r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b720c31d9c036cd2ef10e35fa29f5345
ac625d2e69284e5080bede4b37c31af62c26338b
323b76eceb5d3ad339a1c55bfa7eea4e39741258e08d5005b691f712a9e9c81c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "323B76ECEB5D3AD339A1C55BFA7EEA4E39741258E08D5005B691F712A9E9C81C"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4320
Expires: Sat, 05 Nov 2022 07:20:28 GMT
Date: Sat, 05 Nov 2022 06:08:28 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cd02b32dbc8416dcb10b468af2166c33
503a9c4cabdb19dfde769f5e2d3ef919c818c364
46ca638514d9d4cf252762fdac37a5e7b1da550fcc9911070b0b26a6aa6150a7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4799
Cache-Control: max-age=103356
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 06:08:28 GMT
Etag: "6364dbd9-1d7"
Expires: Sun, 06 Nov 2022 10:51:04 GMT
Last-Modified: Fri, 04 Nov 2022 09:31:05 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cd02b32dbc8416dcb10b468af2166c33
503a9c4cabdb19dfde769f5e2d3ef919c818c364
46ca638514d9d4cf252762fdac37a5e7b1da550fcc9911070b0b26a6aa6150a7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4799
Cache-Control: max-age=103356
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 06:08:28 GMT
Etag: "6364dbd9-1d7"
Expires: Sun, 06 Nov 2022 10:51:04 GMT
Last-Modified: Fri, 04 Nov 2022 09:31:05 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 078950c3ba9ad01927f3da494b1d1de4
443c8a8247e4e3e04c14d21e0227fc4e8f396142
dd5dd09fec51669adf36b3014bbf65d7bff608f72018d037f9ed9b414675037c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DD5DD09FEC51669ADF36B3014BBF65D7BFF608F72018D037F9ED9B414675037C"
Last-Modified: Fri, 04 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17599
Expires: Sat, 05 Nov 2022 11:01:47 GMT
Date: Sat, 05 Nov 2022 06:08:28 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bcg+B3RQs80e9up6GZzFZUls5Rd6Wr0SucJc0orsaX41XBkYKf3OU8MoWRNF3JtoQoo80mRmvb4=
x-amz-request-id: ND6KP30CDCXPSR75
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 05 Nov 2022 05:47:05 GMT
age: 1283
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 06:08:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
byfinancialservices.com/es/ulstamsnuio
66.29.145.237301 Moved Permanently 254 B URL HTTP/1.1 byfinancialservices.com/es/ulstamsnuio
IP 66.29.145.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 053333a2814c66e847719cee648f1d8a
b9c7ff42900ed1b801334134d1b4273d1a9a3967
b73f9175013f999b3c922ba8f887490d95bd83c518442d0baa65a636c89a0555
Analyzer Verdict Alert fortinet Malware
GET /es/ulstamsnuio HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 05 Nov 2022 06:08:28 GMT
Server: Apache
Location: https://byfinancialservices.com/es/ulstamsnuio
Content-Length: 254
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 42a0adacced30df52cf7cad3e200036d
f7b4114defc61f806dbb74fd228bca155d52362a
e4928481739a2a75dce86c03b355c6dff507426e8d851cba5ca8537b1be87c20
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3552
Cache-Control: max-age=97050
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 06:08:29 GMT
Etag: "6364c817-1d7"
Expires: Sun, 06 Nov 2022 09:05:59 GMT
Last-Modified: Fri, 04 Nov 2022 08:06:47 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.162.52.254101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.52.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: i14OwZ2oRlqx3lI8g/MN6g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: S9FqKd7XNu236xM1fQgR0IWRLWw=
byfinancialservices.com/es/ulstamsnuio
66.29.145.237404 Not Found 9.6 kB URL HTTP/1.1 byfinancialservices.com/es/ulstamsnuio
IP 66.29.145.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902), with CRLF, LF line terminators
Hash a5fc3c34532dc3afe69e66847eaa0abc
ac5e1a282c1c927a6929e85d28ab4898de79e445
447427b482c64bc97ce1fd74e9dce1b607b156c080c46fc24b9bca021f4581d6
Analyzer Verdict Alert fortinet Malware
GET /es/ulstamsnuio HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Sat, 05 Nov 2022 06:08:29 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://byfinancialservices.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9642
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
byfinancialservices.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.12
66.29.145.237200 OK 7.6 kB URL HTTP/1.1 byfinancialservices.com/wp-includes/css/dist/block-library/style.min.css?ver=5.4.12
IP 66.29.145.237:0
File type ASCII text, with very long lines (28088)
Hash c6ff3e54eda2b13061445deccc15190d
86501cd4f7ca6363326b4941856fec73fc625b83
4e4d6d9a73d0e58cda6d288c4b01ea3ba68c3cb25d65eff50f256d533406e417
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.4.12 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:30 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7642
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8131
Expires: Sat, 05 Nov 2022 08:24:01 GMT
Date: Sat, 05 Nov 2022 06:08:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60f419f1-9fac-4d40-ab08-9e4c8d715092.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60f419f1-9fac-4d40-ab08-9e4c8d715092.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ef4c410bf60b7be505437f6bd0741cc
fc8efa7e342e486fc03eba5f4b9a13897e3d6184
c4d4748d9997f417da33dc27c283280fa662f20af21b5f723864b08a98375cb4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60f419f1-9fac-4d40-ab08-9e4c8d715092.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13204
x-amzn-requestid: 17c52ec3-3ba2-455b-b191-bc4716a80c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bGHlcEhLIAMFomg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63658622-4c003bdf6874045753a27045;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 21:37:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xNbNV2HriMoa0a1lhJYPyRzPRchzzPlxoitgxm5M5HNySj_lCLKaOg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 22:12:00 GMT
age: 28590
etag: "fc8efa7e342e486fc03eba5f4b9a13897e3d6184"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ee7867-cfc1-4e91-8bfe-c86e9e0369d8.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ee7867-cfc1-4e91-8bfe-c86e9e0369d8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b1799c94891598120fab550073379516
ed51b7d2c443aec199c1605b5ebe2e1e25f287a3
5f3f2ffdc992d917d8d3b5890c0ad9810b9699c38e932c0d4d32625346eb87a9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ee7867-cfc1-4e91-8bfe-c86e9e0369d8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6228
x-amzn-requestid: 788a9f03-5b3f-446c-a02c-844fe2f07221
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ameKPFJAoAMFy1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358dd74-15bffc073dae60355b484cbb;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 07:10:44 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xcbY0tXiao3X4oGxJhG1SUGhSs4Xw-gFJuZzHRsEKrGFKM9ZSJyJhA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 07:26:20 GMT
age: 81730
etag: "ed51b7d2c443aec199c1605b5ebe2e1e25f287a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ae2b8d827fb2c8bef64febcd36f1645
f7705fcd2d91ce90c58e79324cce1e3abba6c1c8
2dc55e97ef3a85fccb104b80161a8bac16b12d37527c336563677432584c7ad5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11421
x-amzn-requestid: 8436166b-f342-44e9-9a31-e25dcaa7b85c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a2gEOEYRIAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635f46e7-0616a6b95503fffd4f597509;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 03:54:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: g3OtcJnT2JfzIAvUjoLvC8pOzfwGFQ-M0cH4uwNSVcr2T9jYgCihTw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 23:22:55 GMT
age: 24335
etag: "f7705fcd2d91ce90c58e79324cce1e3abba6c1c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F621f6bc7-a17b-4b8f-95ef-65d27abd5513.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F621f6bc7-a17b-4b8f-95ef-65d27abd5513.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1fc9b492d6cc0a516998cec9fa5dc2a0
1082e5e96362a4960929c59ff1d4d995cb28f40d
3dc82302d8615c615526cc9a828844d291d775d05ff7174f8d6b82b7172b2908
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F621f6bc7-a17b-4b8f-95ef-65d27abd5513.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9006
x-amzn-requestid: 1a0ea36b-a610-485c-be62-b6950288afbc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bGIVGGG7oAMFXJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63658753-2fc408853092bf61646b7584;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 21:42:43 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FECfZRghEz7FNpuhfzP1Qb3u9K6FmlFnMuKCQwUJ7LbJoMGrpLXbKQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 22:09:46 GMT
age: 28724
etag: "1082e5e96362a4960929c59ff1d4d995cb28f40d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F026ddf6a-a4ad-4c8d-9da5-41a184265e24.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F026ddf6a-a4ad-4c8d-9da5-41a184265e24.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8fd1a79378f8a426e682c599e64e9bdf
d223df60a7340cf3745e981f19c1d3fd9c75d44a
14e3192a87f45d7ed4f809c528e1631bba69e69fc541637574ae3c3f70540408
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F026ddf6a-a4ad-4c8d-9da5-41a184265e24.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4749
x-amzn-requestid: d6545893-af81-4e76-bd31-cd80a0658a28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: asg4QH3HoAMFX7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635b4834-015a8ad175cc388576dcddc5;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 03:10:44 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: X-jIgJtpgLpo-iwJ6pOGyRMrx88ORCvNJx0IpISDxNlz2YgeG5x9jA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 21:52:35 GMT
age: 29755
etag: "d223df60a7340cf3745e981f19c1d3fd9c75d44a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b52c02c-8a68-42f2-bc8f-56010bc15a2e.jpeg
34.120.237.76200 OK 3.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b52c02c-8a68-42f2-bc8f-56010bc15a2e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0b2b9ab1b73cef60cf49ce4398c23a14
6edbed6ec0647d1372044db2d99986c605b563ff
4e1bd4f4117b096ae9ef3a7bab3ed587d5bf58785e0b237279ccec4f827e9236
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b52c02c-8a68-42f2-bc8f-56010bc15a2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 3262
x-amzn-requestid: c66b3488-5d8c-4c28-8cf4-d9d2854214f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apTwcGOIIAMFa-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635a0002-36d9227016e6fe4c460068dd;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 03:50:26 GMT
x-amz-cf-pop: YVR50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: oHL83PoyTXjUIoUSLkMJ70A6GATSKs_kebLcmp7rmXdY0_2txtg3cQ==
via: 1.1 cb1891d89936ec6091c2e72547da715e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 21:52:17 GMT
age: 29773
etag: "6edbed6ec0647d1372044db2d99986c605b563ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash a2f6c296003d839bdee766ef4082e376
013ae64b10cb1355ae9b6ba38dcfa79f71a9b505
703d6582ab3344d6e4a0d5b7e0c9983b8f7e8179d73dd6584c37bbccc8c84308
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 06:08:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8131
Expires: Sat, 05 Nov 2022 08:24:01 GMT
Date: Sat, 05 Nov 2022 06:08:30 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d65c94a3bfe8605059e5e626ea0fa57e
b0fbc3577331b82efc8e320095b8d8705a6360d3
0878edd256a972f526d7053cdebceb28241db5662cc7660a10f1b4c3430c43c6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 06:08:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
byfinancialservices.com/wp-content/plugins/salient-social/css/style.css?ver=1.1
66.29.145.237200 OK 3.2 kB URL HTTP/1.1 byfinancialservices.com/wp-content/plugins/salient-social/css/style.css?ver=1.1
IP 66.29.145.237:0
File type ASCII text, with CRLF line terminators
Hash 2a016449302be4caac935a6f206f7066
0526631c26e0d20d72a6edb1df10e71d24528085
5e520d085447a72c025661e91af6ccad7861634fea54cd39ba6a47b7e816a2ea
GET /wp-content/plugins/salient-social/css/style.css?ver=1.1 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:30 GMT
Server: Apache
Last-Modified: Thu, 23 Sep 2021 14:41:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3157
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8131
Expires: Sat, 05 Nov 2022 08:24:01 GMT
Date: Sat, 05 Nov 2022 06:08:30 GMT
Connection: keep-alive
www.googletagmanager.com/gtag/js?id=UA-172403094-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-172403094-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 2c47f709ef15661626592f7522d83dfc
40141fb1c0ce6004a7362902fa81a16f6ba4c723
8af853af878f69b0ee2b83e5886f6695dda6d11dbdd8f08e8f9cad107a0e74a4
GET /gtag/js?id=UA-172403094-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 05 Nov 2022 06:08:30 GMT
expires: Sat, 05 Nov 2022 06:08:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43534
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash a2f6c296003d839bdee766ef4082e376
013ae64b10cb1355ae9b6ba38dcfa79f71a9b505
703d6582ab3344d6e4a0d5b7e0c9983b8f7e8179d73dd6584c37bbccc8c84308
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 06:08:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d65c94a3bfe8605059e5e626ea0fa57e
b0fbc3577331b82efc8e320095b8d8705a6360d3
0878edd256a972f526d7053cdebceb28241db5662cc7660a10f1b4c3430c43c6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 06:08:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
byfinancialservices.com/wp-content/themes/salient/css/plugins/jquery.fancybox.css?ver=3.3.1
66.29.145.237200 OK 4.0 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/plugins/jquery.fancybox.css?ver=3.3.1
IP 66.29.145.237:0
Hash eba2dcef3aad47e6c781c04184a548da
3e867c36f8817445174a733e48b7d548f5d129d8
84ebba15d2507c572be7232317df8259e448b80f58e507b04faeb0f58d93eee9
GET /wp-content/themes/salient/css/plugins/jquery.fancybox.css?ver=3.3.1 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:30 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4018
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-content/plugins/uk-cookie-consent/assets/css/style.css?ver=5.4.12
66.29.145.237200 OK 1.1 kB URL HTTP/1.1 byfinancialservices.com/wp-content/plugins/uk-cookie-consent/assets/css/style.css?ver=5.4.12
IP 66.29.145.237:0
File type ASCII text, with CRLF line terminators
Hash 70bfd015aacf0f89698e53e73322a4d2
27528d8beb369f74e25a584862566d94d438f0b3
d742ed582c9aa664f8841ec9cade44c45624ada242f3e13d47150fddb4b9e88a
GET /wp-content/plugins/uk-cookie-consent/assets/css/style.css?ver=5.4.12 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:30 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1085
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-content/themes/salient/style.css?ver=12.1.0
66.29.145.237200 OK 289 B URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/style.css?ver=12.1.0
IP 66.29.145.237:0
File type ASCII text, with CRLF line terminators
Hash c82f313ee1f52776f9d2dd92159d82b3
84560b25e229a748565f33e14d80a4dcd90b7895
dcf801d5e98e935cfbbc18f495c6dfe6990e88cb3df08dc664c93148817fef95
GET /wp-content/themes/salient/style.css?ver=12.1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:30 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 289
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-content/themes/salient/css/grid-system.css?ver=12.1.0
66.29.145.237200 OK 6.9 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/grid-system.css?ver=12.1.0
IP 66.29.145.237:0
File type ASCII text, with CRLF line terminators
Hash 17062a5c66e5645a99b8427d9e78aa58
ec30e2b54c071b0d7a2b949154e54f62fa45a56e
6d79c88050510fef6f6f367ebbe37dd6a092c001ace9a5c2debc11ec8e7ffc9b
GET /wp-content/themes/salient/css/grid-system.css?ver=12.1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:30 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6854
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-content/themes/salient/css/font-awesome.min.css?ver=4.6.4
66.29.145.237200 OK 10 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/font-awesome.min.css?ver=4.6.4
IP 66.29.145.237:0
File type ASCII text, with very long lines (30343)
Hash f8d7770aaccdc24f07d917d23a250cb4
442a55f00f0e4a74f7729e5d84de60f64adc042d
77ccdb7751a9992a021389837ff9c85b9dac624c410bf7c811015caba28e013c
GET /wp-content/themes/salient/css/font-awesome.min.css?ver=4.6.4 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:30 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10246
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-content/themes/salient/css/responsive.css?ver=12.1.0
66.29.145.237200 OK 16 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/responsive.css?ver=12.1.0
IP 66.29.145.237:0
File type ASCII text, with CRLF line terminators
Hash b9cfa5df8a1f2e6966bfc82507343d33
65a9ae216d4e748f7d23324d38c32e5c7c1326d0
2fd1c819b5ac6ef5d567cbd48abdc8afbc8046db64717d9731159b40325658c1
GET /wp-content/themes/salient/css/responsive.css?ver=12.1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 15717
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-content/themes/salient-child/style.css?ver=12.1.0
66.29.145.237200 OK 176 B URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient-child/style.css?ver=12.1.0
IP 66.29.145.237:0
File type ASCII text, with CRLF, CR, LF line terminators
Hash 93e7407b4efc65769ce37dda60a5261d
6cd5ccb1371c4790172f42b54c9c16db51783a68
a7ebc6c7d62123db671d0c10ab39b31dc2a7cf74328f4cbb3c8ce6cac2c4126d
GET /wp-content/themes/salient-child/style.css?ver=12.1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 176
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-content/themes/salient/css/salient-dynamic-styles.css?ver=51214
66.29.145.237200 OK 17 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/salient-dynamic-styles.css?ver=51214
IP 66.29.145.237:0
File type assembler source, ASCII text, with CRLF line terminators
Hash 840cc3a2b682ef91f4e822fe178910a6
4b35fe9b1d868fcc7d731c1248c25dac7abf0a90
464e81ed64d0299ae1be01271b2d085e4dd2d740a1c6c0274c6bea60552b5af8
GET /wp-content/themes/salient/css/salient-dynamic-styles.css?ver=51214 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Fri, 24 Sep 2021 11:59:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 16612
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
66.29.145.237200 OK 4.0 kB URL HTTP/1.1 byfinancialservices.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 66.29.145.237:0
File type ASCII text, with very long lines (9960)
Hash f56e56fcd4eaa34a30e9a3d14f535624
397592252a3b00c7b244533eb826a2ecf36ded06
1ab6d1ddbecea70518057c95795bc41a95861963711cc860853ef835590a189f
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:22:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4018
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/css/skin-material.css?ver=12.1.0
66.29.145.237200 OK 15 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/skin-material.css?ver=12.1.0
IP 66.29.145.237:0
File type ASCII text, with CRLF line terminators
Hash 90dbac8c908e58f3de701e573300cec5
2abe58320474f53ad5f0ad3492c3ac2f23876dab
fc08abe6ee5cb366062d70b07c660df5f55e3fa226c1e40eaf80e59cf9db1d0f
GET /wp-content/themes/salient/css/skin-material.css?ver=12.1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 15229
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-content/plugins/salient-social/js/salient-social.js?ver=1.1
66.29.145.237200 OK 2.1 kB URL HTTP/1.1 byfinancialservices.com/wp-content/plugins/salient-social/js/salient-social.js?ver=1.1
IP 66.29.145.237:0
File type ASCII text, with CRLF, LF line terminators
Hash 572d0cc78f9c4775ebc17abd32fa7c00
182bf60e3925cad6a298a3223bcf3ce3f5d5e9c2
0c799349a5343e6694b2fbf07fb81616750755f79b8c14fce93e8762567f5461
GET /wp-content/plugins/salient-social/js/salient-social.js?ver=1.1 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:42:36 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2120
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
66.29.145.237200 OK 34 kB URL HTTP/1.1 byfinancialservices.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 66.29.145.237:0
File type ASCII text, with very long lines (31997)
Hash afb006d2dc5590589029bb46c0be238a
bfec2f6488f09c763a2dcb794ff1e6e3c115d9a2
d3357449982048569f2d81bfaf5827fcc7c8f978b0b156b80e513acf58df38ce
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 10:57:43 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 33781
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/css/style.css?ver=12.1.0
66.29.145.237200 OK 86 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/style.css?ver=12.1.0
IP 66.29.145.237:0
File type ASCII text, with CRLF, CR line terminators
Hash 052aa66675208b8c54331a1835f560ee
f433627ee8cc54cf5b6c55209dc8ef8f5a12a858
0875569a54570fae8384309b8589c5402784974626888a95e406151a25ca3e73
GET /wp-content/themes/salient/css/style.css?ver=12.1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:30 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
byfinancialservices.com/wp-content/plugins/uk-cookie-consent/assets/js/uk-cookie-consent-js.js?ver=2.3.0
66.29.145.237200 OK 668 B URL HTTP/1.1 byfinancialservices.com/wp-content/plugins/uk-cookie-consent/assets/js/uk-cookie-consent-js.js?ver=2.3.0
IP 66.29.145.237:0
File type ASCII text, with CRLF, LF line terminators
Hash dc8cbdb1a63e8cc9556afd87a194cf69
1c641ffd607faee7e05bfb1e9e9c38c23ad59297
9ac1feb88f46cae4cc81f9911cb0e979ad1928951f6b5481c27cc7a63ce7a38b
GET /wp-content/plugins/uk-cookie-consent/assets/js/uk-cookie-consent-js.js?ver=2.3.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:41:30 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 668
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/plugins/js_composer_salient/assets/css/js_composer.min.css?ver=6.2.0
66.29.145.237200 OK 14 kB URL HTTP/1.1 byfinancialservices.com/wp-content/plugins/js_composer_salient/assets/css/js_composer.min.css?ver=6.2.0
IP 66.29.145.237:0
File type CSV text\012- , ASCII text, with very long lines (353)
Hash aa9a35b3c0c97f1c630c57df75e6f797
20921bb300360e01726bab1fe8cced86891bd436
cac11d258e41fa849cbb79c3181822fe9b28a7f71631927940f9c62c179e0f2c
GET /wp-content/plugins/js_composer_salient/assets/css/js_composer.min.css?ver=6.2.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 13537
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
byfinancialservices.com/wp-content/themes/salient/js/third-party/jquery.easing.js?ver=1.3
66.29.145.237200 OK 1.9 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/third-party/jquery.easing.js?ver=1.3
IP 66.29.145.237:0
File type Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 79e820d2e5f6e372773d4a20fe6a6e99
7d9eae28af60ef86fd8fc2c39a57e347f41e7376
d67e6e8f130215c9721ef2599b747ce86c43e3f7a6e97d569ff8a9bd03a66b0f
GET /wp-content/themes/salient/js/third-party/jquery.easing.js?ver=1.3 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:51:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1942
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/js/third-party/jquery.mousewheel.js?ver=3.1.13
66.29.145.237200 OK 1.2 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/third-party/jquery.mousewheel.js?ver=3.1.13
IP 66.29.145.237:0
File type ASCII text, with very long lines (2609), with CRLF, LF line terminators
Hash bd732d9fbd51e43b70fbe07590d3882c
9e6bd8013d65387799e2ff3ead53de4a66bf4f49
948aae3d6ef01bfe28876579697c4edab0b49f5d861d8b401314d521de4e1c77
GET /wp-content/themes/salient/js/third-party/jquery.mousewheel.js?ver=3.1.13 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:09:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1249
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 06:08:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 06:08:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
byfinancialservices.com/wp-content/themes/salient/js/priority.js?ver=12.1.0
66.29.145.237200 OK 2.0 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/priority.js?ver=12.1.0
IP 66.29.145.237:0
File type ASCII text, with very long lines (611), with CRLF, LF line terminators
Hash 5064faf3766bdafb654c6159999f76a5
57fed6db0835ba31456ce85ccb9d86149409eca8
912696e56d25ded83d35947e5a47158c2b5daf0d2c410a1cb2e1d31115ee8724
GET /wp-content/themes/salient/js/priority.js?ver=12.1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:52:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1960
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 06:08:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 06:08:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://byfinancialservices.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 05:42:51 GMT
expires: Fri, 03 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 174340
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
byfinancialservices.com/wp-content/themes/salient/js/third-party/transit.js?ver=0.9.9
66.29.145.237200 OK 3.8 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/third-party/transit.js?ver=0.9.9
IP 66.29.145.237:0
File type ASCII text, with very long lines (7281), with CRLF, LF line terminators
Hash 4515ec54419c4018506b04342d2f51d3
398b742a6489e31946fbc79406baf954063fc0a8
182a2f51baaa1ea9dc827361b280f4a42d3fee1eac3f7c484dff41fdfb1fbccf
GET /wp-content/themes/salient/js/third-party/transit.js?ver=0.9.9 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:04:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3764
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 06:08:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
byfinancialservices.com/wp-content/plugins/salient-portfolio/js/third-party/imagesLoaded.min.js?ver=4.1.4
66.29.145.237200 OK 1.8 kB URL HTTP/1.1 byfinancialservices.com/wp-content/plugins/salient-portfolio/js/third-party/imagesLoaded.min.js?ver=4.1.4
IP 66.29.145.237:0
File type ASCII text, with very long lines (5478), with CRLF, LF line terminators
Hash 59525a5d0adc98fcba412799704316eb
497e212631f9bb5eaf29ed90a9e3bdce32ef9d42
d34c5fbe495c90ceca3ffed9c796e577c77dbc7e4aaf62c8d21b86574cdfb707
GET /wp-content/plugins/salient-portfolio/js/third-party/imagesLoaded.min.js?ver=4.1.4 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:10:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1817
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/js/third-party/waypoints.js?ver=4.0.1
66.29.145.237200 OK 3.7 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/third-party/waypoints.js?ver=4.0.1
IP 66.29.145.237:0
File type Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash e0f0340f836fcaf7bd8560fad6814908
20e62f3882b31eda65f98217019159fa2b70a7e3
278c01b215a01a7a7451efbba913f6a6e09512d370f21c26d682dd078899f4ad
GET /wp-content/themes/salient/js/third-party/waypoints.js?ver=4.0.1 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:16:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3725
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/js/third-party/hoverintent.js?ver=1.9
66.29.145.237200 OK 948 B URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/third-party/hoverintent.js?ver=1.9
IP 66.29.145.237:0
File type ASCII text, with very long lines (1933), with CRLF, LF line terminators
Hash de6ca13baca1da18678662e201636c6b
acc64005e33a24a25b6c63f7032d5dcd69dc5a6d
15ad9b7978e78ea0680fb057a5ef1938c92f9ea4587a2cb99bd47c49ce5f10d3
GET /wp-content/themes/salient/js/third-party/hoverintent.js?ver=1.9 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 10:58:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 948
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/js/third-party/jquery.fancybox.min.js?ver=3.3.1
66.29.145.237200 OK 22 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/third-party/jquery.fancybox.min.js?ver=3.3.1
IP 66.29.145.237:0
File type HTML document, ASCII text, with very long lines (31972)
Hash e2a4b4406e7f8f3d729098e1fd42ad3d
6b1fc465689ee2b6a935bc231c3c3fe44698d159
d9722e115e13946d6b7f271e2afc1ae9fb5343de13d93b287a11fd85009d3408
GET /wp-content/themes/salient/js/third-party/jquery.fancybox.min.js?ver=3.3.1 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:13:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 22017
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/js/third-party/superfish.js?ver=1.4.8
66.29.145.237200 OK 2.9 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/third-party/superfish.js?ver=1.4.8
IP 66.29.145.237:0
Hash 09caca4d530cc0db4bb7ace04cc5b322
f0ff751513b52bc424c3afff23e0945fec45895e
de2f85295e6ef976df309868e65d55952c41b07e97d75cb473eef6a15103dcdb
GET /wp-content/themes/salient/js/third-party/superfish.js?ver=1.4.8 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 10:56:30 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2945
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/plugins/salient-core/js/third-party/touchswipe.min.js?ver=1.0
66.29.145.237200 OK 3.3 kB URL HTTP/1.1 byfinancialservices.com/wp-content/plugins/salient-core/js/third-party/touchswipe.min.js?ver=1.0
IP 66.29.145.237:0
File type ASCII text, with very long lines (9358), with CRLF, LF line terminators
Hash 5c9e0353e84fa6718401795147bd0a7d
c95eedc083a229149660da49a867514a397095f5
93ddedb2d7a56d152f090eee96ae26a603241837146f8fd20cf6bba389ded34d
GET /wp-content/plugins/salient-core/js/third-party/touchswipe.min.js?ver=1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:02:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3296
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-includes/js/wp-embed.min.js?ver=5.4.12
66.29.145.237200 OK 768 B URL HTTP/1.1 byfinancialservices.com/wp-includes/js/wp-embed.min.js?ver=5.4.12
IP 66.29.145.237:0
File type ASCII text, with very long lines (1392)
Hash 352a066efd0fdb0db61c9249c15552e6
6072996b6f4caa8b7e575ca7a1e3ddfc0003ecf6
fa138ceb67505ce03d99ea9263d0dfd6c9cefd56cf792bdcdec05fff44284515
GET /wp-includes/js/wp-embed.min.js?ver=5.4.12 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 10:58:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 768
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/plugins/js_composer_salient/assets/js/dist/js_composer_front.min.js?ver=6.2.0
66.29.145.237200 OK 7.6 kB URL HTTP/1.1 byfinancialservices.com/wp-content/plugins/js_composer_salient/assets/js/dist/js_composer_front.min.js?ver=6.2.0
IP 66.29.145.237:0
File type ASCII text, with very long lines (3516)
Hash fcd9b2c7013f03b729e71878fafb7bf0
4d5d6915a5af941d03da09a76c60e9d87e011cf3
400dfc97df1302b20b8c40e0d706f3355864a7c43f0e32eeb1b8449f1c5d73ff
GET /wp-content/plugins/js_composer_salient/assets/js/dist/js_composer_front.min.js?ver=6.2.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:48:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7560
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-includes/js/wp-emoji-release.min.js?ver=5.4.12
66.29.145.237200 OK 4.7 kB URL HTTP/1.1 byfinancialservices.com/wp-includes/js/wp-emoji-release.min.js?ver=5.4.12
IP 66.29.145.237:0
File type ASCII text, with very long lines (10927)
Hash 58e46e50c6ed0572a882d65535849b67
7584b10f10eaf1e5de7e91226fcf8765474c01dc
bfdca4f4364d75d2b2005cb87fac913a679f2b7646088decd216688551746e87
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.4.12 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:54:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4650
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/js/init.js?ver=12.1.0
66.29.145.237200 OK 101 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/js/init.js?ver=12.1.0
IP 66.29.145.237:0
File type Unicode text, UTF-8 text, with very long lines (348), with CRLF line terminators
Size 101 kB (101269 bytes)
Hash b981e74b3c19413adf6a41a3f7872fa9
a1774de0d533322b37e98e98175693281c3baedf
3db91b9e39581c894539a8345afa1ac965ecdc5bf540d01b40fa743c7e53019f
GET /wp-content/themes/salient/js/init.js?ver=12.1.0 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Wed, 26 Oct 2022 11:49:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
byfinancialservices.com/wp-content/themes/salient/css/fonts/icomoon.woff
66.29.145.237200 OK 21 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/fonts/icomoon.woff
IP 66.29.145.237:0
File type Web Open Font Format, TrueType, length 21272, version 0.0\012- data
Hash 05c0d52abd6ff5f0d0066edd64d53e08
63979dfcd1422311f4ac2f2434b0140e514236bb
16f94be53f5a0f1b422b9fb0f88ecc3b0947c24c8b77ee6b6f62675c82499cc7
GET /wp-content/themes/salient/css/fonts/icomoon.woff HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://byfinancialservices.com/wp-content/themes/salient/css/style.css?ver=12.1.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Content-Length: 21272
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/woff
byfinancialservices.com/wp-content/themes/salient/css/fonts/fontawesome-webfont.woff?v=4.2
66.29.145.237200 OK 98 kB URL HTTP/1.1 byfinancialservices.com/wp-content/themes/salient/css/fonts/fontawesome-webfont.woff?v=4.2
IP 66.29.145.237:0
File type Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Hash fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
GET /wp-content/themes/salient/css/fonts/fontawesome-webfont.woff?v=4.2 HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://byfinancialservices.com/wp-content/themes/salient/css/font-awesome.min.css?ver=4.6.4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:17:37 GMT
Accept-Ranges: bytes
Content-Length: 98024
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 05 Nov 2022 04:41:09 GMT
expires: Sat, 05 Nov 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 5243
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=1335719846&t=pageview&_s=1&dl=https%3A%2F%2Fbyfinancialservices.com%2Fes%2Fulstamsnuio&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20BY%20Financial%20Services&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1111875384&gjid=513460920&cid=375029000.1667628511&tid=UA-172403094-1&_gid=1802849988.1667628511&_r=1>m=2oub20&z=707192255
142.250.74.174200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1335719846&t=pageview&_s=1&dl=https%3A%2F%2Fbyfinancialservices.com%2Fes%2Fulstamsnuio&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20BY%20Financial%20Services&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1111875384&gjid=513460920&cid=375029000.1667628511&tid=UA-172403094-1&_gid=1802849988.1667628511&_r=1>m=2oub20&z=707192255
IP 142.250.74.174:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j98&a=1335719846&t=pageview&_s=1&dl=https%3A%2F%2Fbyfinancialservices.com%2Fes%2Fulstamsnuio&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20BY%20Financial%20Services&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1111875384&gjid=513460920&cid=375029000.1667628511&tid=UA-172403094-1&_gid=1802849988.1667628511&_r=1>m=2oub20&z=707192255 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://byfinancialservices.com
Connection: keep-alive
Referer: https://byfinancialservices.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://byfinancialservices.com
date: Sat, 05 Nov 2022 06:08:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
byfinancialservices.com/wp-content/uploads//2020/07/logo-1.svg
66.29.145.237200 OK 272 kB URL HTTP/1.1 byfinancialservices.com/wp-content/uploads//2020/07/logo-1.svg
IP 66.29.145.237:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size 272 kB (272218 bytes)
Hash 172af662dff9e5134c2e0d54b4e9094e
5d5050e458ebe0f2de8c82b81eddcd566472841b
5d787f91f3bb83924aa2ad8737af528ff7ce98a14c427fa704e53425b11bc153
GET /wp-content/uploads//2020/07/logo-1.svg HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:49:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/svg+xml
byfinancialservices.com/wp-content/uploads/2021/09/cropped-android-chrome-192x192-2-32x32.png
66.29.145.237200 OK 1.2 kB URL HTTP/1.1 byfinancialservices.com/wp-content/uploads/2021/09/cropped-android-chrome-192x192-2-32x32.png
IP 66.29.145.237:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash e247a443e0e8992487860ab9733b7d55
49dda18b71f072f3de96434cb08a273406a006d4
8a375f700dca56b3ad2a8fdb160aa33164e40f2104cabc2b067e7749d23e9b55
GET /wp-content/uploads/2021/09/cropped-android-chrome-192x192-2-32x32.png HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:32 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:43:59 GMT
Accept-Ranges: bytes
Content-Length: 1168
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
byfinancialservices.com/wp-content/uploads/2021/09/cropped-android-chrome-192x192-2-192x192.png
66.29.145.237200 OK 14 kB URL HTTP/1.1 byfinancialservices.com/wp-content/uploads/2021/09/cropped-android-chrome-192x192-2-192x192.png
IP 66.29.145.237:0
File type PNG image data, 192 x 192, 8-bit/color RGB, non-interlaced\012- data
Hash 0df4bd5c97c6bea837d385ed9ac11c5a
f0177cea81ccf2b127ef05d8b07d342cc5374ef8
f049774e1b248f772e13d8f4b1fe797512ffc9ac96cc826704fdaffbbbcbe1b6
GET /wp-content/uploads/2021/09/cropped-android-chrome-192x192-2-192x192.png HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:32 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:43:59 GMT
Accept-Ranges: bytes
Content-Length: 14364
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
byfinancialservices.com/wp-content/uploads/2020/07/logo-1.svg
66.29.145.237200 OK 272 kB URL HTTP/1.1 byfinancialservices.com/wp-content/uploads/2020/07/logo-1.svg
IP 66.29.145.237:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size 272 kB (272218 bytes)
Hash 172af662dff9e5134c2e0d54b4e9094e
5d5050e458ebe0f2de8c82b81eddcd566472841b
5d787f91f3bb83924aa2ad8737af528ff7ce98a14c427fa704e53425b11bc153
GET /wp-content/uploads/2020/07/logo-1.svg HTTP/1.1
Host: byfinancialservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/es/ulstamsnuio
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 06:08:31 GMT
Server: Apache
Last-Modified: Fri, 17 Sep 2021 17:49:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/svg+xml
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700&subset=latin%2Clatin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700&subset=latin%2Clatin-ext
IP 142.250.74.10:0
GET /css?family=Open+Sans%3A300%2C400%2C600%2C700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://byfinancialservices.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 05 Nov 2022 06:08:30 GMT
date: Sat, 05 Nov 2022 06:08:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2