r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ec332b81a27117ce9c16b67a5a8e4fac
b6d2afa2c859d000ad830d3d8d73f57bac6ffce2
1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F"
Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10738
Expires: Tue, 21 Mar 2023 09:40:33 GMT
Date: Tue, 21 Mar 2023 06:41:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 00e304a3fc0c2f01af0e94fcefe0ca40
833969e75e5e13e823c8d97ee59a9821eb157ee3
c2b7f7ae4861f2dd16867de54c7e47d95582de77887f523841d9683a369d20a7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2B7F7AE4861F2DD16867DE54C7E47D95582DE77887F523841D9683A369D20A7"
Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17259
Expires: Tue, 21 Mar 2023 11:29:14 GMT
Date: Tue, 21 Mar 2023 06:41:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4e6141892ec4705c6a0134f3157b969d
4169fdea42b0fa9cb565e14b8e8fdb293575c78e
905537ef3e3a4a9030391b44bd6ac6bb5d7c9ec752b1821d683dfbf483096163
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "905537EF3E3A4A9030391B44BD6AC6BB5D7C9EC752B1821D683DFBF483096163"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12046
Expires: Tue, 21 Mar 2023 10:02:21 GMT
Date: Tue, 21 Mar 2023 06:41:35 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 21 Mar 2023 06:14:57 GMT
content-type: application/json
age: 1598
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7AKAccaM4WSWui3y2MgMJ2qgoYkSdsA/YtntJfdaquNso/Y6D3E7nniX1NKwMZKwPXK4lGQQnWo=
x-amz-request-id: Y39NH340FR3GQ8VV
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 21 Mar 2023 05:53:04 GMT
age: 2911
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 21 Mar 2023 06:41:35 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
66.96.160.130301 Moved Permanently 277 B URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
IP 66.96.160.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1db284a112e1b75a7db735a687be5725
edd0b3068a3f95e3599d78fc3eeeefcf9712fd9d
da5f88eb1b74cb5caba2db459a6479d43986c28807d6d68829d5667dd2f786e2
NIDS Severity Alert suricata high ET MALWARE EXE Download Request To Wordpress Folder Likely Malicious
GET /wp-includes/images/sky/decc.exe HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 21 Mar 2023 06:41:35 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 277
Connection: keep-alive
Server: Apache/2
Location: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Cache-Control: max-age=3600
Expires: Tue, 21 Mar 2023 07:41:35 GMT
Age: 0
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 21 Mar 2023 06:14:33 GMT
age: 1622
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f46ea43cee34b13cba0750df3d09b4b4
e8e8c146b2d777c56f3e4a763e60934af0801113
a64d7288d9106a37c66aff36d3334cf254edcf399efaa1e8e3854bc3f95e627f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A64D7288D9106A37C66AFF36D3334CF254EDCF399EFAA1E8E3854BC3F95E627F"
Last-Modified: Mon, 20 Mar 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 21 Mar 2023 12:41:35 GMT
Date: Tue, 21 Mar 2023 06:41:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4c195a3fc0c2abb831630cef1dcfa770
eda338de3063640556177b9db364c33193d7f6dc
c22eb0537cd79666b82fe61dd77fe9b0b3c059a4c65d405412acfc2c6800b444
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C22EB0537CD79666B82FE61DD77FE9B0B3C059A4C65D405412ACFC2C6800B444"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10728
Expires: Tue, 21 Mar 2023 09:40:23 GMT
Date: Tue, 21 Mar 2023 06:41:35 GMT
Connection: keep-alive
push.services.mozilla.com/
52.41.156.90101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.156.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: A7d3UCfb469mpclFT1zImQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gvgVXTh0mlGzZ0d6WZr5KWQqvAc=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10862
Expires: Tue, 21 Mar 2023 09:42:39 GMT
Date: Tue, 21 Mar 2023 06:41:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10862
Expires: Tue, 21 Mar 2023 09:42:39 GMT
Date: Tue, 21 Mar 2023 06:41:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10862
Expires: Tue, 21 Mar 2023 09:42:39 GMT
Date: Tue, 21 Mar 2023 06:41:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a940b362660fdee25faaa51e08c439b
85fa91b5c4e6ddc1f3cf45eb6a4a3facfc6ad68c
18b99e3e890fdc959421c895ce343b8b3ed88819c83fa0009823e8ded23458f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8195
x-amzn-requestid: c6844a50-a6b2-4ef4-ad28-f1a0fbcec14f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDFESEDGoAMFQ8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6417821b-22fa560d4b7811c233fe07fa;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:43:55 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: WZ5MqPZ-MEjDt3N53EIx1XrerDmUkyvK-5FUXAmI29GXlGe6AaPqEg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 219e8f088c8c2a564bdacafe44be620a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 22:23:21 GMT
age: 29896
etag: "85fa91b5c4e6ddc1f3cf45eb6a4a3facfc6ad68c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0a9c92d-c90f-4b6f-9e1b-2627c3abfa38.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0a9c92d-c90f-4b6f-9e1b-2627c3abfa38.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0e2bcb0494bb5b0434a6b8c5276de8ff
33642ec68ca683dae156e15ee7449f8fecbfcd80
6921a091b2b19492a76cf3723b72c6966cb85751cabebbe2056a167994425414
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0a9c92d-c90f-4b6f-9e1b-2627c3abfa38.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8599
x-amzn-requestid: f213c7c9-3dd9-4d20-8c46-742c3650dcfe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGXKZFD6oAMFdBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d242-592c030e6760816b2d4f01f9;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: Ny4CqRzNVdxjmFQCGaiGS8QzYENhsLMUaOjm-GcmQk-mdUJirBCi8g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 a06140ffee86972bad90c57fc682df36.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 22:02:12 GMT
age: 31165
etag: "33642ec68ca683dae156e15ee7449f8fecbfcd80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68a4b574-14c9-4d65-81df-d700ef3fa2f4.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68a4b574-14c9-4d65-81df-d700ef3fa2f4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e538277f72ecedd22d24c1012250fa9e
4bd955ea3790a6926486e3d56f51c712c56997d7
5f4d374598cfb1a78e7016ec3a0b563e61e7481be202c34b10c9fdfbfc7b638e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68a4b574-14c9-4d65-81df-d700ef3fa2f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11336
x-amzn-requestid: 3aaca817-ebbc-449f-806c-d5a2a7559335
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWjFEmFIAMFqhg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d146-435381723c24efc66eed6b4b;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:33:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: ucKJdzsuQMhDuZHuaBcW8q8tDkm1tepcMkqRtTRUuzF-7CIuhAR2MQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 22:27:44 GMT
age: 29633
etag: "4bd955ea3790a6926486e3d56f51c712c56997d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80b8965f-0f1d-477d-b284-4d1e59649cf0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80b8965f-0f1d-477d-b284-4d1e59649cf0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 549399285b0e626c036b5a3f7923acb7
47fc867d2850248a0cf58ffe6344bc723c567a92
ebee0635c9e51d080a113627a278b1af7f6e440754a1a43a201dc5e3e2392d5d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80b8965f-0f1d-477d-b284-4d1e59649cf0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12272
x-amzn-requestid: 92cdffc1-5ab5-4579-99ae-8f8d7fe7453d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWjFFxfIAMF7UA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d146-3e0b9ead0718e199373ff06a;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:33:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 408SujdURTeUV20k71o-5tJ-ZwsNmGfqLdZtj7GTnoaPAv3MCcVN5g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 a9e73292d0b92053c3e38dcec15fd0e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 22:02:12 GMT
age: 31165
etag: "47fc867d2850248a0cf58ffe6344bc723c567a92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6943b819-ab3e-4698-a81d-266be026b4b8.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6943b819-ab3e-4698-a81d-266be026b4b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f73dbc0fc3d196647ddc1e30450989d4
75d0a1414a5d350ba426dc37333a6ea131f66753
2a6954b3ccf01567c0c0c2911dd8b02c1cd264fc78178cef2eef6a6796c16c3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6943b819-ab3e-4698-a81d-266be026b4b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10855
x-amzn-requestid: bb845712-834d-49b1-97f0-f3750f132741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CEZD0GCHIAMFq6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418087e-4361bbd40ec5f0d10dabdf85;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 07:17:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: gnFLBOJmRcgsHzy_KXjzE6LwwN4CSqz99pIhYMBx8xrHa8UO6O0kJA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 07:30:20 GMT
age: 83477
etag: "75d0a1414a5d350ba426dc37333a6ea131f66753"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F450a7216-1468-4600-bf16-dcda5d72733e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F450a7216-1468-4600-bf16-dcda5d72733e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 07b787370d844cd515ddd9fa2f18dd2f
05af207b7d57654a46bcbaa335b05b05cdc03d48
37064c2c7234ff6172959969ba6d56decc8e8900c9a8f7ef177db7198144a7ae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F450a7216-1468-4600-bf16-dcda5d72733e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: dabbce3d-fb36-404d-8b37-3bafed979062
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWjFFfBIAMFdMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d146-5cdf621e6196e46f7a1e849c;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:33:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: Anx47g-q0flhxg1Cl9SwKS3vGlWvQb_0TE74szKGGTiB6oY-QFsDPA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 1d000d0dfe9d69b4983f619fdc5499d6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 22:02:19 GMT
age: 31158
etag: "05af207b7d57654a46bcbaa335b05b05cdc03d48"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
66.96.160.130404 Not Found 8.2 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
IP 66.96.160.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, LF line terminators
Hash bc751979fff12dbaf188430efcbab4e9
52181ede8e5cfd8274a09aae9b0a918319c5d1bc
384eed47308724ef9dd5c3959e6df3d39d9ef36302c36534eae22587c35a838b
NIDS Severity Alert suricata high ET MALWARE EXE Download Request To Wordpress Folder Likely Malicious
GET /wp-includes/images/sky/decc.exe HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 8165
Connection: keep-alive
Server: Apache/2
X-Powered-By: PHP/7.4.10
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://hwy11-17-hwy582tocoughlin.com/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 4
hwy11-17-hwy582tocoughlin.com/wp-content/themes/mto_woolerrd/style.css
66.96.160.130200 OK 4.3 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/themes/mto_woolerrd/style.css
IP 66.96.160.130:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (2771)
Hash 3c809e164555106167e80bc19d59407c
ac1a4c1d519c0ac6ae25c678f38d9f2666dcd035
929eea373554e781c1375fbea8a3154228e8b611d7540a54e475474a18487c5a
GET /wp-content/themes/mto_woolerrd/style.css HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: text/css
Content-Length: 4306
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 09 Nov 2016 19:34:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "10d2-540e3573e2e40"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 3ac4671deeca3302950bd5fce7f4ce3f
62b5d0c548949ee8d932231fcd01196cefc896aa
e4adf52f426f89cbc5a61507b21d33c817e5b8cee1e2709fe3ffecc1ec0c8731
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 06:41:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 3ac4671deeca3302950bd5fce7f4ce3f
62b5d0c548949ee8d932231fcd01196cefc896aa
e4adf52f426f89cbc5a61507b21d33c817e5b8cee1e2709fe3ffecc1ec0c8731
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 06:41:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 8252dadd968ec1f294252ff1328a1f08
8612446f27ae9ce296270c969845a784dcc7569b
84717d4c360be2750d3e28827fa865c9616395cd3463ac03245b57baa8887e35
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 06:41:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hwy11-17-hwy582tocoughlin.com/wp-includes/css/classic-themes.min.css?ver=1
66.96.160.130200 OK 217 B URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-includes/css/classic-themes.min.css?ver=1
IP 66.96.160.130:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: text/css
Content-Length: 217
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 02 Nov 2022 13:51:19 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "d9-5ec7d22a664b7"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/plugins/wp-responsive-menu/assets/css/wprmenu.css?ver=3.1.8
66.96.160.130200 OK 9.7 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/plugins/wp-responsive-menu/assets/css/wprmenu.css?ver=3.1.8
IP 66.96.160.130:0
Hash 0a3485753fe95cab32000ace4c2e9c22
5396a1c498b01e4f8ee3fbd8382461d23b71a33b
6b5200a9661d5573e72d88f1ebf29371d512c693362fd895853472556115cd4b
GET /wp-content/plugins/wp-responsive-menu/assets/css/wprmenu.css?ver=3.1.8 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: text/css
Content-Length: 9748
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 15 Feb 2023 14:17:39 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "2614-5f4bdbe2773e8"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/plugins/wp-responsive-menu/inc/assets/icons/wpr-icons.css?ver=3.1.8
66.96.160.130200 OK 13 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/plugins/wp-responsive-menu/inc/assets/icons/wpr-icons.css?ver=3.1.8
IP 66.96.160.130:0
Hash d313cb2cdb26f9f0450a1f43872208bf
026f34e8eb8de9c6a7a0ad6da38e4518facdd5a9
30b122cb685239a848bfdb0cfcb7af43e63751004834860b95e2248ba7b0c75c
GET /wp-content/plugins/wp-responsive-menu/inc/assets/icons/wpr-icons.css?ver=3.1.8 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: text/css
Content-Length: 12813
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 15 Feb 2023 14:17:40 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "320d-5f4bdbe2bc95d"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 3ac4671deeca3302950bd5fce7f4ce3f
62b5d0c548949ee8d932231fcd01196cefc896aa
e4adf52f426f89cbc5a61507b21d33c817e5b8cee1e2709fe3ffecc1ec0c8731
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 06:41:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-SR7HKS1JTD
142.250.74.168200 OK 84 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-SR7HKS1JTD
IP 142.250.74.168:0
File type ASCII text, with very long lines (30260)
Hash d63df70c7fae940037b3cf2663f77176
f06d90ce65e0dbb69db2598501361168ff21e51e
54eb00c7ba0f8d1e9931951ae92324b20dcd93fcc37c732b26b23318ed2f1dc2
GET /gtag/js?id=G-SR7HKS1JTD HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 21 Mar 2023 06:41:39 GMT
expires: Tue, 21 Mar 2023 06:41:39 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 83564
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 8252dadd968ec1f294252ff1328a1f08
8612446f27ae9ce296270c969845a784dcc7569b
84717d4c360be2750d3e28827fa865c9616395cd3463ac03245b57baa8887e35
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 06:41:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hwy11-17-hwy582tocoughlin.com/wp-includes/css/dist/block-library/style.min.css?ver=0b9fdda4421e4f62b9fa84bb266f857f
66.96.160.130200 OK 95 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-includes/css/dist/block-library/style.min.css?ver=0b9fdda4421e4f62b9fa84bb266f857f
IP 66.96.160.130:0
File type ASCII text, with very long lines (47826)
Hash 71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
GET /wp-includes/css/dist/block-library/style.min.css?ver=0b9fdda4421e4f62b9fa84bb266f857f HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: text/css
Content-Length: 94889
Connection: keep-alive
Server: Apache/2
Last-Modified: Tue, 15 Nov 2022 20:03:20 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "172a9-5ed87d9023c5e"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/themes/mto_woolerrd/js/leaflet/leaflet.css?ver=0b9fdda4421e4f62b9fa84bb266f857f
66.96.160.130200 OK 13 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/themes/mto_woolerrd/js/leaflet/leaflet.css?ver=0b9fdda4421e4f62b9fa84bb266f857f
IP 66.96.160.130:0
File type ASCII text, with CRLF line terminators
Hash 47d09fe9742002fd9acda8d326f1b580
01921efac73f0c8803643f94acb3ca65d44a2d67
d5f929720ec32abd5aa7522aa910047bc3311b1d09ff35155f0045de2755fdc5
GET /wp-content/themes/mto_woolerrd/js/leaflet/leaflet.css?ver=0b9fdda4421e4f62b9fa84bb266f857f HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: text/css
Content-Length: 13390
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 09 Nov 2016 19:34:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "344e-540e3574d7080"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/plugins/wp-responsive-menu/assets/css/wpr-hamburger.css?ver=3.1.8
66.96.160.130200 OK 22 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/plugins/wp-responsive-menu/assets/css/wpr-hamburger.css?ver=3.1.8
IP 66.96.160.130:0
Hash 2a34dbc716a5013a0b987ac81ad3e30f
8c26ad7a6cbcf5325ebbd3b9664c744232450009
eb42efa994a334969ae2df68e7e996aba99c1c2816dbd50c5741822d0132c960
GET /wp-content/plugins/wp-responsive-menu/assets/css/wpr-hamburger.css?ver=3.1.8 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: text/css
Content-Length: 22025
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 15 Feb 2023 14:17:39 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "5609-5f4bdbe276440"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/themes/mto_woolerrd/css/grids.css?ver=0b9fdda4421e4f62b9fa84bb266f857f
66.96.160.130200 OK 2.6 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/themes/mto_woolerrd/css/grids.css?ver=0b9fdda4421e4f62b9fa84bb266f857f
IP 66.96.160.130:0
File type ASCII text, with CRLF line terminators
Hash fb588e4478b02bc96ca2d4e64e3e0982
2675895b0ec9ab141d6ed798e7e2300459c4625c
c5754b6a0c754746364019ef1243965de39650e304c1027ad0106ce7d64c4b4c
GET /wp-content/themes/mto_woolerrd/css/grids.css?ver=0b9fdda4421e4f62b9fa84bb266f857f HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: text/css
Content-Length: 2570
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 09 Nov 2016 19:34:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "a0a-540e3576bf500"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/themes/mto_woolerrd/css/styles.css?ver=0b9fdda4421e4f62b9fa84bb266f857f
66.96.160.130200 OK 6.4 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/themes/mto_woolerrd/css/styles.css?ver=0b9fdda4421e4f62b9fa84bb266f857f
IP 66.96.160.130:0
Hash 9698354dd21e21452ba332c2592eff18
81ee6985715f611ede2657d9660f75963e99e234
5e50781cac54f13a4f7bade26898ba1a5f7e7412f11a0756e495ccd1685259cf
GET /wp-content/themes/mto_woolerrd/css/styles.css?ver=0b9fdda4421e4f62b9fa84bb266f857f HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: text/css
Content-Length: 6429
Connection: keep-alive
Server: Apache/2
Last-Modified: Thu, 13 Dec 2018 15:13:46 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "191d-57ce8c2d6e008"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/plugins/fancybox-for-wordpress/assets/css/fancybox.css?ver=1.3.4
66.96.160.130200 OK 19 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/plugins/fancybox-for-wordpress/assets/css/fancybox.css?ver=1.3.4
IP 66.96.160.130:0
Hash 592ead116e192a422e3e033ccad4f39d
400864dad5091d5e1bc38b94e9ae4121b7bf265a
8e6630390ef512b8785eac0eac76219d07d16c69f68760f0e3677e9b7348f1e3
GET /wp-content/plugins/fancybox-for-wordpress/assets/css/fancybox.css?ver=1.3.4 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: text/css
Content-Length: 18738
Connection: keep-alive
Server: Apache/2
Last-Modified: Fri, 28 May 2021 14:46:25 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "4932-5c364f0ae65de"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
66.96.160.130200 OK 90 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 66.96.160.130:0
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: application/x-javascript
Content-Length: 89684
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 02 Nov 2022 13:51:21 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "15e54-5ec7d22bb0200"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
66.96.160.130200 OK 11 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 66.96.160.130:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: application/x-javascript
Content-Length: 11224
Connection: keep-alive
Server: Apache/2
Last-Modified: Sat, 08 May 2021 14:35:30 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "2bd8-5c1d274cd6af9"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/plugins/wp-responsive-menu/assets/js/modernizr.custom.js?ver=3.1.8
66.96.160.130200 OK 7.2 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/plugins/wp-responsive-menu/assets/js/modernizr.custom.js?ver=3.1.8
IP 66.96.160.130:0
File type HTML document, ASCII text, with very long lines (7197), with no line terminators
Hash 851f8dba812d4762ed4e16c5baf25cd6
cf39140f5f2e931893e62376c19968205c07c9c8
4d9580604d0d24965736a95882b3f59f3321f222c013dbe73be7ea747415c736
GET /wp-content/plugins/wp-responsive-menu/assets/js/modernizr.custom.js?ver=3.1.8 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: application/x-javascript
Content-Length: 7197
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 15 Feb 2023 14:17:39 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "1c1d-5f4bdbe281806"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/plugins/wp-responsive-menu/assets/js/touchSwipe.js?ver=3.1.8
66.96.160.130200 OK 20 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/plugins/wp-responsive-menu/assets/js/touchSwipe.js?ver=3.1.8
IP 66.96.160.130:0
File type ASCII text, with very long lines (19963), with CRLF line terminators
Hash b4713df0b78aa1688c57628e4f1cab0c
2c727a70758610eecf61ab395b57ccc1645cdf41
bb6e93a8013b23af6cc28e50cc182733d7ec87d5a55b574b3cd5a09d3de33a82
GET /wp-content/plugins/wp-responsive-menu/assets/js/touchSwipe.js?ver=3.1.8 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: application/x-javascript
Content-Length: 20388
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 15 Feb 2023 14:17:39 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "4fa4-5f4bdbe2827c6"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/plugins/wp-responsive-menu/assets/js/wprmenu.js?ver=3.1.8
66.96.160.130200 OK 8.5 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/plugins/wp-responsive-menu/assets/js/wprmenu.js?ver=3.1.8
IP 66.96.160.130:0
Hash dd7b7706d324569a9f45e5e440a12a6a
b01a6dcc559da5cf04c744bfd94f169af408cf4e
3ae48c498445801ba4e01f896d06b0b5430c8a93074f30657ee327216082f93e
GET /wp-content/plugins/wp-responsive-menu/assets/js/wprmenu.js?ver=3.1.8 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: application/x-javascript
Content-Length: 8547
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 15 Feb 2023 14:17:39 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "2163-5f4bdbe283744"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
66.96.160.130200 OK 21 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 66.96.160.130:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 034bd11ecaf6fb9240d905245e42e202
ff136c394ed95badfc0107fb98a890dcff642828
ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: application/x-javascript
Content-Length: 21440
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 02 Nov 2022 13:51:20 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "53c0-5ec7d22b5c22a"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/themes/mto_woolerrd/js/js-cookie.js?ver=0b9fdda4421e4f62b9fa84bb266f857f
66.96.160.130200 OK 3.7 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/themes/mto_woolerrd/js/js-cookie.js?ver=0b9fdda4421e4f62b9fa84bb266f857f
IP 66.96.160.130:0
File type ASCII text, with CRLF line terminators
Hash f76df1e5387fbdab9739a1779e8422ab
ef2e7e53bf6e439394d275306c2dd352dd599fbb
874b955c113c7ab1670ef5f315f42229f45290060a54f387a0d55081895c7c28
GET /wp-content/themes/mto_woolerrd/js/js-cookie.js?ver=0b9fdda4421e4f62b9fa84bb266f857f HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: application/x-javascript
Content-Length: 3676
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 09 Nov 2016 19:34:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "e5c-540e3574d7080"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/themes/mto_woolerrd/js/script.js?ver=1540228746
66.96.160.130200 OK 1.8 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/themes/mto_woolerrd/js/script.js?ver=1540228746
IP 66.96.160.130:0
File type HTML document, ASCII text
Hash fae42985a60ae7f35a1f601c0b1ab43c
a43b425745fe77f346aa49fe9c7b8a37b107d061
30095d441fbd5793815e1bcbf657425eac1472e2af4230a234ed95c6008b5912
GET /wp-content/themes/mto_woolerrd/js/script.js?ver=1540228746 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: application/x-javascript
Content-Length: 1847
Connection: keep-alive
Server: Apache/2
Last-Modified: Mon, 22 Oct 2018 17:19:06 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "737-578d4734e74a3"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/plugins/ml-slider/assets/sliders/flexslider/flexslider.css?ver=3.29.0
66.96.160.130200 OK 3.7 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/plugins/ml-slider/assets/sliders/flexslider/flexslider.css?ver=3.29.0
IP 66.96.160.130:0
File type ASCII text, with very long lines (3746)
Hash 7a85173f979a585e975c5597389a9265
efbcca464e33cd943de39338604462ce4352fd48
195182403b2e9d2a0779903fdd87cf7b9047f6a8253d9d12f12e991e2714ca36
GET /wp-content/plugins/ml-slider/assets/sliders/flexslider/flexslider.css?ver=3.29.0 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: text/css
Content-Length: 3747
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 08 Mar 2023 13:53:32 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "ea3-5f663da906f7d"
Expires: Tue, 21 Mar 2023 09:29:35 GMT
Age: 4324
hwy11-17-hwy582tocoughlin.com/wp-content/plugins/ml-slider/assets/metaslider/public.css?ver=3.29.0
66.96.160.130200 OK 6.7 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/plugins/ml-slider/assets/metaslider/public.css?ver=3.29.0
IP 66.96.160.130:0
Hash ba9d6a3f24a0fd83fcbc42ece9098189
c824853990e73b7df56d8044349c24db5bf0895b
f17f72445932b16d39475b09b03d9baec8cebb7ad60ac74f3bbed56e3cdc7e46
GET /wp-content/plugins/ml-slider/assets/metaslider/public.css?ver=3.29.0 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: text/css
Content-Length: 6697
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 08 Mar 2023 13:53:32 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "1a29-5f663da8f98a6"
Expires: Tue, 21 Mar 2023 09:29:35 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/plugins/zeno-font-resizer/js/js.cookie.js?ver=1.8.0
66.96.160.130200 OK 4.2 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/plugins/zeno-font-resizer/js/js.cookie.js?ver=1.8.0
IP 66.96.160.130:0
Hash e5054597c36e96dea8b5ae4ae941fb7a
e95552b609d8dfb41ef2fde410cc7fe1d1bbc9d1
7d2385d6c43b616ce99b983d19324432e1f045561e5ee280d51808f98f852644
GET /wp-content/plugins/zeno-font-resizer/js/js.cookie.js?ver=1.8.0 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: application/x-javascript
Content-Length: 4150
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 15 Feb 2023 14:12:57 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "1036-5f4bdad4cb9cc"
Expires: Tue, 21 Mar 2023 09:29:35 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/plugins/fancybox-for-wordpress/assets/js/jquery.fancybox.js?ver=1.3.4
66.96.160.130200 OK 162 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/plugins/fancybox-for-wordpress/assets/js/jquery.fancybox.js?ver=1.3.4
IP 66.96.160.130:0
File type HTML document, Unicode text, UTF-8 text
Size 162 kB (162140 bytes)
Hash cd979ada3d42377f0f6ef56c3cdc8010
70ac78368d6200b86465f3966ea79c37a63ac2c2
fbefbec9195c7a222e896bc45b0afa18af494fdc038c0977cefe1401efc64be2
GET /wp-content/plugins/fancybox-for-wordpress/assets/js/jquery.fancybox.js?ver=1.3.4 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: application/x-javascript
Content-Length: 162140
Connection: keep-alive
Server: Apache/2
Last-Modified: Fri, 28 May 2021 14:46:25 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "2795c-5c364f0b08111"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2
66.96.160.130200 OK 8.8 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2
IP 66.96.160.130:0
File type ASCII text, with very long lines (8632)
Hash 89a5cf06fc7dd77902474cb1ffe4a428
474e8b42319320197c4b85f4dfc12818e9abb5ba
04e009a731cacdb72b79de34d2cb88c364ec1c60ccaa1c163b617fed2b6b9198
GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:40 GMT
Content-Type: application/x-javascript
Content-Length: 8814
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 02 Nov 2022 13:51:21 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "226e-5ec7d22b8df10"
Expires: Tue, 21 Mar 2023 09:29:35 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/plugins/ml-slider/assets/sliders/flexslider/jquery.flexslider.min.js?ver=3.29.0
66.96.160.130200 OK 24 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/plugins/ml-slider/assets/sliders/flexslider/jquery.flexslider.min.js?ver=3.29.0
IP 66.96.160.130:0
File type ASCII text, with very long lines (23899)
Hash 3bfb0280064f59cb06c2271a1b8a18c8
4683aa729532dec0801db2c6c03759e052e8bf66
76447cfbc021797d3c90814051084731c284bbc902138744d41dd75e4be8abac
GET /wp-content/plugins/ml-slider/assets/sliders/flexslider/jquery.flexslider.min.js?ver=3.29.0 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:40 GMT
Content-Type: application/x-javascript
Content-Length: 23900
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 08 Mar 2023 13:53:32 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "5d5c-5f663da908ab9"
Expires: Tue, 21 Mar 2023 09:29:35 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/plugins/ml-slider/assets/easing/jQuery.easing.min.js?ver=3.29.0
66.96.160.130200 OK 4.3 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/plugins/ml-slider/assets/easing/jQuery.easing.min.js?ver=3.29.0
IP 66.96.160.130:0
File type Unicode text, UTF-8 text, with very long lines (2320)
Hash a5f2a81acd59a5fa52ee3667b863c60f
1ab7a1b2042790d72c7f53014868ec7b5238b885
50ce2f76c07eb570aa8af67419e61a3bd9aef675b2da3aa9575b8e1a3ed26d88
GET /wp-content/plugins/ml-slider/assets/easing/jQuery.easing.min.js?ver=3.29.0 HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:40 GMT
Content-Type: application/x-javascript
Content-Length: 4283
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 08 Mar 2023 13:53:32 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "10bb-5f663da8f61e7"
Expires: Tue, 21 Mar 2023 09:29:35 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-includes/js/wp-emoji-release.min.js?ver=0b9fdda4421e4f62b9fa84bb266f857f
66.96.160.130200 OK 19 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-includes/js/wp-emoji-release.min.js?ver=0b9fdda4421e4f62b9fa84bb266f857f
IP 66.96.160.130:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
GET /wp-includes/js/wp-emoji-release.min.js?ver=0b9fdda4421e4f62b9fa84bb266f857f HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:40 GMT
Content-Type: application/x-javascript
Content-Length: 18617
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 25 May 2022 13:10:34 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "48b9-5dfd5cc68dbf1"
Expires: Tue, 21 Mar 2023 09:29:35 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/themes/mto_woolerrd/js/leaflet/leaflet.js?ver=0b9fdda4421e4f62b9fa84bb266f857f
66.96.160.130200 OK 142 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/themes/mto_woolerrd/js/leaflet/leaflet.js?ver=0b9fdda4421e4f62b9fa84bb266f857f
IP 66.96.160.130:0
File type ASCII text, with very long lines (32120)
Size 142 kB (141857 bytes)
Hash 64a4cdd943d858e0c91ce21e33c139e0
ac37c92acac49828ef0103be69de5cf697b45e2f
c430949fe7b7fc5a599abf152d1dafae0c3b29cc49fb6629db1d322a1bdaf3f7
GET /wp-content/themes/mto_woolerrd/js/leaflet/leaflet.js?ver=0b9fdda4421e4f62b9fa84bb266f857f HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:39 GMT
Content-Type: application/x-javascript
Content-Length: 141857
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 09 Nov 2016 19:34:11 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "22a21-540e3575cb2c0"
Expires: Tue, 21 Mar 2023 09:29:34 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/themes/mto_woolerrd/img/wsplogo.png
66.96.160.130200 OK 2.8 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/themes/mto_woolerrd/img/wsplogo.png
IP 66.96.160.130:0
File type PNG image data, 101 x 48, 8-bit/color RGBA, interlaced\012- data
Hash 25b87165916bcf1ce6bd776d9448696b
92ad29089e3796ead8f571f3bde6bad390e24d3f
3f0b6e25182c5db94abee700d2545b503d32779ce5440796316ef6605c88600b
GET /wp-content/themes/mto_woolerrd/img/wsplogo.png HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:40 GMT
Content-Type: image/png
Content-Length: 2782
Connection: keep-alive
Server: Apache/2
Last-Modified: Mon, 12 Jun 2017 20:23:32 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "ade-551c917bb9900"
Expires: Tue, 21 Mar 2023 09:29:35 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/uploads/2018/11/coughlin-2.jpg
66.96.160.130200 OK 140 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/uploads/2018/11/coughlin-2.jpg
IP 66.96.160.130:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, xresolution=98, yresolution=106, resolutionunit=2], progressive, precision 8, 1200x400, components 3\012- data
Size 140 kB (140185 bytes)
Hash ecc420141d4f9d152f49717ab98170f8
295aa8d8a59761a8052a3add5050d1ce99a58a86
6aea671f6f2d5664aad2afafbd77aabcbd14c1a5e906e8d517c332d3d84bd3e3
GET /wp-content/uploads/2018/11/coughlin-2.jpg HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:40 GMT
Content-Type: image/jpeg
Content-Length: 140185
Connection: keep-alive
Server: Apache/2
Last-Modified: Sat, 10 Nov 2018 13:13:17 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "22399-57a4f3b31afa7"
Expires: Tue, 21 Mar 2023 09:29:35 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/uploads/2018/11/coughlin-3.jpg
66.96.160.130200 OK 125 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/uploads/2018/11/coughlin-3.jpg
IP 66.96.160.130:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, xresolution=98, yresolution=106, resolutionunit=2], progressive, precision 8, 1200x400, components 3\012- data
Size 125 kB (124556 bytes)
Hash 3bd381a9911a4f6316dc637238c81b3a
5b440ea1714a62ad69cc1002aa7df4c0f4eb4d4e
3d3bb9d0937f254a3eec422993fcec507584446d1a114996c7802972737e0805
GET /wp-content/uploads/2018/11/coughlin-3.jpg HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:40 GMT
Content-Type: image/jpeg
Content-Length: 124556
Connection: keep-alive
Server: Apache/2
Last-Modified: Sat, 10 Nov 2018 13:13:15 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "1e68c-57a4f3b0a7834"
Expires: Tue, 21 Mar 2023 09:29:35 GMT
Age: 4325
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c26dba42c0d5a8ae943ac677b38929ea
21c68777a8249158f53f6f1bbf33d12769146cec
a890859401ea2f9079622841f24a700215fcab7fe291d0b1f581e675ae130342
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 06:41:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c26dba42c0d5a8ae943ac677b38929ea
21c68777a8249158f53f6f1bbf33d12769146cec
a890859401ea2f9079622841f24a700215fcab7fe291d0b1f581e675ae130342
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 06:41:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.35200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hwy11-17-hwy582tocoughlin.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 21 Mar 2023 04:29:09 GMT
expires: Wed, 20 Mar 2024 04:29:09 GMT
cache-control: public, max-age=31536000
age: 7951
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs169vsUZiZQ.woff2
142.250.74.35200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs169vsUZiZQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 10104, version 1.0\012- data
Hash f6a41f84ddc640654e6dc189ea56794a
395d2e505f014e4c8c21d1a97416b6122111451f
d47bc9a324b78a4aa8324b7bdeb72515cc2ce942d5a1f8a8fcc0962a2c8fc605
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs169vsUZiZQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hwy11-17-hwy582tocoughlin.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10104
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 18:05:17 GMT
expires: Fri, 15 Mar 2024 18:05:17 GMT
cache-control: public, max-age=31536000
age: 390983
last-modified: Mon, 18 Jul 2022 19:24:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c26dba42c0d5a8ae943ac677b38929ea
21c68777a8249158f53f6f1bbf33d12769146cec
a890859401ea2f9079622841f24a700215fcab7fe291d0b1f581e675ae130342
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 06:41:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-SR7HKS1JTD>m=45je33f0&_p=1635853709&cid=842573759.1679380902&ul=en-us&sr=1280x1024&_s=1&sid=1679380902&sct=1&seg=0&dl=https%3A%2F%2Fhwy11-17-hwy582tocoughlin.com%2Fwp-includes%2Fimages%2Fsky%2Fdecc.exe&dt=Page%20not%20found%20%E2%80%93%20Highway%2011%2F17%20Expansion%20from%20west%20of%20Highway%20582%20to%20Coughlin%20Road&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-SR7HKS1JTD>m=45je33f0&_p=1635853709&cid=842573759.1679380902&ul=en-us&sr=1280x1024&_s=1&sid=1679380902&sct=1&seg=0&dl=https%3A%2F%2Fhwy11-17-hwy582tocoughlin.com%2Fwp-includes%2Fimages%2Fsky%2Fdecc.exe&dt=Page%20not%20found%20%E2%80%93%20Highway%2011%2F17%20Expansion%20from%20west%20of%20Highway%20582%20to%20Coughlin%20Road&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-SR7HKS1JTD>m=45je33f0&_p=1635853709&cid=842573759.1679380902&ul=en-us&sr=1280x1024&_s=1&sid=1679380902&sct=1&seg=0&dl=https%3A%2F%2Fhwy11-17-hwy582tocoughlin.com%2Fwp-includes%2Fimages%2Fsky%2Fdecc.exe&dt=Page%20not%20found%20%E2%80%93%20Highway%2011%2F17%20Expansion%20from%20west%20of%20Highway%20582%20to%20Coughlin%20Road&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hwy11-17-hwy582tocoughlin.com
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://hwy11-17-hwy582tocoughlin.com
date: Tue, 21 Mar 2023 06:41:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
hwy11-17-hwy582tocoughlin.com/wp-content/plugins/ml-slider/assets/metaslider/bg_direction_nav.png
66.96.160.130200 OK 1.9 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/plugins/ml-slider/assets/metaslider/bg_direction_nav.png
IP 66.96.160.130:0
File type PNG image data, 57 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash f595730bbfc9b24daa4c834f8c8660b9
94f23759874386a95da31159b0ad5bba4fd5d4c1
a36616dc61a9c5d4f034e1758a86a34d630f9a63cfd91c1ac49c01f121e323a5
GET /wp-content/plugins/ml-slider/assets/metaslider/bg_direction_nav.png HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-content/plugins/ml-slider/assets/metaslider/public.css?ver=3.29.0
Cookie: _ga_SR7HKS1JTD=GS1.1.1679380902.1.0.1679380902.0.0.0; _ga=GA1.1.842573759.1679380902
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:40 GMT
Content-Type: image/png
Content-Length: 1866
Connection: keep-alive
Server: Apache/2
Last-Modified: Wed, 08 Mar 2023 13:53:32 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "74a-5f663da8f794f"
Expires: Tue, 21 Mar 2023 09:29:35 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/wp-content/uploads/2018/11/coughlin-1.jpg
66.96.160.130200 OK 227 kB URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/wp-content/uploads/2018/11/coughlin-1.jpg
IP 66.96.160.130:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, description= , manufacturer=NIKON, model=COOLPIX P530, orientation=upper-left, xresolution=178, yresolution=186, resolutionunit=2, software=GIMP 2.8.20, datetime=2017:06:12 16:10:06], progressive, precision 8, 1200x400, components 3\012- data
Size 227 kB (227234 bytes)
Hash 2c9b1aca3a9fe0afc30aead243d8a580
8d4d59303bf0b1b6aac5295adb39496ac9a2877d
7bc37fc009e634cef93ce78dd376f2802e8ccbf35f308bbd0050aecfa009b9c9
GET /wp-content/uploads/2018/11/coughlin-1.jpg HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:40 GMT
Content-Type: image/jpeg
Content-Length: 227234
Connection: keep-alive
Server: Apache/2
Last-Modified: Sat, 10 Nov 2018 13:13:19 GMT
Accept-Ranges: bytes
Cache-Control: max-age=14400
Etag: "377a2-57a4f3b4d4e53"
Expires: Tue, 21 Mar 2023 09:29:35 GMT
Age: 4325
hwy11-17-hwy582tocoughlin.com/favicon.ico
66.96.160.130200 OK 0 B URL HTTP/1.1 hwy11-17-hwy582tocoughlin.com/favicon.ico
IP 66.96.160.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: hwy11-17-hwy582tocoughlin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/wp-includes/images/sky/decc.exe
Cookie: _ga_SR7HKS1JTD=GS1.1.1679380902.1.0.1679380902.0.0.0; _ga=GA1.1.842573759.1679380902
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 06:41:40 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Server: Apache/2
Cache-Control: max-age=86400
Age: 34886
fonts.googleapis.com/css?family=Oswald:300
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald:300
IP 216.58.207.202:0
GET /css?family=Oswald:300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 21 Mar 2023 06:41:39 GMT
date: Tue, 21 Mar 2023 06:41:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato
IP 216.58.207.202:0
GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hwy11-17-hwy582tocoughlin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 21 Mar 2023 06:41:39 GMT
date: Tue, 21 Mar 2023 06:41:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2