| m.exactag.com/ai.aspx?tc=d9252474bc40b07205bbd26a23a8d2e6b6b4f9&url=http:conradojunior.com.br/real/07045//amlsbC5za2Fya3lAY29yZWFuZG1haW4uY29t | 85.14.248.72 | | 0 B |
URL m.exactag.com/ai.aspx?tc=d9252474bc40b07205bbd26a23a8d2e6b6b4f9&url=http:conradojunior.com.br/real/07045//amlsbC5za2Fya3lAY29yZWFuZG1haW4uY29t IP85.14.248.72:0 ASN#24961 myLoc managed IT AG
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ai.aspx?tc=d9252474bc40b07205bbd26a23a8d2e6b6b4f9&url=http:conradojunior.com.br/real/07045//amlsbC5za2Fya3lAY29yZWFuZG1haW4uY29t HTTP/1.1
Host: m.exactag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html; charset=iso-8859-1
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Do, 09 Mai 2024 12:12:21 GMT
Location: http:conradojunior.com.br/real/07045//amlsbC5za2Fya3lAY29yZWFuZG1haW4uY29t
P3P: policyref="https://m.exactag.com/w3c/p3p.xml", CP="NOI NID STP STA CUR OUR"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, OPTIONS
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: *
X-ET-Code: 20
X-ET-Camp: 0
X-ET-Monitoring: 1
Accept-CH: sec-ch-ua-platform-version,sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-model,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-wow64
Strict-Transport-Security: max-age=31536000
Date: Thu, 09 May 2024 00:12:20 GMT
Connection: close
Content-Length: 0
cross-origin-resource-policy: cross-origin
X-Xss-Protection: 0
X-Content-Type-Options: nosniff
|
|
| conradojunior.com.br/real/07045//amlsbC5za2Fya3lAY29yZWFuZG1haW4uY29t | 198.136.59.201 | | 20 B |
URL conradojunior.com.br/real/07045//amlsbC5za2Fya3lAY29yZWFuZG1haW4uY29t IP198.136.59.201:0
File typegzip compressed data, from Unix Hash7029066c27ac6f5ef18d660d5741979a 46c6643f07aa7f6bfe7118de926b86defc5087c4 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft Outlook |
GET /real/07045//amlsbC5za2Fya3lAY29yZWFuZG1haW4uY29t HTTP/1.1
Host: conradojunior.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 May 2024 00:12:21 GMT
Server: Apache
refresh: 0;url=https://gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=101
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| static.nc-img.com/pp/nc-ui-globalenv/museo-sans-300-webfont.96dd56ebb50aa0150f6630360d8d69cf.woff2 | 104.18.173.57 | 200 OK | 21 kB |
URL GET HTTP/2static.nc-img.com/pp/nc-ui-globalenv/museo-sans-300-webfont.96dd56ebb50aa0150f6630360d8d69cf.woff2 IP104.18.173.57:443
Requested byhttps://gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint76:B6:85:9E:C1:7B:6D:D0:C9:6B:9F:52:B8:6D:AB:1B:9E:95:93:CC ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 20848, version 1.0 Hash96dd56ebb50aa0150f6630360d8d69cf 8ada6284514db2f56a084733eed649b9c7d41f1f 93467f75842330c3502fc0268a7a62151f3744221ca7ffa6dc5057dac4a64cee
GET /pp/nc-ui-globalenv/museo-sans-300-webfont.96dd56ebb50aa0150f6630360d8d69cf.woff2 HTTP/1.1
Host: static.nc-img.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gopowerssolutions.com/
Origin: https://gopowerssolutions.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 00:12:25 GMT
content-type: font/woff2
content-length: 20848
last-modified: Wed, 10 Apr 2024 15:41:38 GMT
etag: "6616b332-5170"
vary: Origin, Accept-Encoding
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d7a503a0456b1-OSL
X-Firefox-Spdy: h2
|
|
| static.nc-img.com/pp/nc-ui-globalenv/museo-sans-700-webfont.b125dc012841fa8a23b98c37499ca5e8.woff2 | 104.18.173.57 | 200 OK | 18 kB |
URL GET HTTP/2static.nc-img.com/pp/nc-ui-globalenv/museo-sans-700-webfont.b125dc012841fa8a23b98c37499ca5e8.woff2 IP104.18.173.57:443
Requested byhttps://gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint76:B6:85:9E:C1:7B:6D:D0:C9:6B:9F:52:B8:6D:AB:1B:9E:95:93:CC ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 18128, version 1.0 Hashb125dc012841fa8a23b98c37499ca5e8 2ea271a80f6a93b9888a34797db75cee3e627673 177c4f2826cbc2cc24a9d8018e6c9848ed73178a76fd3aabe99b44ee9458514c
GET /pp/nc-ui-globalenv/museo-sans-700-webfont.b125dc012841fa8a23b98c37499ca5e8.woff2 HTTP/1.1
Host: static.nc-img.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gopowerssolutions.com/
Origin: https://gopowerssolutions.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 00:12:25 GMT
content-type: font/woff2
content-length: 18128
last-modified: Wed, 10 Apr 2024 15:41:38 GMT
etag: "6616b332-46d0"
vary: Origin, Accept-Encoding
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d7a504a0c56b1-OSL
X-Firefox-Spdy: h2
|
|
| static.nc-img.com/pp/nc-ui-globalenv/museo-sans-500-webfont.5d9883d92e2eaa724e4e6beb0ef6728a.woff2 | 104.18.173.57 | 200 OK | 21 kB |
URL GET HTTP/2static.nc-img.com/pp/nc-ui-globalenv/museo-sans-500-webfont.5d9883d92e2eaa724e4e6beb0ef6728a.woff2 IP104.18.173.57:443
Requested byhttps://gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint76:B6:85:9E:C1:7B:6D:D0:C9:6B:9F:52:B8:6D:AB:1B:9E:95:93:CC ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 20920, version 1.0 Hash5d9883d92e2eaa724e4e6beb0ef6728a 3e36376942825aaaa32279175fdb34a4b7bc9435 9c0749dc1deb3275e1846a462c0dcb83df2b5fec30112eacdf5530fa51e3160f
GET /pp/nc-ui-globalenv/museo-sans-500-webfont.5d9883d92e2eaa724e4e6beb0ef6728a.woff2 HTTP/1.1
Host: static.nc-img.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gopowerssolutions.com/
Origin: https://gopowerssolutions.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 00:12:25 GMT
content-type: font/woff2
content-length: 20920
last-modified: Wed, 10 Apr 2024 15:41:38 GMT
etag: "6616b332-51b8"
vary: Origin, Accept-Encoding
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d7a504a0a56b1-OSL
X-Firefox-Spdy: h2
|
|
| static.nc-img.com/pp/nc-ui-globalenv/museo-sans-300-webfont.79d75c0208e298dce66a21f77de03ef7.woff | 104.18.173.57 | 200 OK | 35 kB |
URL GET HTTP/2static.nc-img.com/pp/nc-ui-globalenv/museo-sans-300-webfont.79d75c0208e298dce66a21f77de03ef7.woff IP104.18.173.57:443
Requested byhttps://gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint76:B6:85:9E:C1:7B:6D:D0:C9:6B:9F:52:B8:6D:AB:1B:9E:95:93:CC ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 35241, version 0.0 Hash79d75c0208e298dce66a21f77de03ef7 14541a65f08834b16aca7d79eb78300a65f1eda2 6a382a283c77b7e93e7bb5b0b1902242082a4800dac20da3334d641093b33005
GET /pp/nc-ui-globalenv/museo-sans-300-webfont.79d75c0208e298dce66a21f77de03ef7.woff HTTP/1.1
Host: static.nc-img.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gopowerssolutions.com
DNT: 1
Connection: keep-alive
Referer: https://static.nc-img.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 09 May 2024 00:12:26 GMT
content-type: font/woff
content-length: 35241
last-modified: Wed, 10 Apr 2024 15:41:38 GMT
etag: "6616b332-89a9"
vary: Origin, Accept-Encoding
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d7a56cf1056b1-OSL
X-Firefox-Spdy: h2
|
|
| gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com | 198.54.117.242 | 200 OK | 225 kB |
URL User Request GET HTTP/2gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com IP198.54.117.242:443
CertificateIssuerSectigo Limited Subjectraa.namecheap.com Fingerprint1C:64:36:2F:0B:56:A4:58:94:A5:E2:DE:AC:77:21:8C:DF:F9:18:49 ValidityTue, 31 Oct 2023 00:00:00 GMT - Fri, 29 Nov 2024 23:59:59 GMT
File typegzip compressed data, from Unix Size225 kB (225227 bytes) Hash294061b48a74592f78f604a13e5d6e97 eb0b0f1f1c11d8a693e3322642e43eba2c115e19 492d46e41124252288ccf3608335dc67ac65fcf6a195c1a1250dc729a8e6a9dd
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft Outlook |
GET /?abnhljlk&email=jill.skarky@coreandmain.com HTTP/1.1
Host: gopowerssolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 00:12:24 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: SessionId=4565a6aa5efd4e7b82d206b4905aca3f; domain=.www.namecheap.com; path=/; httponly
x-ncpl-csrf=792933ff6559439b857883b235fc75f8; domain=.www.namecheap.com; path=/; secure; samesite=none
x-proxy-cache: HIT
server: namecheap-nginx
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| static.nc-img.com/uiraa/hero.369b97593fa5f939cfc8fd458c458737.png | 104.18.173.57 | 200 OK | 19 kB |
URL GET HTTP/2static.nc-img.com/uiraa/hero.369b97593fa5f939cfc8fd458c458737.png IP104.18.173.57:443
Requested byhttps://gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint76:B6:85:9E:C1:7B:6D:D0:C9:6B:9F:52:B8:6D:AB:1B:9E:95:93:CC ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT
File typePNG image data, 1440 x 225, 8-bit/color RGBA, interlaced Hash369b97593fa5f939cfc8fd458c458737 1ba24e9dccad4820d7036d40849f3a3661882b6b f9b75086bd476abd93292b689dff7eef57d037834e7d0926107421492e22fa2c
GET /uiraa/hero.369b97593fa5f939cfc8fd458c458737.png HTTP/1.1
Host: static.nc-img.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gopowerssolutions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 09 May 2024 00:12:28 GMT
content-type: image/png
content-length: 19182
last-modified: Mon, 16 Jan 2023 13:20:17 GMT
etag: "63c54f11-4aee"
vary: Origin, Accept-Encoding
cache-control: public, max-age=31536000, immutable
cf-cache-status: HIT
age: 174673
accept-ranges: bytes
server: cloudflare
cf-ray: 880d7a634f1456b1-OSL
X-Firefox-Spdy: h2
|
|
| static.nc-img.com/uiraa/email.168aa475ec312d6c7a976ba66ef4e982.png | 104.18.173.57 | 200 OK | 3.3 kB |
URL GET HTTP/2static.nc-img.com/uiraa/email.168aa475ec312d6c7a976ba66ef4e982.png IP104.18.173.57:443
Requested byhttps://gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint76:B6:85:9E:C1:7B:6D:D0:C9:6B:9F:52:B8:6D:AB:1B:9E:95:93:CC ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced Hash168aa475ec312d6c7a976ba66ef4e982 32c327ae4ca72aae61cf5fe5929a8950503f28d5 cbbda36462bd705a3377cc1a607db2382c033161e16c56a8aadfe93f292874e0
GET /uiraa/email.168aa475ec312d6c7a976ba66ef4e982.png HTTP/1.1
Host: static.nc-img.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gopowerssolutions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 09 May 2024 00:12:28 GMT
content-type: image/png
content-length: 3286
last-modified: Mon, 16 Jan 2023 13:20:17 GMT
etag: "63c54f11-cd6"
vary: Origin, Accept-Encoding
cache-control: public, max-age=31536000, immutable
cf-cache-status: HIT
age: 714560
accept-ranges: bytes
server: cloudflare
cf-ray: 880d7a636f2956b1-OSL
X-Firefox-Spdy: h2
|
|
| static.nc-img.com/uiraa/user.9c3b83fd37ab617bbe55d0fdc0222fa9.png | 104.18.173.57 | 200 OK | 3.4 kB |
URL GET HTTP/2static.nc-img.com/uiraa/user.9c3b83fd37ab617bbe55d0fdc0222fa9.png IP104.18.173.57:443
Requested byhttps://gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint76:B6:85:9E:C1:7B:6D:D0:C9:6B:9F:52:B8:6D:AB:1B:9E:95:93:CC ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced Hash9c3b83fd37ab617bbe55d0fdc0222fa9 880e8419e745ea307cfd7b813b4c53590a893373 7307ff8fce6be70dbd3c6ec226910961f863b26f4abce662a7f757821e7b9b1f
GET /uiraa/user.9c3b83fd37ab617bbe55d0fdc0222fa9.png HTTP/1.1
Host: static.nc-img.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gopowerssolutions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 09 May 2024 00:12:28 GMT
content-type: image/png
content-length: 3384
last-modified: Mon, 16 Jan 2023 13:20:17 GMT
etag: "63c54f11-d38"
vary: Origin, Accept-Encoding
cache-control: public, max-age=31536000, immutable
cf-cache-status: HIT
age: 698255
accept-ranges: bytes
server: cloudflare
cf-ray: 880d7a636f2a56b1-OSL
X-Firefox-Spdy: h2
|
|
| static.nc-img.com/pp/nc-ui-globalenv/gb-icon.c1d44d108721dddbcc98281fe137cda6.woff2 | 104.18.173.57 | 200 OK | 26 kB |
URL GET HTTP/2static.nc-img.com/pp/nc-ui-globalenv/gb-icon.c1d44d108721dddbcc98281fe137cda6.woff2 IP104.18.173.57:443
Requested byhttps://gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint76:B6:85:9E:C1:7B:6D:D0:C9:6B:9F:52:B8:6D:AB:1B:9E:95:93:CC ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 26180, version 1.0 Hashc1d44d108721dddbcc98281fe137cda6 d98c5f9985a4df573bf8e406e84152a5ac94b186 7be1913e58996bc81cb052e9914cb492d0acf125434ed1ddf0144d8a93189dff
GET /pp/nc-ui-globalenv/gb-icon.c1d44d108721dddbcc98281fe137cda6.woff2 HTTP/1.1
Host: static.nc-img.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gopowerssolutions.com
DNT: 1
Connection: keep-alive
Referer: https://static.nc-img.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 09 May 2024 00:12:28 GMT
content-type: font/woff2
content-length: 26180
last-modified: Wed, 10 Apr 2024 15:41:38 GMT
etag: "6616b332-6644"
vary: Origin, Accept-Encoding
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 880d7a637f4456b1-OSL
X-Firefox-Spdy: h2
|
|
| static.nc-img.com/uiraa/app.ab29bfd164428d10f32bc34df1cad4ed.css | 104.18.173.57 | 200 OK | 32 kB |
URL GET HTTP/2static.nc-img.com/uiraa/app.ab29bfd164428d10f32bc34df1cad4ed.css IP104.18.173.57:443
Requested byhttps://gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint76:B6:85:9E:C1:7B:6D:D0:C9:6B:9F:52:B8:6D:AB:1B:9E:95:93:CC ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (31921), with no line terminators Hashab29bfd164428d10f32bc34df1cad4ed 2429f345b1af2501e68724a011be327b63108edb 1c4e83808bf28a02416bfb12ee9fab3c5c55e075376a472d64fcfdbbfab01a51
GET /uiraa/app.ab29bfd164428d10f32bc34df1cad4ed.css HTTP/1.1
Host: static.nc-img.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gopowerssolutions.com
DNT: 1
Connection: keep-alive
Referer: https://gopowerssolutions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 00:12:25 GMT
content-type: text/css
last-modified: Fri, 16 Feb 2024 14:34:33 GMT
vary: Accept-Encoding, Origin
etag: W/"65cf7279-7cb1"
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
cf-cache-status: MISS
server: cloudflare
cf-ray: 880d7a5029f656b1-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.nc-img.com/uiraa/libs/polyfills_469970f8ffedace1b5b8.js | 104.18.173.57 | 200 OK | 187 kB |
URL GET HTTP/2static.nc-img.com/uiraa/libs/polyfills_469970f8ffedace1b5b8.js IP104.18.173.57:443
Requested byhttps://gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint76:B6:85:9E:C1:7B:6D:D0:C9:6B:9F:52:B8:6D:AB:1B:9E:95:93:CC ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT
Size187 kB (187309 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uiraa/libs/polyfills_469970f8ffedace1b5b8.js HTTP/1.1
Host: static.nc-img.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gopowerssolutions.com
DNT: 1
Connection: keep-alive
Referer: https://gopowerssolutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 00:12:27 GMT
content-type: application/javascript
last-modified: Fri, 16 Feb 2024 14:34:29 GMT
vary: Accept-Encoding, Origin
etag: W/"65cf7275-2dbad"
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
cf-cache-status: MISS
server: cloudflare
cf-ray: 880d7a56bf0556b1-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.namecheap.com/assets/img/nc-icon/favicon.ico | 0.0.0.0 | | 0 B |
URL GET www.namecheap.com/assets/img/nc-icon/favicon.ico IP0.0.0.0:0
Requested byhttps://gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com CertificateIssuerSectigo Limited Subjectwww.namecheap.com FingerprintC2:F3:E5:7E:9B:71:7A:E1:92:91:91:8E:49:4D:85:CE:50:70:EC:62 ValidityFri, 08 Dec 2023 00:00:00 GMT - Tue, 07 Jan 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/img/nc-icon/favicon.ico HTTP/1.1
Host: www.namecheap.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gopowerssolutions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 00:12:26 GMT
content-type: image/x-icon
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-inst: 26
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, _NcCompliance
access-control-allow-methods: GET, POST
access-control-allow-credentials: true
strict-transport-security: max-age=16000000; includeSubDomains
content-encoding: gzip
last-modified: Wed, 08 May 2024 20:42:57 GMT
cf-cache-status: HIT
age: 6376
expires: Thu, 09 May 2024 04:12:26 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 880d7a58ac9bb521-OSL
X-Firefox-Spdy: h2
|
|
| static.nc-img.com/pp/nc-ui-globalenv/main.6eb4134f13e2f1d3b205b790d90acbc5.css | 104.18.173.57 | 200 OK | 174 kB |
URL GET HTTP/2static.nc-img.com/pp/nc-ui-globalenv/main.6eb4134f13e2f1d3b205b790d90acbc5.css IP104.18.173.57:443
Requested byhttps://gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint76:B6:85:9E:C1:7B:6D:D0:C9:6B:9F:52:B8:6D:AB:1B:9E:95:93:CC ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size174 kB (173520 bytes) Hash6eb4134f13e2f1d3b205b790d90acbc5 db4420c5ee3e21902bb620cf6897e46a31b6b630 9436e0161212285124586ace8780b12fe73d8145f7d3d7b73ef2f352f0e934e4
GET /pp/nc-ui-globalenv/main.6eb4134f13e2f1d3b205b790d90acbc5.css HTTP/1.1
Host: static.nc-img.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gopowerssolutions.com
DNT: 1
Connection: keep-alive
Referer: https://gopowerssolutions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 00:12:25 GMT
content-type: text/css
last-modified: Wed, 10 Apr 2024 15:41:38 GMT
vary: Accept-Encoding, Origin
etag: W/"6616b332-2a5d0"
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
cf-cache-status: MISS
server: cloudflare
cf-ray: 880d7a5039fc56b1-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.nc-img.com/uiraa/app.dd9b282028b09e3d12a6.js | 104.18.173.57 | 200 OK | 76 kB |
URL GET HTTP/2static.nc-img.com/uiraa/app.dd9b282028b09e3d12a6.js IP104.18.173.57:443
Requested byhttps://gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint76:B6:85:9E:C1:7B:6D:D0:C9:6B:9F:52:B8:6D:AB:1B:9E:95:93:CC ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uiraa/app.dd9b282028b09e3d12a6.js HTTP/1.1
Host: static.nc-img.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gopowerssolutions.com
DNT: 1
Connection: keep-alive
Referer: https://gopowerssolutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 00:12:25 GMT
content-type: application/javascript
last-modified: Fri, 16 Feb 2024 14:34:33 GMT
vary: Accept-Encoding, Origin
etag: W/"65cf7279-12933"
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
cf-cache-status: MISS
server: cloudflare
cf-ray: 880d7a5029f456b1-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.nc-img.com/uiraa/libs/vendors_70ac76496c2b0e5ed06c.js | 104.18.173.57 | 200 OK | 612 kB |
URL GET HTTP/2static.nc-img.com/uiraa/libs/vendors_70ac76496c2b0e5ed06c.js IP104.18.173.57:443
Requested byhttps://gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint76:B6:85:9E:C1:7B:6D:D0:C9:6B:9F:52:B8:6D:AB:1B:9E:95:93:CC ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT
Size612 kB (612502 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uiraa/libs/vendors_70ac76496c2b0e5ed06c.js HTTP/1.1
Host: static.nc-img.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gopowerssolutions.com
DNT: 1
Connection: keep-alive
Referer: https://gopowerssolutions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 00:12:27 GMT
content-type: application/javascript
last-modified: Fri, 16 Feb 2024 14:34:33 GMT
vary: Accept-Encoding, Origin
etag: W/"65cf7279-95896"
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
cf-cache-status: MISS
server: cloudflare
cf-ray: 880d7a5d5b0156b1-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.nc-img.com/uiraa/logo.4072d8d7bfca34be693eb0e573c3b7fe.png | 104.18.173.57 | 200 OK | 1.4 kB |
URL GET HTTP/2static.nc-img.com/uiraa/logo.4072d8d7bfca34be693eb0e573c3b7fe.png IP104.18.173.57:443
Requested byhttps://gopowerssolutions.com/?abnhljlk&email=jill.skarky@coreandmain.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint76:B6:85:9E:C1:7B:6D:D0:C9:6B:9F:52:B8:6D:AB:1B:9E:95:93:CC ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT
File typePNG image data, 219 x 43, 8-bit colormap, non-interlaced Hash4072d8d7bfca34be693eb0e573c3b7fe 6b2d4c85693daa99c1ab6b1d6134f10ec6c13a88 9b69072496fa454b46c2e91ea0bcfeeedc8a47b268a07863c9eee88082aa6937
GET /uiraa/logo.4072d8d7bfca34be693eb0e573c3b7fe.png HTTP/1.1
Host: static.nc-img.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gopowerssolutions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 00:12:28 GMT
content-type: image/png
content-length: 1418
last-modified: Mon, 16 Jan 2023 13:20:17 GMT
etag: "63c54f11-58a"
vary: Origin, Accept-Encoding
cache-control: public, max-age=31536000, immutable
cf-cache-status: HIT
age: 714864
accept-ranges: bytes
server: cloudflare
cf-ray: 880d7a634f1256b1-OSL
X-Firefox-Spdy: h2
|
|