r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8922
Expires: Fri, 03 Feb 2023 04:34:32 GMT
Date: Fri, 03 Feb 2023 02:05:50 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3887
Expires: Fri, 03 Feb 2023 03:10:37 GMT
Date: Fri, 03 Feb 2023 02:05:50 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7507
Expires: Fri, 03 Feb 2023 04:10:57 GMT
Date: Fri, 03 Feb 2023 02:05:50 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 01:43:33 GMT
content-type: application/json
age: 1337
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aFuUROiHNuYb+m9wUhZEQA8M0G0v1fBPHOrykEDi+d3pl3ozVLKCK2TCy/DJaZVgl9ughIodvGM=
x-amz-request-id: 7VHHP7XXRTZKCFV3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 01:52:13 GMT
age: 817
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 02:05:50 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 01:49:05 GMT
age: 1006
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2458
Expires: Fri, 03 Feb 2023 02:46:49 GMT
Date: Fri, 03 Feb 2023 02:05:51 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: O764h0HrhECI9QJZKAKL0w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nvtz8F2TvNNTa5PnvQwEuFrJvxU=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2904
Expires: Fri, 03 Feb 2023 02:54:16 GMT
Date: Fri, 03 Feb 2023 02:05:52 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2904
Expires: Fri, 03 Feb 2023 02:54:16 GMT
Date: Fri, 03 Feb 2023 02:05:52 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2904
Expires: Fri, 03 Feb 2023 02:54:16 GMT
Date: Fri, 03 Feb 2023 02:05:52 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2904
Expires: Fri, 03 Feb 2023 02:54:16 GMT
Date: Fri, 03 Feb 2023 02:05:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 15471
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 352e4166a431e781e56cc7f169c7f8ca
866b76c34076cf2e18c6a071336fcf4f581f3c4d
75ba13b601f4b00c5b091eb29e7f6739ffee3e127bd6d3c4b35cc967bb6d354a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9779
x-amzn-requestid: 101b984b-9c04-4d07-b1fe-3d888f4bcd49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ftcNRFV_oAMF2_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dba721-72679ba0378015034e17b8ca;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 12:05:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gHFZOsR12RXKLYytleVlHWCs7d46CwnTF0m0xgCPer5wu6SwAliKkA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:44:50 GMT
age: 26617
etag: "866b76c34076cf2e18c6a071336fcf4f581f3c4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e706db8a6107758a148463e916f2532d
4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81
673f18036a53f8ff297ef6a63fd094e7c41d90f3960f0e687a741cc7dd3f6172
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6791
x-amzn-requestid: 665115ea-728e-4a55-aaf8-b09db3fa67a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffl96FIzIAMFYGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61d25-0abbd7262ca10b7a7d2bf9eb;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:15:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nPgaBSGyLJQnN0ofVRFniW2LqzgKVWchSKYSjYCmuPtpL9Ner81ARQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:14:03 GMT
age: 13909
etag: "4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg
200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe87e986c62630127a7fdd979c802947
28ce91c8643c4bc4dcc4cd26dfc69dc6219ce5bf
770a765c927c0f81d0c41acd45a7a24f5799f9497fcc73489cab4fafbf994bdb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5256
x-amzn-requestid: b0455eb8-b10c-4328-8abe-65c5184f6654
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frx7uFcooAMFpxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dafd17-553139816e1fb7b65e683dc6;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 00:00:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pwRBB72InX8OP4KXpQKTs9T4iMY0E3hPX8Nko9gd7m1BOm8_DqbRaA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 00:37:24 GMT
age: 5308
etag: "28ce91c8643c4bc4dcc4cd26dfc69dc6219ce5bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d005c4-44bd-4c69-b179-e966a5e62bc4.jpeg
200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d005c4-44bd-4c69-b179-e966a5e62bc4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 08efac01fbe2d2949d81cfa427e8f360
e354cd76c38a72a10eddad9298b43415f8f04ed1
a5edf287aefdfb2f4c33d19b322b2574553fc9f5646f147359a3dcf8c1d75cb1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d005c4-44bd-4c69-b179-e966a5e62bc4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7700
x-amzn-requestid: 11dd2ef1-f809-4a95-aeef-361cfa745eea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYyFIHUVIAMFgbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d363ba-7841e2a6249f0e5d7aa91c8d;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 05:40:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gYmuJEgMngPXgeLlAQfRoP-EtCgH--hkvSt6OPTUlYXxetmf5zAtVg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 15471
etag: "e354cd76c38a72a10eddad9298b43415f8f04ed1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5314f1087266189144982b464f4aa7a6
438b5a17b9060f6825331348aa3797ab1c15895d
fb7d5ec834d28c99f6430703c002c24a9caf50b7701a369cbd69e51576f1e73c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5898
x-amzn-requestid: 50d6181d-6804-48ab-bc38-9fcaf4da1bc5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fZALWF5IIAMFv5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d37a48-2e2e53124ce2f9eb31290ec4;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:16:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9Jus6UYlOGiDdqLBxJ387FMtEAST6THfW-oz6gjgFzKzchCdwUCcvQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 04:00:11 GMT
etag: "438b5a17b9060f6825331348aa3797ab1c15895d"
content-type: image/jpeg
age: 79541
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ach.cl/wp-content/uploads/2013/08/Cartilla-Analisis-Ventilacion-IMP-2xCIL-HP.xls
301 Moved Permanently 0 B URL HTTP/1.1 ach.cl/wp-content/uploads/2013/08/Cartilla-Analisis-Ventilacion-IMP-2xCIL-HP.xls
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2013/08/Cartilla-Analisis-Ventilacion-IMP-2xCIL-HP.xls HTTP/1.1
Host: ach.cl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 03 Feb 2023 02:05:53 GMT
Location: https://www.howden.com
Content-Length: 0
www.howden.com/
301 Moved Permanently 123 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 252d44304500c0cf11ea42bd711891a3
e5c46978bdb283f981704f02aa5c65434f35b7d9
a033867efd47ecdd984aa25778557dc3935a7d33955d865e6922b9bfdd546ed8
GET / HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
content-type: text/html; charset=utf-8
date: Fri, 03 Feb 2023 02:05:53 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: no-cache
expires: -1
location: /en-us
pragma: no-cache
set-cookie: CMSPreferredCulture=en-US; expires=Sat, 03-Feb-2024 02:05:54 GMT; path=/; HttpOnly
content-length: 123
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/CMSPages/GetResource.ashx?_containers=170
200 OK 1.1 kB URL HTTP/2 www.howden.com/CMSPages/GetResource.ashx?_containers=170
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (3281), with no line terminators
Hash 66e2418e0512ba102c5616f4f6067cd7
922168b7024bb57039c4102f6d49512f09c7c41b
450c3b019488d017ae23f165b1aa4f6e1a776de8d7298d2745413e03310f0de3
GET /CMSPages/GetResource.ashx?_containers=170 HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: public, must-revalidate
content-encoding: gzip
etag: "webpartcontainer|6/28/2022 1:03:38 PM"
expires: Fri, 03 Feb 2023 02:05:54 GMT
last-modified: Tue, 28 Jun 2022 13:03:38 GMT
vary: Accept-Encoding
content-length: 1053
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
content-disposition: attachment; filename="HomeAnimateBanner.css"
X-Firefox-Spdy: h2
www.howden.com/CMSPages/GetResource.ashx?_webpartlayouts=654
200 OK 254 B URL HTTP/2 www.howden.com/CMSPages/GetResource.ashx?_webpartlayouts=654
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with no line terminators
Hash 7f50c2bd06c00e84d53b09a16a47bdce
b34c99e554a4b50a7657a74745bd7e68b53440b7
2495ad14a4eb299d0e150d1bafe772fab95d027edcccfba5d7ad406354eabd1d
GET /CMSPages/GetResource.ashx?_webpartlayouts=654 HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: public, must-revalidate
content-encoding: gzip
etag: "webpartlayout|9c3bde07-2401-41db-b0d8-6f0d9962650d"
expires: Fri, 03 Feb 2023 02:05:54 GMT
last-modified: Mon, 08 Mar 2021 15:16:08 GMT
vary: Accept-Encoding
content-length: 254
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
content-disposition: attachment; filename="CookieLaw_HowdenCookieConsent.css"
X-Firefox-Spdy: h2
www.howden.com/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
200 OK 331 B URL HTTP/2 www.howden.com/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (326), with no line terminators
Hash 71a7410c7c795b4dba2d0903cd9b75d5
acfbb13871ebc77c7d9c787d72fcb74edf20afed
b7651c40f663965247ad707190862c00cccb27529f444e01ce2a14ffd8d5268c
GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: public
content-encoding: gzip
etag: "file|2/23/2021 12:00:21 PM"
expires: Fri, 03 Feb 2023 03:05:54 GMT
last-modified: Tue, 23 Feb 2021 12:00:21 GMT
vary: Accept-Encoding
content-length: 331
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
content-disposition: attachment; filename="WebServiceCall.js"
X-Firefox-Spdy: h2
www.howden.com/CMSPages/GetResource.ashx?stylesheetname=HowdenStylesheets
200 OK 4.2 kB URL HTTP/2 www.howden.com/CMSPages/GetResource.ashx?stylesheetname=HowdenStylesheets
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (21931), with no line terminators
Hash d1fadd663624b4c0f289b7dbf1b3862f
49852e3852a12f5bd18fe9abec412f128ba7ea4a
762f2b07731f1777d610cf9a19930d4dc710f9dc653364293f7eaed63c778d53
GET /CMSPages/GetResource.ashx?stylesheetname=HowdenStylesheets HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
date: Fri, 03 Feb 2023 02:05:53 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: public, must-revalidate
content-encoding: gzip
etag: "cssstylesheet|3a11835b-9e53-497f-a7a1-f7ba9e97d932"
expires: Fri, 03 Feb 2023 02:05:54 GMT
last-modified: Mon, 08 Aug 2022 08:41:07 GMT
vary: Accept-Encoding
content-length: 4193
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
content-disposition: attachment; filename="HowdenStylesheets.css"
X-Firefox-Spdy: h2
www.howden.com/ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvoAFBVKEt8BriZ2yRHt0F3k7JU6wCzawEmVju399VeWlY9t3b4qcKELOGv4LipRgpSkeslX6z-r9umgKVOcywfzMOq5hP47_sQ6WnZaBXdNAzMwvRu0YPO-F4qs4_oX43-oj4MMQ3JYY-wchI57pwtM1&t=49337fe8
200 OK 26 kB URL HTTP/2 www.howden.com/ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvoAFBVKEt8BriZ2yRHt0F3k7JU6wCzawEmVju399VeWlY9t3b4qcKELOGv4LipRgpSkeslX6z-r9umgKVOcywfzMOq5hP47_sQ6WnZaBXdNAzMwvRu0YPO-F4qs4_oX43-oj4MMQ3JYY-wchI57pwtM1&t=49337fe8
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65326), with CRLF line terminators
Hash b62553925bd98826c60457d2eb6b9a46
84dbbb6d9b36a587c21b5a56b1d9e587e33ba943
c58166fe4df4ba8f25a960c21451eaf841d97f6f552f104e43431c9db1c2e2cc
GET /ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvoAFBVKEt8BriZ2yRHt0F3k7JU6wCzawEmVju399VeWlY9t3b4qcKELOGv4LipRgpSkeslX6z-r9umgKVOcywfzMOq5hP47_sQ6WnZaBXdNAzMwvRu0YPO-F4qs4_oX43-oj4MMQ3JYY-wchI57pwtM1&t=49337fe8 HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: public
content-encoding: gzip
expires: Sat, 03 Feb 2024 02:02:13 GMT
last-modified: Fri, 03 Feb 2023 02:02:13 GMT
content-length: 25609
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZPRsWjt4nkJxYC5DZlQEKspaRkrGkIpQs4s4rNh9EsY54kPAYl4JX177udnDfCeZpQ2&t=638032879433517673
200 OK 6.0 kB URL HTTP/2 www.howden.com/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZPRsWjt4nkJxYC5DZlQEKspaRkrGkIpQs4s4rNh9EsY54kPAYl4JX177udnDfCeZpQ2&t=638032879433517673
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash 06fd446079195e9866f38728a31b8416
bce7935598a51703a7077dd75e1d30882533c6e1
5466d19b6349cc09de47de356c3195b2fd367a5ab8f1c55e8aaf2f296915d46d
GET /WebResource.axd?d=pynGkmcFUV13He1Qd6_TZPRsWjt4nkJxYC5DZlQEKspaRkrGkIpQs4s4rNh9EsY54kPAYl4JX177udnDfCeZpQ2&t=638032879433517673 HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
date: Fri, 03 Feb 2023 02:05:53 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: public
content-encoding: gzip
expires: Sat, 03 Feb 2024 02:05:46 GMT
last-modified: Sat, 05 Nov 2022 23:32:23 GMT
vary: Accept-Encoding
content-length: 6007
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/ScriptResource.axd?d=nv7asgRUU0tRmHNR2D6t1Mjq4ML_3zZzbkgBtdI_UCNRCBAzDHs1X9btlcuj9XOUYicn7kFjHtQ-KfqBrn_q8tM9dNoUDj-M3WYedLWPJD03cl3T7bVhfSvxsM1DnNjvoCSWiMjtu0SI6a_EScpxqw2&t=ffffffff866f772c
200 OK 5.5 kB URL HTTP/2 www.howden.com/ScriptResource.axd?d=nv7asgRUU0tRmHNR2D6t1Mjq4ML_3zZzbkgBtdI_UCNRCBAzDHs1X9btlcuj9XOUYicn7kFjHtQ-KfqBrn_q8tM9dNoUDj-M3WYedLWPJD03cl3T7bVhfSvxsM1DnNjvoCSWiMjtu0SI6a_EScpxqw2&t=ffffffff866f772c
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash cd81a5effc23af770be1c6ad035a5e4e
ec3cdf31293e2e43fb1f189decc18019cd3d2f23
0bbe6b1d897c994aa54d02d1692b8dd4d64a2f28d809f954ce6ba356c7d16abb
GET /ScriptResource.axd?d=nv7asgRUU0tRmHNR2D6t1Mjq4ML_3zZzbkgBtdI_UCNRCBAzDHs1X9btlcuj9XOUYicn7kFjHtQ-KfqBrn_q8tM9dNoUDj-M3WYedLWPJD03cl3T7bVhfSvxsM1DnNjvoCSWiMjtu0SI6a_EScpxqw2&t=ffffffff866f772c HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
date: Fri, 03 Feb 2023 02:05:53 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: public
content-encoding: gzip
expires: Sat, 03 Feb 2024 02:05:54 GMT
last-modified: Fri, 03 Feb 2023 02:05:54 GMT
content-length: 5479
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/CMSPages/GetResource.ashx?_transformations=4166
200 OK 284 B URL HTTP/2 www.howden.com/CMSPages/GetResource.ashx?_transformations=4166
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with no line terminators
Hash d4819e6b235cef8ba5b2f4daa6c6395f
8b89cc4a25e9578b7a297f1e7bfb17245c3dbc24
df10ecd9db8128495131a171fa0eafd2546a9692fe7f4a40a6aeef2a620068e5
GET /CMSPages/GetResource.ashx?_transformations=4166 HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
date: Fri, 03 Feb 2023 02:05:53 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: public, must-revalidate
content-encoding: gzip
etag: "transformation|bef8d58d-7d01-4aec-8668-29747f8888c6"
expires: Fri, 03 Feb 2023 02:05:54 GMT
last-modified: Tue, 20 Sep 2022 14:42:02 GMT
vary: Accept-Encoding
content-length: 284
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
content-disposition: attachment; filename="CMS.News.TopStories.css"
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden/img/layout/howden-logo.svg
200 OK 2.8 kB URL HTTP/2 www.howden.com/Howden/media/Howden/img/layout/howden-logo.svg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (2820), with no line terminators
Hash c730aa0d70b595541b4b165c0bedc283
40ccf5e2416d24a024f7644c79fcd8300aad47cb
492a31c9845d0b7221a8e025a75ec526a00e216e2007b69cf3c47f0f6252cd33
GET /Howden/media/Howden/img/layout/howden-logo.svg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "4f4b9d7bdb9d71:0"
last-modified: Tue, 23 Feb 2021 12:00:30 GMT
content-length: 2820
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OJHWPp8BZcAAdfxostJDIg9MtSMg5V1BrvmHG7bGI0Wjvss8NBrif1O_vXmnU_406ex2GCcDbbQnNCMDV1f9JgwjUL-Yk1C31Bo9KpBlIJ-xrnX-D4oGYMWQ5YrzZvevvIH_oid3K6mWVHcH-BZicCE1&t=49337fe8
200 OK 10 kB URL HTTP/2 www.howden.com/ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OJHWPp8BZcAAdfxostJDIg9MtSMg5V1BrvmHG7bGI0Wjvss8NBrif1O_vXmnU_406ex2GCcDbbQnNCMDV1f9JgwjUL-Yk1C31Bo9KpBlIJ-xrnX-D4oGYMWQ5YrzZvevvIH_oid3K6mWVHcH-BZicCE1&t=49337fe8
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 (with BOM) text, with very long lines (39257), with CRLF line terminators
Hash 027a7d52e1ceed8aef7dc13505b81d36
33cf0bce6a4c8b44b4a80b3116c978c12ee93fd0
29061464fb6fce2326b952eacaa95c3c6183bfea74c3851390e9838720d372a6
GET /ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OJHWPp8BZcAAdfxostJDIg9MtSMg5V1BrvmHG7bGI0Wjvss8NBrif1O_vXmnU_406ex2GCcDbbQnNCMDV1f9JgwjUL-Yk1C31Bo9KpBlIJ-xrnX-D4oGYMWQ5YrzZvevvIH_oid3K6mWVHcH-BZicCE1&t=49337fe8 HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
date: Fri, 03 Feb 2023 02:05:53 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: public
content-encoding: gzip
expires: Sat, 03 Feb 2024 02:05:54 GMT
last-modified: Fri, 03 Feb 2023 02:05:54 GMT
content-length: 9984
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden23/news/2023/news-hydrexia.jpg?ext=.jpg
200 OK 41 kB URL HTTP/2 www.howden.com/Howden/media/Howden23/news/2023/news-hydrexia.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=II*], baseline, precision 8, 700x400, components 3\012- data
Hash 643fd170acc842ab49b276f722ede284
ff99866ba9500ccd97b0fc7c1c6def789fd4b446
22a7ede9ec27e60e23f158faaec6698ad2619a16e7265f7ecca15bf693d85773
GET /Howden/media/Howden23/news/2023/news-hydrexia.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "2d3ab78935d91:0"
last-modified: Tue, 31 Jan 2023 15:35:58 GMT
content-length: 40670
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden23/news/2023/news-awards23-3.jpg?ext=.jpg
200 OK 76 kB URL HTTP/2 www.howden.com/Howden/media/Howden23/news/2023/news-awards23-3.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x400, components 3\012- data
Hash 6cf5af38d26550eedb859a123a056c3d
1830fef329e6e334867215bd07dda733f6577e85
a80c2cb1cb1f50890e06be0ea1da00375c54f239807c49d6a3b98a70e2ab6f49
GET /Howden/media/Howden23/news/2023/news-awards23-3.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "7e1b6abb334d91:0"
last-modified: Mon, 30 Jan 2023 13:59:17 GMT
content-length: 75982
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden23/news/2023/news-shellhh1.jpg?ext=.jpg
200 OK 52 kB URL HTTP/2 www.howden.com/Howden/media/Howden23/news/2023/news-shellhh1.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x400, components 3\012- data
Hash ca548a663ec9ad5fa80fcca7730d7909
638804b2cf3128105b0277ef2b6b342380f5fad2
fa8a6877a9520947994941b3c316141f86a27dd9f82b770e3f83558d34dca5d8
GET /Howden/media/Howden23/news/2023/news-shellhh1.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "c7c66af6222fd91:0"
last-modified: Mon, 23 Jan 2023 12:05:19 GMT
content-length: 52292
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash c4d1bdfd165c409efab6c9c766fd79e7
3023ea186b927a66fa70bb91c572ddc1f730fecd
07e4fa7b26b844e643e9e557820b309ccd267518841a5263d835799a1738e651
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5520
Cache-Control: max-age=157131
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:05:54 GMT
Etag: "63dc193d-116"
Expires: Sat, 04 Feb 2023 21:44:45 GMT
Last-Modified: Thu, 02 Feb 2023 20:12:45 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 278
www.howden.com/Howden/media/Howden/img/banners/parachute/banner-company-700.jpg?ext=.jpg
200 OK 34 kB URL HTTP/2 www.howden.com/Howden/media/Howden/img/banners/parachute/banner-company-700.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x400, components 3\012- data
Hash f19d2f7eff1a229e45db82e0fd7c1d57
49e8d2ea4e7a0039c843706377d3c63b2a00ba32
c1d48a3289b6bc7c340ef4df094003fae68c5b1e90b2ea452876708aae445494
GET /Howden/media/Howden/img/banners/parachute/banner-company-700.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:53 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "73d9386579dd61:0"
last-modified: Thu, 08 Oct 2020 09:43:49 GMT
content-length: 33651
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden23/news/2023/news-phynix.jpg?ext=.jpg
200 OK 60 kB URL HTTP/2 www.howden.com/Howden/media/Howden23/news/2023/news-phynix.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x400, components 3\012- data
Hash 1f349350c578fc3d42d93fe63986ee91
42d2dd4369fc21a3d6928734253fea21113c9d83
bc0f82a8f41a9ad1abe959540315ed436994f465e106bcce72bbf3155fc0b342
GET /Howden/media/Howden23/news/2023/news-phynix.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:53 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "15efbec8835d91:0"
last-modified: Tue, 31 Jan 2023 15:30:19 GMT
content-length: 60078
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden23/news/2023/news-niagara.jpg?ext=.jpg
200 OK 55 kB URL HTTP/2 www.howden.com/Howden/media/Howden23/news/2023/news-niagara.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x400, components 3\012- data
Hash 66bfd4e7d36df642cfaaa3f5ff8163fb
dd92c2ddc04a22c7058f2fc149061d6affd2a4b1
3253704dd4318ece46eb56cfd7b401c341896d4b864799cb9f5a13ece0b41a5a
GET /Howden/media/Howden23/news/2023/news-niagara.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:53 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "2017ce69a30d91:0"
last-modified: Wed, 25 Jan 2023 08:50:08 GMT
content-length: 55227
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden/img/news/2022/news-bf2022.jpg?ext=.jpg
200 OK 56 kB URL HTTP/2 www.howden.com/Howden/media/Howden/img/news/2022/news-bf2022.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x400, components 3\012- data
Hash 551c9ebadf7641debe72260c3d6fbaa8
773d111199130fe272f7e8b609adbc1bc56347a7
6ae5e090410d55f6ec1d1362d04c8207da2a8863e7404ece96a503b4909406d8
GET /Howden/media/Howden/img/news/2022/news-bf2022.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "a290aa3441ed91:0"
last-modified: Mon, 12 Dec 2022 15:48:40 GMT
content-length: 56506
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden/img/CaseStudies/dda-satgas.jpg?ext=.jpg
200 OK 56 kB URL HTTP/2 www.howden.com/Howden/media/Howden/img/CaseStudies/dda-satgas.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x400, components 3\012- data
Hash b44666fbdec8662c122b82e5334b5378
16a4d15a560fc58ed72837172d3a1324a5ea6fe5
1cbf24599bb13c59974929e9829337326ef1a99798130ba518b8cc49cb63596d
GET /Howden/media/Howden/img/CaseStudies/dda-satgas.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "a5ad856a74dfd81:0"
last-modified: Fri, 14 Oct 2022 02:26:50 GMT
content-length: 55633
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden/img/blogs/lead-hydrogen-economy.jpg?ext=.jpg
200 OK 44 kB URL HTTP/2 www.howden.com/Howden/media/Howden/img/blogs/lead-hydrogen-economy.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x400, components 3\012- data
Hash f5ba59c9886e5ce8f85f9dd5db90972e
c38a0f01a83bb7aba0346bd9911b0b55e7b72dcc
24e9bbe95641d04e1a716db98754e94bbd9af36a8bc5ac5ec2d1dcc149a42d48
GET /Howden/media/Howden/img/blogs/lead-hydrogen-economy.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "bfa899a48276d81:0"
last-modified: Thu, 02 Jun 2022 13:14:08 GMT
content-length: 43624
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden/img/news/2022/news-singaporeoffice.jpg?ext=.jpg
200 OK 30 kB URL HTTP/2 www.howden.com/Howden/media/Howden/img/news/2022/news-singaporeoffice.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x400, components 3\012- data
Hash 53940369cd9d0b52b3d23c3479d0c095
f7e6c1a5f03f35b23fa11547beb8c246b30aa290
1b88001f9b72ef176675badc674cf07c96da2b0ced09b3d21dae3bdd86b1175c
GET /Howden/media/Howden/img/news/2022/news-singaporeoffice.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "1aefee48810d91:0"
last-modified: Thu, 15 Dec 2022 13:26:52 GMT
content-length: 30266
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden/img/blogs/mining/article-uleh2_cleanup.jpg?ext=.jpg
200 OK 38 kB URL HTTP/2 www.howden.com/Howden/media/Howden/img/blogs/mining/article-uleh2_cleanup.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 700x400, components 3\012- data
Hash b76edc3c0a17c99041e5094b7fddbcb4
6f54087b9dceeef7dcab5e2c7d436c817e6efbfd
d5c6c22e30a2efd0f5ae2f558d360c16f1c8341dca528e28cd0cbaf02c5a6a9c
GET /Howden/media/Howden/img/blogs/mining/article-uleh2_cleanup.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "97dc2544a8cfd81:0"
last-modified: Fri, 23 Sep 2022 23:57:41 GMT
content-length: 38280
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden/img/news/2022/news-chennaiskills.jpg?ext=.jpg
200 OK 55 kB URL HTTP/2 www.howden.com/Howden/media/Howden/img/news/2022/news-chennaiskills.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=II*], baseline, precision 8, 700x400, components 3\012- data
Hash 41059220a0fd12d9f47192087bed1dd9
8d1758d77987cec39655d5f9758af813976f3ed5
b60beae9f7dbdd4791e30960fab06c2a7bb10333daf58b11391b77b052f44eae
GET /Howden/media/Howden/img/news/2022/news-chennaiskills.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "18b92b361eed91:0"
last-modified: Mon, 12 Dec 2022 11:38:10 GMT
content-length: 54624
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden/img/industry/hydrogen/latest-hydrogen.jpg?ext=.jpg
200 OK 58 kB URL HTTP/2 www.howden.com/Howden/media/Howden/img/industry/hydrogen/latest-hydrogen.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x400, components 3\012- data
Hash a30f94382d5d012085b3789ba2e49849
57c82e357e2307d6747dada7d321ab0986110cec
bf75479e28464b26d99241285f99e53f247ab91fb713e11c95ac8167ddd21323
GET /Howden/media/Howden/img/industry/hydrogen/latest-hydrogen.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "ab3dcb75c65ed81:0"
last-modified: Tue, 03 May 2022 08:19:08 GMT
content-length: 57932
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:05:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.howden.com/Howden/media/Howden/img/blogs/Ventsim/Ventsim-fan-curves/ventsim-figure2.jpg?ext=.jpg
200 OK 59 kB URL HTTP/2 www.howden.com/Howden/media/Howden/img/blogs/Ventsim/Ventsim-fan-curves/ventsim-figure2.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x444, components 3\012- data
Hash 8da5b3017c1460b6b3d64f54a94a0cdb
bda61af80f701a2ac4876745ae4af506602edb4c
1de59d3493b4cdac5c2e5124b91f2e8c2a1dfc604e2789d678ab98c6deffac61
GET /Howden/media/Howden/img/blogs/Ventsim/Ventsim-fan-curves/ventsim-figure2.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "78e393e2a7f1d71:0"
last-modified: Wed, 15 Dec 2021 11:35:39 GMT
content-length: 59176
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/fancybox/3.5.7/jquery.fancybox.min.js
200 OK 19 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/fancybox/3.5.7/jquery.fancybox.min.js
IP
File type HTML document, ASCII text, with very long lines (31972)
Hash c8e69fc65287045e4f083a6bcd40b8e0
fa3a37740705510fe08c3b286ea9a81e2e4bb04d
bffefe5f48974eeda69bb6a53127b10ee8244ba7f9dd4a925f2f2c1bde189db0
GET /ajax/libs/fancybox/3.5.7/jquery.fancybox.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 02:05:54 GMT
content-type: application/javascript; charset=utf-8
content-length: 19249
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e58-10a9d"
last-modified: Mon, 04 May 2020 16:10:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2451635
expires: Wed, 24 Jan 2024 02:05:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bzQnZ%2B3TqGvr3QBkcCCDKnkBfr3%2FWOQwNAEKYhMsINPvxAJOszC70n36NBsOJ0%2FywDDi80IfGm7epgAPqc%2Fp0X1Vyx%2FsES7W8svMswI3DiF2MtT5Cf9RNRcoKX5dlPn87ElhPitC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79379ab14c24b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden/img/blogs/Ventsim/lead-deepminingarticle.jpg?ext=.jpg
200 OK 59 kB URL HTTP/2 www.howden.com/Howden/media/Howden/img/blogs/Ventsim/lead-deepminingarticle.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x400, components 3\012- data
Hash 448d46cea46804cb6bcfa869a35fc337
a8032876084d5157f1f18a6007a7fa2e0d361598
b3165ffe8f31959c0325cb9be78d4b549bad9506df30ddbadc888366d8320f4e
GET /Howden/media/Howden/img/blogs/Ventsim/lead-deepminingarticle.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "7b9db3f92ecd81:0"
last-modified: Tue, 18 Jan 2022 05:48:10 GMT
content-length: 59413
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/fancybox/3.5.7/jquery.fancybox.css
200 OK 3.1 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/fancybox/3.5.7/jquery.fancybox.css
IP
Hash d07fa63d5d8b24b274fb3565fe287afa
d98e32400c74802afe793a4195d7a4be2a6e6272
4ece15ddb61049b740ba1026a0f4f950fe2d8153a2239dd51f8596b3c66d2b7d
GET /ajax/libs/fancybox/3.5.7/jquery.fancybox.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 02:05:54 GMT
content-type: text/css; charset=utf-8
content-length: 3081
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e58-4404"
last-modified: Mon, 04 May 2020 16:10:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2449252
expires: Wed, 24 Jan 2024 02:05:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oEs63kYuoOn5FNUArExZu4DFpDTbIGcnirSSH%2BgqCakRuznJQ%2F40Rf5hO0JB0KxD7jtgyKaSBrOHze59L%2BQ3%2FM%2BIfYtrHY6%2BwzQrjoYzETEdXwYHEoPo0ibomMn1mrpxnnAMk7rk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79379ab14c28b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden/img/blogs/compression/article-reutersvideo.jpg?ext=.jpg
200 OK 23 kB URL HTTP/2 www.howden.com/Howden/media/Howden/img/blogs/compression/article-reutersvideo.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x400, components 3\012- data
Hash 8a7b777a3b255483ad1083f79fb4e429
ab5f89c1b14b5645092c633c85e08da857415e71
4330adde6f71a50ea8b29f891f92b3b6cbece6718c2528812c513a71e88392d3
GET /Howden/media/Howden/img/blogs/compression/article-reutersvideo.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "9259f3d8866d81:0"
last-modified: Thu, 12 May 2022 14:01:59 GMT
content-length: 22856
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden/img/training/Closeup-of-steam-turbine.jpg?ext=.jpg
200 OK 59 kB URL HTTP/2 www.howden.com/Howden/media/Howden/img/training/Closeup-of-steam-turbine.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x400, components 3\012- data
Hash 7386b8a4770f17353036c9d822ce13b9
afd8549474d115d2cbf61e99cefb14b0be852eaa
fba830d502192188698adfc8e01f5bd72b4e78a938630f061c1765d7f5649b0f
GET /Howden/media/Howden/img/training/Closeup-of-steam-turbine.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "25c23373a22d81:0"
last-modified: Tue, 15 Feb 2022 07:04:03 GMT
content-length: 59338
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Parachute/img/banner-knowledge.jpg?ext=.jpg
200 OK 65 kB URL HTTP/2 www.howden.com/Howden/media/Parachute/img/banner-knowledge.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 686x535, components 3\012- data
Hash 5b190e723f4557c5fc2375e64d03bcaa
197e5cdb47f7610d4763d3f639c14ce2d90e2152
2ed8bf24ce0d6c999859abc277a2e59f1065879d0a93bff0bfaef63b7235c67e
GET /Howden/media/Parachute/img/banner-knowledge.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "266cb49d6296d61:0"
last-modified: Tue, 29 Sep 2020 13:15:35 GMT
content-length: 65425
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
howdenendpoint.azureedge.net/assets/js/scripts.min.js
200 OK 40 B URL HTTP/2 howdenendpoint.azureedge.net/assets/js/scripts.min.js
IP
Hash 6b5cb7bc427c09e446930ec38c7252ac
fe3ffc40bd577485402d5f6a63f1ca2cf3375a3b
b3168a15d1e340e31439db916ad4b825c4424c0b0edec8e86a4b458f6ada41fc
GET /assets/js/scripts.min.js HTTP/1.1
Host: howdenendpoint.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
age: 133031
content-md5: a1y3vEJ8CeRGkw7DjHJSrA==
content-type: application/javascript
date: Fri, 03 Feb 2023 02:05:54 GMT
etag: 0x8D86F77E2AA7E4C
last-modified: Tue, 13 Oct 2020 12:59:56 GMT
server: ECAcc (ska/F731)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: b7e5fb71-601e-0028-3c3e-3624d9000000
x-ms-version: 2009-09-19
content-length: 40
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden/img/about/Graduate/graduate-lead.jpg?ext=.jpg
200 OK 54 kB URL HTTP/2 www.howden.com/Howden/media/Howden/img/about/Graduate/graduate-lead.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=David Queenan], baseline, precision 8, 700x400, components 3\012- data
Hash bee24b31bab306faa6ec5ca07a1266b9
20d25ef85a9f235ea30667f4e3315d8f94fb0e2c
c5bb648d0e01f9f27d02fd6172af908bbb99357a75cdcd496801e1e42ecba63f
GET /Howden/media/Howden/img/about/Graduate/graduate-lead.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "ad7e9c4b7ff2d71:0"
last-modified: Thu, 16 Dec 2021 13:17:37 GMT
content-length: 54500
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?onload=RenderRecaptchas&render=explicit&hl=en
200 OK 578 B URL HTTP/2 www.google.com/recaptcha/api.js?onload=RenderRecaptchas&render=explicit&hl=en
IP
File type ASCII text, with very long lines (911), with no line terminators
Hash 5ab9b62ea78070cdb838c2a79966d9c5
697567db13fdc8feaaf9c898e5ab91e47affb6ea
73f8aae37e3398d40fd8d50a14cb5e1793d408e52b05f8dcc55518806f5405cb
GET /recaptcha/api.js?onload=RenderRecaptchas&render=explicit&hl=en HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 03 Feb 2023 02:05:54 GMT
date: Fri, 03 Feb 2023 02:05:54 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 578
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:05:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
howdenendpoint.azureedge.net/assets/css/howdenstaging-css.css
200 OK 25 kB URL HTTP/2 howdenendpoint.azureedge.net/assets/css/howdenstaging-css.css
IP
File type ASCII text, with very long lines (1189), with CRLF line terminators
Hash 5984d98ee95ae5e7440faf1677322498
0d040daab1046e4e80dc364ccba28add09f66f72
1218266b1da13623c726c518d05fc559cc512a4d593a0403d6a62428e3ba6287
GET /assets/css/howdenstaging-css.css HTTP/1.1
Host: howdenendpoint.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
age: 54520
content-md5: yXt5rC2OvHMbn6nvCn8x5A==
content-type: text/css
date: Fri, 03 Feb 2023 02:05:54 GMT
etag: 0x8DA59E6C1ADB8CB
last-modified: Wed, 29 Jun 2022 15:48:05 GMT
server: ECAcc (ska/F748)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 17e73331-401e-002f-6af5-3648ba000000
x-ms-version: 2009-09-19
content-length: 25431
X-Firefox-Spdy: h2
www.howden.com/CMSScripts/Custom/jquery.cookiebar.js
200 OK 3.2 kB URL HTTP/2 www.howden.com/CMSScripts/Custom/jquery.cookiebar.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 46cf44661a987a948767f90c849fc8f6
ae1e681ce97201e982e86077a842f325a67f20a6
73b22233415d9ccb288a93a96f79d17d38af58869330fed6aeb6219495981f7f
GET /CMSScripts/Custom/jquery.cookiebar.js HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
content-encoding: gzip
etag: "14db1c77171bd71:0"
last-modified: Wed, 17 Mar 2021 10:22:42 GMT
vary: Accept-Encoding
content-length: 3230
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
howdenendpoint.azureedge.net/assets/css/howden-parachute.css
200 OK 31 kB URL HTTP/2 howdenendpoint.azureedge.net/assets/css/howden-parachute.css
IP
File type Unicode text, UTF-8 text, with very long lines (1068)
Hash cb7e445fe6a21d5d1a32c886ba8ee960
8d9d3381707c521eb03a946cb340eafdb4a3504b
b0eca4cebfefb2a508f3d4a92ffdb3c28c69abb2955dbf0400f61a14e62135bc
GET /assets/css/howden-parachute.css HTTP/1.1
Host: howdenendpoint.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
age: 189820
content-md5: skiE+CYwwnxncB8MyeOeLA==
content-type: text/css
date: Fri, 03 Feb 2023 02:05:54 GMT
etag: 0x8DA851457547B40
last-modified: Tue, 23 Aug 2022 14:32:43 GMT
server: ECAcc (ska/F6B7)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: a2df011b-001e-0063-1dba-35d88a000000
x-ms-version: 2009-09-19
content-length: 31031
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden/img/banners/parachute/banner-statistics-700.jpg?ext=.jpg
200 OK 26 kB URL HTTP/2 www.howden.com/Howden/media/Howden/img/banners/parachute/banner-statistics-700.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x366, components 3\012- data
Hash f0ab3c0fe4cf062d6e2a5610ab6e8f7d
f5d28a51bc73cfe956b57820775f90260fd4ec4f
45f06bc7aa606411b643d9f5cd0a860d42506dced58479ffe2634b32bb20c033
GET /Howden/media/Howden/img/banners/parachute/banner-statistics-700.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "896af9a119d71:0"
last-modified: Mon, 15 Mar 2021 13:49:08 GMT
content-length: 26477
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/js-cookie@rc/dist/js.cookie.min.js
200 OK 828 B URL HTTP/2 cdn.jsdelivr.net/npm/js-cookie@rc/dist/js.cookie.min.js
IP
File type ASCII text, with very long lines (1649)
Hash dff4990c99380998d281b867fded327e
9cfce40f3a0c0b1a13ff68cb0eb45cf618ab9e6b
53bd06a588b483526252f983d1f79e06dfa4da66de4a033c161ae4a9f1352765
GET /npm/js-cookie@rc/dist/js.cookie.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.0.0-rc.4
x-jsd-version-type: version
etag: W/"695-pXILqyxk6ej3gkrdagCqNfKaZZQ"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 03 Feb 2023 02:05:54 GMT
age: 5624
x-served-by: cache-fra-eddf8230062-FRA, cache-bma1639-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 828
X-Firefox-Spdy: h2
www.howden.com/CMSScripts/Custom/HowdenKeyContacts.js
200 OK 4.4 kB URL HTTP/2 www.howden.com/CMSScripts/Custom/HowdenKeyContacts.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (347), with CRLF line terminators
Hash 27cd16c61a56f56b32699e5015b2e8e6
ba3106e876ba0bfc78ee5a482656c1a15ca07f4b
b979be190e63cc09531a7bf52d579241589b6f74a328bc64015df00d8d187504
GET /CMSScripts/Custom/HowdenKeyContacts.js HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
content-encoding: gzip
etag: "a698699fdb1cd71:0"
last-modified: Fri, 19 Mar 2021 16:19:22 GMT
vary: Accept-Encoding
content-length: 4401
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
howdenendpoint.azureedge.net/assets/js/lib/modernizr.min.js
200 OK 17 kB URL HTTP/2 howdenendpoint.azureedge.net/assets/js/lib/modernizr.min.js
IP
File type ASCII text, with very long lines (466)
Hash 68e76b7a436041712e200bb06a254d45
0f2bc645faddb7d6ef2da055891096ad961ca094
3439d72a6ce2b5cc54f43a08a6be9d5197ff339a2a1719a0121b6b9b0d83a05a
GET /assets/js/lib/modernizr.min.js HTTP/1.1
Host: howdenendpoint.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
age: 133031
content-md5: aOdrekNgQXEuIAuwaiVNRQ==
content-type: application/javascript
date: Fri, 03 Feb 2023 02:05:54 GMT
etag: 0x8D86F77E308BAD6
last-modified: Tue, 13 Oct 2020 12:59:57 GMT
server: ECAcc (ska/F68B)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 1943243c-901e-003c-4b3e-366cb6000000
x-ms-version: 2009-09-19
content-length: 17374
X-Firefox-Spdy: h2
www.howden.com/CMSScripts/Custom/hglEnquiry.js
200 OK 5.0 kB URL HTTP/2 www.howden.com/CMSScripts/Custom/hglEnquiry.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 857c5fd09795879f4931826e369a18d6
0c8379db4323446b65bb990a3c0f7db5dfcab4cf
85a2ab1342b12d32b94597b59023a35c724851fc5d59abb18d526289d3a538f6
GET /CMSScripts/Custom/hglEnquiry.js HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
content-encoding: gzip
etag: "ba345f42abd81:0"
last-modified: Mon, 08 Aug 2022 08:43:37 GMT
vary: Accept-Encoding
content-length: 5046
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP
File type ASCII text, with very long lines (65483)
Hash a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 05:51:38 GMT
expires: Sat, 27 Jan 2024 05:51:38 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 591256
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.howden.com/Howden/js/jquery.waypoints.min.js
200 OK 3.3 kB URL HTTP/2 www.howden.com/Howden/js/jquery.waypoints.min.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (8668), with CRLF line terminators
Hash 4eccd02bc888378cac216c3ac8658910
a7ab3d4a49f88a6f962eede4f47e71c305218c44
7daf06488d60b5e496f6a9c6845ba7da9dba28b87e18012066120985155f411d
GET /Howden/js/jquery.waypoints.min.js HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
content-encoding: gzip
etag: "f1769a78db9d71:0"
last-modified: Tue, 23 Feb 2021 12:00:25 GMT
vary: Accept-Encoding
content-length: 3282
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
howdenendpoint.azureedge.net/assets/js/Parachute.js
200 OK 13 kB URL HTTP/2 howdenendpoint.azureedge.net/assets/js/Parachute.js
IP
File type ASCII text, with very long lines (421), with CRLF line terminators
Hash b460630185e208a9c8cb0245a1630e2b
68b6f7713f549f14a0e1016a2a1dc4bdde4a601b
75108d678260fc324fc1526bf7d3f3db4f9ae760b6e5c0e906085fdaa69363ab
GET /assets/js/Parachute.js HTTP/1.1
Host: howdenendpoint.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
age: 133031
content-md5: tGBjAYXiCKnIywJFoWMOKw==
content-type: application/javascript
date: Fri, 03 Feb 2023 02:05:54 GMT
etag: 0x8D86F84E77D13C2
last-modified: Tue, 13 Oct 2020 14:33:08 GMT
server: ECAcc (ska/F791)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 515ba35a-301e-008c-753e-362d7f000000
x-ms-version: 2009-09-19
content-length: 13074
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP
Hash c3208340ea65ac187f9c64024a27c43d
850f125257bbab990ed6b7cd98410734eb5a99c8
a54d79e3834c037db77cd589604c4cb4ad6942e0d943f5d086266518ccc73492
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 02:05:54 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "D09DD5A32358C9687160E9FF471748EEC8E61095"
Expires: Fri, 03 Feb 2023 13:00:00 GMT
Last-Modified: Fri, 03 Feb 2023 01:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 344
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79379ab24fd71c0e-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:05:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:05:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
howdenassets.blob.core.windows.net/assets/js/parachute/object-fit-videos.js
200 OK 2.6 kB URL HTTP/1.1 howdenassets.blob.core.windows.net/assets/js/parachute/object-fit-videos.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (2626), with no line terminators
Hash afa8b3c9de4f45b04e3e0259b4fbb54e
87b413292db211e59f5e3ccab881a05d55daa917
c2bb7daeb8b577e089c9fb3637822d9816781506984edbad65cd1d7113530e53
GET /assets/js/parachute/object-fit-videos.js HTTP/1.1
Host: howdenassets.blob.core.windows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 2626
Content-Type: text/javascript
Content-MD5: r6izyd5PRbBOPgJZtPu1Tg==
Last-Modified: Thu, 28 Jul 2022 14:14:13 GMT
ETag: 0x8DA70A37322EC4E
Vary: Origin
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 266302d1-b01e-0014-6d74-370d1e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Fri, 03 Feb 2023 02:05:54 GMT
howdenendpoint.azureedge.net/howdenmedia/howden/media/howdenedge/temp/sustainability-mobile-static.jpg?ext=.jpg
200 OK 42 kB URL HTTP/2 howdenendpoint.azureedge.net/howdenmedia/howden/media/howdenedge/temp/sustainability-mobile-static.jpg?ext=.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 485x650, components 3\012- data
Hash 0d4d951c16d5a3500546295b141b260a
b7a21d28c3db5d0fe28beefecc54e87e1eee3d3d
056e4ce12af85d5276f085be38a830dc6a388f9267fefaf257329c3a7a4a2253
GET /howdenmedia/howden/media/howdenedge/temp/sustainability-mobile-static.jpg?ext=.jpg HTTP/1.1
Host: howdenendpoint.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=600
content-md5: DU2VHBbVo1AFRilbFBsmCg==
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
etag: 0x8D9B4070BAAEF90
last-modified: Tue, 30 Nov 2021 13:41:00 GMT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
vary: Origin
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-creationtime: 11/30/2021 1:41:00 PM
x-ms-meta-lastwritetime: 11/30/2021 1:41:00 PM
x-ms-request-id: 6d3523f1-201e-0016-0674-37b3a6000000
x-ms-version: 2009-09-19
content-length: 41833
X-Firefox-Spdy: h2
howdenendpoint.azureedge.net/howdenmedia/howden/media/howdenedge/news/2023/news-foreship.jpg?ext=.jpg
200 OK 60 kB URL HTTP/2 howdenendpoint.azureedge.net/howdenmedia/howden/media/howdenedge/news/2023/news-foreship.jpg?ext=.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x400, components 3\012- data
Hash f6dd337ee87fdbdfbd577a37f7d9f37f
87b8c6fa12aca32cbf034adc37bab902480278b5
9fa7d8a547c76e98f9a01e537f2131a373c78951fd07a1e35600dedc408ebe53
GET /howdenmedia/howden/media/howdenedge/news/2023/news-foreship.jpg?ext=.jpg HTTP/1.1
Host: howdenendpoint.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=600
content-md5: 9t0zfuh/29+9V3o399nzfw==
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
etag: 0x8DAF93BCEC8A619
last-modified: Wed, 18 Jan 2023 10:07:29 GMT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
vary: Origin
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-creationtime: 1/18/2023 10:07:29 AM
x-ms-meta-lastwritetime: 1/18/2023 10:07:29 AM
x-ms-request-id: 951f10ae-a01e-0018-4874-379a16000000
x-ms-version: 2009-09-19
content-length: 59788
X-Firefox-Spdy: h2
howdenendpoint.azureedge.net/howdenmedia/howden/media/howdenedge/news/2023/news-superbrands.jpg?ext=.jpg
200 OK 35 kB URL HTTP/2 howdenendpoint.azureedge.net/howdenmedia/howden/media/howdenedge/news/2023/news-superbrands.jpg?ext=.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 700x400, components 3\012- data
Hash becae72fb40a32533cf42e42a30a155e
8587888c259df9189b75fe204aec590128db1e50
874f0828ae1c416e89cb219057d5b95c72bac0c79672020a84e37cf3f6bc0db8
GET /howdenmedia/howden/media/howdenedge/news/2023/news-superbrands.jpg?ext=.jpg HTTP/1.1
Host: howdenendpoint.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=600
content-md5: vsrnL7QKMlM89C5CowoVXg==
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
etag: 0x8DB0532808F2E15
last-modified: Thu, 02 Feb 2023 15:31:06 GMT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
vary: Origin
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-creationtime: 2/2/2023 3:31:06 PM
x-ms-meta-lastwritetime: 2/2/2023 3:31:06 PM
x-ms-request-id: aa1bec5a-a01e-008e-4574-3793c7000000
x-ms-version: 2009-09-19
content-length: 34979
X-Firefox-Spdy: h2
howdenendpoint.azureedge.net/howdenmedia/howden/media/howdenedge/mastheadimages/banner-masthead-mission-700.jpg?ext=.jpg
200 OK 42 kB URL HTTP/2 howdenendpoint.azureedge.net/howdenmedia/howden/media/howdenedge/mastheadimages/banner-masthead-mission-700.jpg?ext=.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x366, components 3\012- data
Hash 076691ec8a5aca232faeac4bd92b33f4
4a649821a7f263c8c8e3b59159fa471ddbcd0058
1f8276c02495416d5da2f8ec7c0f43653f36155930a5087dde387987041f03ab
GET /howdenmedia/howden/media/howdenedge/mastheadimages/banner-masthead-mission-700.jpg?ext=.jpg HTTP/1.1
Host: howdenendpoint.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=600
content-md5: B2aR7IpayiMvrqxL2Ssz9A==
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:55 GMT
etag: 0x8D8E8826A6FEA54
last-modified: Tue, 16 Mar 2021 13:50:10 GMT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
vary: Origin
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-creationtime: 3/16/2021 1:50:10 PM
x-ms-meta-lastwritetime: 3/16/2021 1:50:10 PM
x-ms-request-id: 114b2cdb-101e-0040-6674-374249000000
x-ms-version: 2009-09-19
content-length: 42257
X-Firefox-Spdy: h2
u.heatmap.it/log.js
200 OK 10 kB IP
File type Unicode text, UTF-8 text, with very long lines (27372)
Hash ed207286dd79ed2b7af3d5517760919c
f72e58e52b9227a81643259bf203a12e15cc59cc
4aa7c11c47a8361882eebb4c8b32e1f599d9d4ee173c68cfe874e1bda29b3a69
GET /log.js HTTP/1.1
Host: u.heatmap.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 08:37:55 GMT
last-modified: Sat, 19 Nov 2022 08:38:34 GMT
etag: "6378960a-6b2b"
expires: Sat, 28 Jan 2023 09:37:55 GMT
cache-control: max-age=3600
x-request-id: 932613974
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 10532
X-Firefox-Spdy: h2
howdenendpoint.azureedge.net/assets/js/lib/slick.min.js
200 OK 0 B URL HTTP/2 howdenendpoint.azureedge.net/assets/js/lib/slick.min.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/js/lib/slick.min.js HTTP/1.1
Host: howdenendpoint.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
age: 133031
content-md5: 7LxVKpXnQOLIzuuJc/ffvw==
content-type: application/javascript
date: Fri, 03 Feb 2023 02:05:54 GMT
etag: 0x8D86F77E37F190E
last-modified: Tue, 13 Oct 2020 12:59:58 GMT
server: ECAcc (ska/F68D)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: e76bd97c-401e-0062-673e-368756000000
x-ms-version: 2009-09-19
content-length: 85637
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash df7cb606aecda64fee587bc38a5b0930
c881ba82764081edfeb20870de0aed7cc4e5b740
716890a4b15fa673bba8586828f99ec9d523e43981af80fcd2050370f6f82909
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "716890A4B15FA673BBA8586828F99EC9D523E43981AF80FCD2050370F6F82909"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8716
Expires: Fri, 03 Feb 2023 04:31:11 GMT
Date: Fri, 03 Feb 2023 02:05:55 GMT
Connection: keep-alive
www.howden.com/cmsapi/webanalytics/LogHit
200 OK 0 B URL HTTP/2 www.howden.com/cmsapi/webanalytics/LogHit
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cmsapi/webanalytics/LogHit HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Content-type: application/json
Content-Length: 72
Origin: https://www.howden.com
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 02:05:55 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: no-cache
expires: -1
pragma: no-cache
content-length: 0
x-robots-tag: none
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
eu8.heatmap.it/log/pv?pid=112272&u=https%3A%2F%2Fwww.howden.com%2Fen-us&tpl=.&pt=Howden%20%7C%20Optimise%20our%20customers%E2%80%99%20air%20and%20gas%20handling%20processes&t=891187
204 No Content 0 B URL HTTP/1.1 eu8.heatmap.it/log/pv?pid=112272&u=https%3A%2F%2Fwww.howden.com%2Fen-us&tpl=.&pt=Howden%20%7C%20Optimise%20our%20customers%E2%80%99%20air%20and%20gas%20handling%20processes&t=891187
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /log/pv?pid=112272&u=https%3A%2F%2Fwww.howden.com%2Fen-us&tpl=.&pt=Howden%20%7C%20Optimise%20our%20customers%E2%80%99%20air%20and%20gas%20handling%20processes&t=891187 HTTP/1.1
Host: eu8.heatmap.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Fri, 03 Feb 2023 02:05:56 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Expires: Fri, 03 Feb 2023 02:05:55 GMT
Cache-Control: no-cache
okt.to/ping?uri=%2Fen-us&aid=0012i294ntuqmuu&ts=1675389983954
200 OK 29 kB URL HTTP/2 okt.to/ping?uri=%2Fen-us&aid=0012i294ntuqmuu&ts=1675389983954
IP
File type Web Open Font Format (Version 2), CFF, length 28856, version 0.0\012- data
Hash 3fe395dbd0b4dc5922ed3b2c7d32ce93
1798b2e0463a8bfb1134ffc040628f0ef33172e2
b889c3ba20d61a1dbf81230dcb46989cb433fe33926fbc2da19db0be3279581f
GET /ping?uri=%2Fen-us&aid=0012i294ntuqmuu&ts=1675389983954 HTTP/1.1
Host: okt.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 02:05:55 GMT
content-type: text/javascript;charset=UTF-8
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2
fast.fonts.net/dv2/14/800da3b0-675f-465f-892d-d76cecbdd5b1.woff2?d44f19a684109620e4841578af90e8189a625c51a89967cbe3110a13ce7e857b11cdd2fbb8047226d0d90fae987315622a711899c224a6517d124941f26fd4bb639369d232652d560e31d3603c51851fb59c8e5ceb02d1e36666f2f740e914e3c3fdeb37784164f2ee97366acdb7043efd79b84da2cf&projectId=6117ecc5-0159-4fb9-88d8-3fb5124d728c
200 OK 28 kB URL HTTP/2 fast.fonts.net/dv2/14/800da3b0-675f-465f-892d-d76cecbdd5b1.woff2?d44f19a684109620e4841578af90e8189a625c51a89967cbe3110a13ce7e857b11cdd2fbb8047226d0d90fae987315622a711899c224a6517d124941f26fd4bb639369d232652d560e31d3603c51851fb59c8e5ceb02d1e36666f2f740e914e3c3fdeb37784164f2ee97366acdb7043efd79b84da2cf&projectId=6117ecc5-0159-4fb9-88d8-3fb5124d728c
IP
File type Web Open Font Format (Version 2), CFF, length 27472, version 0.0\012- data
Hash b5234b1955b7ce3afce25a436f1c51d4
9aa647b0f72d796c06747e611f088dc39a634080
0e7cf9a9f7bb1bbb6e732a1541b1d0f26f46cfda65e2098c2b2085e8ae1ccf52
GET /dv2/14/800da3b0-675f-465f-892d-d76cecbdd5b1.woff2?d44f19a684109620e4841578af90e8189a625c51a89967cbe3110a13ce7e857b11cdd2fbb8047226d0d90fae987315622a711899c224a6517d124941f26fd4bb639369d232652d560e31d3603c51851fb59c8e5ceb02d1e36666f2f740e914e3c3fdeb37784164f2ee97366acdb7043efd79b84da2cf&projectId=6117ecc5-0159-4fb9-88d8-3fb5124d728c HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.howden.com
Connection: keep-alive
Referer: https://fast.fonts.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 02:05:56 GMT
content-type: application/octet-stream
content-length: 27472
x-amz-id-2: lzttJukQY4NbJS0b6tneLb5t7NUdiz3tPe2JT8K68+7npxmBvJqP4sOF3rpm4Jr1X+iOgUYoGks=
x-amz-request-id: Z203VEJGAR4ST61G
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-expose-headers: Access-Control-Allow-Origin
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 21 Jul 2021 11:43:52 GMT
etag: "b5234b1955b7ce3afce25a436f1c51d4"
x-amz-meta-user-agent: AWSTransfer
x-amz-meta-user-agent-id: wfsSFTPtoS3@s-204fa1710a0a4f788
x-amz-version-id: null
cf-cache-status: REVALIDATED
expires: Fri, 03 Feb 2023 02:10:56 GMT
cache-control: public, max-age=300
accept-ranges: bytes
set-cookie: __cf_bm=lmfITc_SgJkmI_rRHpgWrXGa5BmrBBMNfwI4_HSos6U-1675389956-0-ASoJHFmzyLUM35mVfuzQyv5ZpCUKhFwBtOpRjeeSWIcwYwY3UdMQPB7nkd5MinR9AUhfSNPN+pYKmp9JFOwfyxM=; path=/; expires=Fri, 03-Feb-23 02:35:56 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 79379ab61b6f1c12-OSL
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden/img/favicons/favicon-128.png
200 OK 11 kB URL HTTP/2 www.howden.com/Howden/media/Howden/img/favicons/favicon-128.png
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash e619c75a3fcfd957b72f22c7758c3e4b
689e925d76a31099f98df4d272223efa1b84df21
520681c6005b650ec01986b556161e014164d91f667c50bc467bf4e88360da4b
GET /Howden/media/Howden/img/favicons/favicon-128.png HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets; cb-enabled=enabled
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
date: Fri, 03 Feb 2023 02:05:55 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "c035ea7adb9d71:0"
last-modified: Tue, 23 Feb 2021 12:00:29 GMT
content-length: 10770
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/rest/customtableitem.customtable.websiteInd_New?format=json&hash=999de88d14b98870eba1106d21fb159ce22938b500de18b1b4a5da64cd30e0b9
200 OK 813 B URL HTTP/2 www.howden.com/rest/customtableitem.customtable.websiteInd_New?format=json&hash=999de88d14b98870eba1106d21fb159ce22938b500de18b1b4a5da64cd30e0b9
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with very long lines (311), with CRLF line terminators
Hash dee09259c871bd18a903692e4beee3d5
6e3d9d99d1437d279cb9e160236fdcca091f0cb1
e4b70e268faacba0a9022368bc57c6fe2ce00f552a24467415e2b82f427f7843
GET /rest/customtableitem.customtable.websiteInd_New?format=json&hash=999de88d14b98870eba1106d21fb159ce22938b500de18b1b4a5da64cd30e0b9 HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets; cb-enabled=enabled
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Fri, 03 Feb 2023 02:05:55 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
content-length: 813
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/rest/customtableitem.customtable.PortalManagement?format=json&hash=b1060ff2c9b41b1475981f90e012f642f9bc97b16c9610b892cf56f227d665db
200 OK 390 B URL HTTP/2 www.howden.com/rest/customtableitem.customtable.PortalManagement?format=json&hash=b1060ff2c9b41b1475981f90e012f642f9bc97b16c9610b892cf56f227d665db
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with CRLF line terminators
Hash 8edf1413653074281e018664444a56e6
8f2f81a088742e6411f9448f57c3312c7bd2a6c0
faa31812ef51db084deeb59b2e329f8c0cd5b9894df2030171971eb255335eaf
GET /rest/customtableitem.customtable.PortalManagement?format=json&hash=b1060ff2c9b41b1475981f90e012f642f9bc97b16c9610b892cf56f227d665db HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets; cb-enabled=enabled
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Fri, 03 Feb 2023 02:05:55 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
content-length: 390
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:05:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:05:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 472 B IP
Hash d29e3ab791cf0156500fefd2c0fc3a9f
6e235e07f37e7bc0905ce2f162354290d4f42212
bd70dc17cda84156a0030bdca101597df6fe2f8923d1b53e4f207adf915d560e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 02:05:56 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 01:17:06 GMT
Expires: Thu, 09 Feb 2023 01:17:05 GMT
Etag: "6e235e07f37e7bc0905ce2f162354290d4f42212"
Cache-Control: max-age=514868,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79379ababa79fac4-OSL
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 03 Feb 2023 01:44:08 GMT
expires: Fri, 03 Feb 2023 03:44:08 GMT
cache-control: public, max-age=7200
age: 1308
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.howden.com/rest/customtableitem.customtable.HowdenCountriesByRegion?format=json&hash=9b0a32960a0cd822b003c4555aa940d9ce646f8c9b5324aac4ccab79d064191e
200 OK 14 kB URL HTTP/2 www.howden.com/rest/customtableitem.customtable.HowdenCountriesByRegion?format=json&hash=9b0a32960a0cd822b003c4555aa940d9ce646f8c9b5324aac4ccab79d064191e
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with CRLF line terminators
Hash 020426033602a14b9f681bdd09382541
2c17a8a968bba3174a2b24cf12935f0bec9b73d5
977a80d81d158968ce2ec69e7ff36aa1c2e539f3ee23ce42557bf573dc73ac6c
GET /rest/customtableitem.customtable.HowdenCountriesByRegion?format=json&hash=9b0a32960a0cd822b003c4555aa940d9ce646f8c9b5324aac4ccab79d064191e HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets; cb-enabled=enabled
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Fri, 03 Feb 2023 02:05:55 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
content-length: 13787
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP
File type ASCII text, with very long lines (771)
Size 164 kB (163774 bytes)
Hash 57c909ab73fc27ec24f737bbf1cb1de8
89b2c02e9e7a9a764518fca545d3eec2044fd6d9
7e407e2b00bb7c238c71d96472f7ab030de4e610b1048f0f77b25cb85c2d166b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.howden.com
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 17:09:34 GMT
expires: Tue, 30 Jan 2024 17:09:34 GMT
cache-control: public, max-age=31536000
age: 291382
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
t.gatorleads.co.uk/Scripts/ssl/1a1b64b7-60e3-4108-a5bd-88f31b03c44b.js
200 OK 7.0 kB URL HTTP/1.1 t.gatorleads.co.uk/Scripts/ssl/1a1b64b7-60e3-4108-a5bd-88f31b03c44b.js
IP
ASN #31220 Six Degrees Technology Group Limited
File type ASCII text, with very long lines (13736), with CRLF, CR line terminators
Hash fb93456eab3c4881a05d822ba8e59e9a
9ae9c74637d6838adb45ebe62998a95c04daccf8
0cd78997b690c3f745f68bf9be63d24d8316c17061ae8c579bff2086e5e7232d
GET /Scripts/ssl/1a1b64b7-60e3-4108-a5bd-88f31b03c44b.js HTTP/1.1
Host: t.gatorleads.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
X-Backend: web16
Content-Length: 6963
Accept-Ranges: bytes
Date: Fri, 03 Feb 2023 02:05:56 GMT
Age: 4191
Connection: keep-alive
X-Cache: HIT 144 5h0n-Var01
X-Client-Id: 91.90.42.154
X-Client-Ip: 10.117.1.117
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:05:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:05:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j99&a=1572756844&t=pageview&_s=1&dl=https%3A%2F%2Fwww.howden.com%2Fen-us&ul=en-us&de=UTF-8&dt=Howden%20%7C%20Optimise%20our%20customers%E2%80%99%20air%20and%20gas%20handling%20processes&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2062707069&gjid=1479137498&cid=946354244.1675389985&tid=UA-21322349-1&_gid=438945821.1675389985&_r=1&_slc=1&z=899901419
200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1572756844&t=pageview&_s=1&dl=https%3A%2F%2Fwww.howden.com%2Fen-us&ul=en-us&de=UTF-8&dt=Howden%20%7C%20Optimise%20our%20customers%E2%80%99%20air%20and%20gas%20handling%20processes&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2062707069&gjid=1479137498&cid=946354244.1675389985&tid=UA-21322349-1&_gid=438945821.1675389985&_r=1&_slc=1&z=899901419
IP
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j99&a=1572756844&t=pageview&_s=1&dl=https%3A%2F%2Fwww.howden.com%2Fen-us&ul=en-us&de=UTF-8&dt=Howden%20%7C%20Optimise%20our%20customers%E2%80%99%20air%20and%20gas%20handling%20processes&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2062707069&gjid=1479137498&cid=946354244.1675389985&tid=UA-21322349-1&_gid=438945821.1675389985&_r=1&_slc=1&z=899901419 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.howden.com
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.howden.com
date: Fri, 03 Feb 2023 02:05:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html
200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 8665e233ef6caaf010ca89793f27b6f8
5c593fa5f33e55b3081308b43e6e801b56c047f7
435a3ca7c1c49cbfac193647d056e46217e5c3f9c65c354974ad7acdfb8925ac
GET /box-2722367854ce9702c28ea74c51e2a23f.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Mon, 30 Jan 2023 16:06:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "8665e233ef6caaf010ca89793f27b6f8"
last-modified: Mon, 30 Jan 2023 16:05:37 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nfHKukd1ccTfVXLHXYS74bLW-n2pJd5LFa4HKgC5c_w15vxpRxMm-Q==
age: 295190
X-Firefox-Spdy: h2
t.gatorleads.co.uk/Tracking/TrackUrlGet/?clientid=1a1b64b7-60e3-4108-a5bd-88f31b03c44b&cust1=&cust2=&cust3=&pageUrl=https%3A%2F%2Fwww.howden.com%2Fen-us&pageTitle=Howden%20%7C%20Optimise%20our%20customers%E2%80%99%20air%20and%20gas%20handl&referrerUrl=&trackingdata=&sessionId=&pageType=Page&schedule=&utmvalues=&callback=window.wowCallback0
200 OK 245 B URL HTTP/1.1 t.gatorleads.co.uk/Tracking/TrackUrlGet/?clientid=1a1b64b7-60e3-4108-a5bd-88f31b03c44b&cust1=&cust2=&cust3=&pageUrl=https%3A%2F%2Fwww.howden.com%2Fen-us&pageTitle=Howden%20%7C%20Optimise%20our%20customers%E2%80%99%20air%20and%20gas%20handl&referrerUrl=&trackingdata=&sessionId=&pageType=Page&schedule=&utmvalues=&callback=window.wowCallback0
IP
ASN #31220 Six Degrees Technology Group Limited
File type ASCII text, with no line terminators
Hash 33d14458a288b123f290e1bb63e28eb1
568cd6edb7e7772bc3a5266152567a2bb383d644
1dd2cd147f3021736e4c2d3da4fe8edb1ba4a60871e76f02b8fdd7dd83cbdce1
GET /Tracking/TrackUrlGet/?clientid=1a1b64b7-60e3-4108-a5bd-88f31b03c44b&cust1=&cust2=&cust3=&pageUrl=https%3A%2F%2Fwww.howden.com%2Fen-us&pageTitle=Howden%20%7C%20Optimise%20our%20customers%E2%80%99%20air%20and%20gas%20handl&referrerUrl=&trackingdata=&sessionId=&pageType=Page&schedule=&utmvalues=&callback=window.wowCallback0 HTTP/1.1
Host: t.gatorleads.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: application/x-javascript
Content-Encoding: gzip
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
X-Backend: web17
Content-Length: 245
Accept-Ranges: bytes
Date: Fri, 03 Feb 2023 02:05:56 GMT
Age: 0
Connection: keep-alive
X-Cache: MISS 5h0n-Var01
X-Client-Id: 91.90.42.154
X-Client-Ip: 10.117.1.117
www.howden.com/rest/customtableitem.customtable.ProductTypeSelection?format=json&hash=244971c34fa4651de3bc6664453d3e1dee1b9d57803197e3926f3175a2c582c4
200 OK 897 B URL HTTP/2 www.howden.com/rest/customtableitem.customtable.ProductTypeSelection?format=json&hash=244971c34fa4651de3bc6664453d3e1dee1b9d57803197e3926f3175a2c582c4
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with very long lines (310), with CRLF line terminators
Hash 87e115d09907be0a467a39c4b0b1d468
b0b3e16c75c87f7e8d044951a4dd8f0928b8afdf
af1fbdfa79c1c1259314074c7eae61231cb0eb18a05f9b9349ce28d10f887e75
GET /rest/customtableitem.customtable.ProductTypeSelection?format=json&hash=244971c34fa4651de3bc6664453d3e1dee1b9d57803197e3926f3175a2c582c4 HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets; cb-enabled=enabled
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Fri, 03 Feb 2023 02:05:56 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
content-length: 897
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 21:48:03 GMT
expires: Fri, 02 Feb 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 15473
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 280141043257105b3595ff426d2273a0
1bf9128e4aa4c785f77853a5af50c18c1aee9485
e6da03e355cfad082f0fcee6351561ebe402304c35a327d287251229274e5470
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=134820
Date: Fri, 03 Feb 2023 02:05:56 GMT
Etag: "63dbd5d6-1d7"
Expires: Sat, 04 Feb 2023 15:32:56 GMT
Last-Modified: Thu, 02 Feb 2023 15:25:10 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WA4fVOe71cioxBKB-RR6OyjgurNjY4xoGxQf-eWvBQP0r-B8UBVw0w==
Age: 466
www.howden.com/rest/customtableitem.customtable.industriesvariation?format=json&localize=en-us&orderby=industrylabel
200 OK 1.4 kB URL HTTP/2 www.howden.com/rest/customtableitem.customtable.industriesvariation?format=json&localize=en-us&orderby=industrylabel
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with very long lines (327), with CRLF line terminators
Hash 6bbe5bbd9565f10110224eb4c1673d4f
717e0e4eeaf22251b6a2f03667d3baeca7c14f9a
747cfef26bd0569703ddd94c3f3aaf3d13c10b9baa524714cb9da5894fb5f4de
GET /rest/customtableitem.customtable.industriesvariation?format=json&localize=en-us&orderby=industrylabel HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Authorization: Basic ZW5xdWlyZTpARW5xSG93ZGVuIw==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets; cb-enabled=enabled
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Fri, 03 Feb 2023 02:05:56 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
content-length: 1436
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
t.gatorleads.co.uk/popup/1a1b64b7-60e3-4108-a5bd-88f31b03c44b.js
200 OK 75 kB URL HTTP/1.1 t.gatorleads.co.uk/popup/1a1b64b7-60e3-4108-a5bd-88f31b03c44b.js
IP
ASN #31220 Six Degrees Technology Group Limited
File type ASCII text, with very long lines (65536), with no line terminators
Hash 96cdfb571e44946c0080e38c58e4b6e0
3ceb91802bd5e89b6727d0aaa007813cff63a8ce
f8cbb2ebff2b427a06507f77055836982029cb7e39f113fb319402b9e1b397d0
GET /popup/1a1b64b7-60e3-4108-a5bd-88f31b03c44b.js HTTP/1.1
Host: t.gatorleads.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
X-Backend: web18
Content-Length: 74997
Accept-Ranges: bytes
Date: Fri, 03 Feb 2023 02:05:57 GMT
Age: 4328
Connection: keep-alive
X-Cache: HIT 96 5h0n-Var01
X-Client-Id: 91.90.42.154
X-Client-Ip: 10.117.1.117
www.howden.com/rest/customtableitem.customtable.brands?format=json&hash=2b05f0b89095d159b315dded6d74a3d4a09760b8ae1e3d348ae3851c19bee3fc
200 OK 8.2 kB URL HTTP/2 www.howden.com/rest/customtableitem.customtable.brands?format=json&hash=2b05f0b89095d159b315dded6d74a3d4a09760b8ae1e3d348ae3851c19bee3fc
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (374), with CRLF line terminators
Hash 43b142015fc1f3ae56c9375efc2ef258
7eccfae31ba70927e83227fc89e05caba5abbbf7
242a6704ca82e00e842bfe43656142b29153d0719eabde3179b436d155bc7643
GET /rest/customtableitem.customtable.brands?format=json&hash=2b05f0b89095d159b315dded6d74a3d4a09760b8ae1e3d348ae3851c19bee3fc HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets; cb-enabled=enabled
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Fri, 03 Feb 2023 02:05:56 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
content-length: 8233
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
www.howden.com/en-us
200 OK 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /en-us HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
expires: -1
pragma: no-cache
set-cookie: CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; path=/; HttpOnly
ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; path=/; HttpOnly; SameSite=Lax
CMSCurrentTheme=HowdenStylesheets; expires=Sat, 04-Feb-2023 02:05:54 GMT; path=/; HttpOnly
vary: Accept-Encoding
x-ua-compatible: IE=Edge
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
static.oktopost.com/oktrk.js
200 OK 0 B URL HTTP/2 static.oktopost.com/oktrk.js
IP
GET /oktrk.js HTTP/1.1
Host: static.oktopost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 27 Jan 2020 09:47:41 GMT
server: AmazonS3
content-encoding: gzip
date: Thu, 02 Feb 2023 19:55:27 GMT
etag: W/"57315c24d6fec75c4d46a8cc3fa6e0d5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wh7feB6EBiXXF9D-IXKiTcczPkUQTx-xTMKD5AZooo58X4x-RRVHFg==
age: 22235
X-Firefox-Spdy: h2
u.heatmap.it/conf/www.howden.com.js
200 OK 0 B URL HTTP/2 u.heatmap.it/conf/www.howden.com.js
IP
GET /conf/www.howden.com.js HTTP/1.1
Host: u.heatmap.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 02:05:55 GMT
content-type: text/javascript;charset=UTF-8
expires: Fri, 03 Feb 2023 02:10:55 GMT
x-request-id: 252675713
content-encoding: br
cache-control: max-age=60
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
X-Firefox-Spdy: h2
fast.fonts.net/cssapi/6117ecc5-0159-4fb9-88d8-3fb5124d728c.css
200 OK 0 B URL HTTP/2 fast.fonts.net/cssapi/6117ecc5-0159-4fb9-88d8-3fb5124d728c.css
IP
GET /cssapi/6117ecc5-0159-4fb9-88d8-3fb5124d728c.css HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 02:05:55 GMT
content-type: text/css; charset=utf-8
x-amz-id-2: 75r6z1WcA6QOWnniLBcfZ23EH3//r8P28p+9CN6X8hjMNkUm1pUIt3kDKqY/FwFkuXS/YQWsloA=
x-amz-request-id: 0XCDBQVD41J5FP08
last-modified: Wed, 17 Feb 2021 04:44:06 GMT
etag: W/"8a576766d21524dfe5eb0f1f63b8ddb4"
x-amz-meta-mtime: 1600695711
x-amz-version-id: null
cf-cache-status: REVALIDATED
expires: Fri, 03 Feb 2023 02:10:55 GMT
cache-control: public, max-age=300
set-cookie: __cf_bm=h2k1YIKjrPwuzg49T6EVSu43AwsN0j1N9HQ5CgiqLFo-1675389955-0-AaB9Uw5aN6qOUxbB7knpACQbR2wgVEk7ChAPJRP+Q+N3MttMHj/d/rMWsTeE3uYqiyp/05PuwFs21oVuziQTDi4=; path=/; expires=Fri, 03-Feb-23 02:35:55 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 79379ab129d81c12-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.howden.com/Howden/media/Howden/img/blogs/Tunnels/article-axialfan-closeup.jpg?ext=.jpg
200 OK 0 B URL HTTP/2 www.howden.com/Howden/media/Howden/img/blogs/Tunnels/article-axialfan-closeup.jpg?ext=.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /Howden/media/Howden/img/blogs/Tunnels/article-axialfan-closeup.jpg?ext=.jpg HTTP/1.1
Host: www.howden.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.howden.com/en-us
Connection: keep-alive
Cookie: CMSPreferredCulture=en-US; CMSCsrfCookie=PFh4mG4J0GKtQCX+W5cU8jeNQoX50JSehrTtDRp7; ASP.NET_SessionId=4vifvcgqhtbnx4oqcfozw3mb; CMSCurrentTheme=HowdenStylesheets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:05:54 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
access-control-expose-headers: Request-Context
etag: "c0e3fa536dddd71:0"
last-modified: Fri, 19 Nov 2021 17:46:06 GMT
content-length: 78604
request-context: appId=cid-v1:5ec7e033-31cc-4eb1-9161-9a80ea4840c1
x-powered-by: ASP.NET
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: unsafe-url
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-3022179.js?sv=6
200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3022179.js?sv=6
IP
GET /c/hotjar-3022179.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Fri, 03 Feb 2023 02:05:56 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/dd379972e19a0b126495b8a4d708ca5b
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2vD8UgKHYvr4-qEop51pSu2p7wAmGhbq4OB7CTWARVESmK_jzoO3QA==
X-Firefox-Spdy: h2
howdenendpoint.azureedge.net/howdenmedia/howden/media/howdenedge/temp/sus-vid-bg.mp4?ext=.mp4
206 Partial Content 0 B URL HTTP/2 howdenendpoint.azureedge.net/howdenmedia/howden/media/howdenedge/temp/sus-vid-bg.mp4?ext=.mp4
IP
GET /howdenmedia/howden/media/howdenedge/temp/sus-vid-bg.mp4?ext=.mp4 HTTP/1.1
Host: howdenendpoint.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
accept-ranges: bytes
cache-control: public, max-age=600
content-md5: kYrMp7pZ/X9zkfPT33k5sA==
content-range: bytes 0-3195393/3195394
content-type: video/mp4
date: Fri, 03 Feb 2023 02:05:55 GMT
etag: 0x8D9B36FF70D3070
last-modified: Mon, 29 Nov 2021 19:39:31 GMT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
vary: Origin
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-meta-creationtime: 11/29/2021 7:39:31 PM
x-ms-meta-lastwritetime: 11/29/2021 7:39:31 PM
x-ms-request-id: b2aec18c-601e-0028-3074-3724d9000000
x-ms-version: 2009-09-19
content-length: 3195394
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/3022179/visit-data?sv=6
200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/3022179/visit-data?sv=6
IP
POST /api/v2/client/sites/3022179/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 146
Origin: https://www.howden.com
Connection: keep-alive
Referer: https://www.howden.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 02:05:56 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
165.160.15.20
104.18.20.226
46.105.202.39
52.174.35.5
37.221.223.21
54.77.194.141
23.36.77.32