r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb72f04bd7a4410640c0543bb4bd402
7c63b7e220b337b6a4f39864e11d6aa9e26c38ac
b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6640
Expires: Tue, 22 Nov 2022 05:53:30 GMT
Date: Tue, 22 Nov 2022 04:02:50 GMT
Connection: keep-alive
allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
66.29.146.34301 Moved Permanently 707 B URL HTTP/1.1 allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
IP 66.29.146.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458 HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Tue, 22 Nov 2022 04:02:50 GMT
server: LiteSpeed
location: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
x-turbo-charged-by: LiteSpeed
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4843de3bf95411e6aa89834def44bb86
1f1882351ac63fba73a22014382f69df5e02ec96
1e6ed1df02f8fa6c89ddca66f7c9981f8a06127d7ec90b503703137e823bb4b7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5226
Cache-Control: max-age=114933
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 04:02:50 GMT
Etag: "637b5375-1d7"
Expires: Wed, 23 Nov 2022 11:58:23 GMT
Last-Modified: Mon, 21 Nov 2022 10:31:17 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2613
Expires: Tue, 22 Nov 2022 04:46:23 GMT
Date: Tue, 22 Nov 2022 04:02:50 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 22 Nov 2022 03:09:19 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3211
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WHIBGr8nn93xeI6vO7g28xTpNN0f49/gXc/cpeFv2wiz1Avbvy7orU+dscLmPdgDvBfka8uoO2w=
x-amz-request-id: 8WCM27Q93HSJABSG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 22 Nov 2022 03:39:24 GMT
age: 1406
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 04:02:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 87002aba8d04ef7934fedbe5dfd1a9e5
8e1f0bf33faa629f0b6ca8bcbb1c07da148b72ca
27df5ae68dcda7eb76527257923939e850d52a510697c226be1b8deff11d81f5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 04:02:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 20 Nov 2022 01:18:40 GMT
Expires: Sun, 27 Nov 2022 01:18:39 GMT
Etag: "8e1f0bf33faa629f0b6ca8bcbb1c07da148b72ca"
Cache-Control: max-age=421548,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76dec59bcf5cb505-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 22 Nov 2022 03:08:47 GMT
cache-control: public,max-age=3600
age: 3243
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
66.29.146.34200 OK 4.9 kB URL HTTP/2 allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
IP 66.29.146.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (378), with CRLF line terminators
Hash 0291d697683ad9831691752b73045cda
cfa8a0635fbd525e4889167bd5a03a2a7ebe9b09
2cb939f7da1134019a74fa052bc851631e0fbdfe132ebc0faa0c62add1817407
GET /?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458 HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.2.34
content-type: text/html; charset=UTF-8
content-length: 4931
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2db0ebb9efcf3be3c92f23b61de5c065
dd830565723f18a7944c26d24b0fb142d06a71a5
8615316184c4d1d64db923a5364363bbb3d25e146a042c5fbd5bf0cfcec8effb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3551
Cache-Control: max-age=108194
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 04:02:51 GMT
Etag: "637b3fae-1d7"
Expires: Wed, 23 Nov 2022 10:06:05 GMT
Last-Modified: Mon, 21 Nov 2022 09:06:54 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb526d16fc4a304286cf261dc5d8abea
0aed946d28abc21cb11657e6f864b561a0c68fba
551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 04:02:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb526d16fc4a304286cf261dc5d8abea
0aed946d28abc21cb11657e6f864b561a0c68fba
551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 04:02:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
allsolarincentives.com/assets/css/style-top.css
66.29.146.34200 OK 331 B URL HTTP/2 allsolarincentives.com/assets/css/style-top.css
IP 66.29.146.34:0
Hash a10e8a91bacc604b9a1cf5b5257beca7
4b114a45acce844dcd952dbd2438840c7c745c95
2b94a2575e6ed54458e659b00b08a59f0ecb69cf952a33db63192997fea31854
GET /assets/css/style-top.css HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: text/css
last-modified: Thu, 10 Jun 2021 22:17:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 331
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.202.70.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.202.70.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Uga03Fa/LVXPOOvarYQRrg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1HeYtUDCBoZnqj3eesa5w2KaZSo=
allsolarincentives.com/assets/form/bootstrap.min.css
66.29.146.34200 OK 31 kB URL HTTP/2 allsolarincentives.com/assets/form/bootstrap.min.css
IP 66.29.146.34:0
File type ASCII text, with very long lines (65324)
Hash 09807732f1df93f1019316622dd27d07
60685ce8d3419ca006c9a21beb8f6746be2ff0bf
f4dc9c8d976f66a87478e2abac927ea916331b6db105d2c0db1d3e22f79cbeaa
GET /assets/form/bootstrap.min.css HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: text/css
last-modified: Thu, 10 Jun 2021 22:17:54 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 30792
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/form/bootstrap-modal-ios.css
66.29.146.34200 OK 348 B URL HTTP/2 allsolarincentives.com/assets/form/bootstrap-modal-ios.css
IP 66.29.146.34:0
Hash 11d82333ea673411c0a83c4a149e8fa3
b34a14796bcc78b4455c057c26e9edbbc59ed60b
1923fea1b002154c137e03c5ce0edc268ddf9ce54d3c86ba029f9d3a1eecb37e
GET /assets/form/bootstrap-modal-ios.css HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: text/css
last-modified: Thu, 10 Jun 2021 22:17:50 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 348
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/form/new.css
66.29.146.34200 OK 3.4 kB URL HTTP/2 allsolarincentives.com/assets/form/new.css
IP 66.29.146.34:0
Hash 8c348e05b446e92f077a80cf56a8b453
613296d4f2ad490004c5023f6136e0f2a8012e73
70e33026de36cd132ca1b8eeb0413d180040dc7b5665215f00a58b2e6925a3da
GET /assets/form/new.css HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: text/css
last-modified: Mon, 14 Jun 2021 21:25:06 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3391
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/css/style-bottom.css
66.29.146.34200 OK 4.5 kB URL HTTP/2 allsolarincentives.com/assets/css/style-bottom.css
IP 66.29.146.34:0
Hash 51e721d94dba2c987769bee7714e8db4
b6b924972a54f19ae14337aa67dbb39ba0bb4fc9
7108a69ad83526efba8c23fb35f955e2b73a63b6d148eed53cb6279db807f915
GET /assets/css/style-bottom.css HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: text/css
last-modified: Wed, 14 Jul 2021 22:32:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4522
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/images/cropped-logo.png
66.29.146.34200 OK 6.7 kB URL HTTP/2 allsolarincentives.com/assets/images/cropped-logo.png
IP 66.29.146.34:0
File type PNG image data, 240 x 61, 8-bit/color RGBA, non-interlaced\012- data
Hash ecf5cd152a75ef25812bd215e6b8a015
b49043b0b2570ce79d0cde6787cb57316426dec9
dd1cbb5bbf1158e9f5d0212e0d1dfbde3c8c3e64c2499415992154df0de55fad
GET /assets/images/cropped-logo.png HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: image/png
last-modified: Thu, 10 Jun 2021 22:18:12 GMT
accept-ranges: bytes
content-length: 6727
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/images/roof-1.png
66.29.146.34200 OK 17 kB URL HTTP/2 allsolarincentives.com/assets/images/roof-1.png
IP 66.29.146.34:0
File type PNG image data, 161 x 161, 8-bit/color RGB, non-interlaced\012- data
Hash 31da4638b549918f0628edceaea5e621
d585b21098f25ca441cb38763cbccc9ad2dbb8e4
c0f3ad1e6d1b6cd736bed7e3818e6c74f8c9da0d8b04844a089d6e044503405c
GET /assets/images/roof-1.png HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: image/png
last-modified: Thu, 10 Jun 2021 22:18:26 GMT
accept-ranges: bytes
content-length: 17258
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/images/roof-2.png
66.29.146.34200 OK 21 kB URL HTTP/2 allsolarincentives.com/assets/images/roof-2.png
IP 66.29.146.34:0
File type PNG image data, 161 x 161, 8-bit/color RGB, non-interlaced\012- data
Hash b76be140ead06173b2e5bf4524dd6062
b6bb0a28bbaf91736de6385543ca716c19b75558
b327f19e8b130fb2a69481d2fbeb5d9fd70b04f1ee0590fae7f4252d44b1a44c
GET /assets/images/roof-2.png HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: image/png
last-modified: Thu, 10 Jun 2021 22:18:30 GMT
accept-ranges: bytes
content-length: 21352
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/images/roof-3.png
66.29.146.34200 OK 23 kB URL HTTP/2 allsolarincentives.com/assets/images/roof-3.png
IP 66.29.146.34:0
File type PNG image data, 161 x 161, 8-bit/color RGB, non-interlaced\012- data
Hash 8d769804d9e22071a3eef6eab7be78be
5edb2bb99a3d48b395fedf033f07d046b3f2a444
e7b570a45c96b82165e4d47007cf5ca7037b8adaaca0220c1ba18e2cbe4fbd63
GET /assets/images/roof-3.png HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: image/png
last-modified: Thu, 10 Jun 2021 22:18:30 GMT
accept-ranges: bytes
content-length: 22879
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/images/patner-2.jpg
66.29.146.34200 OK 8.4 kB URL HTTP/2 allsolarincentives.com/assets/images/patner-2.jpg
IP 66.29.146.34:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 216x56, components 3\012- data
Hash 5af08e760f249ec0d47ea4d968f92730
a6c87372ae9e8f05a3a44ad9e77d2106a1c620dc
5543541017a9411fda32aff2515bdc566908318fb4f04f5d861f47a780b5ec93
GET /assets/images/patner-2.jpg HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: image/jpeg
last-modified: Thu, 10 Jun 2021 22:18:22 GMT
accept-ranges: bytes
content-length: 8381
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/images/patner-3.jpg
66.29.146.34200 OK 11 kB URL HTTP/2 allsolarincentives.com/assets/images/patner-3.jpg
IP 66.29.146.34:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 216x56, components 3\012- data
Hash 1bd12ea43b64450f2c8c321217ea2c36
f1293ad4e0c43fd05ae0b6eac62f169bd0b2ddc0
3438c64ce188c5d4f2b5d33de91161b4b7d12a8780f69abdaa0d82941a0c31ce
GET /assets/images/patner-3.jpg HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: image/jpeg
last-modified: Thu, 10 Jun 2021 22:18:26 GMT
accept-ranges: bytes
content-length: 11340
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/images/patner-4.jpg
66.29.146.34200 OK 11 kB URL HTTP/2 allsolarincentives.com/assets/images/patner-4.jpg
IP 66.29.146.34:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 216x56, components 3\012- data
Hash 3a2a271f4e7bd94e0a6f0d67d5ed9209
c024d6506c2327f840aaddc5bb7fe3ab5772f5ca
6a0ed5e5d1c6686958d0c14ec53d2862aac4b213f8b2086cc335b4c077df2ab3
GET /assets/images/patner-4.jpg HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: image/jpeg
last-modified: Thu, 10 Jun 2021 22:18:26 GMT
accept-ranges: bytes
content-length: 11350
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/images/patner-5.jpg
66.29.146.34200 OK 8.1 kB URL HTTP/2 allsolarincentives.com/assets/images/patner-5.jpg
IP 66.29.146.34:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 216x56, components 3\012- data
Hash 61e90b9af1369912a03138ef82f9be26
c70b34cf42ac41a02a429a67a985658cded5756c
eb291a6c9a2662657fe6f90ed9e1da8908334c7a878839261397bcbdbb6452c8
GET /assets/images/patner-5.jpg HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: image/jpeg
last-modified: Thu, 10 Jun 2021 22:18:26 GMT
accept-ranges: bytes
content-length: 8073
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/images/patner-1.jpg
66.29.146.34200 OK 9.5 kB URL HTTP/2 allsolarincentives.com/assets/images/patner-1.jpg
IP 66.29.146.34:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 216x56, components 3\012- data
Hash 9eb88a6fc34c17d1585d6c363b1b21ff
7586ac76617f1325f632c6ce560c7b291224c7b8
b1226072d8321954731801a8d20fb22cc1eb73718724c66354a043bf9b22ef7e
GET /assets/images/patner-1.jpg HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: image/jpeg
last-modified: Thu, 10 Jun 2021 22:18:22 GMT
accept-ranges: bytes
content-length: 9502
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/images/ficon.png
66.29.146.34200 OK 3.6 kB URL HTTP/2 allsolarincentives.com/assets/images/ficon.png
IP 66.29.146.34:0
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 5c6f090ac18f8b1381be7d4a38575929
f1ad72f8060d2b6b46d8dd71c731df8fce33c074
57d784eeddb3e5baa0e8e1add4fce2abe87e74a12dedba11def8ae4b6a0add40
GET /assets/images/ficon.png HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: image/png
last-modified: Thu, 10 Jun 2021 22:18:12 GMT
accept-ranges: bytes
content-length: 3586
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/images/sicon.png
66.29.146.34200 OK 2.2 kB URL HTTP/2 allsolarincentives.com/assets/images/sicon.png
IP 66.29.146.34:0
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash c88aa5bae8f109ac105899b7b7923eca
da8e04827bba4d4f3f2499dd555de409befa19bb
422ffd9f8d6441e2d990c594c803432b98e10a05caaca520164861915ac197e3
GET /assets/images/sicon.png HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: image/png
last-modified: Thu, 10 Jun 2021 22:18:32 GMT
accept-ranges: bytes
content-length: 2201
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/js/bootstrap.min.js
66.29.146.34200 OK 14 kB URL HTTP/2 allsolarincentives.com/assets/js/bootstrap.min.js
IP 66.29.146.34:0
File type ASCII text, with very long lines (59895)
Hash 794d41c91c335425af557dd64d85b3d5
0412c5076a39eaf56200e560751e00d32e344f8e
3c5b97ff1a55efa7dd01be8ba08b98169903eab02f6ba1a7e3ff4ea86379cc78
Analyzer Verdict Alert fortinet Malware
GET /assets/js/bootstrap.min.js HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: application/javascript
last-modified: Thu, 10 Jun 2021 22:18:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14245
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/js/jquery.validate.min.js
66.29.146.34200 OK 6.5 kB URL HTTP/2 allsolarincentives.com/assets/js/jquery.validate.min.js
IP 66.29.146.34:0
File type Unicode text, UTF-8 text, with very long lines (20952)
Hash b64e76f99d74d19f9fc755b4f19a0141
8f7d328986f13d9700fa2e676306e3952c31b36f
39bcf6ec0c7b9ff847fc220cb9bb10b2e7d326eb816916e83462dd80a586564e
Analyzer Verdict Alert fortinet Malware
GET /assets/js/jquery.validate.min.js HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: application/javascript
last-modified: Thu, 10 Jun 2021 22:18:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6547
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/js/additional-methods.min.js
66.29.146.34200 OK 5.2 kB URL HTTP/2 allsolarincentives.com/assets/js/additional-methods.min.js
IP 66.29.146.34:0
File type Unicode text, UTF-8 text, with very long lines (17654)
Hash fd1c3af9125934e4777da94567b82194
4704df75bb22aab0fc112c40b6db369ae563d888
f7f11307ed51bab10893095c162b47dd76dcaf39cbbd118220cfcf323b86dfff
Analyzer Verdict Alert fortinet Malware
GET /assets/js/additional-methods.min.js HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: application/javascript
last-modified: Thu, 10 Jun 2021 22:18:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5158
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/js/form.js
66.29.146.34200 OK 723 B URL HTTP/2 allsolarincentives.com/assets/js/form.js
IP 66.29.146.34:0
File type ASCII text, with CRLF line terminators
Hash 111103e48cb02fdd2995c7f47e2defe2
872ef039475ada7a432a3f47e6151730eb924376
577325399f6d6f7bdd53862ca2e3fc1b3d895a4cac4e33d2d34c3e5ee42321f1
Analyzer Verdict Alert fortinet Malware
GET /assets/js/form.js HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: application/javascript
last-modified: Tue, 15 Nov 2022 12:54:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 723
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/js/jquery.min.js
66.29.146.34200 OK 24 kB URL HTTP/2 allsolarincentives.com/assets/js/jquery.min.js
IP 66.29.146.34:0
File type ASCII text, with very long lines (65245)
Hash 10e9fb124ae79240559c555c4f5ad003
78a665be9dc0584d9fffd4b3666ad763653d6320
06be215c7cec84ae63d4a745aa979c940ec92c83f958f09f8c69b2579d8bf237
Analyzer Verdict Alert fortinet Malware
GET /assets/js/jquery.min.js HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: application/javascript
last-modified: Thu, 10 Jun 2021 22:18:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 24162
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/js/jquery.inputmask.bundle.js
66.29.146.34200 OK 25 kB URL HTTP/2 allsolarincentives.com/assets/js/jquery.inputmask.bundle.js
IP 66.29.146.34:0
File type ASCII text, with very long lines (400)
Hash 5c608c2ce3ddafffc0cc4e19b7041f15
92a74d091e4b29a8ea69bdc5860943730ccb2dc6
8d75a0e8d04d80b18c5801ac8d88bc151fb0b588a759f5f0acffe1ced271d44e
Analyzer Verdict Alert fortinet Malware
GET /assets/js/jquery.inputmask.bundle.js HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: application/javascript
last-modified: Thu, 10 Jun 2021 22:18:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 24791
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
allsolarincentives.com/assets/images/arrow_right.png
66.29.146.34200 OK 233 B URL HTTP/2 allsolarincentives.com/assets/images/arrow_right.png
IP 66.29.146.34:0
File type PNG image data, 17 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 9fb5ca6fbd2f9949fb5d68e5c8966ea9
7e4ec4275d47cea2801513e43826fc6c12325e05
bcbbec70db90a7e20c1142c535c5be0c3db1934a8efa45a6d1510093644c15f0
GET /assets/images/arrow_right.png HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/assets/css/style-bottom.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: image/png
last-modified: Thu, 10 Jun 2021 22:18:04 GMT
accept-ranges: bytes
content-length: 233
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3587
Expires: Tue, 22 Nov 2022 05:02:39 GMT
Date: Tue, 22 Nov 2022 04:02:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3587
Expires: Tue, 22 Nov 2022 05:02:39 GMT
Date: Tue, 22 Nov 2022 04:02:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 481c033b9ffd030ff0de6e35cf788b47
85d3baad9217af2b5d75c019d2ef95dbb919a788
02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 65a3db77-b2e6-40b9-a776-021c2e9b56d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bubSsHbZoAMFZNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375a5aa-1286b97968cc2e4c7fe8ab29;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iGM_HV13dzz5eOswbOJfjj14jlFW4jy2YsW7eJumS_TM5TxxG8VMwQ==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 03:49:11 GMT
age: 821
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ed6b76d15fc8d6295acdb6fb47461d3
b8c928f93a8d82b48491448d811a95ad99dc6aef
de326836a9de677438b9ae724198e94348b0900c62817ff10de3677ce93fdae0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8685
x-amzn-requestid: 66455cc7-83d7-4570-99f9-5fa838da947f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrAHwKoAMFUHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee46-354d65e9609bc05647556a5a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -9tZPsMl7i5hr0N1rwJdQBLiOImuEO12RDL0pcPNjf6t-LkRbPaN2A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:02:46 GMT
etag: "b8c928f93a8d82b48491448d811a95ad99dc6aef"
content-type: image/jpeg
age: 21606
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cb92473-220a-4ebb-b8d8-6c17618bc006.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cb92473-220a-4ebb-b8d8-6c17618bc006.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bd62f641e9d58eee10e41db0fa00b5f2
4210e5f150a49d6f6ee26cbb11ded8173ab8cf74
5858451bf7cac97b8881dde7e3197110fa8639c1d94b51934859669c51221e1a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cb92473-220a-4ebb-b8d8-6c17618bc006.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4308
x-amzn-requestid: 7db10594-4acc-448d-b724-1c4bc8ec42ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrVFtRoAMFTzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee48-0a466f6b0bd48f3532216bca;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EZ6DqZY1DDMr_jSZs-aGTsD37q6dKLIEk9XJhKRTNOjjxfU-lWh8eg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:46:01 GMT
age: 22611
etag: "4210e5f150a49d6f6ee26cbb11ded8173ab8cf74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b919084-f564-465a-ac1a-59e00596bb76.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b919084-f564-465a-ac1a-59e00596bb76.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10f54d1625147d074c29bdff1897ef8f
d1359b0dcf6974d685b5c55c5789810863cce7cd
6431d25310697b4455f3e9487a11415f082d05e02d33b29cad3c8862ece28322
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b919084-f564-465a-ac1a-59e00596bb76.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8405
x-amzn-requestid: b93c951e-7aa0-468d-92b9-4079f7bfc9ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1jFbGoWIAMFZ7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63787eef-14f7c7985f46ffde1b7e3ed6;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 06:59:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3KHsHTHxpi4ia2Ka-uq0s5c543qAWVq_ZqHk4atSRMS95BaNeLMmhA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:47:12 GMT
age: 22540
etag: "d1359b0dcf6974d685b5c55c5789810863cce7cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d5a9928-3c61-44dc-af42-7d4e3c891caa.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d5a9928-3c61-44dc-af42-7d4e3c891caa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03830e3ff377979c234bf37561c54cfd
c18884ce9370c97e6b4e12ab0f827d68a1938bfa
5ba8bfc69c7eba42de4a16bf6d1e1e3570cd3918fe15cb8b2d25950ef791ddbb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d5a9928-3c61-44dc-af42-7d4e3c891caa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8365
x-amzn-requestid: e6c2ec6e-525e-4b9f-a45d-63076580df5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrpFJ3oAMF4mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee4a-576f678b6e364bca09532010;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 89jqCw8OJIxusDPoTi5-HDxWcgCfNvRrku2VFBLcQbFJwLLaZBpHGA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:44:46 GMT
age: 22686
etag: "c18884ce9370c97e6b4e12ab0f827d68a1938bfa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1372997b-0a59-409c-abfc-e43335bb3c99.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1372997b-0a59-409c-abfc-e43335bb3c99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9966de3441666a87569e1035e7849a5d
537e1122532b97637319252662d25be5edcd8009
032f9fd899993bde783fee0123a1568e65fb6dd3810666813fc878263d5b6387
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1372997b-0a59-409c-abfc-e43335bb3c99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6574
x-amzn-requestid: fd74522d-9523-48da-a94a-72ff65e6a15b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I61E_pIAMFnfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeab-6f916e413d39bea94b0e137f;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XkP6EuuMVVjQoibxUzbR2WgpH6qu7NQnO4Dab1tXV85Pe0V9PzY1tA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:02:45 GMT
age: 21607
etag: "537e1122532b97637319252662d25be5edcd8009"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 36a4966d689491a7ded61e4b2170a875
772795765b887e09a2c2a735f59d6914e1ff78f5
9271c908f7ab199ca9bf8cc724ba2b6a6e4eab5fbe7563ad8c2a45e73554ab77
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "9271C908F7AB199CA9BF8CC724BA2B6A6E4EAB5FBE7563AD8C2A45E73554AB77"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 22 Nov 2022 10:02:52 GMT
Date: Tue, 22 Nov 2022 04:02:52 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 79adbee360ddc42450b3aa58b2be57ec
a31b60f39adb91150f77edbdefcf99d1c92a0c1f
0b54c53d9e9af2b210745a181af6fff5ae7663572a846d0223112ff6053ad96a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 04:02:52 GMT
Etag: "637bda6e-117"
Server: ECS (amb/6BB6)
Content-Length: 279
allsolarincentives.com/assets/images/banner.v2.jpg
66.29.146.34200 OK 210 kB URL HTTP/2 allsolarincentives.com/assets/images/banner.v2.jpg
IP 66.29.146.34:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1280, components 3\012- data
Size 210 kB (210342 bytes)
Hash 4b11f1626dddcb4a6b47eacf3b2a5766
2b24b3d70069492411a7aaa24f7a0c679deb8f2e
2e08e8101b4758a905961741a383b0a54cd8feaa9abe08291c5bda54e99f1865
GET /assets/images/banner.v2.jpg HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/assets/css/style-bottom.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:51 GMT
content-type: image/jpeg
last-modified: Thu, 10 Jun 2021 22:18:08 GMT
accept-ranges: bytes
content-length: 210342
date: Tue, 22 Nov 2022 04:02:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 79adbee360ddc42450b3aa58b2be57ec
a31b60f39adb91150f77edbdefcf99d1c92a0c1f
0b54c53d9e9af2b210745a181af6fff5ae7663572a846d0223112ff6053ad96a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=144258
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 04:02:52 GMT
Etag: "637bda6e-117"
Expires: Wed, 23 Nov 2022 20:07:10 GMT
Last-Modified: Mon, 21 Nov 2022 20:07:10 GMT
Server: nginx
Content-Length: 279
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash af7b3370fd44cec407b6cf3035154105
bcb18466444282a417d28c87a7b9bb12ee2f7b53
be334097c0fec46c748841beb0cbed23ea8125ad40be3d9cfe545be07b86ac5e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=154801
Date: Tue, 22 Nov 2022 04:02:52 GMT
Etag: "637bf3c5-1d7"
Expires: Wed, 23 Nov 2022 23:02:53 GMT
Last-Modified: Mon, 21 Nov 2022 21:55:17 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1DyGKwk3UpWWxofK_5a_axW9Tih_2e6s_J6BGidrSh51ivdrbI_C-w==
Age: 4056
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 36a4966d689491a7ded61e4b2170a875
772795765b887e09a2c2a735f59d6914e1ff78f5
9271c908f7ab199ca9bf8cc724ba2b6a6e4eab5fbe7563ad8c2a45e73554ab77
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "9271C908F7AB199CA9BF8CC724BA2B6A6E4EAB5FBE7563AD8C2A45E73554AB77"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 22 Nov 2022 10:02:52 GMT
Date: Tue, 22 Nov 2022 04:02:52 GMT
Connection: keep-alive
api.trustedform.com/trustedform.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16690897724460.26909626058358915
50.17.203.65301 Moved Permanently 134 B URL HTTP/2 api.trustedform.com/trustedform.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16690897724460.26909626058358915
IP 50.17.203.65:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /trustedform.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16690897724460.26909626058358915 HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: awselb/2.0
date: Tue, 22 Nov 2022 04:02:52 GMT
content-type: text/html
content-length: 134
location: https://cdn.trustedform.com:443/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16690897724460.26909626058358915
X-Firefox-Spdy: h2
trk-keingent.com/scripts/push/script/l3e4o5mdvy?url=allsolarincentives.com&alturl=/
172.64.194.23200 OK 3.4 kB URL HTTP/2 trk-keingent.com/scripts/push/script/l3e4o5mdvy?url=allsolarincentives.com&alturl=/
IP 172.64.194.23:0
File type ASCII text, with very long lines (6940)
Hash d31135455c06fb280b4565a2cb120274
2e371ae87d9d24d84da22e77083aa79e5268841a
6f90718d3ff99ba19dd427ab6f8b0be5318353e899267a61fb435d1d15bf312c
GET /scripts/push/script/l3e4o5mdvy?url=allsolarincentives.com&alturl=/ HTTP/1.1
Host: trk-keingent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 04:02:52 GMT
content-type: application/javascript;charset=UTF-8
expires: 0
cache-control: no-cache, no-store, max-age=0, must-revalidate
x-xss-protection: 1; mode=block
pragma: no-cache
x-frame-options: DENY
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src https://* data:; font-src 'self' data:
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
x-content-type-options: nosniff
feature-policy: geolocation 'none'; midi 'none'; sync-xhr 'none'; microphone 'none'; camera 'none'; magnetometer 'none'; gyroscope 'none'; speaker 'none'; fullscreen 'self'; payment 'none'
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=blMwxUchFUO6YHhYEG1MmXbUImZww%2FKMlr6wtvp415RggVxTICVHnQ75xQiJcJxk%2BLE05lf0hOGrZ9xfMa0g6bNGHB9dSXXcUA8edoRgi4lM%2FA%2Bc5a4Kws%2FinzQJkMRuzuX%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76dec5a7ac688e32-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 13357f2e2d91f2e06cbdcd530ff17461
f5bfab8c49fcc5ccdb0a9e37ec3f6cf24d711a4f
bdbfbb18272ff8d283a166db9ad8ed7363987f78f390d9847bfafa9e32e6dccc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171605
Date: Tue, 22 Nov 2022 04:02:53 GMT
Etag: "637c4542-1d7"
Expires: Thu, 24 Nov 2022 03:42:58 GMT
Last-Modified: Tue, 22 Nov 2022 03:42:58 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CEksbzyd30DZitFHnVky15HYG2xE_GwHr4-efoN00-4833RzIeOhiw==
event.trk-keingent.com/register/event_log/l4ev5rz2g1
172.64.194.23200 OK 0 B URL HTTP/2 event.trk-keingent.com/register/event_log/l4ev5rz2g1
IP 172.64.194.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /register/event_log/l4ev5rz2g1 HTTP/1.1
Host: event.trk-keingent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://allsolarincentives.com/
Origin: https://allsolarincentives.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 04:02:53 GMT
content-length: 0
access-control-allow-headers: content-type
access-control-expose-headers: Authorization, Link, X-Total-Count
access-control-allow-origin: https://allsolarincentives.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 1800
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6i75uHw4LDV5PX6Decz8r%2FANms3bO2N6Ro5F3jCBFjl0DZ1nIVGvctt2HvYOJxBtiegIgvWcgmh8CRAM4AdXkTADFcoqV%2BeR9ro%2BaZz3hPInl7b0V4pPKF8mu4vWZPFbBwt0PWm3WKMm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76dec5aa1f4c7552-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
event.trk-keingent.com/register/event_log/l4ev5rz2g1
172.64.194.23200 OK 0 B URL HTTP/2 event.trk-keingent.com/register/event_log/l4ev5rz2g1
IP 172.64.194.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /register/event_log/l4ev5rz2g1 HTTP/1.1
Host: event.trk-keingent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allsolarincentives.com/
Content-type: application/json
Origin: https://allsolarincentives.com
Content-Length: 349
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 04:02:53 GMT
content-length: 0
expires: 0
cache-control: no-cache, no-store, max-age=0, must-revalidate
x-xss-protection: 1; mode=block
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
x-pushplatformapp-params:
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src https://* data:; font-src 'self' data:
x-pushplatformapp-alert: pushPlatformApp.pushSubscription.deleted
x-frame-options: DENY
access-control-expose-headers: Authorization, Link, X-Total-Count
access-control-allow-origin: https://allsolarincentives.com
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-credentials: true
x-content-type-options: nosniff
feature-policy: geolocation 'none'; midi 'none'; sync-xhr 'none'; microphone 'none'; camera 'none'; magnetometer 'none'; gyroscope 'none'; speaker 'none'; fullscreen 'self'; payment 'none'
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PZudrOBMu8w%2BDXfT1DnskTaYwf8w3r%2BC%2FzReTtwfoFMeeq3GO4%2F%2FPPi%2F1pdRxaMzc2UXEOWUO4eaxL0VwFFI%2B9HTMs1DPz0zAncVlBcarlH0lQ10pdVfGZgk5ulTVJ2vxXg%2FCmxatRBF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76dec5ac386a7552-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash f124886ebc4efa9180c52eed5dfbafda
224fef7cfc4324067e05579bb4fe0bbb7e8bd885
c7bf4af73e89f19bb82c5a7d9ffd9d479ff67a61bcec80e4544553a62e5eacb7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 22 Nov 2022 04:02:53 GMT
Last-Modified: Tue, 22 Nov 2022 03:18:59 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: e2dQMMajaqCUgerUsfJcOMeGyXIcO34asfAU-GjL70qJEyIVqPl-AQ==
Age: 2634
allsolarincentives.com/assets/images/cropped-logo-32x32.png
66.29.146.34200 OK 1.8 kB URL HTTP/2 allsolarincentives.com/assets/images/cropped-logo-32x32.png
IP 66.29.146.34:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 6929a790426c45c0dcfe93596c2f33a1
3d402255a10a9246088939f96fc4e707476ade12
ce4efba444e9f0b27361bfdc6867111d5a7de1cd50fb8fe6fd8198bfba04e352
GET /assets/images/cropped-logo-32x32.png HTTP/1.1
Host: allsolarincentives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/?reqid=2815946&bhn_mid=64647307&bhn_rid=3501683458
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 04:02:53 GMT
content-type: image/png
last-modified: Thu, 10 Jun 2021 22:18:08 GMT
accept-ranges: bytes
content-length: 1826
date: Tue, 22 Nov 2022 04:02:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
d2m2wsoho8qq12.cloudfront.net/iframe.html?token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=AB1E69ED-E8BB-83D1-7ED3-96E3E663C438&lac=F40D8E20-41F1-B4BD-E8A5-306E058A694D
143.204.42.229200 OK 1.4 kB URL HTTP/1.1 d2m2wsoho8qq12.cloudfront.net/iframe.html?token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=AB1E69ED-E8BB-83D1-7ED3-96E3E663C438&lac=F40D8E20-41F1-B4BD-E8A5-306E058A694D
IP 143.204.42.229:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ef825b8a88a51cd76a51d08dfc1d4f99
5bf247bd91a4be0c3b76a70ec8e5e462de0e9f3b
2ac453ec379c3e7b0fa69b810ecf2d6771de3e7611a2599a20f8e8ce9a240af1
GET /iframe.html?token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=AB1E69ED-E8BB-83D1-7ED3-96E3E663C438&lac=F40D8E20-41F1-B4BD-E8A5-306E058A694D HTTP/1.1
Host: d2m2wsoho8qq12.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Last-Modified: Wed, 12 Oct 2022 20:15:04 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Encoding: gzip
Date: Mon, 21 Nov 2022 16:21:20 GMT
ETag: W/"63472048-dbb"
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qWS-TWbzKaw_gjhoeazd1ssso2kAvy66Uz0T5K8sNjgGTm1c8Oycew==
Age: 42106
api.trustedform.com/certs
50.17.203.65201 Created 475 B URL HTTP/2 api.trustedform.com/certs
IP 50.17.203.65:0
File type JSON data\012- , ASCII text, with very long lines (475), with no line terminators
Hash 4af562fbe73ca4933d0a63b225864eed
5e4da2709b90e092419ba59b0e4021689b07ec10
cdab86f5b974fa61426155b735ad8fe9359716b80c044438a100ab64d12b5894
POST /certs HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 640
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 201 Created
date: Tue, 22 Nov 2022 04:02:53 GMT
content-type: application/json; charset=utf-8
content-length: 475
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/SaveDom?msn=2&pid=6f497560-e746-459b-9af8-5d03e04a0bde&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&_=734778618
54.198.13.191200 OK 20 B URL HTTP/2 create.leadid.com/2.11.9/SaveDom?msn=2&pid=6f497560-e746-459b-9af8-5d03e04a0bde&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&_=734778618
IP 54.198.13.191:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
POST /2.11.9/SaveDom?msn=2&pid=6f497560-e746-459b-9af8-5d03e04a0bde&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&_=734778618 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 512
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 04:02:54 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Thu, 22-Dec-2022 04:02:54 GMT; Max-Age=2592000; path=/
rguserid=d0de62d0-c755-4117-abc2-f36cad38ee65; expires=Thu, 22-Dec-2022 04:02:54 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Thu, 22-Dec-2022 04:02:54 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Thu, 22-Dec-2022 04:02:54 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
create.lidstatic.com/campaign/ab1e69ed-e8bb-83d1-7ed3-96e3e663c438.js?snippet_version=2
104.22.39.182200 OK 40 kB URL HTTP/2 create.lidstatic.com/campaign/ab1e69ed-e8bb-83d1-7ed3-96e3e663c438.js?snippet_version=2
IP 104.22.39.182:0
Hash 32f88b4175452c67d56528bdeeb10c6e
5dbf23cad0aa4ff6d51265b41c36143f3731f01c
d4f7d5de5610818c770893ddb1342c16edf6679032dfc887b219646238ff994f
GET /campaign/ab1e69ed-e8bb-83d1-7ed3-96e3e663c438.js?snippet_version=2 HTTP/1.1
Host: create.lidstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 04:02:53 GMT
content-type: text/javascript
x-amz-id-2: kub2SS/dM2J+dx0sh+xXU8H/KcqUc/tUnR9KnB4bZo4j48HhKHBpjw2TQEn+ksAThOO4tEt6JN8=
x-amz-request-id: XENV5E85MGQPM8GZ
x-amz-replication-status: COMPLETED
last-modified: Fri, 12 Nov 2021 01:04:08 GMT
etag: W/"92009d655f15883690eb08e4789b3fbc"
cache-control: max-age=1800
x-amz-version-id: MP6u_s_mhViOgBnCmvJMe8MBN4AykkRK
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 76dec5a7df6495e4-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/SaveDeviceId.js?lac=F40D8E20-41F1-B4BD-E8A5-306E058A694D&lck=AB1E69ED-E8BB-83D1-7ED3-96E3E663C438&methods=48&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&uuid=ef8d46dce7fa49b38a4926adb4f52028
54.198.13.191200 OK 20 B URL HTTP/2 create.leadid.com/2.11.9/SaveDeviceId.js?lac=F40D8E20-41F1-B4BD-E8A5-306E058A694D&lck=AB1E69ED-E8BB-83D1-7ED3-96E3E663C438&methods=48&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&uuid=ef8d46dce7fa49b38a4926adb4f52028
IP 54.198.13.191:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /2.11.9/SaveDeviceId.js?lac=F40D8E20-41F1-B4BD-E8A5-306E058A694D&lck=AB1E69ED-E8BB-83D1-7ED3-96E3E663C438&methods=48&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&uuid=ef8d46dce7fa49b38a4926adb4f52028 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deviceid.trueleadid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 04:02:54 GMT
content-type: text/javascript;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Thu, 22-Dec-2022 04:02:54 GMT; Max-Age=2592000; path=/
rguserid=27d6d469-075a-4f7a-91be-6c6ea1bc4ad2; expires=Thu, 22-Dec-2022 04:02:54 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Thu, 22-Dec-2022 04:02:54 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Thu, 22-Dec-2022 04:02:54 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 30e27a604c48b9620046b60ed73d8085
517b4d17bf6a470251f584f21cff2ab95fdffb07
c3f967347f4a1e2e80a91366f0d1dc312716db3f6a0595ae4c3baf2a527246e7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=102042
Date: Tue, 22 Nov 2022 04:02:55 GMT
Etag: "637b294b-1d7"
Expires: Wed, 23 Nov 2022 08:23:37 GMT
Last-Modified: Mon, 21 Nov 2022 07:31:23 GMT
Server: ECS (dcb/7F60)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hEQxojUBZeA_YPer0_bcQ9vpyhRQTUXRJRi3mhhN8-TGzX0sZ8NNMw==
Age: 3134
info.leadid.com/info?msn=5&pid=6f497560-e746-459b-9af8-5d03e04a0bde&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&_=734778621
54.158.214.110200 OK 0 B URL HTTP/2 info.leadid.com/info?msn=5&pid=6f497560-e746-459b-9af8-5d03e04a0bde&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&_=734778621
IP 54.158.214.110:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /info?msn=5&pid=6f497560-e746-459b-9af8-5d03e04a0bde&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&_=734778621 HTTP/1.1
Host: info.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 629
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: awselb/2.0
date: Tue, 22 Nov 2022 04:02:55 GMT
content-type: text/plain; charset=utf-8
content-length: 0
X-Firefox-Spdy: h2
info.leadid.com/info.iframe?msn=5&pid=6f497560-e746-459b-9af8-5d03e04a0bde&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&_=734778622
54.158.214.110200 OK 0 B URL HTTP/2 info.leadid.com/info.iframe?msn=5&pid=6f497560-e746-459b-9af8-5d03e04a0bde&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&_=734778622
IP 54.158.214.110:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /info.iframe?msn=5&pid=6f497560-e746-459b-9af8-5d03e04a0bde&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&_=734778622 HTTP/1.1
Host: info.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------421177531217349184452041230984
Content-Length: 1318
Origin: https://allsolarincentives.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: awselb/2.0
date: Tue, 22 Nov 2022 04:02:56 GMT
content-type: text/plain; charset=utf-8
content-length: 0
X-Firefox-Spdy: h2
api.trustedform.com/certs/4c2d9e65aa65ffdee04ca38ab7dffc5a6be83477/events
50.17.203.65204 No Content 0 B URL HTTP/2 api.trustedform.com/certs/4c2d9e65aa65ffdee04ca38ab7dffc5a6be83477/events
IP 50.17.203.65:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /certs/4c2d9e65aa65ffdee04ca38ab7dffc5a6be83477/events HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 502
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 22 Nov 2022 04:02:56 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2
cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16690897724460.26909626058358915
54.230.111.111200 OK 0 B URL HTTP/2 cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16690897724460.26909626058358915
IP 54.230.111.111:0
GET /bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=16690897724460.26909626058358915 HTTP/1.1
Host: cdn.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allsolarincentives.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 22 Nov 2022 04:02:54 GMT
last-modified: Mon, 24 Oct 2022 17:48:28 GMT
x-amz-version-id: zf4ijuzvSsU0Tal.ZZJLDHqE7VqwjEi9
etag: W/"647d5353b63df3b4ed201da87c98cc2d"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KbIGpAlUm6C3Z38NN01ZBdiPhYeD6IV70qTX5HKncMdirmkEl9B40g==
X-Firefox-Spdy: h2
deviceid.trueleadid.com/iframe.html?token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=AB1E69ED-E8BB-83D1-7ED3-96E3E663C438&lac=F40D8E20-41F1-B4BD-E8A5-306E058A694D
34.194.94.191200 OK 0 B URL HTTP/2 deviceid.trueleadid.com/iframe.html?token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=AB1E69ED-E8BB-83D1-7ED3-96E3E663C438&lac=F40D8E20-41F1-B4BD-E8A5-306E058A694D
IP 34.194.94.191:0
GET /iframe.html?token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=AB1E69ED-E8BB-83D1-7ED3-96E3E663C438&lac=F40D8E20-41F1-B4BD-E8A5-306E058A694D HTTP/1.1
Host: deviceid.trueleadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d2m2wsoho8qq12.cloudfront.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 04:02:54 GMT
content-type: text/html
server: nginx
last-modified: Thu, 22 Sep 2022 15:32:09 GMT
etag: W/"632c7ff9-1049"
expires: Wed, 23 Nov 2022 04:02:54 GMT
p3p: CP="NOI DSP COR NID CUR ADM DEV OUR BUS"
cache-control: max-age=86400, public
content-encoding: gzip
X-Firefox-Spdy: h2
create.lidstatic.com/campaign/fc0690c0-0564-e295-a5f5-a161835c894f.js?snippet_version=2
104.22.39.182200 OK 0 B URL HTTP/2 create.lidstatic.com/campaign/fc0690c0-0564-e295-a5f5-a161835c894f.js?snippet_version=2
IP 104.22.39.182:0
GET /campaign/fc0690c0-0564-e295-a5f5-a161835c894f.js?snippet_version=2 HTTP/1.1
Host: create.lidstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 04:02:53 GMT
content-type: text/javascript
x-amz-id-2: 2RLLTJfBc3zUpRD0A5QH3MxR9wXo2C9FAalmmq9REIzskLQ6EUa48SIkAL+2nTzqKnnRaneRKjk=
x-amz-request-id: XENXS46Z9MTC47JB
x-amz-replication-status: COMPLETED
last-modified: Fri, 12 Nov 2021 01:29:28 GMT
etag: W/"a6c7ac3853f405ee86360e1e7cae6877"
cache-control: max-age=1800
x-amz-version-id: 9eo3W8._zntZ4j.NDzuhZaRXb.6ja.Q2
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 76dec5a7ef6995e4-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/InitFormData?msn=4&pid=6f497560-e746-459b-9af8-5d03e04a0bde&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&_=734778620
54.198.13.191200 OK 0 B URL HTTP/2 create.leadid.com/2.11.9/InitFormData?msn=4&pid=6f497560-e746-459b-9af8-5d03e04a0bde&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&_=734778620
IP 54.198.13.191:0
POST /2.11.9/InitFormData?msn=4&pid=6f497560-e746-459b-9af8-5d03e04a0bde&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&_=734778620 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 1080
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 04:02:54 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Thu, 22-Dec-2022 04:02:54 GMT; Max-Age=2592000; path=/
rguserid=56300213-3f94-4a92-9a97-dbc8f9c84e49; expires=Thu, 22-Dec-2022 04:02:54 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Thu, 22-Dec-2022 04:02:54 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Thu, 22-Dec-2022 04:02:54 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/InitFormData?msn=3&pid=6f497560-e746-459b-9af8-5d03e04a0bde&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&_=734778619
54.198.13.191200 OK 0 B URL HTTP/2 create.leadid.com/2.11.9/InitFormData?msn=3&pid=6f497560-e746-459b-9af8-5d03e04a0bde&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&_=734778619
IP 54.198.13.191:0
POST /2.11.9/InitFormData?msn=3&pid=6f497560-e746-459b-9af8-5d03e04a0bde&token=40FBB0F8-8793-C9F6-253D-3DFC1BB1A71A&_=734778619 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 5553
Origin: https://allsolarincentives.com
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 04:02:54 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Thu, 22-Dec-2022 04:02:54 GMT; Max-Age=2592000; path=/
rguserid=6d2adf58-0dbe-4976-bb00-654869cf5b51; expires=Thu, 22-Dec-2022 04:02:54 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Thu, 22-Dec-2022 04:02:54 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Thu, 22-Dec-2022 04:02:54 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.trustedform.com/trustedform-1.8.30.js
54.230.111.111200 OK 0 B URL HTTP/2 cdn.trustedform.com/trustedform-1.8.30.js
IP 54.230.111.111:0
GET /trustedform-1.8.30.js HTTP/1.1
Host: cdn.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 24 Oct 2022 17:48:28 GMT
x-amz-version-id: C4KqA2Ml8NtIH1tcFWoBNv3GWDN3hi8K
server: AmazonS3
content-encoding: gzip
date: Tue, 22 Nov 2022 04:02:54 GMT
etag: W/"a5b5dad6197e972a745a719bfccfb334"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LK3Xw2PF6JXV-oULatqAe4XjA4oP-h0ZKcnJO9-uTDEVW5NRvrZksw==
age: 1
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto
IP 142.250.74.10:0
GET /css?family=Roboto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allsolarincentives.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 22 Nov 2022 04:02:51 GMT
date: Tue, 22 Nov 2022 04:02:51 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2