i5yo2O4BHBbwWztfham69MyYaz_v5hBTDrYTbgA==
Age: 3438


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6124
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 06:00:40 GMT
Last-Modified: Wed, 21 Sep 2022 04:18:36 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /?msID=0d77fb81-2c6a-46a6-bf41-9e810b03f83b HTTP/1.1 
Host: tallwoodbrokers.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         192.124.249.67
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:40 GMT
content-length: 13547
x-sucuri-id: 19017
x-frame-options: SAMEORIGIN
age: 36984
content-encoding: gzip
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests
strict-transport-security: max-age=300
vary: Accept-Encoding, User-Agent
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES:Forced
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff, nosniff
x-fawn-proc-count: 1,0,24
x-php-version: 7.4
x-xss-protection: 1; mode=block, 1; mode=block
x-sucuri-cache: EXPIRED
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Size:   13547
Md5:    295247c52514856790eede23e4e35931
Sha1:   c1319a2357977c65632c694ee68de0cd0980c3c4
Sha256: 3a2ee4ff0db8bfd1c36b3ce951c7c50bcfccb5e4de3a91049d3eb9f20c68d75e
                                        
                                            GET /ajax/libs/foundicons/3.0.0/foundation-icons.css?ver=2.4.2.3 HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Wed, 21 Sep 2022 06:00:40 GMT
content-length: 2855
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e66-4c34"
last-modified: Mon, 04 May 2020 16:10:14 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 2377341
expires: Mon, 11 Sep 2023 06:00:40 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y3noMEnzypqbd9KU%2Fd58gh69TIpUkhBJcZgXp8GabqibEn448j9G%2Bu%2Bk9zD23AJEau2yg6tiv7u81PAikgApUbgfuFtMSNFVo3YmHlkztLsKbni%2FbRBkK3%2BjGWdw%2BXL%2BjE9nztB2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74e094f5fe13b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2855
Md5:    bf1391b615ae5584f9dd9ce0dadf80d8
Sha1:   5c1ac10b4ced91893f7ead8ccae6144b24e16005
Sha256: 61ed77d9060b46122faab2a431b523f33353943595600c7fed2238155fd462d5
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Hlp/EGCdZHd3IeeHzDVD+g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.240.207.158
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: vEarRlwV3IJNuTnea9Nh3NsB1iQ=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.starfieldtech.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.22
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Wed, 21 Sep 2022 06:00:40 GMT
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 20 Sep 2022 23:15:24 GMT
Expires: Wed, 21 Sep 2022 23:15:24 GMT
ETag: "07cc52cbadb67b05806ea404d51ee97a3770cab7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1845
Md5:    13493a0e471dfb611a00440a61aaeb22
Sha1:   07cc52cbadb67b05806ea404d51ee97a3770cab7
Sha256: 4a63e7140ff7ed78227806871984ac80847adafc1ca836b3bcab7e7edc93541c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.starfieldtech.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.22
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Wed, 21 Sep 2022 06:00:40 GMT
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 20 Sep 2022 23:15:24 GMT
Expires: Wed, 21 Sep 2022 23:15:24 GMT
ETag: "07cc52cbadb67b05806ea404d51ee97a3770cab7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1845
Md5:    13493a0e471dfb611a00440a61aaeb22
Sha1:   07cc52cbadb67b05806ea404d51ee97a3770cab7
Sha256: 4a63e7140ff7ed78227806871984ac80847adafc1ca836b3bcab7e7edc93541c
                                        
                                            GET /tcc/tcc_l.combined.1.0.6.min.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.79.43
HTTP/2 302 Found
                                        
content-length: 0
location: https://img1.wsimg.com/traffic-assets/js/tccl.min.js
cache-control: max-age=1800
expires: Wed, 21 Sep 2022 06:30:40 GMT
date: Wed, 21 Sep 2022 06:00:40 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

                                        
                                            GET /traffic-assets/js/tccl-tti.min.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.79.43
HTTP/2 302 Found
                                        
content-length: 0
location: https://img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
cache-control: max-age=1800
expires: Wed, 21 Sep 2022 06:30:40 GMT
date: Wed, 21 Sep 2022 06:00:40 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

                                        
                                            GET /traffic-assets/js/tccl.min.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tallwoodbrokers.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.43
HTTP/2 302 Found
                                        
content-length: 0
location: https://img6.wsimg.com/wrhs/362d20193a8fed115f99b16a157b7fc4/tccl.min.js
cache-control: max-age=1800
expires: Wed, 21 Sep 2022 06:30:40 GMT
date: Wed, 21 Sep 2022 06:00:40 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.starfieldtech.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.22
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Wed, 21 Sep 2022 06:00:40 GMT
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 20 Sep 2022 23:15:24 GMT
Expires: Wed, 21 Sep 2022 23:15:24 GMT
ETag: "07cc52cbadb67b05806ea404d51ee97a3770cab7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1845
Md5:    13493a0e471dfb611a00440a61aaeb22
Sha1:   07cc52cbadb67b05806ea404d51ee97a3770cab7
Sha256: 4a63e7140ff7ed78227806871984ac80847adafc1ca836b3bcab7e7edc93541c
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.starfieldtech.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.22
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Wed, 21 Sep 2022 06:00:40 GMT
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 20 Sep 2022 23:15:24 GMT
Expires: Wed, 21 Sep 2022 23:15:24 GMT
ETag: "07cc52cbadb67b05806ea404d51ee97a3770cab7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1845
Md5:    13493a0e471dfb611a00440a61aaeb22
Sha1:   07cc52cbadb67b05806ea404d51ee97a3770cab7
Sha256: 4a63e7140ff7ed78227806871984ac80847adafc1ca836b3bcab7e7edc93541c
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/bb-plugin/cache/b58d0a999d2bc6573f89293286911038-layout-bundle.css?ver=2.4.2.3-1.3.3.1&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 11521
x-sucuri-id: 19016
age: 579691
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "16728-5e68eec1afaf4-gzip"
last-modified: Fri, 19 Aug 2022 02:33:24 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   11521
Md5:    e87b2c7d2768ad0a62b3fa26789ec38c
Sha1:   b5162605a7c49772acd565aee53978a4dff2a62d
Sha256: da55f076476c8afdc6811b2311015f706f1ac2cf48d0d221e89ffd947ca8cf89
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-includes/css/dist/components/style.min.css?ver=6.0.2&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 15250
x-sucuri-id: 19016
age: 579691
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "19b81-5e87c64372805-gzip"
last-modified: Mon, 12 Sep 2022 15:17:18 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (41679)
Size:   15250
Md5:    b7ee350d70ffbf9cd8116c556841521d
Sha1:   ffc13aab4f7a4091aed582469ac3f90f0066d06e
Sha256: 4a0495ca7d58a4c53e0dd3b264ec4a819e6099505e90ac717d6eeef073d5ee22
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/plugins/coblocks/includes/Dependencies/GoDaddy/Styles/build/latest.css?ver=0.4.2&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 1040
x-sucuri-id: 19016
age: 579693
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "172b-5e1c5325ab1be-gzip"
last-modified: Sun, 19 Jun 2022 04:12:33 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (301)
Size:   1040
Md5:    9663dd8916a7914c7bcb7a8f988440b1
Sha1:   f814917c037bd4103cc2d4091bc01921d2aae087
Sha256: 0485f32721ee2ea0790abae0818160d24f7bba3e684fa2be2a04b14a598cbe4d
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/plugins/godaddypws-pws-core-b54733c1fcc7358e802daf8802937b59d1e9559a/public/css/GD-cORe-public.css?ver=3.1.1&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 106
x-sucuri-id: 19016
age: 579691
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "62-5c582c0411820-gzip"
last-modified: Thu, 24 Jun 2021 13:10:45 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   106
Md5:    8af7d01cc8f7698605260aa25a37f45e
Sha1:   854439cb106afae13bace1acbdfd03e0ec2daee4
Sha256: 8b46abceed3ee90f0e9053977b5dcb569c09784270d0e5fff5aebf80256501e0
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/plugins/bb-plugin/css/jquery.magnificpopup.min.css?ver=2.4.2.3&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 1652
x-sucuri-id: 19016
age: 579691
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "167e-5c5829a205890-gzip"
last-modified: Thu, 24 Jun 2021 13:00:05 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5758), with no line terminators
Size:   1652
Md5:    9891bb0380f48b06ea1db5acc01ecfea
Sha1:   83f8d2c2912ace2a39976a892dd0901960cca031
Sha256: e6529b652c1e34dd4058f91450d20de7825d7cb62d48eeaf5842962b6c655f4f
                                        
                                            GET /wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js HTTP/1.1 
Host: img6.wsimg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tallwoodbrokers.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.43
HTTP/2 200 OK
content-type: application/javascript
                                        
accept-ranges: bytes
content-encoding: br
etag: "ce554d2333f3801abafb32da18213ff7"
last-modified: Mon, 17 Jan 2022 17:21:37 GMT
vary: Accept-Encoding
x-edgeconnect-midmile-rtt: 8
x-edgeconnect-origin-mex-latency: 357
x-amz-id-2: nldPfdb2FYbpxPRfMYRSd83AOL7ZmlBdZQSm5hguJELKdfn8+sza0oLEpTYjiKd2JeD3gDplFHw=
x-amz-request-id: RJ3J3PMANG6125DE
x-amz-server-side-encryption: AES256
x-amz-version-id: F4fYptXBkP0fCCCWFLfVGE1HXlZmORny
content-length: 7498
x-edgeconnect-cache-status: 1
cache-control: max-age=31536000
date: Wed, 21 Sep 2022 06:00:40 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (24676)
Size:   7498
Md5:    b8a5a228a358454084c34dd1cf431c61
Sha1:   37aa5fe6e083b8147156ca66a1993a7bd74e8a61
Sha256: 06fae5ccf58a27a8e2ae6a0e7722f42db507c1873751f587cddd090810d94492
                                        
                                            GET /wrhs/362d20193a8fed115f99b16a157b7fc4/tccl.min.js HTTP/1.1 
Host: img6.wsimg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tallwoodbrokers.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.43
HTTP/2 200 OK
content-type: application/javascript
                                        
accept-ranges: bytes
content-encoding: br
etag: "362d20193a8fed115f99b16a157b7fc4"
last-modified: Mon, 11 Apr 2022 14:15:53 GMT
vary: Accept-Encoding
x-edgeconnect-midmile-rtt: 15
x-edgeconnect-origin-mex-latency: 135
x-amz-id-2: 73c+ZpWNgBh9xtilh6Nj22iH/BmUfkHwAgj9PgWHmvdTmSCUhi96da6Ell5SKHaif06RANK80zY=
x-amz-request-id: N5JSXGJTVEFZM8E9
x-amz-server-side-encryption: AES256
x-amz-version-id: Z0H0F1CdjRUI_nRMydHHi17Rv0HOw5tB
content-length: 11155
cache-control: max-age=31536000
date: Wed, 21 Sep 2022 06:00:40 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (45500)
Size:   11155
Md5:    1ac00b5d5abfa64175a140de3f29a8e2
Sha1:   c07c5611cfff3ec4c7034134e4148f177242908c
Sha256: 65198366099c4eea2ed8a4dbe30fbb7896435a3505c5265260715d3385058378
                                        
                                            POST / HTTP/1.1 
Host: ocsp.starfieldtech.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.22
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Wed, 21 Sep 2022 06:00:40 GMT
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 20 Sep 2022 23:15:24 GMT
Expires: Wed, 21 Sep 2022 23:15:24 GMT
ETag: "07cc52cbadb67b05806ea404d51ee97a3770cab7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1845
Md5:    13493a0e471dfb611a00440a61aaeb22
Sha1:   07cc52cbadb67b05806ea404d51ee97a3770cab7
Sha256: 4a63e7140ff7ed78227806871984ac80847adafc1ca836b3bcab7e7edc93541c
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/themes/bb-theme/css/bootstrap.min.css?ver=1.7.9&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 19697
x-sucuri-id: 19016
age: 579693
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "1da44-5c582da0a2e8c-gzip"
last-modified: Thu, 24 Jun 2021 13:17:58 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65369)
Size:   19697
Md5:    cddf7c2c33ffb1300073ff0aad694c03
Sha1:   ea74ecee1b8623995d14934d87ef46d0f2a0665a
Sha256: c945ced579ee5dc4c5e96c98d18ebdf894edeafc3122e6500cda07f93bc19eb4
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/bb-theme/skin-60d49bf158205.css?ver=1.7.9&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 8302
x-sucuri-id: 19016
age: 579691
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "db8d-5c58428826626-gzip"
last-modified: Thu, 24 Jun 2021 14:51:29 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (56205), with no line terminators
Size:   8302
Md5:    49477e805588ed8824bd2f12d2575d6d
Sha1:   c71c3a3f9700a32f4beb439d85493f7a7490d405
Sha256: cbcd90c275e77f45f96d5e67ef91795ae1c7314e7ec58543c19ce3573e6332bc
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/plugins/bbpowerpack/assets/css/animate.min.css?ver=3.5.1&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 3954
x-sucuri-id: 19016
age: 579691
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "ce35-5c5827b21af72-gzip"
last-modified: Thu, 24 Jun 2021 12:51:25 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (52592)
Size:   3954
Md5:    78be637aaec9edb4e2dc7275191197bd
Sha1:   733e10aea15883f55823d550d1a1338c4ca444b1
Sha256: 1a6d74381563e3f31b0cff13861ed8312b086816a041901e077354e52c8346e3
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 30908
x-sucuri-id: 19016
age: 580909
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "15db1-5e87c6442b8f8-gzip"
last-modified: Mon, 12 Sep 2022 15:17:19 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30908
Md5:    9640915738503451aa21181699feab5b
Sha1:   c053eaf36ef0da96619706b3abda326305063bd6
Sha256: f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 4169
x-sucuri-id: 19016
age: 580914
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "2bd8-5e87c644291e8-gzip"
last-modified: Mon, 12 Sep 2022 15:17:19 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   4169
Md5:    5629711d7fdd5b28441bac39b851299f
Sha1:   4e0bf2b7383097f7c352023a1b1b1b48a50356b6
Sha256: 44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-includes/js/imagesloaded.min.js?time=1662501354&ver=6.0.2 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 1834
x-sucuri-id: 19016
age: 580914
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "15fd-5e87c64439f70-gzip"
last-modified: Mon, 12 Sep 2022 15:17:19 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5477)
Size:   1834
Md5:    951ae46ca55ec7b0e401e2074bdf8b54
Sha1:   64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
Sha256: fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/plugins/wp-smush-pro/app/assets/js/smush-lazy-load.min.js?ver=3.8.7&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 3684
x-sucuri-id: 19016
age: 580922
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "1eee-5c582c8c6682c-gzip"
last-modified: Thu, 24 Jun 2021 13:13:08 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7870)
Size:   3684
Md5:    a48920454e33613e7a8f9c2ff0eb3363
Sha1:   2b57f9ee43f52a2fbf81e1dea157690e91c56798
Sha256: 358101e96992dc1edbd84f9b9dc09c92c3fdd9c11fd17c97afa65540983f1a70
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/plugins/godaddypws-pws-core-b54733c1fcc7358e802daf8802937b59d1e9559a/public/js/GD-cORe-public.js?ver=3.1.1&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 479
x-sucuri-id: 19016
age: 580923
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "346-5c582c040d7dd-gzip"
last-modified: Thu, 24 Jun 2021 13:10:45 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   479
Md5:    5850a4d6be478b5a5c29526a957840c4
Sha1:   1854bff2c967f028cf8c1f53b3c7878fb605e329
Sha256: 654a9a69300dd841ea2bc14d36c346377cee298b126463cc844fb26929260843
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/bb-plugin/icons/ultimate-icons/style.css?ver=2.4.2.3&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 3360
x-sucuri-id: 19016
age: 579691
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "5017-5c081d1697dc2-gzip"
last-modified: Wed, 21 Apr 2021 20:58:00 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3360
Md5:    ba99aa01e00f73ed5f27c5e4b585fbde
Sha1:   abb1b5da3a227481b42fb350ddcdf3d314610a9b
Sha256: e76daff443a1a1e2a530e0346ac60c3680c6d97fb88bb5097b8e2f7b17f28f49
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 11681
x-sucuri-id: 19016
age: 579691
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "15b64-5e87c6436d9e5-gzip"
last-modified: Mon, 12 Sep 2022 15:17:18 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (43771)
Size:   11681
Md5:    e5548800176e913a9084f47a3e1e04f6
Sha1:   eff4604acc5c26ae82a19188de2f98bf5b79d80c
Sha256: a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/plugins/bb-plugin/js/jquery.waypoints.min.js?ver=2.4.2.3&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 2698
x-sucuri-id: 19016
age: 580935
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "2281-5c5829a75ba45-gzip"
last-modified: Thu, 24 Jun 2021 13:00:11 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (8668)
Size:   2698
Md5:    f7d4b6ef09365ba331dda4e3648c05fc
Sha1:   f852f915b87c84eb1c3590829e8d9f5c97fbe620
Sha256: 61e3dba589d367496e409a346677b89db66ee134e7370f06a8629ce0492eb6c6
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/bb-plugin/cache/4-layout.js?ver=9437528e1a8eb06cda43e941bfc850eb&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 8804
x-sucuri-id: 19016
age: 580929
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "8d6c-5e8093a7d0188-gzip"
last-modified: Tue, 06 Sep 2022 21:53:37 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1052)
Size:   8804
Md5:    2d97648960ac7b8982c96743443e7957
Sha1:   d2c031f91402c2cddfd15bd11b383ff156f5bb24
Sha256: c2e858967de83a7e0e843c85dee9b4cb937de6281dbd276e4d31581815e5fe99
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/plugins/coblocks/dist/js/coblocks-animation.js?ver=2.24.1&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 245
x-sucuri-id: 19016
age: 580936
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "19c-5e1c532557b33-gzip"
last-modified: Sun, 19 Jun 2022 04:12:32 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (412), with no line terminators
Size:   245
Md5:    3ad6349721be488dfc84046965e69e58
Sha1:   7925e320eb014155389d22c396d2b4c832689a89
Sha256: 6e6406b5ba3b9c86e33776f425e989ace6feb60abbc176e70946fc2649303fac
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/plugins/bb-plugin/js/jquery.ba-throttle-debounce.min.js?ver=2.4.2.3&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 460
x-sucuri-id: 19016
age: 580938
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "2db-5c5829a744d54-gzip"
last-modified: Thu, 24 Jun 2021 13:00:11 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (479)
Size:   460
Md5:    22fba66950c06ff062b68622a34dd937
Sha1:   0801cb6d3a2f6873c1a588f5d183d9b5aa15a896
Sha256: f65e9eebd16b50487c49999bda79cf565a7b1ab7dff223dd8aa1888038878144
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/bb-plugin/cache/a0a9aac98eb9f1af28dbf610e1092527-layout-bundle.js?ver=2.4.2.3-1.3.3.1&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 7234
x-sucuri-id: 19016
age: 580928
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "9896-5e68eec1b083c-gzip"
last-modified: Fri, 19 Aug 2022 02:33:24 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1210)
Size:   7234
Md5:    0d3a0f6268f57e7969488a70b9e1d5e4
Sha1:   27d53bb94090f17ff7351cbaf35ef5fa98b3ccfd
Sha256: d194c3f6f8f8b169b4f093e1300d8a7e9aea2c97929cd686f4b64c6ed9570bad
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/plugins/bb-plugin/js/jquery.magnificpopup.min.js?ver=2.4.2.3&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 7236
x-sucuri-id: 19016
age: 580938
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "4eba-5c5829a766295-gzip"
last-modified: Thu, 24 Jun 2021 13:00:11 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20154), with no line terminators
Size:   7236
Md5:    7170c41141bda6743fb4bd8121d5b56b
Sha1:   f40f646e15cb5c81e288d0bdf073597758ecd245
Sha256: 7a2896f4e708263f0cb744a14172958e2b58551afb119b9039574ff8425286bd
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/themes/bb-theme/js/bootstrap.min.js?ver=1.7.9&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 10941
x-sucuri-id: 19016
age: 580932
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "9b01-5c582da15743c-gzip"
last-modified: Thu, 24 Jun 2021 13:17:58 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (39553)
Size:   10941
Md5:    2a099a8cad021f3212ea8876d81e8f8b
Sha1:   1d4ef1f52b2d9da0b39663995ceeff103c51dc74
Sha256: 8e9a5c42d36822918d29505e0670011e3cd0f65c5603d522c5e29f3f9628f009
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/bb-plugin/cache/4-layout.css?ver=ddab717150fd7b90141aa5f44fa876b3&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 10804
x-sucuri-id: 19016
age: 579693
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "18349-5e8093a7c0561-gzip"
last-modified: Tue, 06 Sep 2022 21:53:37 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   10804
Md5:    c033bcee0e4a1e8884fe7fb58dbd8264
Sha1:   702ea4a9cab1ca808c0e68efa567cb49e9d91b2d
Sha256: 4f8f3cbd0fca334384abc97f1bcc434d7c278c18c9274df54fc48e8f14622b12
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.1/css/all.min.css?ver=2.4.2.3&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 12868
x-sucuri-id: 19016
age: 579691
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "e7d0-5c5829a20c805-gzip"
last-modified: Thu, 24 Jun 2021 13:00:05 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (59158)
Size:   12868
Md5:    77adb61e8b73b03c938831ca2e7cd41d
Sha1:   3b0c1f53c1161696277d33d1cb6c311f25d2f961
Sha256: b170b9f3758097a377a7068667a531e07a82612331808b5bb2b7ed863bf63e0e
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/themes/bb-theme/js/theme.min.js?ver=1.7.9&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 5455
x-sucuri-id: 19016
age: 580932
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "58ee-5c582da1581ce-gzip"
last-modified: Thu, 24 Jun 2021 13:17:58 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22766), with no line terminators
Size:   5455
Md5:    d9253c6a54d46d10e6e5ee1deac6a1a0
Sha1:   618f39288560fa0c78b9a7b90d152857a899a7e0
Sha256: e4cd5c45ad5cf6929bde19b2f385be713617ff5c744f7dcd9adbd86e7791cfcd
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 5009
x-sucuri-id: 19016
age: 579704
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "48b9-5e87c64443bb1-gzip"
last-modified: Mon, 12 Sep 2022 15:17:19 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   5009
Md5:    e6624e0b978e6ddba476be41aaaa82df
Sha1:   822e920d8233072110ed7c8a7f379e5b13209b18
Sha256: dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-includes/css/dashicons.min.css?ver=6.0.2&time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 35730
x-sucuri-id: 19016
age: 579691
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
etag: "e688-5e87c64377625-gzip"
last-modified: Mon, 12 Sep 2022 15:17:18 GMT
strict-transport-security: max-age=300
vary: Accept-Encoding
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (58981)
Size:   35730
Md5:    00492d322e5572c7abc3e8701b6c52c1
Sha1:   0802ac2c8280ce7c98af881b1d49ec682acbf314
Sha256: 8bc01632cbc3ab834e04141d444ff82b05a4691444d70a9860477710e330b824
                                        
                                            GET /aadc63d8e8dbd533470bdc4e350bc4af?AccessKeyId=B7351D786AE96FEF6EBB&disposition=0&alloworigin=1 HTTP/1.1 
Host: nebula.wsimg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.43
HTTP/2 200 OK
content-type: image/png
                                        
server: Apache
x-cloud-request-id: GDN69D3A0E39FB31C23472E99B45C4B0
x-cloud-bucket-key: 782175c241aa8699d035051442e74307
x-cloud-bucket-name: resources
x-cloud-object-key: aadc63d8e8dbd533470bdc4e350bc4af
x-cloud-object-name: resources/2b4803a9-1101-4986-ab80-a2d3a00c54d1-PWS_Badges_Drk.png
x-cloud-version: e19598efd996a683e4e0ae5077a87ab4
x-cloud-acl: public-read
x-cloud-meta:
etag: 897c98b548b4a1b504beca07631a6490
last-modified: Mon, 19 Aug 2019 10:20:55 GMT
created-date: Tue, 16 Aug 2016 21:42:32 GMT
access-control-allow-origin: *
x-cloud-public-bucket: []
vary: Accept-Encoding
content-encoding: gzip
content-length: 2757
cache-control: must-revalidate, max-age=31536000
date: Wed, 21 Sep 2022 06:00:41 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 133 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size:   2757
Md5:    aec82ffcb03909356ff7b10b97aaa8d3
Sha1:   223f9e564c9038f27ede6b4dcbb6aa3417da7e3c
Sha256: 949506c86cbcd401c6918be94668e272fef7766be6738d7d7d9b567deb0c87eb
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtm.js?id=GTM-NQVNPBK HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Sep 2022 06:00:41 GMT
expires: Wed, 21 Sep 2022 06:00:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 36308
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1720)
Size:   36308
Md5:    3e3ae683ffaf337d22f214dd3bcecbbd
Sha1:   a958bed43276cef2eb7bf81da992c4b0d9b728ac
Sha256: 5c56349674364804c5e686c537f4caa998022702ca82c5b89ee6565afb306f30
                                        
                                            POST /gsrsaovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:41 GMT
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 25 Sep 2022 03:28:32 GMT
ETag: "4a36a21741104e1b456dacb629e9aa203f0698a6"
Last-Modified: Wed, 21 Sep 2022 03:28:33 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1930
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74e094fab949b4f9-OSL


--- Additional Info ---
Magic:  data
Size:   1432
Md5:    a44910b71efec49594e2ed44adba3858
Sha1:   4a36a21741104e1b456dacb629e9aa203f0698a6
Sha256: dee678121cdbd2456883fe70c0a10d287f921eb5a263b8a97629d4c12f88d26c
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tallwoodbrokers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 08:31:01 GMT
expires: Wed, 20 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 77380
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tallwoodbrokers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12848
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 16:43:29 GMT
expires: Fri, 15 Sep 2023 16:43:29 GMT
cache-control: public, max-age=31536000
age: 479832
last-modified: Mon, 11 Jul 2022 18:56:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12848, version 1.0\012- data
Size:   12848
Md5:    f0b3206d02a2f684530117ce1d7e8ce0
Sha1:   f3708b707b65e241b0f1c819d5f7bf7da8412653
Sha256: f31b80562610135edd91a86ec7f243c5eeaec2ec08337e6a20c2d135d8e217da
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gsrsaovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:41 GMT
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 25 Sep 2022 03:28:32 GMT
ETag: "4a36a21741104e1b456dacb629e9aa203f0698a6"
Last-Modified: Wed, 21 Sep 2022 03:28:33 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1930
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74e094fbca5cb4f9-OSL


--- Additional Info ---
Magic:  data
Size:   1432
Md5:    a44910b71efec49594e2ed44adba3858
Sha1:   4a36a21741104e1b456dacb629e9aa203f0698a6
Sha256: dee678121cdbd2456883fe70c0a10d287f921eb5a263b8a97629d4c12f88d26c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8628
Expires: Wed, 21 Sep 2022 08:24:29 GMT
Date: Wed, 21 Sep 2022 06:00:41 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8628
Expires: Wed, 21 Sep 2022 08:24:29 GMT
Date: Wed, 21 Sep 2022 06:00:41 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8628
Expires: Wed, 21 Sep 2022 08:24:29 GMT
Date: Wed, 21 Sep 2022 06:00:41 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8628
Expires: Wed, 21 Sep 2022 08:24:29 GMT
Date: Wed, 21 Sep 2022 06:00:41 GMT
Connection: keep-alive

                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/2021/05/8-Step-Process-v2.mp4?time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 206 Partial Content
content-type: video/mp4
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 16273112
x-sucuri-id: 19016
age: 490774
content-security-policy: upgrade-insecure-requests
etag: "f84ed8-5c2b4527cf22d"
last-modified: Wed, 19 May 2021 20:03:37 GMT
strict-transport-security: max-age=300
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
content-range: bytes 0-16273111/16273112
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size:   75780
Md5:    1c0183183545ec414a1422d7d8912efa
Sha1:   57e318ec39d71047eac747a14fb2996c962cbdf1
Sha256: aeb744650c8f644f539cc9c704a986a80775b268785cbd7ff2ace48832d85120
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf057f43-44fd-440b-bd96-67b16eb4eb13.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12654
x-amzn-requestid: efc99152-2b51-462d-b48b-67ba8263b1cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJOGVYoAMFcvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-00eeb6913e06ac151f293263;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: nSWUmBqJPIBYNoLtyrfAN7CK4367b6TEku9eki8BGJVdTWW3dSyckw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 07:21:22 GMT
age: 81559
etag: "d8ac8a7e19b06e38070a0319cde24b5bf0eaa7db"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12654
Md5:    f7b780d39877eea116277625aaa01f1b
Sha1:   d8ac8a7e19b06e38070a0319cde24b5bf0eaa7db
Sha256: ca9d59056e0a3f512d36db11f4a4bd3109c2ce1e13b29b5f40dce84df079e71f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8fb4f53-c4a2-4769-939e-c2f7ff562e36.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7383
x-amzn-requestid: 32b97df0-b979-4e80-a54f-cae77affc915
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy2sHJ_oAMF0bg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31c4-2c6db6e21fa1db233a4c1f49;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cgtMqpEEGh4T-E7vTcy_XhKVaoN9trQ_gtoxx1igk62zYATMmZBQCA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:41:30 GMT
age: 29951
etag: "96048f054243b5a13f14ab3dd9f4a0f3f2e0feae"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7383
Md5:    681b3e236c8b9bc524d935af247ec72b
Sha1:   96048f054243b5a13f14ab3dd9f4a0f3f2e0feae
Sha256: aaa2f649fd336f89b3c0fc1d9226f8763f5a8cd850826a7f0819ebe7414fbf2a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F689f6ab4-a759-42b3-82a8-f66964d5ece4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9574
x-amzn-requestid: 3dfa0e8c-77e6-4fc5-9f64-00ac854abbfa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1mEj2IAMFWdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-745819ba4b5c16ee6e649ad7;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: huvZVDXGF4n0xe8WcPyCtzH4E4UzNo4xprREMsCnwi0aTDhsRWVFhg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:41:30 GMT
age: 29951
etag: "3371965b4417ee0b74a3a5094adfc1632d4849b1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9574
Md5:    eff7103898a5102e685ce6741cdf19f8
Sha1:   3371965b4417ee0b74a3a5094adfc1632d4849b1
Sha256: c326683c06d56a02d8c1a36dd34c1eff1b9d242b8b5280a1824b0602ccd28020
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12048
x-amzn-requestid: bc551b18-fddb-4502-8c11-b8de83d75def
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YwlKzF9FoAMFp_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6329b578-7e030b2e0af1d1c309d2dde6;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 12:43:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: q4_aUdJyUhQIezjvo7LtOw_0pV-W3EkdLVzVnVB4_4gHSK9AYhrTxA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 12:43:36 GMT
etag: "37222a70df5d9a69073b4b32ebc3a5da60006001"
age: 62225
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12048
Md5:    c2db94039cb675cb250519fe57b2b3c9
Sha1:   37222a70df5d9a69073b4b32ebc3a5da60006001
Sha256: 444f4359ac25747e7c5d7e09202f195d407bc94a4933ac7ebbbaf9839bf59aff
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24bb3042-6621-4dd2-99f1-4b50cc7da808.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9399
x-amzn-requestid: 44705828-c137-4ab5-8538-5d4595a2b058
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYvkJGjxoAMF6-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202c80-3cb542a303a59002480c82b2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:08:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PIZx2S4HyPokzOhbut6yFxH_-32I3SvT1jbeo2rSxQtkgYZGcqjBJA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:00:12 GMT
age: 28829
etag: "63252bd8cc72452c4c6be84593d704ae9bf97d1f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9399
Md5:    10ad73e887b57566c4ba3ae763552a2e
Sha1:   63252bd8cc72452c4c6be84593d704ae9bf97d1f
Sha256: 7d58d096045066af053eb1a1fc3878d3e2080aa50b71aa30fa5b7929693ab004
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/2021/05/Tallwood-Business-Brokers-Short-Video-v2.mp4?time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=11796480-
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 206 Partial Content
content-type: video/mp4
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 70458
x-sucuri-id: 19016
age: 490774
content-security-policy: upgrade-insecure-requests
etag: "b5133a-5c2b41b3cd06a"
last-modified: Wed, 19 May 2021 19:48:10 GMT
strict-transport-security: max-age=300
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
content-range: bytes 11796480-11866937/11866938
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   70458
Md5:    0bcb92becc6356815a62393d6747396f
Sha1:   ec3295fe5f085d1dea6f058b2a204fca8234a859
Sha256: e4259ed21ce265e3515f3fa83b48b8701787d832bd56e5feafda14298b838710
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/2021/05/8-Step-Process-v2.mp4?time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=16121856-
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 206 Partial Content
content-type: video/mp4
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 151256
x-sucuri-id: 19016
age: 490774
content-security-policy: upgrade-insecure-requests
etag: "f84ed8-5c2b4527cf22d"
last-modified: Wed, 19 May 2021 20:03:37 GMT
strict-transport-security: max-age=300
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
content-range: bytes 16121856-16273111/16273112
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   151256
Md5:    9578a57033efc1cd04c96ae4c856297b
Sha1:   d4ede944723db030de1fcb7f4f8e36eaf3568b5a
Sha256: 6b997197ff70e3affd1efe6280b8b758f696eb787e73054764ec2750c8127beb
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/2021/05/How-do-we-charge-for-our-services_v2.mp4?time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=7831552-
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 206 Partial Content
content-type: video/mp4
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 43382
x-sucuri-id: 19016
age: 559758
content-security-policy: upgrade-insecure-requests
etag: "782976-5c2b45ea5ad4a"
last-modified: Wed, 19 May 2021 20:07:01 GMT
strict-transport-security: max-age=300
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
content-range: bytes 7831552-7874933/7874934
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  OpenPGP Secret Key\012- data
Size:   43382
Md5:    156779dff285332ae513d114383b9e59
Sha1:   80dd7cec610e680184d352c9a6f4c7d7525be4d0
Sha256: e9cbf0ca8a722983cab24dfac5d9eed3bad9421aa220180fe3b9f3000185a047
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/2021/05/tallwood-logo-rgb-lrg.png HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 85664
x-sucuri-id: 19016
age: 453830
content-security-policy: upgrade-insecure-requests
etag: "14ea0-5c164f68325e5"
last-modified: Mon, 03 May 2021 03:57:40 GMT
strict-transport-security: max-age=300
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1920 x 583, 8-bit/color RGBA, non-interlaced\012- data
Size:   85664
Md5:    c352451c6f82ad6dfa6d08e53c2a0f10
Sha1:   6580f8bbf7debc9666036f166ee3a9c8cda81ebf
Sha256: d97c865c79603790343bb524b43dd316f4511c8b194c44b5ec1d771a86ac634f
                                        
                                            GET /serve/608b08d6d9e84ad100000010.js HTTP/1.1 
Host: tag.perfectaudience.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.217
HTTP/2 200 OK
content-type: text/javascript
                                        
server: Cowboy
cache-control: max-age=1800
x-content-type-options: nosniff
via: 1.1 vegur, 1.1 varnish
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Sep 2022 06:00:42 GMT
age: 0
x-served-by: cache-bma1662-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663740042.043210,VS0,VE204
vary: Accept-Encoding
content-length: 3895
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10694)
Size:   3895
Md5:    346615e3325ce9d91df853d7f2147b8b
Sha1:   fd5203182c3659684059a2576e14943cfe7c1f30
Sha256: e807d0421105c17ce9e6bf3ece5cba7359d78e4886a6ce0444f768c27475c62d
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/bb-plugin/icons/ultimate-icons/fonts/Ultimate-Icons.ttf?1ddi1j HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tallwoodbrokers.com
Connection: keep-alive
Referer: https://secureservercdn.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: font/ttf
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:42 GMT
content-length: 93024
x-sucuri-id: 19016
accept-ranges: bytes
access-control-allow-origin: *
age: 67198
content-security-policy: upgrade-insecure-requests
etag: "16b60-5c081d16a14d4"
last-modified: Wed, 21 Apr 2021 20:58:00 GMT
strict-transport-security: max-age=300
vary: User-Agent
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES:Forced
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Ultimate-Icons\012- data
Size:   93024
Md5:    4f52acd8464d9611fe731e6182f1986e
Sha1:   a6367a5d19bd2b65265eee57e03068dca24be313
Sha256: 49f204eb11dd2940cb55d01fbe8f8f2fef9167ff1cb6e22bcecde06c0078f630
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:42 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 15:13:58 GMT
Expires: Mon, 26 Sep 2022 15:13:57 GMT
Etag: "4a912d23bde769c8a0875816faf70ffeec7fce8e"
Cache-Control: max-age=464594,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74e09500bf941c16-OSL

                                        
                                            GET /tagjs?a_id=164378&source=js_tag HTTP/1.1 
Host: pixel-geo.prfct.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.18.110.32
HTTP/1.1 302 Found
                                        
Cache-Control: no-store, no-cache, private
Location: https://pixel-geo.prfct.co/tagjs?check_cookie=1&a_id=164378&source=js_tag
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /tagjs?check_cookie=1&a_id=164378&source=js_tag HTTP/1.1 
Host: pixel-geo.prfct.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tallwoodbrokers.com/
Connection: keep-alive
Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.18.110.32
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Cache-Control: no-store, no-cache, private
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 125
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text
Size:   125
Md5:    85276c93f15f9e3a33e96f118717fc00
Sha1:   d1523b968b99d5c02040e5a93c6a0e2624489a13
Sha256: 2a25b1a8c4a5ae2d07141b2007838d046bce7acc3b2f6d026d4e856cb4223a4f
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/2021/05/tallwood-logo-rgb-lrg-1536x466.png HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:42 GMT
content-length: 66511
x-sucuri-id: 19016
accept-ranges: bytes
age: 518123
content-security-policy: upgrade-insecure-requests
etag: "103cf-5c164f63b3f2b"
last-modified: Mon, 03 May 2021 03:57:35 GMT
strict-transport-security: max-age=300
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1536 x 466, 8-bit/color RGBA, non-interlaced\012- data
Size:   66511
Md5:    fa9310beb69660eb592f41295199d406
Sha1:   ec0609d64caffca640b59751cdf3a95c315be0a7
Sha256: 225e85818cf570b1480bbfc2eb31b968c17b40d054379085efa5bd73cde36ab9
                                        
                                            GET /cs/?partnerId=twtr HTTP/1.1 
Host: pixel-geo.prfct.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.18.110.32
HTTP/1.1 302 Found
                                        
Cache-Control: no-store, no-cache, private
Location: https://analytics.twitter.com/i/adsct?p_id=48571&p_user_id=pa_rwUHnOAvfk2SCNjq1
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure; pa_twitter_ts=1663740042509; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /cs/?partnerId=yah HTTP/1.1 
Host: pixel-geo.prfct.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.18.110.32
HTTP/1.1 302 Found
                                        
Cache-Control: no-store, no-cache, private
Location: https://ups.analytics.yahoo.com/ups/58288/sync?uid=pa_rwUHnOAvfk2SCNjq1&_origin=1
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure; pa_yahoo_ts=1663740042542; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /cs/?partnerId=opx HTTP/1.1 
Host: pixel-geo.prfct.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.18.110.32
HTTP/1.1 302 Found
                                        
Cache-Control: no-store, no-cache, private
Location: https://us-u.openx.net/w/1.0/sd?id=537114372&val=pa_rwUHnOAvfk2SCNjq1
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure; pa_openx_ts=1663740042614; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /cs/?partnerId=rbcn HTTP/1.1 
Host: pixel-geo.prfct.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.18.110.32
HTTP/1.1 302 Found
                                        
Cache-Control: no-store, no-cache, private
Location: https://pixel.rubiconproject.com/tap.php?v=189868&nid=4106&expires=30&put=pa_rwUHnOAvfk2SCNjq1
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure; pa_rubicon_ts=1663740042618; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /cs/?partnerId=goo HTTP/1.1 
Host: pixel-geo.prfct.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.18.110.32
HTTP/1.1 302 Found
                                        
Cache-Control: no-store, no-cache, private
Location: https://cm.g.doubleclick.net/pixel?google_nid=nowspots_bidder&google_hm=cGFfcndVSG5PQXZmazJTQ05qcTE
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure; pa_google_ts=1663740042624; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /seg/?add=26346789&source=js_tag&a_id=164378 HTTP/1.1 
Host: pixel-geo.prfct.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.18.110.32
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-store, no-cache, private
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 43
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    07fff40b5dd495aca2ac4e1c3fbc60aa
Sha1:   e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
Sha256: a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
                                        
                                            GET /analytics.js HTTP/1.1 
Host: google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.4
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Wed, 21 Sep 2022 05:17:37 GMT
expires: Wed, 21 Sep 2022 07:17:37 GMT
cache-control: public, max-age=7200
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
age: 2585
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19826
Md5:    cae538dcce82598fbe43c0bf443e62dd
Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5
Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: status.geotrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1237
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 06:00:42 GMT
Last-Modified: Wed, 21 Sep 2022 05:40:05 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6126
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 06:00:42 GMT
Last-Modified: Wed, 21 Sep 2022 04:18:37 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3487
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 06:00:42 GMT
Last-Modified: Wed, 21 Sep 2022 05:02:35 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /pixel?google_nid=nowspots_bidder&google_hm=cGFfcndVSG5PQXZmazJTQ05qcTE HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tallwoodbrokers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.66
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=nowspots_bidder&google_hm=cGFfcndVSG5PQXZmazJTQ05qcTE&google_tc=
date: Wed, 21 Sep 2022 06:00:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 315
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Sep-2022 06:15:42 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   315
Md5:    678564b4aea7e5c10369f42b087a7e5b
Sha1:   f9ccef2ec2551479dc5d16490885369945cc71ed
Sha256: 1c8c3a4f1d46e72ccdd658e06f722bb4366cb3f9e9d2fc54428dada34d56015d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4904
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 06:00:42 GMT
Last-Modified: Wed, 21 Sep 2022 04:38:58 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 313

                                        
                                            GET /w/1.0/sd?id=537114372&val=pa_rwUHnOAvfk2SCNjq1 HTTP/1.1 
Host: us-u.openx.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tallwoodbrokers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         35.244.159.8
HTTP/2 200 OK
content-type: image/gif
                                        
vary: Accept
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Wed, 21 Sep 2022 06:00:42 GMT
content-length: 43
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
                                        
                                            GET /tap.php?v=189868&nid=4106&expires=30&put=pa_rwUHnOAvfk2SCNjq1 HTTP/1.1 
Host: pixel.rubiconproject.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tallwoodbrokers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         213.19.162.80
HTTP/1.1 204 No Content
Content-Type: image/gif
                                        
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 19600bc21eacf9565125744d917cac10

                                        
                                            GET /seg?t=2&add=26346789 HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.89.211.132
HTTP/1.1 307 Redirection
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.21.3
Date: Wed, 21 Sep 2022 06:00:42 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://secure.adnxs.com/bounce?%2Fseg%3Ft%3D2%26add%3D26346789
AN-X-Request-Uuid: 9c130ed0-1648-41ba-ad8e-dd2b057fb8e6
Set-Cookie: uuid2=4251646296038435531; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 20-Dec-2022 06:00:42 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

                                        
                                            GET /pixel?google_nid=nowspots_bidder&google_hm=cGFfcndVSG5PQXZmazJTQ05qcTE&google_tc= HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tallwoodbrokers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.66
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
location: https://pixel-geo.prfct.co/cb?partnerId=goo&google_error=3
date: Wed, 21 Sep 2022 06:00:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 259
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   259
Md5:    0a0a4f6cad208f9d0fb759db3d34ddfc
Sha1:   acc1bd92116763fe72e1b478c6d92fd2c2d74f04
Sha256: eba9f6a7322bdfaa5076a0895ad8765b4c7010ac5f4a06199a07b0f5402d27bd
                                        
                                            GET /getuid?https://pixel-geo.prfct.co/usermap/?xid=$UID&sid=202209|632aa889a322537ff461efb6&pid=pa_rwUHnOAvfk2SCNjq1 HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.89.211.132
HTTP/1.1 307 Redirection
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.21.3
Date: Wed, 21 Sep 2022 06:00:42 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fpixel-geo.prfct.co%2Fusermap%2F%3Fxid%3D%24UID%26sid%3D202209%7C632aa889a322537ff461efb6%26pid%3Dpa_rwUHnOAvfk2SCNjq1
AN-X-Request-Uuid: 4f6f9e68-181f-40b6-90fd-2d8be4413117
Set-Cookie: uuid2=5775614829406520512; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 20-Dec-2022 06:00:42 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

                                        
                                            GET /ups/58288/sync?uid=pa_rwUHnOAvfk2SCNjq1&_origin=1 HTTP/1.1 
Host: ups.analytics.yahoo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tallwoodbrokers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         18.156.0.31
HTTP/2 302 Found
                                        
date: Wed, 21 Sep 2022 06:00:42 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58288/sync?uid=pa_rwUHnOAvfk2SCNjq1&_origin=1&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBIqoKmMCEGKSfdO63bJA0tUQlV0IJUgFEgEBAQH6K2M0YwAAAAAA_eMAAA&S=AQAAApTpgbJ8m8xbuMKfmYq-924; Expires=Thu, 21 Sep 2023 12:00:42 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: status.geotrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4096
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 06:00:42 GMT
Last-Modified: Wed, 21 Sep 2022 04:52:26 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /j/collect?v=1&_v=j97&a=1499097080&t=pageview&_s=1&dl=https%3A%2F%2Ftallwoodbrokers.com%2F%3FmsID%3D0d77fb81-2c6a-46a6-bf41-9e810b03f83b&ul=en-us&de=UTF-8&dt=Sell%20Your%20Company%20With%20Accredited%20Small%20Business%20Broker%20%26%20Intermediary&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=693951724&gjid=1284604620&cid=223180655.1663740043&tid=UA-224968058-5&_gid=1576974758.1663740043&_r=1&_slc=1&z=135815795 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://tallwoodbrokers.com
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://tallwoodbrokers.com
date: Wed, 21 Sep 2022 06:00:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    9e92e190700c1af4539b40c2171320a9
Sha1:   209bcdb79e6067b51091ce8586d4b977f25b67d8
Sha256: aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
                                        
                                            GET /bounce?%2Fseg%3Ft%3D2%26add%3D26346789 HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tallwoodbrokers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.89.211.132
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.21.3
Date: Wed, 21 Sep 2022 06:00:42 GMT
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: c4c71441-70b7-4c7b-a4f5-1ded199ca228
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2C$KiJGwV!]tbP6j2F-XstGt!@DER$]WPp; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 20-Dec-2022 06:00:42 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    592ebefc7104d681d57852665e9ad514
Sha1:   15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
Sha256: 4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
                                        
                                            GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fpixel-geo.prfct.co%2Fusermap%2F%3Fxid%3D%24UID%26sid%3D202209%7C632aa889a322537ff461efb6%26pid%3Dpa_rwUHnOAvfk2SCNjq1 HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tallwoodbrokers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.89.211.132
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx/1.21.3
Date: Wed, 21 Sep 2022 06:00:42 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://pixel-geo.prfct.co/usermap/?xid=0&sid=202209|632aa889a322537ff461efb6&pid=pa_rwUHnOAvfk2SCNjq1
AN-X-Request-Uuid: af6fe691-35cd-4e44-8fde-9bf0566dcde1
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

                                        
                                            GET /cb?partnerId=goo&google_error=3 HTTP/1.1 
Host: pixel-geo.prfct.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tallwoodbrokers.com/
Connection: keep-alive
Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1; pa_twitter_ts=1663740042509; pa_yahoo_ts=1663740042542; pa_openx_ts=1663740042614; pa_rubicon_ts=1663740042618; pa_google_ts=1663740042624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.18.110.32
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-store, no-cache, private
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure; pa_google_ts=0; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 43
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    07fff40b5dd495aca2ac4e1c3fbc60aa
Sha1:   e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
Sha256: a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
                                        
                                            GET /ups/58288/sync?uid=pa_rwUHnOAvfk2SCNjq1&_origin=1&verify=true HTTP/1.1 
Host: ups.analytics.yahoo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tallwoodbrokers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         18.156.0.31
HTTP/2 204 No Content
                                        
date: Wed, 21 Sep 2022 06:00:42 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBIqoKmMCEPUSCCrD3UUnaoGYZy5F0OAFEgEBAQH6K2M0YwAAAAAA_eMAAA&S=AQAAAlFi6CQ7oAFLANIbfeIaBd0; Expires=Thu, 21 Sep 2023 12:00:42 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2

                                        
                                            GET /usermap/?xid=0&sid=202209|632aa889a322537ff461efb6&pid=pa_rwUHnOAvfk2SCNjq1 HTTP/1.1 
Host: pixel-geo.prfct.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tallwoodbrokers.com/
Connection: keep-alive
Cookie: pa_uid=pa_rwUHnOAvfk2SCNjq1; pa_twitter_ts=1663740042509; pa_yahoo_ts=1663740042542; pa_openx_ts=1663740042614; pa_rubicon_ts=1663740042618; pa_google_ts=1663740042624
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.18.110.32
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-store, no-cache, private
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Content-Length: 43
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    07fff40b5dd495aca2ac4e1c3fbc60aa
Sha1:   e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
Sha256: a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.158
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 06:00:42 GMT
Last-Modified: Wed, 21 Sep 2022 04:49:38 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: w9Wns-tUv26vWCtE7rz-E3aWla3iNruE4FmulmE0U3H7GjiaNm-swQ==
Age: 4264

                                        
                                            GET /pview?event=pview&hostname=tallwoodbrokers.com&location=%2F&product=ga&url=https%3A%2F%2Ftallwoodbrokers.com%2F%3FmsID%3D0d77fb81-2c6a-46a6-bf41-9e810b03f83b&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Sell%20Your%20Company%20With%20Accredited%20Small%20Business%20Broker%20%26%20Intermediary&cms=unknown&publisher=62b4e923862e060019b2ef40&sop=true&version=st_sop.js&lang=en&description=We%20Are%20A%20Small%20Accredited%20Business%20Brokerage%20%26%20Certified%20Intermediary%20Located%20Near%20Me%20In%20Nashville%2C%20TN%2C%20Providing%20Seller%20Representation%20For%20Small%20Business%20Owners. HTTP/1.1 
Host: l.sharethis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tallwoodbrokers.com
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.57.102.63
HTTP/1.1 204 No Content
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: https://tallwoodbrokers.com
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Wed, 21 Sep 2022 06:00:42 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive

                                        
                                            GET /i/adsct?p_id=48571&p_user_id=pa_rwUHnOAvfk2SCNjq1 HTTP/1.1 
Host: analytics.twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tallwoodbrokers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.244.42.67
HTTP/2 200 OK
content-type: image/gif;charset=utf-8
                                        
date: Wed, 21 Sep 2022 06:00:42 GMT
server: tsa_o
set-cookie: personalization_id="v1_FW/VBQfPPmHk8g5vZnLYXA=="; Max-Age=63072000; Expires=Fri, 20 Sep 2024 06:00:42 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
cache-control: no-cache, no-store, max-age=0
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 110
x-connection-hash: 047240c229ca35f6dfe505728dfd6b8557ef8b33f6a8b2edfd2b9c84e93916a4
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    377d257f2d2e294916143c069141c1c5
Sha1:   b7cae69682cf31dd670b65088db8395acda6ed3e
Sha256: ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-224968058-5&cid=223180655.1663740043&jid=693951724&gjid=1284604620&_gid=1576974758.1663740043&_u=IEBAAEAAAAAAAC~&z=624631922 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://tallwoodbrokers.com
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.251.1.157
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://tallwoodbrokers.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 21 Sep 2022 06:00:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/62b4e923862e060019b2ef40.js HTTP/1.1 
Host: buttons-config.sharethis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.117
HTTP/2 200 OK
content-type: text/javascript
                                        
content-length: 30
last-modified: Thu, 23 Jun 2022 22:28:53 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 06:00:44 GMT
cache-control: max-age=60,public
etag: "e6e1643313740711175f51662a65b42f"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eKi52tXlVPDi2mdYsQ6VivzDEjEquUfrvW0vESZZmov8nkFqHHzY1A==
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   30
Md5:    e6e1643313740711175f51662a65b42f
Sha1:   c3fc7a03fea3138a1497dab12d5b4e40fd4aeaef
Sha256: 2c29defe29114d0e8b948e78d50ebb281035df53a9167089deb1e77e801bbd2f
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-224968058-5&cid=223180655.1663740043&jid=693951724&_u=IEBAAEAAAAAAAC~&z=433837881 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 06:00:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-224968058-5&cid=223180655.1663740043&jid=693951724&_u=IEBAAEAAAAAAAC~&z=433837881 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Sep 2022 06:00:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 06:00:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/2021/05/cropped-NEWICON-192x192.png HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:43 GMT
content-length: 6827
x-sucuri-id: 19016
accept-ranges: bytes
age: 482552
content-security-policy: upgrade-insecure-requests
etag: "1aab-5c2b34d5df119"
last-modified: Wed, 19 May 2021 18:50:36 GMT
strict-transport-security: max-age=300
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size:   6827
Md5:    cbe3cab4ec151a3009734c1eff9bd356
Sha1:   4325694578514f0533cde75d2ec52378bc4f29f0
Sha256: 0c487a6006b28b3aae1f8cd248aec1d6f5a846a0b14b47226e021ac2882faea9
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/2021/05/cropped-NEWICON-32x32.png HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:43 GMT
content-length: 758
x-sucuri-id: 19016
accept-ranges: bytes
age: 532397
content-security-policy: upgrade-insecure-requests
etag: "2f6-5c2b34d5f33b0"
last-modified: Wed, 19 May 2021 18:50:36 GMT
strict-transport-security: max-age=300
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: MISS
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, max speed, from Unix\012- data
Size:   909
Md5:    de45cd4267d73d2bc9334101178a3080
Sha1:   c53da010c8026dc396928435f6c8140f5c369182
Sha256: 34137e6e7327ba50e43a412c7fe2be1451469141ee130b0105f1fc81aaea8011
                                        
                                            GET /t/1/tl/event?cts=1663740041485&dh=tallwoodbrokers.com&dr=&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=557001634&cv=2.0.0&z=903936683&vg=da882588-5401-589f-aa8f-03d0ea71f7c2&vtg=da882588-5401-589f-aa8f-03d0ea71f7c2&dp=%2F&ap=wpaas&trfd=%7B%22ap%22%3A%22wpaas%22%2C%22server%22%3A%22af471a73-18c8-1069-47c3-5f733dd6d1ae.secureserver.net%22%2C%22pod%22%3A%22P3NLWPPOD08%22%2C%22storage%22%3A%22p3pewpnas04pod08_data06%22%2C%22xid%22%3A%2244146798%22%2C%22wp%22%3A%226.0.2%22%2C%22php%22%3A%227.4.30%22%2C%22loggedin%22%3A%220%22%2C%22cdn%22%3A%221%22%2C%22builder%22%3A%22beaver-builder%22%2C%22theme%22%3A%22bb-theme%22%2C%22wds%22%3A%221%22%2C%22wp_alloptions_count%22%3A%22233%22%2C%22wp_alloptions_bytes%22%3A%2288913%22%7D&hit_id=32902624-dc0f-598e-aa68-fd242d8e4f3e&ht=pageview HTTP/1.1 
Host: events.api.secureserver.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tallwoodbrokers.com
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.84.152.58
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
access-control-allow-origin: https://tallwoodbrokers.com
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Wed, 21 Sep 2022 06:00:43 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            GET /t/1/tl/event?cts=1663740043225&dh=tallwoodbrokers.com&dr=&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&vci=557001634&cv=2.0.0&z=139935038&vg=da882588-5401-589f-aa8f-03d0ea71f7c2&vtg=da882588-5401-589f-aa8f-03d0ea71f7c2&dp=%2F&ap=wpaas&trfd=%7B%22ap%22%3A%22wpaas%22%2C%22server%22%3A%22af471a73-18c8-1069-47c3-5f733dd6d1ae.secureserver.net%22%2C%22pod%22%3A%22P3NLWPPOD08%22%2C%22storage%22%3A%22p3pewpnas04pod08_data06%22%2C%22xid%22%3A%2244146798%22%2C%22wp%22%3A%226.0.2%22%2C%22php%22%3A%227.4.30%22%2C%22loggedin%22%3A%220%22%2C%22cdn%22%3A%221%22%2C%22builder%22%3A%22beaver-builder%22%2C%22theme%22%3A%22bb-theme%22%2C%22wds%22%3A%221%22%2C%22wp_alloptions_count%22%3A%22233%22%2C%22wp_alloptions_bytes%22%3A%2288913%22%7D&hit_id=b1e923bc-88f4-5f8e-8a52-0181b197923a&ht=perf&tce=1663740039876&tcs=1663740039691&tdc=1663740043216&tdclee=1663740041530&tdcles=1663740041518&tdi=1663740041489&tdl=1663740040572&tdle=1663740039691&tdls=1663740039649&tfs=1663740039629&tns=1663740039264&trqs=1663740039877&tre=1663740040564&trps=1663740040564&tles=1663740043216&tlee=0&nt=navigate&nav_type=hard HTTP/1.1 
Host: events.api.secureserver.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tallwoodbrokers.com
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.84.152.58
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 43
access-control-allow-origin: https://tallwoodbrokers.com
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Wed, 21 Sep 2022 06:00:43 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            GET /client/ss.js?ver=2.4.0 HTTP/1.1 
Host: koi-3qnsv6bzui.marketingautomation.services
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.178.240.224
HTTP/2 200 OK
content-type: application/javascript
                                        
server: openresty
date: Wed, 21 Sep 2022 06:00:41 GMT
last-modified: Wed, 14 Sep 2022 14:09:11 GMT
vary: Accept-Encoding
etag: W/"6321e087-2fc8"
expires: Wed, 28 Sep 2022 06:00:41 GMT
cache-control: max-age=604800, public
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Open+Sans%3A700%2C300%2C400%7CMontserrat%3A700&ver=6.0.2 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 21 Sep 2022 06:00:40 GMT
date: Wed, 21 Sep 2022 06:00:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/sharethis.js HTTP/1.1 
Host: platform-api.sharethis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.106
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
content-encoding: gzip
edge-control: cache-maxage=60m,downstream-ttl=60m
x-frame-options: SAMEORIGIN
date: Wed, 21 Sep 2022 05:55:35 GMT
cache-control: max-age=600, public
etag: W/"2f749-jZtDoLQECLv0cAmOiJJ6B61Kdic"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JNFMxNfKugCMonOWOlMs2IfSOhW5P3VRurAxjpFcrF764n2UCUNEDQ==
age: 305
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/2021/05/How-do-we-charge-for-our-services_v2.mp4?time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 206 Partial Content
content-type: video/mp4
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 7874934
x-sucuri-id: 19016
age: 559758
content-security-policy: upgrade-insecure-requests
etag: "782976-5c2b45ea5ad4a"
last-modified: Wed, 19 May 2021 20:07:01 GMT
strict-transport-security: max-age=300
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
content-range: bytes 0-7874933/7874934
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /50.62.195.83/ivt.58b.myftpupload.com/wp-content/uploads/2021/05/Tallwood-Business-Brokers-Short-Video-v2.mp4?time=1662501354 HTTP/1.1 
Host: secureservercdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://tallwoodbrokers.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         192.124.249.16
HTTP/2 206 Partial Content
content-type: video/mp4
                                        
server: nginx
date: Wed, 21 Sep 2022 06:00:41 GMT
content-length: 11866938
x-sucuri-id: 19016
age: 490774
content-security-policy: upgrade-insecure-requests
etag: "b5133a-5c2b41b3cd06a"
last-modified: Wed, 19 May 2021 19:48:10 GMT
strict-transport-security: max-age=300
x-backend: local
x-cache: cached
x-cache-hit: HIT
x-cacheable: YES
x-cacheproxy-retries: 0/2
x-content-type-options: nosniff
x-php-version: 7.4
x-xss-protection: 1; mode=block
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
content-range: bytes 0-11866937/11866938
X-Firefox-Spdy: h2


--- Additional Info ---