| ocsp.sectigo.com/ | 104.18.14.101 | | 471 B |
IP104.18.14.101:0
Hashedcfb6885a89f5815e2321e7d15413a7 a082033dd5ffb8258b411efe2424829ae87c52c2 bbc93701b72d6dd292bda6a68e382c099640b3dbed5b0663dd33a8383707b3b2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 29 May 2023 03:38:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 25 May 2023 15:32:53 GMT
Expires: Thu, 01 Jun 2023 15:32:52 GMT
Etag: "a082033dd5ffb8258b411efe2424829ae87c52c2"
Cache-Control: max-age=302345,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7cebb51ceb6ab4ff-OSL
|
|
| www.aplusplumbingrooter.com.usrfiles.com/html/06a9e8_5a1730ed1c5e186978715100362167af.html | 34.102.176.152 | 200 OK | 116 kB |
URL User Request GET HTTP/1.1www.aplusplumbingrooter.com.usrfiles.com/html/06a9e8_5a1730ed1c5e186978715100362167af.html IP34.102.176.152:80
File typeHTML document, ASCII text, with very long lines (64619) Size116 kB (115772 bytes) Hash5a1730ed1c5e186978715100362167af 29991096d9a8748d6799cd8dbcaeef839490d6f1 db4d1847492e18326cd1f7253d7f2d0f6d89c811d19e1181f90bae1f3cca019e
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - JavaScript obfusction | openphish | Facebook, Inc. | |
NIDS | Severity | Alert | suricata | medium | ET WEB_CLIENT Hex Obfuscation of Script Tag % Encoding | suricata | medium | ET WEB_CLIENT Hex Obfuscation of Script Tag % Encoding | suricata | medium | ET WEB_CLIENT Hex Obfuscation of substr % Encoding | suricata | medium | ET WEB_CLIENT Hex Obfuscation of replace Javascript Function % Encoding | suricata | medium | ET WEB_CLIENT Hex Obfuscation of Script Tag % Encoding | suricata | medium | ET WEB_CLIENT Possible % Encoded Iframe Tag | suricata | medium | ET WEB_CLIENT Hex Obfuscation of Script Tag % Encoding | suricata | medium | ET WEB_CLIENT Hex Obfuscation of replace Javascript Function % Encoding | suricata | medium | ET WEB_CLIENT Hex Obfuscation of document.write % Encoding | suricata | medium | ET WEB_CLIENT Hex Obfuscation of Script Tag % Encoding | suricata | medium | ET WEB_CLIENT Hex Obfuscation of Script Tag % Encoding | suricata | medium | ET WEB_CLIENT Hex Obfuscation of document.write % Encoding | suricata | medium | ET WEB_CLIENT Hex Obfuscation of Script Tag % Encoding |
GET /html/06a9e8_5a1730ed1c5e186978715100362167af.html HTTP/1.1
Host: www.aplusplumbingrooter.com.usrfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty/1.21.4.1
Content-Length: 115772
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Seen-By: gcp.us-central-1.media-router-84588bb8-xgl7x
Via: 1.1 google
Date: Sun, 21 May 2023 00:09:38 GMT
Expires: Sun, 21 May 2023 01:09:38 GMT
Cache-Control: public, max-age=15552000, immutable
Last-Modified: Tue, 16 May 2023 15:59:06 GMT
ETag: "5a1730ed1c5e186978715100362167af"
Content-Type: text/html; charset=utf-8
Age: 703759
|
|
| static.xx.fbcdn.net/rsrc.php/v3/y0/l/0,cross/ja5mEF1ux-c.css?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 16 kB |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/v3/y0/l/0,cross/ja5mEF1ux-c.css?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:443
Requested byhttp://www.aplusplumbingrooter.com.usrfiles.com/html/06a9e8_5a1730ed1c5e186978715100362167af.html CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint98:43:DC:18:C7:15:3C:A6:9A:2F:47:07:77:1C:AE:3B:33:39:77:9E ValidityTue, 07 Mar 2023 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
File typeASCII text, with very long lines (7203) Hash9823cc400dc4a3be5ebe2237b9bcd23c f82247337f41b50c034d905491d854503f2af2ac 3c9def4f4fc4bbdcf0ef5241fdf3eb56865c5a677547dc053ff7af41a205b470
GET /rsrc.php/v3/y0/l/0,cross/ja5mEF1ux-c.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.aplusplumbingrooter.com.usrfiles.com
DNT: 1
Connection: keep-alive
Referer: http://www.aplusplumbingrooter.com.usrfiles.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: text/css; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 21 May 2024 08:31:13 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), midi=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: mnBgYEwxnQ6Y9sauL/YggA==
x-fb-debug: iw1q5xFdorMbD702VMgSj5+F1btWBy7KMgzl64ZsWRZDorjBvUr2ZO5U9FEACifuTbQNY8bSMvPXvd3cMmFhdA==
content-length: 15656
x-fb-trip-id: 1679558926
date: Mon, 29 May 2023 03:38:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/yS/l/0,cross/uFA5UG9bg_j.css?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 200 OK | 5.4 kB |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/v3/yS/l/0,cross/uFA5UG9bg_j.css?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:443
Requested byhttp://www.aplusplumbingrooter.com.usrfiles.com/html/06a9e8_5a1730ed1c5e186978715100362167af.html CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint98:43:DC:18:C7:15:3C:A6:9A:2F:47:07:77:1C:AE:3B:33:39:77:9E ValidityTue, 07 Mar 2023 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
File typeASCII text, with very long lines (7489) Hash1d2c6296912537b0dc80aff67c4a09c2 959e8578e5f1cd91622582d5cde11ead3a2e732d 1d7ce74be9ed47c4f872a05c498ac17ad57a72dea962b8ecab280c3323a2613f
GET /rsrc.php/v3/yS/l/0,cross/uFA5UG9bg_j.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.aplusplumbingrooter.com.usrfiles.com
DNT: 1
Connection: keep-alive
Referer: http://www.aplusplumbingrooter.com.usrfiles.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: text/css; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 24 May 2024 21:35:36 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), midi=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: YJWWRQXGhaiiPEJsaf/pZg==
x-fb-debug: jkxQJNsaqkIzB2o6ujYMTIG4rIFvLCSWLd2DZK1APiUP4rg/NMCvnjiaeGqNVp6sH0OxPstJ+QR61FBlIgDFbg==
content-length: 5352
x-fb-trip-id: 1679558926
date: Mon, 29 May 2023 03:38:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/yF/r/sAcaU2FJdDD.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 404 Not Found | 0 B |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/v3/yF/r/sAcaU2FJdDD.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:443
Requested byhttp://www.aplusplumbingrooter.com.usrfiles.com/html/06a9e8_5a1730ed1c5e186978715100362167af.html CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint98:43:DC:18:C7:15:3C:A6:9A:2F:47:07:77:1C:AE:3B:33:39:77:9E ValidityTue, 07 Mar 2023 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/v3/yF/r/sAcaU2FJdDD.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.aplusplumbingrooter.com.usrfiles.com
DNT: 1
Connection: keep-alive
Referer: http://www.aplusplumbingrooter.com.usrfiles.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
x-fatal-request: static.xx.fbcdn.net
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
timing-allow-origin: *
content-security-policy-report-only: default-src fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self';script-src *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src *.fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
x-fb-rlafr: 0
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-xss-protection: 0
content-type: text/html; charset="utf-8"
x-fb-debug: WlWVLFH7eScr7d5T49xgG5bIlByMD9ypx/KMT4DuqVK7ogtCj3rFS3mBe/U9B1gBN08mcezmZjIIwdXDsNQnWQ==
content-length: 0
x-fb-trip-id: 1679558926
date: Mon, 29 May 2023 03:38:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3ivXO4/yZ/l/es_LA/wgQtNFI9dU-.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 404 Not Found | 0 B |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/v3ivXO4/yZ/l/es_LA/wgQtNFI9dU-.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:443
Requested byhttp://www.aplusplumbingrooter.com.usrfiles.com/html/06a9e8_5a1730ed1c5e186978715100362167af.html CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint98:43:DC:18:C7:15:3C:A6:9A:2F:47:07:77:1C:AE:3B:33:39:77:9E ValidityTue, 07 Mar 2023 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/v3ivXO4/yZ/l/es_LA/wgQtNFI9dU-.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.aplusplumbingrooter.com.usrfiles.com
DNT: 1
Connection: keep-alive
Referer: http://www.aplusplumbingrooter.com.usrfiles.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-fatal-request: static.xx.fbcdn.net
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
timing-allow-origin: *
content-security-policy-report-only: default-src fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self';script-src *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src *.fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
x-fb-rlafr: 0
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-xss-protection: 0
content-type: text/html; charset="utf-8"
x-fb-debug: sUZc4xpZ/XgEDgbHr+PBm/bZv+HrG0iHjnI8/hZsiQ9j+my6iz2TYEv8tudekKF0oZgnyeRrUhRjCRjUh2IsaQ==
content-length: 0
x-fb-trip-id: 1679558926
date: Mon, 29 May 2023 03:38:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/y1/l/0,cross/v-qA4RoF1Br.css?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 404 Not Found | 0 B |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/v3/y1/l/0,cross/v-qA4RoF1Br.css?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:443
Requested byhttp://www.aplusplumbingrooter.com.usrfiles.com/html/06a9e8_5a1730ed1c5e186978715100362167af.html CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint98:43:DC:18:C7:15:3C:A6:9A:2F:47:07:77:1C:AE:3B:33:39:77:9E ValidityTue, 07 Mar 2023 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/v3/y1/l/0,cross/v-qA4RoF1Br.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.aplusplumbingrooter.com.usrfiles.com
DNT: 1
Connection: keep-alive
Referer: http://www.aplusplumbingrooter.com.usrfiles.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-fatal-request: static.xx.fbcdn.net
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
timing-allow-origin: *
content-security-policy-report-only: default-src fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self';script-src *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src *.fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
x-fb-rlafr: 0
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-xss-protection: 0
content-type: text/html; charset="utf-8"
x-fb-debug: MZdYCYwlU13dmmMdAOEK+Xhu5ady8fy3A6Lj+W715gJYAf/1lfEUOVkQqY8NU8IhO1ETAjdrQXZhplBuL8QiBA==
content-length: 0
x-fb-trip-id: 1679558926
date: Mon, 29 May 2023 03:38:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3i0VU4/yb/l/es_LA/29KpN-SSjEW.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 404 Not Found | 0 B |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/v3i0VU4/yb/l/es_LA/29KpN-SSjEW.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:443
Requested byhttp://www.aplusplumbingrooter.com.usrfiles.com/html/06a9e8_5a1730ed1c5e186978715100362167af.html CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint98:43:DC:18:C7:15:3C:A6:9A:2F:47:07:77:1C:AE:3B:33:39:77:9E ValidityTue, 07 Mar 2023 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/v3i0VU4/yb/l/es_LA/29KpN-SSjEW.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.aplusplumbingrooter.com.usrfiles.com
DNT: 1
Connection: keep-alive
Referer: http://www.aplusplumbingrooter.com.usrfiles.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-fatal-request: static.xx.fbcdn.net
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
timing-allow-origin: *
content-security-policy-report-only: default-src fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self';script-src *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src *.fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
x-fb-rlafr: 0
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-xss-protection: 0
content-type: text/html; charset="utf-8"
x-fb-debug: M/H1K2R1XgRJ1R1syrKcObT623eV3G+ezxTEttYS0tjmWpuyFbsrHAN8w1nw2WfQPom/U9RZc2LV7h1KydtueA==
content-length: 0
x-fb-trip-id: 1679558926
date: Mon, 29 May 2023 03:38:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/yp/l/0,cross/SieMvexb4RV.css?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 404 Not Found | 0 B |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/v3/yp/l/0,cross/SieMvexb4RV.css?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:443
Requested byhttp://www.aplusplumbingrooter.com.usrfiles.com/html/06a9e8_5a1730ed1c5e186978715100362167af.html CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint98:43:DC:18:C7:15:3C:A6:9A:2F:47:07:77:1C:AE:3B:33:39:77:9E ValidityTue, 07 Mar 2023 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/v3/yp/l/0,cross/SieMvexb4RV.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.aplusplumbingrooter.com.usrfiles.com
DNT: 1
Connection: keep-alive
Referer: http://www.aplusplumbingrooter.com.usrfiles.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-fatal-request: static.xx.fbcdn.net
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
timing-allow-origin: *
content-security-policy-report-only: default-src fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self';script-src *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src *.fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
x-fb-rlafr: 0
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), midi=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-xss-protection: 0
content-type: text/html; charset="utf-8"
x-fb-debug: NzDwm6BAjiULn1CApP6T6i48xgcwEMq86YrTUc9f3pTOZQWa/HSsMzaXhk7rFx/J9/uOs4Hgr+sUGTwKiykohw==
content-length: 0
x-fb-trip-id: 1679558926
date: Mon, 29 May 2023 03:38:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/yU/r/ZFA2ZKi8_ij.js?_nc_x=Ij3Wp8lg5Kz | 31.13.72.12 | 404 Not Found | 0 B |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/v3/yU/r/ZFA2ZKi8_ij.js?_nc_x=Ij3Wp8lg5Kz IP31.13.72.12:443
Requested byhttp://www.aplusplumbingrooter.com.usrfiles.com/html/06a9e8_5a1730ed1c5e186978715100362167af.html CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint98:43:DC:18:C7:15:3C:A6:9A:2F:47:07:77:1C:AE:3B:33:39:77:9E ValidityTue, 07 Mar 2023 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/v3/yU/r/ZFA2ZKi8_ij.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.aplusplumbingrooter.com.usrfiles.com
DNT: 1
Connection: keep-alive
Referer: http://www.aplusplumbingrooter.com.usrfiles.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-fatal-request: static.xx.fbcdn.net
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
timing-allow-origin: *
content-security-policy-report-only: default-src fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self';script-src *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src *.fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
x-fb-rlafr: 0
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-xss-protection: 0
content-type: text/html; charset="utf-8"
x-fb-debug: 5Iuz6/DT1adJWZhJ4sPZ1Ca1X5RCQROKnW/IgfpcuGaeyJCiEhaJtNs0sWeLDlRIp+n2tlkihVJwJjoPzKEkeg==
content-length: 0
x-fb-trip-id: 1679558926
date: Mon, 29 May 2023 03:38:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/y8/r/dF5SId3UHWd.svg | 31.13.72.12 | 200 OK | 1.0 kB |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/y8/r/dF5SId3UHWd.svg IP31.13.72.12:443
Requested byhttp://www.aplusplumbingrooter.com.usrfiles.com/html/06a9e8_5a1730ed1c5e186978715100362167af.html CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint98:43:DC:18:C7:15:3C:A6:9A:2F:47:07:77:1C:AE:3B:33:39:77:9E ValidityTue, 07 Mar 2023 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
File typeSVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (2384) Hashebd8798bc32c86494851a07770e04e63 b5461dc8f5f5f848033441d506ee05d48742438b 9531e96099e973b3d1c291f3e60419d8fe4730f46de8a492fccd2b4c962c96ce
GET /rsrc.php/y8/r/dF5SId3UHWd.svg HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.aplusplumbingrooter.com.usrfiles.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: image/svg+xml
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 May 2024 17:00:22 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), midi=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: NiMA5zHIsmaYxSYEaw9fHg==
x-fb-debug: nOai/Lvs6FFmNUerznmOjN1lyQ971wL7/tF8wnSANExmJQ4bYYfgTtGIMYKFvvssR/IkgPIhrExDpimxW9m9wA==
content-length: 1027
x-fb-trip-id: 1679558926
date: Mon, 29 May 2023 03:38:58 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/yj/r/gB76kJXPYJV.png | 31.13.72.12 | 200 OK | 6.7 kB |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/v3/yj/r/gB76kJXPYJV.png IP31.13.72.12:443
Requested byhttp://www.aplusplumbingrooter.com.usrfiles.com/html/06a9e8_5a1730ed1c5e186978715100362167af.html CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint98:43:DC:18:C7:15:3C:A6:9A:2F:47:07:77:1C:AE:3B:33:39:77:9E ValidityTue, 07 Mar 2023 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
File typePNG image data, 196 x 196, 8-bit colormap, non-interlaced\012- data Hash389dfa18be34d8cf767e06fd5cde4ec6 47b751cffab47d076816c63ce08d3e84600376ee 3c45ce612f41b1e7936e7cf5b235047344fd3146d1630e342f186d1d1e8e00d5
GET /rsrc.php/v3/yj/r/gB76kJXPYJV.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.aplusplumbingrooter.com.usrfiles.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: OJ36GL402M92fgb9XN5Oxg==
expires: Thu, 16 May 2024 21:27:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), midi=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: kmq6bR5fOLZjwKUKIVHa+TZTFMbmTW0izNxXXp4SUKr8K9W355MPunUWaILbidLUE/yMlIDzLnlLReQtKKegCg==
content-length: 6690
x-fb-trip-id: 1679558926
date: Mon, 29 May 2023 03:38:58 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/v3/yj/r/gB76kJXPYJV.png | 31.13.72.12 | 200 OK | 6.7 kB |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/v3/yj/r/gB76kJXPYJV.png IP31.13.72.12:443
Requested byhttp://www.aplusplumbingrooter.com.usrfiles.com/html/06a9e8_5a1730ed1c5e186978715100362167af.html CertificateIssuerDigiCert Inc Subject*.facebook.com Fingerprint98:43:DC:18:C7:15:3C:A6:9A:2F:47:07:77:1C:AE:3B:33:39:77:9E ValidityTue, 07 Mar 2023 00:00:00 GMT - Mon, 05 Jun 2023 23:59:59 GMT
File typePNG image data, 196 x 196, 8-bit colormap, non-interlaced\012- data Hash389dfa18be34d8cf767e06fd5cde4ec6 47b751cffab47d076816c63ce08d3e84600376ee 3c45ce612f41b1e7936e7cf5b235047344fd3146d1630e342f186d1d1e8e00d5
GET /rsrc.php/v3/yj/r/gB76kJXPYJV.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.aplusplumbingrooter.com.usrfiles.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: OJ36GL402M92fgb9XN5Oxg==
expires: Thu, 16 May 2024 21:27:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), midi=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: kmq6bR5fOLZjwKUKIVHa+TZTFMbmTW0izNxXXp4SUKr8K9W355MPunUWaILbidLUE/yMlIDzLnlLReQtKKegCg==
content-length: 6690
x-fb-trip-id: 1679558926
date: Mon, 29 May 2023 03:38:58 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|