Report - fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc

Report Overview

URL

fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488
IP

104.16.43.62

ASN

#13335 CLOUDFLARENET
Submitted

2023-06-03T01:26:21Z

Access

public
Tags

None
urlquery detections

No alerts detected

Detections

urlquery

0
Network Intrusion Detection

0
Threat Detection Systems

1

Domain Summary

Domain	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.sectigo.com (2)	487	2019-11-29 12:50:24	2023-06-02 21:58:38	660	1928	104.18.15.101
fonts.gstatic.com (2)	unknown	2014-09-09 02:40:21	2023-06-03 00:31:03	1030	32562	142.250.74.3
d.btttag.com (1)	9147	2014-01-16 17:20:53	2023-06-02 21:46:07	580	716	104.22.59.128
ekr.zdassets.com (1)	2396	2018-06-14 01:52:57	2023-06-02 18:14:55	462	1575	104.18.72.113
code.jquery.com (1)	634	2012-05-21 19:28:02	2023-06-02 19:15:31	440	25045	69.16.175.10
www.google.com (3)	7	2015-05-10 13:11:19	2023-06-02 22:22:18	1774	30228	142.250.74.132
fsast11112.pcapredict.com (1)	253510	2021-12-15 18:23:24	2023-06-02 03:15:03	411	14599	34.117.233.127
collector-px9ipgehjq.px-cloud.net (3)	unknown	2023-02-02 05:21:34	2023-05-30 03:03:49	1557	2257	35.190.10.96
cdn.acsbapp.com (3)	5589	2020-08-16 08:12:24	2023-06-02 18:50:33	1359	220259	172.67.11.155
bat.bing.com (3)	387	2014-04-08 11:23:16	2023-06-02 18:12:04	1788	14044	204.79.197.200
fsastore.com (49)	68774	2013-12-11 02:28:13	2023-06-02 10:17:12	71801	1784745	104.16.43.62
ui.powerreviews.com (6)	8970	2015-03-08 23:27:27	2023-06-02 21:44:18	2610	476484	54.230.111.79
ocsp.pki.goog (6)	175	2018-07-01 08:43:07	2023-06-02 18:12:05	1998	4196	142.250.74.131
cnstrc.com (1)	12094	2016-10-20 16:10:03	2023-06-02 20:00:13	418	102870	54.230.111.38
18.210.229.244 (1)	unknown	2023-02-02 18:53:12	2023-02-09 19:26:47	416	435	18.210.229.244
gs.mountain.com (1)	17855	2021-07-16 14:27:00	2023-06-02 21:40:01	442	731	34.212.4.35
region1.analytics.google.com (2)	unknown	2022-03-17 12:26:33	2023-06-02 21:31:55	1952	868	216.239.32.36
www.gstatic.com (5)	unknown	2016-07-26 11:37:06	2023-06-02 20:40:44	2397	530302	142.250.74.35
mt.auryc.com (2)	30022	2018-12-19 20:10:58	2023-06-02 10:21:40	1271	765	34.67.250.180
www.googletagmanager.com (2)	75	2013-05-22 04:07:37	2023-06-02 19:28:07	871	200703	142.250.74.40
static.zdassets.com (2)	2154	2018-06-24 00:11:55	2023-06-02 18:12:50	873	111585	104.18.70.113
fsastore3278751z.btttag.com (1)	unknown	2023-04-10 03:40:43	2023-05-30 03:03:48	407	23960	172.67.37.210
cdn.heapanalytics.com (5)	3660	2013-08-18 20:41:51	2023-06-02 18:40:22	2178	806517	54.230.111.90
ocsp.godaddy.com (1)	698	2012-05-20 21:28:57	2023-06-02 18:22:22	330	2285	192.124.249.22
px.mountain.com (2)	11897	2021-07-08 22:56:16	2023-06-02 21:40:01	3960	3951	52.42.124.195
ocsp.r2m02.amazontrust.com (1)	unknown	2022-10-12 16:01:39	2023-06-02 21:12:29	340	942	54.230.80.227
beacon.riskified.com (1)	7988	2013-09-26 03:53:26	2023-06-02 22:25:53	457	15272	23.23.253.175
aus5.mozilla.org (1)	2548	2015-10-27 08:06:24	2023-06-02 18:12:17	513	1205	35.244.181.201
www.google.no (1)	25607	2016-04-05 21:50:59	2023-06-03 01:06:10	523	580	216.58.207.227
container.pepperjam.com (1)	9286	2020-10-29 18:03:07	2023-06-02 21:54:59	410	9270	54.230.111.50
dx.mountain.com (1)	12081	2021-06-28 10:59:34	2023-06-02 22:45:47	997	5140	34.238.149.65
heapanalytics.com (3)	27367	2013-04-10 12:41:59	2023-06-02 20:21:56	3471	1100	3.212.178.75
img.riskified.com (5)	7981	2014-01-29 17:22:40	2023-06-02 22:25:53	2928	1317	52.54.172.171
c.riskified.com (2)	5140	2013-10-15 01:13:22	2023-06-02 22:21:39	1164	1118	23.23.253.175
ajax.googleapis.com (1)	12905	2013-08-16 11:51:31	2023-06-03 01:10:33	428	6419	142.250.74.106
cdn.izooto.com (3)	15273	2015-12-12 13:15:13	2023-06-02 22:43:19	1395	180647	104.18.217.65
client-api.auryc.com (3)	27251	2021-10-09 13:26:52	2023-06-02 20:10:42	1716	2862	34.67.250.180
acsbapp.com (2)	5220	2020-08-14 07:49:08	2023-06-02 18:50:32	823	986682	104.22.0.204

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-06-03	medium	18.210.229.244

ThreatFox

No alerts detected

HTTP Transactions (131)

	URL	IP	Response	Size
	fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/dwb73d55cd/images/discover.jpg	104.16.43.62	200 OK	444
Search urlquery URL fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/dwb73d55cd/images/discover.jpg DOMAIN fsastore.com FQDN fsastore.com IP 104.16.43.62 Hash 72adbc2d5a24bab4c23cfd0dae4d0512 External sources Mnemonic PDNS FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 VirusTotal HASH 0a2d87d7cc2bd0e246022148d77f2c35c3859018 FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 crt.sh FQDN fsastore.com DOMAIN fsastore.com Fingerprint 8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 URL GET HTTP/2 fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/dwb73d55cd/images/discover.jpg IP 104.16.43.62:443 ASN #13335 CLOUDFLARENET Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerSectigo Limited Subjectfsastore.com Fingerprint8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 ValidityWed, 26 Oct 2022 00:00:00 GMT - Sun, 26 Nov 2023 23:59:59 GMT Magic RIFF (little-endian) data, Web/P image, VP8 encoding, 48x34, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 444 Hash 72adbc2d5a24bab4c23cfd0dae4d0512 0a2d87d7cc2bd0e246022148d77f2c35c3859018 4609f11def9b9615194d446b959b426643e8ae64c041039ce1504677d8f62fd6 HTTP Headers GET /on/demandware.static/Sites-FSASTORE-Site/-/default/dwb73d55cd/images/discover.jpg HTTP/1.1 Host: fsastore.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 DNT: 1 Connection: keep-alive Cookie: dwac_670c7ee154c7f97ddc03a44609=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc%3D\|dw-only\|\|\|USD\|false\|US%2FPacific\|true; sid=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc; TPA=489986~1717291558935~437559\|~~\|~~; dwanonymous_ebbcc7333cbd3ff1706f9e3d8e0d105f=bcDeWRu4HO0XupUgaRJKsCbQPq; _pxhd=9cccdb865b4219ad957c04cc11c06585253b77cd76330c9220be09478b862e79:98241cb5-01ad-11ee-b659-5ed82ab11efd; __cq_dnt=0; dw_dnt=0; dwsid=vvlSwcw0Wf7OAOE128R7TOkrGG1cUcfL4mxXnu2FyUmsGAE4slVS2y70A-wgwDWcUYs4vadWadV9Mt2zjVGOyw== Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Sat, 03 Jun 2023 01:25:59 GMT content-type: image/webp content-length: 444 cache-control: public, max-age=2582975 cf-bgj: imgq:85,h2pri cf-polished: qual=85, origFmt=jpeg, origSize=1758 content-disposition: inline; filename="discover.webp" cross-origin-resource-policy: cross-origin expires: Fri, 30 Jun 2023 05:45:47 GMT last-modified: Mon, 29 May 2023 15:47:54 GMT vary: Accept x-dw-request-base-id: FpdhIgvfdmQBAAB_ cf-cache-status: HIT age: 234587 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=vjborRS_VuSNWgWyiTw8G0ZiDQerjAfehN9WY6FN3Oc-1685755559-0-AfU9W61QczGv9ORFPdxEZ6JTC9L8XwcnVIZClBSipuLNNDK8H6wkdmah-AeYYS1yzR7HvERI95k-KXScujROrmECiw1GHnpW8zp3aUjQt4YHmjQQ_D0D-r89bfIvl7qk2mVdlfY3JSL-EOrowhhXPXg"}],"group":"cf-csp-endpoint","max_age":86400} content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=vjborRS_VuSNWgWyiTw8G0ZiDQerjAfehN9WY6FN3Oc-1685755559-0-AfU9W61QczGv9ORFPdxEZ6JTC9L8XwcnVIZClBSipuLNNDK8H6wkdmah-AeYYS1yzR7HvERI95k-KXScujROrmECiw1GHnpW8zp3aUjQt4YHmjQQ_D0D-r89bfIvl7qk2mVdlfY3JSL-EOrowhhXPXg; report-to cf-csp-endpoint strict-transport-security: max-age=31536000; includeSubDomains server: cloudflare cf-ray: 7d142536e894992a-ARN X-Firefox-Spdy: h2

	fsastore.com/on/demandware.static/-/Library-Sites-fsaStoreLibrary/default/dwe6b29534/images/Campaigns/2023/06-SiteFlip-Suncare/SiteFlipJune2023-SpotlightBanner-v2.jpg	104.16.43.62	200 OK	131402
Search urlquery URL fsastore.com/on/demandware.static/-/Library-Sites-fsaStoreLibrary/default/dwe6b29534/images/Campaigns/2023/06-SiteFlip-Suncare/SiteFlipJune2023-SpotlightBanner-v2.jpg DOMAIN fsastore.com FQDN fsastore.com IP 104.16.43.62 Hash 249fc098019523b55175b9ad9222ef49 External sources Mnemonic PDNS FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 VirusTotal HASH 578a51c78330e63c576e07236ade70532d190e2a FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 crt.sh FQDN fsastore.com DOMAIN fsastore.com Fingerprint 8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 URL GET HTTP/2 fsastore.com/on/demandware.static/-/Library-Sites-fsaStoreLibrary/default/dwe6b29534/images/Campaigns/2023/06-SiteFlip-Suncare/SiteFlipJune2023-SpotlightBanner-v2.jpg IP 104.16.43.62:443 ASN #13335 CLOUDFLARENET Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerSectigo Limited Subjectfsastore.com Fingerprint8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 ValidityWed, 26 Oct 2022 00:00:00 GMT - Sun, 26 Nov 2023 23:59:59 GMT Magic JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2160x1440, components 3\012- data Size 131402 Hash 249fc098019523b55175b9ad9222ef49 578a51c78330e63c576e07236ade70532d190e2a 48934b05e6e2d534330c4aa04e249569704325a3bccd2a6ba07e1fc7709a855c HTTP Headers GET /on/demandware.static/-/Library-Sites-fsaStoreLibrary/default/dwe6b29534/images/Campaigns/2023/06-SiteFlip-Suncare/SiteFlipJune2023-SpotlightBanner-v2.jpg HTTP/1.1 Host: fsastore.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 DNT: 1 Connection: keep-alive Cookie: dwac_670c7ee154c7f97ddc03a44609=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc%3D\|dw-only\|\|\|USD\|false\|US%2FPacific\|true; sid=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc; TPA=489986~1717291558935~437559\|~~\|~~; dwanonymous_ebbcc7333cbd3ff1706f9e3d8e0d105f=bcDeWRu4HO0XupUgaRJKsCbQPq; _pxhd=9cccdb865b4219ad957c04cc11c06585253b77cd76330c9220be09478b862e79:98241cb5-01ad-11ee-b659-5ed82ab11efd; __cq_dnt=0; dw_dnt=0; dwsid=vvlSwcw0Wf7OAOE128R7TOkrGG1cUcfL4mxXnu2FyUmsGAE4slVS2y70A-wgwDWcUYs4vadWadV9Mt2zjVGOyw== Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Sat, 03 Jun 2023 01:25:59 GMT content-type: image/jpeg content-length: 131402 cache-control: public, max-age=2586952 cf-bgj: imgq:85,h2pri cf-polished: origSize=133950, status=webp_bigger cross-origin-resource-policy: cross-origin expires: Sat, 01 Jul 2023 07:27:25 GMT last-modified: Thu, 25 May 2023 14:55:46 GMT x-dw-request-base-id: FpfdZF1IeGQBAAB_ cf-cache-status: HIT age: 146066 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains server: cloudflare cf-ray: 7d142536e88d992a-ARN X-Firefox-Spdy: h2

	code.jquery.com/jquery-3.6.0.slim.min.js	69.16.175.10	200 OK	24587
Search urlquery URL code.jquery.com/jquery-3.6.0.slim.min.js DOMAIN jquery.com FQDN code.jquery.com IP 69.16.175.10 Hash 1276065911521c5c22037a31365d179d External sources Mnemonic PDNS FQDN code.jquery.com DOMAIN jquery.com IP 69.16.175.10 VirusTotal HASH d1c6704e94efe2d465fc161b6381e127d35acd81 FQDN code.jquery.com DOMAIN jquery.com IP 69.16.175.10 crt.sh FQDN code.jquery.com DOMAIN jquery.com Fingerprint 64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83 URL GET HTTP/2 code.jquery.com/jquery-3.6.0.slim.min.js IP 69.16.175.10:443 ASN #20446 STACKPATH-CDN Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerSectigo Limited Subject.jquery.com Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83 ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT Magic ASCII text, with very long lines (65241) Size 24587 Hash 1276065911521c5c22037a31365d179d d1c6704e94efe2d465fc161b6381e127d35acd81 bbb7b9921ca2b61948753a6edb63c78443663dc45d1621d18e102e1dcb34e512 HTTP Headers `GET /jquery-3.6.0.slim.min.js HTTP/1.1 Host: code.jquery.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fsastore.com/ Origin: https://fsastore.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Sat, 03 Jun 2023 01:25:59 GMT content-encoding: gzip content-length: 24587 content-type: application/javascript; charset=utf-8 last-modified: Wed, 16 Feb 2022 10:50:39 GMT accept-ranges: bytes server: nginx etag: W/"620cd6ff-11ab4" cache-control: max-age=315360000, public access-control-allow-origin: * vary: Accept-Encoding x-hw: 1685755559.dop208.sk1.t,1685755559.cds213.sk1.hn,1685755559.cds258.sk1.c X-Firefox-Spdy: h2`

	fsastore.com/on/demandware.static/-/Library-Sites-fsaStoreLibrary/default/dw3de77ff1/images/header/eligibility-list.svg	104.16.43.62	200 OK	1173
Search urlquery URL fsastore.com/on/demandware.static/-/Library-Sites-fsaStoreLibrary/default/dw3de77ff1/images/header/eligibility-list.svg DOMAIN fsastore.com FQDN fsastore.com IP 104.16.43.62 Hash 179b6f5fc4ef1b8876201035a363408a External sources Mnemonic PDNS FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 VirusTotal HASH 8e8bd14004d13d73640df0614601bd843fe3c5b0 FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 crt.sh FQDN fsastore.com DOMAIN fsastore.com Fingerprint 8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 URL GET HTTP/2 fsastore.com/on/demandware.static/-/Library-Sites-fsaStoreLibrary/default/dw3de77ff1/images/header/eligibility-list.svg IP 104.16.43.62:443 ASN #13335 CLOUDFLARENET Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerSectigo Limited Subjectfsastore.com Fingerprint8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 ValidityWed, 26 Oct 2022 00:00:00 GMT - Sun, 26 Nov 2023 23:59:59 GMT Magic gzip compressed data, from Unix\012- data Size 1173 Hash 179b6f5fc4ef1b8876201035a363408a 8e8bd14004d13d73640df0614601bd843fe3c5b0 ddde0a702b68d2997742db4f6e75a106defb89d2020e3f415d0553b4674729a4 HTTP Headers GET /on/demandware.static/-/Library-Sites-fsaStoreLibrary/default/dw3de77ff1/images/header/eligibility-list.svg HTTP/1.1 Host: fsastore.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 DNT: 1 Connection: keep-alive Cookie: dwac_670c7ee154c7f97ddc03a44609=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc%3D\|dw-only\|\|\|USD\|false\|US%2FPacific\|true; sid=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc; TPA=489986~1717291558935~437559\|~~\|~~; dwanonymous_ebbcc7333cbd3ff1706f9e3d8e0d105f=bcDeWRu4HO0XupUgaRJKsCbQPq; _pxhd=9cccdb865b4219ad957c04cc11c06585253b77cd76330c9220be09478b862e79:98241cb5-01ad-11ee-b659-5ed82ab11efd; __cq_dnt=0; dw_dnt=0; dwsid=vvlSwcw0Wf7OAOE128R7TOkrGG1cUcfL4mxXnu2FyUmsGAE4slVS2y70A-wgwDWcUYs4vadWadV9Mt2zjVGOyw== Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Sat, 03 Jun 2023 01:25:59 GMT content-type: image/svg+xml x-dw-request-base-id: LI6GWCWhPmQBAAB_ cross-origin-resource-policy: cross-origin cache-control: public, max-age=2578711 expires: Sat, 17 Jun 2023 17:12:50 GMT last-modified: Tue, 27 Oct 2020 20:44:19 GMT cf-cache-status: HIT age: 1325380 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains server: cloudflare cf-ray: 7d142536d887992a-ARN content-encoding: gzip X-Firefox-Spdy: h2`

	fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/css/global.css	104.16.43.62	200 OK	114461
Search urlquery URL fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/css/global.css DOMAIN fsastore.com FQDN fsastore.com IP 104.16.43.62 Hash e3b62eeb14cfe20189fbad51728e24d6 External sources Mnemonic PDNS FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 VirusTotal HASH da11c15ff9433e4a9269b47b765c12a84687c3b5 FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 crt.sh FQDN fsastore.com DOMAIN fsastore.com Fingerprint 8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 URL GET HTTP/2 fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/css/global.css IP 104.16.43.62:443 ASN #13335 CLOUDFLARENET Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerSectigo Limited Subjectfsastore.com Fingerprint8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 ValidityWed, 26 Oct 2022 00:00:00 GMT - Sun, 26 Nov 2023 23:59:59 GMT Magic gzip compressed data, from Unix\012- data Size 114461 Hash e3b62eeb14cfe20189fbad51728e24d6 da11c15ff9433e4a9269b47b765c12a84687c3b5 4806cfd148dcc2f1eaa847fd88f917e1e9e790a4e220c306612568bd3cb5eecd HTTP Headers GET /on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/css/global.css HTTP/1.1 Host: fsastore.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 DNT: 1 Connection: keep-alive Cookie: dwac_670c7ee154c7f97ddc03a44609=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc%3D\|dw-only\|\|\|USD\|false\|US%2FPacific\|true; sid=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc; TPA=489986~1717291558935~437559\|~~\|~~; dwanonymous_ebbcc7333cbd3ff1706f9e3d8e0d105f=bcDeWRu4HO0XupUgaRJKsCbQPq; _pxhd=9cccdb865b4219ad957c04cc11c06585253b77cd76330c9220be09478b862e79:98241cb5-01ad-11ee-b659-5ed82ab11efd; __cq_dnt=0; dw_dnt=0; dwsid=vvlSwcw0Wf7OAOE128R7TOkrGG1cUcfL4mxXnu2FyUmsGAE4slVS2y70A-wgwDWcUYs4vadWadV9Mt2zjVGOyw== Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Sat, 03 Jun 2023 01:25:59 GMT content-type: text/css cache-control: public, max-age=2587861 cf-bgj: minify cf-polished: origSize=912083 cross-origin-resource-policy: cross-origin expires: Sun, 02 Jul 2023 12:15:59 GMT last-modified: Mon, 29 May 2023 15:47:12 GMT vary: accept-encoding x-dw-request-base-id: 4ouJwn_deWQBAAB_ cf-cache-status: HIT age: 43262 strict-transport-security: max-age=31536000; includeSubDomains server: cloudflare cf-ray: 7d142536d883992a-ARN content-encoding: gzip X-Firefox-Spdy: h2

	ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js	142.250.74.106	200 OK	5437
Search urlquery URL ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js DOMAIN ajax.googleapis.com FQDN ajax.googleapis.com IP 142.250.74.106 Hash 7c96a5f11d9741541d5e3c42ff6380d7 External sources Mnemonic PDNS FQDN ajax.googleapis.com DOMAIN ajax.googleapis.com IP 142.250.74.106 VirusTotal HASH d3fa2564c021cf730e58ffddb138cf6b57ed126e FQDN ajax.googleapis.com DOMAIN ajax.googleapis.com IP 142.250.74.106 crt.sh FQDN ajax.googleapis.com DOMAIN ajax.googleapis.com Fingerprint 3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0 URL GET HTTP/2 ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic ASCII text, with very long lines (2134) Size 5437 Hash 7c96a5f11d9741541d5e3c42ff6380d7 d3fa2564c021cf730e58ffddb138cf6b57ed126e 81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee HTTP Headers `GET /ajax/libs/webfont/1.6.26/webfont.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fsastore.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 5437 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 02 Jun 2023 05:54:32 GMT expires: Sat, 01 Jun 2024 05:54:32 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 last-modified: Tue, 03 Mar 2020 19:15:00 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding age: 70287 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google.com/recaptcha/api.js?render=6LfPTNYbAAAAAHDMeBHRpsMSwA1SSxeLuU7_Ok_Q	142.250.74.132	200 OK	586
Search urlquery URL www.google.com/recaptcha/api.js?render=6LfPTNYbAAAAAHDMeBHRpsMSwA1SSxeLuU7_Ok_Q DOMAIN google.com FQDN www.google.com IP 142.250.74.132 Hash 1ef0294e8a6e3d6c1f5ea0b359cea0be External sources Mnemonic PDNS FQDN www.google.com DOMAIN google.com IP 142.250.74.132 VirusTotal HASH 3d3db274da849eac5d11c998b327401389467b3f FQDN www.google.com DOMAIN google.com IP 142.250.74.132 crt.sh FQDN www.google.com DOMAIN google.com Fingerprint A8:95:C3:CB:D6:3F:BC:0A:7D:FF:36:72:5E:2F:56:26:9F:EB:77:0E URL GET HTTP/2 www.google.com/recaptcha/api.js?render=6LfPTNYbAAAAAHDMeBHRpsMSwA1SSxeLuU7_Ok_Q IP 142.250.74.132:443 ASN #15169 GOOGLE Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintA8:95:C3:CB:D6:3F:BC:0A:7D:FF:36:72:5E:2F:56:26:9F:EB:77:0E ValidityFri, 19 May 2023 12:58:13 GMT - Fri, 11 Aug 2023 12:58:12 GMT Magic ASCII text, with very long lines (884), with no line terminators Size 586 Hash 1ef0294e8a6e3d6c1f5ea0b359cea0be 3d3db274da849eac5d11c998b327401389467b3f debe0b367b8197f89a87d6f16974043c325520a16c1ea4b76326009685a10b22 HTTP Headers `GET /recaptcha/api.js?render=6LfPTNYbAAAAAHDMeBHRpsMSwA1SSxeLuU7_Ok_Q HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fsastore.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK expires: Sat, 03 Jun 2023 01:25:59 GMT date: Sat, 03 Jun 2023 01:25:59 GMT cache-control: private, max-age=300 content-type: text/javascript; charset=UTF-8 cross-origin-resource-policy: cross-origin content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block content-length: 586 server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	ui.powerreviews.com/tag-builds/10436/4.1/js/chunks/576.js	54.230.111.79	200 OK	169
Search urlquery URL ui.powerreviews.com/tag-builds/10436/4.1/js/chunks/576.js DOMAIN powerreviews.com FQDN ui.powerreviews.com IP 54.230.111.79 Hash a225652c7c67ac3ec05999b559cb2d73 External sources Mnemonic PDNS FQDN ui.powerreviews.com DOMAIN powerreviews.com IP 54.230.111.79 VirusTotal HASH 43195d5bc0e40e0ca39d5891c42faa19b227827c FQDN ui.powerreviews.com DOMAIN powerreviews.com IP 54.230.111.79 crt.sh FQDN ui.powerreviews.com DOMAIN powerreviews.com Fingerprint 7A:D7:78:27:B8:E6:63:0D:39:65:73:B5:77:C3:2B:3A:E7:8A:FE:0F URL GET HTTP/2 ui.powerreviews.com/tag-builds/10436/4.1/js/chunks/576.js IP 54.230.111.79:443 ASN #16509 AMAZON-02 Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerAmazon Subject.powerreviews.com Fingerprint7A:D7:78:27:B8:E6:63:0D:39:65:73:B5:77:C3:2B:3A:E7:8A:FE:0F ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 24 Jan 2024 23:59:59 GMT Magic ASCII text Size 169 Hash a225652c7c67ac3ec05999b559cb2d73 43195d5bc0e40e0ca39d5891c42faa19b227827c 90ceaab44a342d7b519c5bd6f3bfb2c02ee7bdba9d948636a4366a74934cfd92 HTTP Headers `GET /tag-builds/10436/4.1/js/chunks/576.js HTTP/1.1 Host: ui.powerreviews.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fsastore.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: application/javascript content-length: 169 date: Wed, 31 May 2023 21:04:48 GMT access-control-allow-origin: * access-control-allow-methods: GET, PUT, POST, DELETE, HEAD access-control-expose-headers: x-amz-meta-unpublished-reviews last-modified: Wed, 31 May 2023 21:04:25 GMT etag: "a225652c7c67ac3ec05999b559cb2d73" x-amz-server-side-encryption: AES256 cache-control: max-age=31536000 accept-ranges: bytes server: PowerReviews vary: Access-Control-Request-Headers,Access-Control-Request-Method x-cache: Hit from cloudfront via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: mo46ctuLRBZ94WacDVIW_WV6bfpUHjDQBLPxRDKLfU32SLsLJUSXJw== age: 188473 X-Firefox-Spdy: h2

	fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/css/powerReviews.css	104.16.43.62	200 OK	6446
Search urlquery URL fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/css/powerReviews.css DOMAIN fsastore.com FQDN fsastore.com IP 104.16.43.62 Hash 0e188f7ad8e7d52550188fd964bbb209 External sources Mnemonic PDNS FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 VirusTotal HASH 9f604eed8a42474c502532588dc14c0aaa9507af FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 crt.sh FQDN fsastore.com DOMAIN fsastore.com Fingerprint 8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 URL GET HTTP/2 fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/css/powerReviews.css IP 104.16.43.62:443 ASN #13335 CLOUDFLARENET Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerSectigo Limited Subjectfsastore.com Fingerprint8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 ValidityWed, 26 Oct 2022 00:00:00 GMT - Sun, 26 Nov 2023 23:59:59 GMT Magic gzip compressed data, from Unix\012- data Size 6446 Hash 0e188f7ad8e7d52550188fd964bbb209 9f604eed8a42474c502532588dc14c0aaa9507af bc43304655d0d5fadf7d5723847e5b8f31da03dceeace7437a06df0d7945c84d HTTP Headers GET /on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/css/powerReviews.css HTTP/1.1 Host: fsastore.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 DNT: 1 Connection: keep-alive Cookie: dwac_670c7ee154c7f97ddc03a44609=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc%3D\|dw-only\|\|\|USD\|false\|US%2FPacific\|true; sid=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc; TPA=489986~1717291558935~437559\|~~\|~~; dwanonymous_ebbcc7333cbd3ff1706f9e3d8e0d105f=bcDeWRu4HO0XupUgaRJKsCbQPq; _pxhd=9cccdb865b4219ad957c04cc11c06585253b77cd76330c9220be09478b862e79:98241cb5-01ad-11ee-b659-5ed82ab11efd; __cq_dnt=0; dw_dnt=0; dwsid=vvlSwcw0Wf7OAOE128R7TOkrGG1cUcfL4mxXnu2FyUmsGAE4slVS2y70A-wgwDWcUYs4vadWadV9Mt2zjVGOyw== Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Sat, 03 Jun 2023 01:25:59 GMT content-type: text/css cache-control: public, max-age=2587855 cf-bgj: minify cf-polished: origSize=62477 cross-origin-resource-policy: cross-origin expires: Sun, 02 Jul 2023 12:15:59 GMT last-modified: Mon, 29 May 2023 15:47:11 GMT vary: accept-encoding x-dw-request-base-id: FpcM_3_deWQBAAB_ cf-cache-status: HIT age: 43255 strict-transport-security: max-age=31536000; includeSubDomains server: cloudflare cf-ray: 7d14253768c5992a-ARN content-encoding: gzip X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash 59c3867d9f5fd9389049d65e30b3140f External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH 733ba18dbdb9e1ec222f89af50428f64eadea277 FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash 59c3867d9f5fd9389049d65e30b3140f 733ba18dbdb9e1ec222f89af50428f64eadea277 022d0866c2f9d769d33aef591161014da7977d261c62fda2493a58a600daa8ef HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 03 Jun 2023 01:26:00 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	cdn.izooto.com/scripts/778ebb05e1055f1d827cefa557d79d940d28ac53.js	104.18.217.65	200 OK	42375
Search urlquery URL cdn.izooto.com/scripts/778ebb05e1055f1d827cefa557d79d940d28ac53.js DOMAIN izooto.com FQDN cdn.izooto.com IP 104.18.217.65 Hash 278cc63b7a74ffbb469cd998cb27a69b External sources Mnemonic PDNS FQDN cdn.izooto.com DOMAIN izooto.com IP 104.18.217.65 VirusTotal HASH b428ad985e00ef8292b72d34547c76fb3010dd3c FQDN cdn.izooto.com DOMAIN izooto.com IP 104.18.217.65 crt.sh FQDN cdn.izooto.com DOMAIN izooto.com Fingerprint E6:21:70:71:4E:32:8D:7E:16:2C:F9:84:AE:DC:B2:3D:C7:94:DD:EB URL GET HTTP/2 cdn.izooto.com/scripts/778ebb05e1055f1d827cefa557d79d940d28ac53.js IP 104.18.217.65:443 ASN #13335 CLOUDFLARENET Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintE6:21:70:71:4E:32:8D:7E:16:2C:F9:84:AE:DC:B2:3D:C7:94:DD:EB ValiditySun, 14 May 2023 00:00:00 GMT - Mon, 13 May 2024 23:59:59 GMT Magic HTML document, ASCII text, with very long lines (8890), with no line terminators Size 42375 Hash 278cc63b7a74ffbb469cd998cb27a69b b428ad985e00ef8292b72d34547c76fb3010dd3c 59a6774c3f794ef5f9680a1ad44337e0cc5e1993e25276ded4387bb04f5b2db8 HTTP Headers `GET /scripts/778ebb05e1055f1d827cefa557d79d940d28ac53.js HTTP/1.1 Host: cdn.izooto.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fsastore.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Sat, 03 Jun 2023 01:25:59 GMT content-type: application/javascript access-control-allow-origin: * cache-control: public, max-age=691200 cf-bgj: minify etag: W/"623ccab6-22ba" last-modified: Thu, 24 Mar 2022 19:47:02 GMT vary: Accept-Encoding x-xss-protection: 1; mode=block cf-cache-status: HIT age: 202355 expires: Sun, 11 Jun 2023 01:25:59 GMT server: cloudflare cf-ray: 7d1425376feab4fd-OSL content-encoding: br X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash a7508e40a986ddfd03a5998cd99d36d9 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH 4faebad71148f2607a4174d21b748d1d54d7abef FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash a7508e40a986ddfd03a5998cd99d36d9 4faebad71148f2607a4174d21b748d1d54d7abef 382ecef0f06ab612d234aa9037a661353142cede4ce930320583eccd357dadc7 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 03 Jun 2023 01:26:00 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtm.js?id=GTM-M7ZX4P3	142.250.74.40	200 OK	112044
Search urlquery URL www.googletagmanager.com/gtm.js?id=GTM-M7ZX4P3 DOMAIN googletagmanager.com FQDN www.googletagmanager.com IP 142.250.74.40 Hash cbed28357b6cb21b1853f3e0ff082106 External sources Mnemonic PDNS FQDN www.googletagmanager.com DOMAIN googletagmanager.com IP 142.250.74.40 VirusTotal HASH 8789eefed70339b91b0563c61abb43f840272e49 FQDN www.googletagmanager.com DOMAIN googletagmanager.com IP 142.250.74.40 crt.sh FQDN www.googletagmanager.com DOMAIN googletagmanager.com Fingerprint 73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M7ZX4P3 IP 142.250.74.40:443 ASN #15169 GOOGLE Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT Magic ASCII text, with very long lines (35329) Size 112044 Hash cbed28357b6cb21b1853f3e0ff082106 8789eefed70339b91b0563c61abb43f840272e49 477910bebf2b878d8150e8d355425366838460e17d8ac5c3ee2a2c4a95ff0256 HTTP Headers `GET /gtm.js?id=GTM-M7ZX4P3 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fsastore.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Sat, 03 Jun 2023 01:26:00 GMT expires: Sat, 03 Jun 2023 01:26:00 GMT cache-control: private, max-age=900 last-modified: Sat, 03 Jun 2023 00:05:39 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 112044 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ui.powerreviews.com/tag-builds/10436/4.1/css/styles.css	54.230.111.79	200 OK	57465
Search urlquery URL ui.powerreviews.com/tag-builds/10436/4.1/css/styles.css DOMAIN powerreviews.com FQDN ui.powerreviews.com IP 54.230.111.79 Hash d46880ab4866cfb35eb0c64c8b15eff5 External sources Mnemonic PDNS FQDN ui.powerreviews.com DOMAIN powerreviews.com IP 54.230.111.79 VirusTotal HASH f53e690b0e2c5922ea18691e697386e87a721c23 FQDN ui.powerreviews.com DOMAIN powerreviews.com IP 54.230.111.79 crt.sh FQDN ui.powerreviews.com DOMAIN powerreviews.com Fingerprint 7A:D7:78:27:B8:E6:63:0D:39:65:73:B5:77:C3:2B:3A:E7:8A:FE:0F URL GET HTTP/2 ui.powerreviews.com/tag-builds/10436/4.1/css/styles.css IP 54.230.111.79:443 ASN #16509 AMAZON-02 Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerAmazon Subject.powerreviews.com Fingerprint7A:D7:78:27:B8:E6:63:0D:39:65:73:B5:77:C3:2B:3A:E7:8A:FE:0F ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 24 Jan 2024 23:59:59 GMT Magic gzip compressed data, from Unix\012- data Size 57465 Hash d46880ab4866cfb35eb0c64c8b15eff5 f53e690b0e2c5922ea18691e697386e87a721c23 eb12271706748296d8d4aca9e4a19f6d5f74d9d4bded0dc01ac31b1b3a8674f4 HTTP Headers `GET /tag-builds/10436/4.1/css/styles.css HTTP/1.1 Host: ui.powerreviews.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fsastore.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: text/css date: Wed, 31 May 2023 21:04:48 GMT access-control-allow-origin: access-control-allow-methods: GET, PUT, POST, DELETE, HEAD access-control-expose-headers: x-amz-meta-unpublished-reviews last-modified: Wed, 31 May 2023 21:04:24 GMT etag: W/"883f63acd541d0c1864a8baa3e9eac99" x-amz-server-side-encryption: AES256 cache-control: max-age=31536000 server: PowerReviews content-encoding: gzip vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method x-cache: Hit from cloudfront via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: omqBvNmP_dfTBvQS8UwzRFc0ZMxHBlclXFdKO6s7-McQLEbG0ii6MA== age: 188473 X-Firefox-Spdy: h2

	fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/Valkolak/VolkoGrot-Light.woff2	104.16.43.62	200 OK	23372
Search urlquery URL fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/Valkolak/VolkoGrot-Light.woff2 DOMAIN fsastore.com FQDN fsastore.com IP 104.16.43.62 Hash 79a66f0b18472f2b5513d39d3997f1c7 External sources Mnemonic PDNS FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 VirusTotal HASH 35709584ce149508b113ac52940b4886bae427e6 FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 crt.sh FQDN fsastore.com DOMAIN fsastore.com Fingerprint 8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 URL GET HTTP/2 fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/Valkolak/VolkoGrot-Light.woff2 IP 104.16.43.62:443 ASN #13335 CLOUDFLARENET Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerSectigo Limited Subjectfsastore.com Fingerprint8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 ValidityWed, 26 Oct 2022 00:00:00 GMT - Sun, 26 Nov 2023 23:59:59 GMT Magic Web Open Font Format (Version 2), CFF, length 23372, version 5.0\012- data Size 23372 Hash 79a66f0b18472f2b5513d39d3997f1c7 35709584ce149508b113ac52940b4886bae427e6 1e4e4dc1a3962fa7e3c9e09411c6c6d107bf4792e5a1862e97d3c72f580fcfcd HTTP Headers GET /on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/Valkolak/VolkoGrot-Light.woff2 HTTP/1.1 Host: fsastore.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/css/fonts.css Cookie: dwac_670c7ee154c7f97ddc03a44609=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc%3D\|dw-only\|\|\|USD\|false\|US%2FPacific\|true; sid=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc; TPA=489986~1717291558935~437559\|~~\|~~; dwanonymous_ebbcc7333cbd3ff1706f9e3d8e0d105f=bcDeWRu4HO0XupUgaRJKsCbQPq; _pxhd=9cccdb865b4219ad957c04cc11c06585253b77cd76330c9220be09478b862e79:98241cb5-01ad-11ee-b659-5ed82ab11efd; __cq_dnt=0; dw_dnt=0; dwsid=vvlSwcw0Wf7OAOE128R7TOkrGG1cUcfL4mxXnu2FyUmsGAE4slVS2y70A-wgwDWcUYs4vadWadV9Mt2zjVGOyw== Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Sat, 03 Jun 2023 01:26:00 GMT content-type: font/woff2 content-length: 23372 x-dw-request-base-id: 4ouVwn_deWQBAAB_ cross-origin-resource-policy: cross-origin cache-control: public, max-age=2565626 expires: Sun, 02 Jul 2023 12:15:59 GMT last-modified: Mon, 29 May 2023 15:48:26 GMT cf-cache-status: HIT age: 21027 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains server: cloudflare cf-ray: 7d14253cba5a992a-ARN X-Firefox-Spdy: h2

	cdn.izooto.com/scripts/sdk/izooto.js	104.18.217.65	200 OK	133232
Search urlquery URL cdn.izooto.com/scripts/sdk/izooto.js DOMAIN izooto.com FQDN cdn.izooto.com IP 104.18.217.65 Hash a220d82b9fefc6aa2c338165c1f3e956 External sources Mnemonic PDNS FQDN cdn.izooto.com DOMAIN izooto.com IP 104.18.217.65 VirusTotal HASH 6a2e783b40cb8c4fa6be8f6d0ab8688ebbf3ff3f FQDN cdn.izooto.com DOMAIN izooto.com IP 104.18.217.65 crt.sh FQDN cdn.izooto.com DOMAIN izooto.com Fingerprint E6:21:70:71:4E:32:8D:7E:16:2C:F9:84:AE:DC:B2:3D:C7:94:DD:EB URL GET HTTP/2 cdn.izooto.com/scripts/sdk/izooto.js IP 104.18.217.65:443 ASN #13335 CLOUDFLARENET Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintE6:21:70:71:4E:32:8D:7E:16:2C:F9:84:AE:DC:B2:3D:C7:94:DD:EB ValiditySun, 14 May 2023 00:00:00 GMT - Mon, 13 May 2024 23:59:59 GMT Magic ASCII text, with very long lines (65536), with no line terminators Size 133232 Hash a220d82b9fefc6aa2c338165c1f3e956 6a2e783b40cb8c4fa6be8f6d0ab8688ebbf3ff3f 00324b3ca5152685ef8b83475b541dc981a5dfdfc070c5967dfc4f791c075813 HTTP Headers `GET /scripts/sdk/izooto.js HTTP/1.1 Host: cdn.izooto.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://fsastore.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Sat, 03 Jun 2023 01:26:00 GMT content-type: application/javascript access-control-allow-origin: * cf-bgj: minify etag: W/"6479d45b-496af" last-modified: Fri, 02 Jun 2023 11:36:59 GMT vary: Accept-Encoding x-xss-protection: 1; mode=block cf-cache-status: HIT age: 45711 expires: Mon, 19 Jun 2023 01:26:00 GMT cache-control: public, max-age=1382400 server: cloudflare cf-ray: 7d14253c0ae6b4fd-OSL content-encoding: br X-Firefox-Spdy: h2`

	fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/fontawesome-webfont.woff2?v=4.7.0	104.16.43.62	200 OK	77160
Search urlquery URL fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/fontawesome-webfont.woff2?v=4.7.0 DOMAIN fsastore.com FQDN fsastore.com IP 104.16.43.62 Hash af7ae505a9eed503f8b8e6982036873e External sources Mnemonic PDNS FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 VirusTotal HASH d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 crt.sh FQDN fsastore.com DOMAIN fsastore.com Fingerprint 8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 URL GET HTTP/2 fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/fontawesome-webfont.woff2?v=4.7.0 IP 104.16.43.62:443 ASN #13335 CLOUDFLARENET Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerSectigo Limited Subjectfsastore.com Fingerprint8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 ValidityWed, 26 Oct 2022 00:00:00 GMT - Sun, 26 Nov 2023 23:59:59 GMT Magic Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data Size 77160 Hash af7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe HTTP Headers GET /on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 Host: fsastore.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/css/global.css Cookie: dwac_670c7ee154c7f97ddc03a44609=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc%3D\|dw-only\|\|\|USD\|false\|US%2FPacific\|true; sid=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc; TPA=489986~1717291558935~437559\|~~\|~~; dwanonymous_ebbcc7333cbd3ff1706f9e3d8e0d105f=bcDeWRu4HO0XupUgaRJKsCbQPq; _pxhd=9cccdb865b4219ad957c04cc11c06585253b77cd76330c9220be09478b862e79:98241cb5-01ad-11ee-b659-5ed82ab11efd; __cq_dnt=0; dw_dnt=0; dwsid=vvlSwcw0Wf7OAOE128R7TOkrGG1cUcfL4mxXnu2FyUmsGAE4slVS2y70A-wgwDWcUYs4vadWadV9Mt2zjVGOyw== Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Sat, 03 Jun 2023 01:26:00 GMT content-type: font/woff2 content-length: 77160 x-dw-request-base-id: Fpd__4DdeWQBAAB_ cross-origin-resource-policy: cross-origin cache-control: public, max-age=2565627 expires: Sun, 02 Jul 2023 12:16:00 GMT last-modified: Mon, 29 May 2023 15:47:54 GMT cf-cache-status: HIT age: 21027 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains server: cloudflare cf-ray: 7d14253cca60992a-ARN X-Firefox-Spdy: h2

	fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/Valkolak/Wraith%20Types%20-%20WT%20Volkolak%20Sans%20Display%20Bold.otf	104.16.43.62	200 OK	41356
Search urlquery URL fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/Valkolak/Wraith%20Types%20-%20WT%20Volkolak%20Sans%20Display%20Bold.otf DOMAIN fsastore.com FQDN fsastore.com IP 104.16.43.62 Hash 75d7e09dc33aed543caffed3361694c9 External sources Mnemonic PDNS FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 VirusTotal HASH bc14fe94cda6eac70ba4b1d3a2c7ac6c153212ac FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 crt.sh FQDN fsastore.com DOMAIN fsastore.com Fingerprint 8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 URL GET HTTP/2 fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/Valkolak/Wraith%20Types%20-%20WT%20Volkolak%20Sans%20Display%20Bold.otf IP 104.16.43.62:443 ASN #13335 CLOUDFLARENET Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerSectigo Limited Subjectfsastore.com Fingerprint8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 ValidityWed, 26 Oct 2022 00:00:00 GMT - Sun, 26 Nov 2023 23:59:59 GMT Magic OpenType font data\012- data Size 41356 Hash 75d7e09dc33aed543caffed3361694c9 bc14fe94cda6eac70ba4b1d3a2c7ac6c153212ac 157a4d7743b405c90eb47e61f070ee5bd26658d521a987d393ef7ef4c7273341 HTTP Headers GET /on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/Valkolak/Wraith%20Types%20-%20WT%20Volkolak%20Sans%20Display%20Bold.otf HTTP/1.1 Host: fsastore.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/css/fonts.css Cookie: dwac_670c7ee154c7f97ddc03a44609=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc%3D\|dw-only\|\|\|USD\|false\|US%2FPacific\|true; sid=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc; TPA=489986~1717291558935~437559\|~~\|~~; dwanonymous_ebbcc7333cbd3ff1706f9e3d8e0d105f=bcDeWRu4HO0XupUgaRJKsCbQPq; _pxhd=9cccdb865b4219ad957c04cc11c06585253b77cd76330c9220be09478b862e79:98241cb5-01ad-11ee-b659-5ed82ab11efd; __cq_dnt=0; dw_dnt=0; dwsid=vvlSwcw0Wf7OAOE128R7TOkrGG1cUcfL4mxXnu2FyUmsGAE4slVS2y70A-wgwDWcUYs4vadWadV9Mt2zjVGOyw== Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Sat, 03 Jun 2023 01:26:00 GMT content-type: application/x-font-otf content-length: 41356 x-dw-request-base-id: FpcU_3_deWQBAAB_ cross-origin-resource-policy: cross-origin cache-control: public, max-age=2565626 expires: Sun, 02 Jul 2023 12:15:59 GMT last-modified: Mon, 29 May 2023 15:48:26 GMT cf-cache-status: HIT age: 21027 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains server: cloudflare cf-ray: 7d14253d4a81992a-ARN X-Firefox-Spdy: h2

	fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/Valkolak/Wraith%20Types%20-%20WT%20Volkolak%20Sans%20Display%20Regular.otf	104.16.43.62	200 OK	41224
Search urlquery URL fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/Valkolak/Wraith%20Types%20-%20WT%20Volkolak%20Sans%20Display%20Regular.otf DOMAIN fsastore.com FQDN fsastore.com IP 104.16.43.62 Hash 5ba7d4e497cc31db11c8be8f78503700 External sources Mnemonic PDNS FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 VirusTotal HASH 4e1690e38be5034995f51852540888cdcb820010 FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 crt.sh FQDN fsastore.com DOMAIN fsastore.com Fingerprint 8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 URL GET HTTP/2 fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/Valkolak/Wraith%20Types%20-%20WT%20Volkolak%20Sans%20Display%20Regular.otf IP 104.16.43.62:443 ASN #13335 CLOUDFLARENET Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerSectigo Limited Subjectfsastore.com Fingerprint8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 ValidityWed, 26 Oct 2022 00:00:00 GMT - Sun, 26 Nov 2023 23:59:59 GMT Magic OpenType font data\012- data Size 41224 Hash 5ba7d4e497cc31db11c8be8f78503700 4e1690e38be5034995f51852540888cdcb820010 cb29a15438251f2393d197f4e6396b575e5dacc086e122332bc7d7a9110baecb HTTP Headers GET /on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/Valkolak/Wraith%20Types%20-%20WT%20Volkolak%20Sans%20Display%20Regular.otf HTTP/1.1 Host: fsastore.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/css/fonts.css Cookie: dwac_670c7ee154c7f97ddc03a44609=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc%3D\|dw-only\|\|\|USD\|false\|US%2FPacific\|true; sid=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc; TPA=489986~1717291558935~437559\|~~\|~~; dwanonymous_ebbcc7333cbd3ff1706f9e3d8e0d105f=bcDeWRu4HO0XupUgaRJKsCbQPq; _pxhd=9cccdb865b4219ad957c04cc11c06585253b77cd76330c9220be09478b862e79:98241cb5-01ad-11ee-b659-5ed82ab11efd; __cq_dnt=0; dw_dnt=0; dwsid=vvlSwcw0Wf7OAOE128R7TOkrGG1cUcfL4mxXnu2FyUmsGAE4slVS2y70A-wgwDWcUYs4vadWadV9Mt2zjVGOyw== Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Sat, 03 Jun 2023 01:26:00 GMT content-type: application/x-font-otf content-length: 41224 x-dw-request-base-id: Fpcv_3_deWQBAAB_ cross-origin-resource-policy: cross-origin cache-control: public, max-age=2565625 expires: Sun, 02 Jul 2023 12:15:59 GMT last-modified: Mon, 29 May 2023 15:48:26 GMT cf-cache-status: HIT age: 21026 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains server: cloudflare cf-ray: 7d14253e9b04992a-ARN X-Firefox-Spdy: h2

	fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/Valkolak/VolkoSerif-TextRegular.woff2	104.16.43.62	200 OK	23788
Search urlquery URL fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/Valkolak/VolkoSerif-TextRegular.woff2 DOMAIN fsastore.com FQDN fsastore.com IP 104.16.43.62 Hash df668b2d2103adc6111c9c8451d6bff5 External sources Mnemonic PDNS FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 VirusTotal HASH b2a2412ea10d16d4a369f639e898e75e763eaa44 FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62 crt.sh FQDN fsastore.com DOMAIN fsastore.com Fingerprint 8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 URL GET HTTP/2 fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/Valkolak/VolkoSerif-TextRegular.woff2 IP 104.16.43.62:443 ASN #13335 CLOUDFLARENET Requested by https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_source=sfmc&utm_medium=email&utm_campaign=FSA+Upsell+May&utm_term=https://fsastore.com/fsa-eligibility-list?AFID=489986&GroupName=TPA&CID=437559&utm_source=Navia&utm_medium=tpa+email+ins+banner+squ3+may&utm_campaign=TPA+Partner&utm_id=102293&sfmc_id=40515488 Certificate IssuerSectigo Limited Subjectfsastore.com Fingerprint8C:B9:2C:97:C8:F0:7E:A8:49:64:8C:4C:B8:70:F1:D2:0B:F0:42:E8 ValidityWed, 26 Oct 2022 00:00:00 GMT - Sun, 26 Nov 2023 23:59:59 GMT Magic Web Open Font Format (Version 2), CFF, length 23788, version 5.0\012- data Size 23788 Hash df668b2d2103adc6111c9c8451d6bff5 b2a2412ea10d16d4a369f639e898e75e763eaa44 0a59144a09e5696781d04c2939b1481411c752069ca6704c5030b4a0567f5ee1 HTTP Headers GET /on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/fonts/Valkolak/VolkoSerif-TextRegular.woff2 HTTP/1.1 Host: fsastore.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://fsastore.com/on/demandware.static/Sites-FSASTORE-Site/-/default/v1685708157517/css/fonts.css Cookie: dwac_670c7ee154c7f97ddc03a44609=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc%3D\|dw-only\|\|\|USD\|false\|US%2FPacific\|true; sid=2tqrI6BYcbhA-5PyV56yV40I4Y8wPe-NbJc; TPA=489986~1717291558935~437559\|~~\|~~; dwanonymous_ebbcc7333cbd3ff1706f9e3d8e0d105f=bcDeWRu4HO0XupUgaRJKsCbQPq; _pxhd=9cccdb865b4219ad957c04cc11c06585253b77cd76330c9220be09478b862e79:98241cb5-01ad-11ee-b659-5ed82ab11efd; __cq_dnt=0; dw_dnt=0; dwsid=vvlSwcw0Wf7OAOE128R7TOkrGG1cUcfL4mxXnu2FyUmsGAE4slVS2y70A-wgwDWcUYs4vadWadV9Mt2zjVGOyw== Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Sat, 03 Jun 2023 01:26:00 GMT content-type: font/woff2 content-length: 23788 x-dw-request-base-id: 4ouown_deWQBAAB_ cross-origin-resource-policy: cross-origin cache-control: public, max-age=2565625 expires: Sun, 02 Jul 2023 12:15:59 GMT last-modified: Mon, 29 May 2023 15:48:26 GMT cf-cache-status: HIT age: 21026 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains server: cloudflare cf-ray: 7d14253e9b05992a-ARN X-Firefox-Spdy: h2

	fsastore.com/on/demandware.static/-/Library-Sites-fsaStoreLibrary/default/dwe6a23db8/images/header/calculator.svg	104.16.43.62	200 OK	921
Search urlquery URL fsastore.com/on/demandware.static/-/Library-Sites-fsaStoreLibrary/default/dwe6a23db8/images/header/calculator.svg DOMAIN fsastore.com FQDN fsastore.com IP 104.16.43.62 Hash bd51a895e4a5f34551b1026a9d524670 External sources Mnemonic PDNS FQDN fsastore.com DOMAIN fsastore.com IP 104.16.43.62

Report Overview

URL

IP

ASN

Submitted

Access

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (117)

#1 JS:Script (size: 133981)

#2 JS:Script (size: 235)

#3 JS:Script (size: 169)

#4 JS:Script (size: 2828)

#5 JS:Script (size: 4990)

#6 JS:Script (size: 1256)

#7 JS:Script (size: 61)

#8 JS:Script (size: 2740)

#9 JS:Script (size: 169)

#10 JS:Script (size: 631)

#11 JS:Script (size: 925)

#12 JS:Script (size: 102610)

#13 JS:Script (size: 1441)

#14 JS:Script (size: 147)

#15 JS:Script (size: 774)

#16 JS:Script (size: 546)

#17 JS:Script (size: 0)

#18 JS:Script (size: 62)

#19 JS:Script (size: 238274)

#20 JS:Script (size: 1296)

#21 JS:Script (size: 699972)

#22 JS:Script (size: 394)

#23 JS:Script (size: 4691)

#24 JS:Script (size: 125)

#25 JS:Script (size: 411)

#26 JS:Script (size: 68)

#27 JS:Script (size: 422)

#28 JS:Script (size: 268)

#29 JS:Script (size: 204)

#30 JS:Script (size: 6233)

#31 JS:Script (size: 7885)

#32 JS:Script (size: 1127)

#33 JS:Script (size: 351371)

#34 JS:Script (size: 65)

#35 JS:Script (size: 18336)

#36 JS:Script (size: 535)

#37 JS:Script (size: 24203)

#38 JS:Script (size: 6557)

#39 JS:Script (size: 1240)

#40 JS:Script (size: 205)

#41 JS:Script (size: 112)

#42 JS:Script (size: 714)

#43 JS:Script (size: 382)

#44 JS:Script (size: 129380)

#45 JS:Script (size: 9228)

#46 JS:Script (size: 492767)

#47 JS:Script (size: 201)

#48 JS:Script (size: 340)

#49 JS:Script (size: 41436)

#50 JS:Script (size: 199)

#51 JS:Script (size: 0)

#52 JS:Script (size: 13188)

#53 JS:Script (size: 72372)

#54 JS:Script (size: 8890)

#55 JS:Script (size: 1355)

#56 JS:Script (size: 2309)