Report - dratingmaject.com/cafb036a-4d9d-4205-ae2a-60067978057b

Report Overview

Submitted URL
dratingmaject.com/cafb036a-4d9d-4205-ae2a-60067978057b
IP
18.195.149.11
ASN
#16509 AMAZON-02
Submitted
2022-11-27 17:22:32
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
resources.totalav.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	26 kB	1.6 MB	82.102.27.18
widget.trustpilot.com	6018	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.2 kB	45 kB	143.204.55.78
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	410 B	32 kB	142.250.74.10
ajax.totalav.com	941761	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	621 B	35.190.24.19
track.totalav.com	616534	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	504 B	990 B	35.224.74.90
dratingmaject.com	821761	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	385 B	880 B	18.195.149.11
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
4ecb8.trknovi.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.1 kB	6.4 kB	188.240.52.20
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	55 kB	216.58.207.195
static.totalav.com	641868	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	217 kB	35.186.251.103
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	680 B	1.9 kB	172.64.155.188
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.8 kB	5.6 kB	142.250.74.3
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	51 kB	34.120.237.76
url.totalav.com	439190	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	1.8 kB	35.224.74.90
www.totalav.com	425785	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	631 B	688 B	35.190.24.19

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-27	medium	dratingmaject.com/cafb036a-4d9d-4205-ae2a-60067978057b	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/main.js	110 kB	2023-03-08	2023-03-26
Pretty URL widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/main.js IP 143.204.55.78 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:50:02 Last Seen2023-03-26 14:15:02 Times Seen20 Hash 18e8a3e6ccc8ae1a5382d5e18dc5672a f5278821235a542f2b082148bdaed5ba0f10812f 64fee55dbfb407c1fd13837da9212e0b9851677272b288012193432e851ddd87 Loading...

	url.totalav.com/fp/init/fortifi.js	614 B	2023-03-11	2023-03-11
Pretty URL url.totalav.com/fp/init/fortifi.js IP 35.224.74.90 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:27:48 Last Seen2023-03-11 21:27:48 Times Seen1 Hash b795f14b333b5bf9f6da288af0376d6e a74778101b95b7258cef793178e255b7cf30d43a 2763d8882ff076a3d7de0efd2d480bce7db38f48abde128f99a82ae7b5f822cb Loading...

	url.totalav.com/fp/common/9f1ecd79.js	56 kB	2023-03-08	2023-05-24
Pretty URL url.totalav.com/fp/common/9f1ecd79.js IP 35.224.74.90 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:26 Last Seen2023-05-24 19:31:27 Times Seen17 Hash a9862a989af816992a8f31065dd40433 19406fbe6da5e4a0e677d9c2a20df7a6a9b8138d a30ce1b3b45c998834153ee51d6381e1fe104e59ffdf813771e35eebfeddb1e7 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 19:54:32 Times Seen36966655 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.totalav.com/free-download	271 B	2023-03-08	2023-12-11
Pretty URL www.totalav.com/free-download IP 35.190.24.19 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:26 Last Seen2023-12-11 13:00:45 Times Seen85 Hash 2c0f681642abd121c43e023561d044ac a385248dbb3a1074044110e6438e6e4ab3fa4306 2e06083f749c43c9ba52f9fea089591a376757a7139fb4687c6b318208bc58e2 Loading...

	www.totalav.com/free-download	998 B	2023-03-08	2023-03-13
Pretty URL www.totalav.com/free-download IP 35.190.24.19 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:26 Last Seen2023-03-13 12:03:00 Times Seen1 Hash 264726e88b4b5d483a9fa296b7a0cddb 015120a1938499f47033eb0b16abca75a71b61a3 df7077b9a60c95cbd0ebcfb4585005a3794c65e2047c4ebb624478b2c00bebc3 Loading...

	www.totalav.com/free-download	2.6 kB	2023-03-08	2023-03-13
Pretty URL www.totalav.com/free-download IP 35.190.24.19 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:26 Last Seen2023-03-13 02:47:08 Times Seen1 Hash 6759f9bff777189f8847ad3ef99f93b9 4828cfcd20ded03f040457cea41bc96e09a8d141 a92d964bd283e9a684fd693bd8b0ba2269a1cf8487f813b85bd103455a840cf1 Loading...

	www.totalav.com/free-download	156 B	2023-03-08	2023-12-11
Pretty URL www.totalav.com/free-download IP 35.190.24.19 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:26 Last Seen2023-12-11 13:00:45 Times Seen85 Hash 6b9dd3d76d044129b60185caee92c517 496fbd409616056515f1da298b2abc269292fa0f 5c456c89bc16617eeef622ff4f14c4ecbc004a4e4434bcecd8bc9ef0ff1f52ef Loading...

	4ecb8.trknovi.com/smartlink?track=eyJ1c2VyX2lkIjoxMzc5LCJjcmVhdGl2ZV9pZCI6IjI3NDU2OSJ9&click_id=w79cod106ab0e9pki3bg3d3i&subid=9dd1b15d-f028-4d41-b731-bec13c85ae61	6.4 kB	2023-03-11	2023-03-11
Pretty URL 4ecb8.trknovi.com/smartlink?track=eyJ1c2VyX2lkIjoxMzc5LCJjcmVhdGl2ZV9pZCI6IjI3NDU2OSJ9&click_id=w79cod106ab0e9pki3bg3d3i&subid=9dd1b15d-f028-4d41-b731-bec13c85ae61 IP 188.240.52.20 ASN #20857 Signet B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:27:48 Last Seen2023-03-11 21:27:48 Times Seen1 Hash 62f192f366aca9d0cd12430de70bdff0 855fb9684724c4615ad8d989a1d2a32564d881a4 e56cbe7dd9bd7178c23b2e6612e594309b0447487608b68bd021166d184b0b59 Loading...

	resources.totalav.com/build/prod/22.285.2/js/download-overlay/download-overlay.min.js	5.2 kB	2023-03-08	2023-12-11
Pretty URL resources.totalav.com/build/prod/22.285.2/js/download-overlay/download-overlay.min.js IP 82.102.27.18 ASN #9009 M247 Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:26 Last Seen2023-12-11 13:00:46 Times Seen169 Hash 0e1e1e8b2cde9276baf524d341fbd0a7 471ea6ac5f71db93e9e90e60940d6fda0021e31d badfeca0301df0ded6b8f4612d2021625f35a7818b4606ebd419741e07c79a88 Loading...

	widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js	19 kB	2023-03-07	2023-11-04
Pretty URL widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js IP 143.204.55.78 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2023-11-04 14:10:25 Times Seen853 Hash 09f25c4b4cb4f5d5bd2bf7adf3235bc0 dbe22054d87d6ef7127d98ceab7650eaa0f6ed68 f3496bc7c277d917d35553c46ed1597a86065494cac582e42a3a1d55aedef7fb Loading...

	www.totalav.com/free-download	129 B	2023-03-08	2023-12-11
Pretty URL www.totalav.com/free-download IP 35.190.24.19 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:26 Last Seen2023-12-11 13:00:45 Times Seen85 Hash ef31f781b99944799ddaef175a4d30b4 07c4f783a529d9ec7ae8b47f549f455241195883 477e352ced615640359998be6f4b153182ec307d6c464431add8e040910d9958 Loading...

HTTP Transactions (90)

URL IP Response Size

dratingmaject.com/cafb036a-4d9d-4205-ae2a-60067978057b

18.195.149.11

302

0 B

URL HTTP/1.1
dratingmaject.com/cafb036a-4d9d-4205-ae2a-60067978057b
IP
18.195.149.11:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /cafb036a-4d9d-4205-ae2a-60067978057b HTTP/1.1
Host: dratingmaject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 
Server: nginx
Date: Sun, 27 Nov 2022 17:22:21 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://4ecb8.trknovi.com/smartlink?track=eyJ1c2VyX2lkIjoxMzc5LCJjcmVhdGl2ZV9pZCI6IjI3NDU2OSJ9&click_id=w79cod106ab0e9pki3bg3d3i&subid=9dd1b15d-f028-4d41-b731-bec13c85ae61
Pragma: no-cache
Set-Cookie: cafb036a-4d9d-4205-ae2a-60067978057b-v4=owOvf7HHbo9qHnHdDX_uLUsIGyg6DcucGfchGkSJLoY; Max-Age=86400; Expires=Mon, 28-Nov-2022 17:22:21 GMT; Domain=dratingmaject.com; Path=/; HttpOnly
cc-v4=kAHw8s2xK8uXJwWEZsGYAyVqwfkUd35nNKbz6nq%2BvC3IwJVor4GvE%2Fv7yZTsAnrBb3ycbMads%2BplWRyQhu0DKZ9A9blvuFoqSpA1NSKRW8HHuGBkZUW26I9UGBFo7atT3PyeZqkAM%2Bq7moPDdGx4Mw%3D%3D; Max-Age=31536000; Expires=Mon, 27-Nov-2023 17:22:21 GMT; Domain=dratingmaject.com; Path=/; HttpOnly

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9832
Expires: Sun, 27 Nov 2022 20:06:13 GMT
Date: Sun, 27 Nov 2022 17:22:21 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5543
Cache-Control: max-age=153675
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:22:21 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 12:03:36 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15430
Expires: Sun, 27 Nov 2022 21:39:31 GMT
Date: Sun, 27 Nov 2022 17:22:21 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 17:17:40 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 281
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: ASRW9HCCZSradJTbRT/X/NmdW7jC5AdQLeRKlR3sPA3G0KVmndktr8KWuS7PXAJI07T4rnkzTfYf1yroQLvPwA==
x-amz-request-id: 5YV0FXC9Q9E3JTF8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 16:41:42 GMT
age: 2439
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 17:22:21 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 17:08:54 GMT
cache-control: public,max-age=3600
age: 808
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5757
Cache-Control: max-age=148827
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:22:22 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:42:49 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c37f7cf58fa6f6700a3a5603bbff857b
bb2f671cc984977a0e4035296c94e1b79c134d1d
bfc3844cc8ca08ea1b08d684cce32feb10cbdb92de3a34ab12d5c064b795a4ff

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BFC3844CC8CA08EA1B08D684CCE32FEB10CBDB92DE3A34AB12D5C064B795A4FF"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7155
Expires: Sun, 27 Nov 2022 19:21:37 GMT
Date: Sun, 27 Nov 2022 17:22:22 GMT
Connection: keep-alive

4ecb8.trknovi.com/smartlink?track=eyJ1c2VyX2lkIjoxMzc5LCJjcmVhdGl2ZV9pZCI6IjI3NDU2OSJ9&click_id=w79cod106ab0e9pki3bg3d3i&subid=9dd1b15d-f028-4d41-b731-bec13c85ae61

188.240.52.20

200 OK

2.6 kB

URL HTTP/2
4ecb8.trknovi.com/smartlink?track=eyJ1c2VyX2lkIjoxMzc5LCJjcmVhdGl2ZV9pZCI6IjI3NDU2OSJ9&click_id=w79cod106ab0e9pki3bg3d3i&subid=9dd1b15d-f028-4d41-b731-bec13c85ae61
IP
188.240.52.20:0
ASN
#20857 Signet B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (651)
Size
2.6 kB (2612 bytes)
Hash
8371cca5bc08f91f43c2ce535ac5e64a
f272379cbbc2c6dcfcf325bac26f4c358c85a0e5
1715f262548d335b34d632b340215eee30bad6ba22d71d43957beeaea7b22331

HTTP Headers

GET /smartlink?track=eyJ1c2VyX2lkIjoxMzc5LCJjcmVhdGl2ZV9pZCI6IjI3NDU2OSJ9&click_id=w79cod106ab0e9pki3bg3d3i&subid=9dd1b15d-f028-4d41-b731-bec13c85ae61 HTTP/1.1
Host: 4ecb8.trknovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx/1.19.10
date: Sun, 27 Nov 2022 17:22:21 GMT
content-type: text/html; charset=UTF-8
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
set-cookie: XSRF-TOKEN=eyJpdiI6IldVRU9TemV5Uk9yaFNjSU8yVzVnSUE9PSIsInZhbHVlIjoiMWhOdUFycXpWSmZzd0FJS2FMMWhLRG9hOFVWbFU4aHJiQSttbmJIWHRmYkY3clB4dHlmQ0EwWDBPR3Y4ZkJuWXpsWHpLVHpiRFBndjRCc01jVEQ3U1RZb2JKV1NLMUQ1QTV3MHk1cmczcnVzUFdJdlRHdmNINUZvRE5uK2MwSFkiLCJtYWMiOiI0N2VlMGNiOWIwN2Q1MzQwN2MyYzMxYzA3ODg0NTY4YzA5YzgzODE1N2Q5NWUyZTA0NmU4MmVmOGY2MWFmN2FjIiwidGFnIjoiIn0%3D; expires=Sun, 27-Nov-2022 19:22:21 GMT; Max-Age=7200; path=/; samesite=lax
novidash_session=eyJpdiI6IkFobEYwalRscnRydE9zYVZaTU9GZVE9PSIsInZhbHVlIjoiZzZrOTVJUkRwM1ZmdVZYa01aZ1ZZUGhTTCtnbTJWcWFVVzlFZWxBdzY4cHlIVEk0d01Kbjc1cU5NdWFLWjRvRUNwWG45aURVNzFhWk13cC9lVEtzeHMreVBLSXFEUVJqMU02WE1UMUtuU29mZ0ZDRWE4VDViVHBYR2xaTWx6TUciLCJtYWMiOiJkYTlhNDU2MmU1ZDg2YjdjM2RkYTk5Y2M3MmYyMTIxYzc2YzA5Mjk5MGYwNjIwNTZlZGY0YWUxNTk5Y2M1MzBiIiwidGFnIjoiIn0%3D; expires=Sun, 27-Nov-2022 19:22:21 GMT; Max-Age=7200; path=/; httponly; samesite=lax
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
8d05bc41087cb912f5357f33dfd05ac1
1a9ceb9dcf8baa408f18fb821f6e341272e4aaee
6cb49aa9c702807c2858dcebf79ec76644002d17996ac21d25ad47123b932b67

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 17:22:23 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 08:04:12 GMT
Expires: Fri, 02 Dec 2022 08:04:11 GMT
Etag: "1a9ceb9dcf8baa408f18fb821f6e341272e4aaee"
Cache-Control: max-age=397907,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 770c8bace89dfab8-OSL

resources.totalav.com/build/prod/22.285.2/css/global/_totalav/global.min.css

82.102.27.18

200 OK

5.4 kB

URL HTTP/2
resources.totalav.com/build/prod/22.285.2/css/global/_totalav/global.min.css
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
ASCII text, with very long lines (65536), with no line terminators
Size
5.4 kB (5407 bytes)
Hash
bf16b715e33042ef1da7c2ba602067d4
b6ceae62355e2ee855c9a0d1b122b57c95cecdb0
42c4f09cd265c779680e042e70f11128af5ced2bafb57ed7f60f352029ce8e54

HTTP Headers

GET /build/prod/22.285.2/css/global/_totalav/global.min.css HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: text/css
content-length: 5407
x-guploader-uploadid: ADPycdtmHsnVrmHibyA3tWkuvB6hR6yK4ldRpQughCYAdRM6PtXXDquDR5AVOAJ6fb6T0so8yjo_YceuudWAAB9BZMSamR_NWaIP
x-goog-generation: 1669397708720006
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5407
content-encoding: gzip
x-goog-hash: crc32c=NZl7KQ==, md5=vxa3FeMwQu8dp8K6YCBn1A==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Fri, 25 Nov 2022 17:35:08 GMT
etag: "bf16b715e33042ef1da7c2ba602067d4"
age: 112
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/build/prod/22.285.2/css/global/_totalav/global.min.css>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/logo/logo_alt.png

82.102.27.18

200 OK

2.7 kB

URL HTTP/2
resources.totalav.com/img/global/_totalav/logo/logo_alt.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 195 x 41, 8-bit colormap, non-interlaced\012- data
Size
2.7 kB (2661 bytes)
Hash
7c5cc0cfcfbccc2afb39557b38c62b01
e4d22f9f78678ec6ee15cca1f338bb93275d8403
e746903c381d592a4956313d46d9ebe14bdb76a03de83b4406f68d83a9f50c98

HTTP Headers

GET /img/global/_totalav/logo/logo_alt.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 2661
x-guploader-uploadid: ADPycdt2SBO47o3QT7KKCTNt6u5UWAAPtgN5MKt9_sFjVVh-41-V1nA3UuZqe34om3TT-P1RosECnw_UPn01m_7dq9TJwA
x-goog-generation: 1565684147649748
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2661
x-goog-hash: crc32c=FbdGRw==, md5=fFzAz8+8zCr7OVV7OMYrAQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Tue, 13 Aug 2019 08:15:47 GMT
etag: "7c5cc0cfcfbccc2afb39557b38c62b01"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/logo/logo_alt.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/logo/logo_totalav_modal.png

82.102.27.18

200 OK

2.9 kB

URL HTTP/2
resources.totalav.com/img/global/_totalav/logo/logo_totalav_modal.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 229 x 48, 8-bit colormap, non-interlaced\012- data
Size
2.9 kB (2878 bytes)
Hash
fa60a1ee48b5fd657b626e8fc517bd8d
b81da12306e123f9243bb7d4cd6b013a8627ad25
f2ed506e7531884684014a2d75381c82bd4bf399274be9595139607a9d85e07d

HTTP Headers

GET /img/global/_totalav/logo/logo_totalav_modal.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 2878
x-guploader-uploadid: ADPycdsFPqkqyNX1T_-uPWwRhdYeFCll1Z4z9kG0LMbyjcUxKJ4ffKK-bggNIAMGBqMo0jeBASEbr4vKSEsVqWDVF5QW3Q
x-goog-generation: 1565684149503375
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2878
x-goog-hash: crc32c=+gGdaA==, md5=+mCh7ki1/WV7Ym6PxRe9jQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 98
last-modified: Tue, 13 Aug 2019 08:15:49 GMT
etag: "fa60a1ee48b5fd657b626e8fc517bd8d"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/logo/logo_totalav_modal.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/logo/logo_totalav.png

82.102.27.18

200 OK

2.9 kB

URL HTTP/2
resources.totalav.com/img/global/_totalav/logo/logo_totalav.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 229 x 48, 8-bit colormap, non-interlaced\012- data
Size
2.9 kB (2878 bytes)
Hash
fa60a1ee48b5fd657b626e8fc517bd8d
b81da12306e123f9243bb7d4cd6b013a8627ad25
f2ed506e7531884684014a2d75381c82bd4bf399274be9595139607a9d85e07d

HTTP Headers

GET /img/global/_totalav/logo/logo_totalav.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 2878
x-guploader-uploadid: ADPycdskMAGhYmBRxizlfoujja_jmrc7OzBDI1CkMCAs6GGz6qDluIHjE0A_2bsNvv0GrVBs-RVqZsrQEH2P4pNqa5Nh
x-goog-generation: 1565684148016337
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2878
x-goog-hash: crc32c=+gGdaA==, md5=+mCh7ki1/WV7Ym6PxRe9jQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 141
last-modified: Tue, 13 Aug 2019 08:15:48 GMT
etag: "fa60a1ee48b5fd657b626e8fc517bd8d"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/logo/logo_totalav.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/build/prod/22.285.2/css/layout/www/_totalav/layout.min.css

82.102.27.18

200 OK

10 kB

URL HTTP/2
resources.totalav.com/build/prod/22.285.2/css/layout/www/_totalav/layout.min.css
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
ASCII text, with very long lines (65536), with no line terminators
Size
10 kB (10369 bytes)
Hash
f629f5b041cc5706582efe0b06350206
e9672bb721eb8587998e9631f3aecb1571337233
7a9821bea47a0daff469362f4bf4f08349f890bd77346405117dadf61e33f07f

HTTP Headers

GET /build/prod/22.285.2/css/layout/www/_totalav/layout.min.css HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: text/css
content-length: 10369
x-guploader-uploadid: ADPycdsg80DswVfbrLRJaP0IeCoJP95jr5liEjp6IL0WZhQDrrkDn0nyf3CVqEA6_krHmvuRFEWeDFUm5kkSFNkcdIfr5C16fzfF
x-goog-generation: 1669397696583572
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10369
content-encoding: gzip
x-goog-hash: crc32c=JAmzFA==, md5=9in1sEHMVwZYLv4LBjUCBg==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Fri, 25 Nov 2022 17:34:56 GMT
etag: "f629f5b041cc5706582efe0b06350206"
age: 42
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/build/prod/22.285.2/css/layout/www/_totalav/layout.min.css>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/content_image/en/windows-laptop-app-mid-scan.png

82.102.27.18

200 OK

81 kB

URL HTTP/2
resources.totalav.com/img/global/_totalav/content_image/en/windows-laptop-app-mid-scan.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 623 x 500, 8-bit/color RGB, non-interlaced\012- data
Size
81 kB (80623 bytes)
Hash
f94079d830d4a79be5573bf7c5fff5da
14684e50f99519c2694fc6027a2994bf1698f640
fa0f63188275fb4ebca258cee7ca1a5e5aed28ec81b04bdd95027318d390fb67

HTTP Headers

GET /img/global/_totalav/content_image/en/windows-laptop-app-mid-scan.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 80623
x-guploader-uploadid: ADPycdvX-QAPy13_abz7hcnG4gTDXTGGRxyDPkK55mOUSVxmmMqjkSjJcoyADjIikAOJeYWe7GA5nP-eyauZsIuVJJSvxSathX6V
x-goog-generation: 1613475924459852
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 80623
x-goog-hash: crc32c=eiYBow==, md5=+UB52DDUp5vlVzv3xf/12g==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Tue, 16 Feb 2021 11:45:24 GMT
etag: "f94079d830d4a79be5573bf7c5fff5da"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/content_image/en/windows-laptop-app-mid-scan.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/award-images/lander/av-comparatives-award-sept-1645625600.png

82.102.27.18

200 OK

13 kB

URL HTTP/2
resources.totalav.com/img/global/award-images/lander/av-comparatives-award-sept-1645625600.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 156 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (12683 bytes)
Hash
8309a0420ab5d51eb52d5488c3c99f8a
8a5bc404765793d8b6c8ee5e43d24d55f138f50d
897df4560f049c54b4508a6c9fab50596310ebae48361b5021ccde451242d09c

HTTP Headers

GET /img/global/award-images/lander/av-comparatives-award-sept-1645625600.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: application/octet-stream
content-length: 12683
x-guploader-uploadid: ADPycdvPt_q5_QtmU1RZrm9EnusmAerRIcXHcfk9qNH2FEAv4Nfa2U3uuqY34wWG1tVkvuEB15qwY9OeJ6HBbJpek6YDyphUwoVQ
x-goog-generation: 1645625601276985
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 12683
x-goog-hash: crc32c=m2oasw==, md5=gwmgQgq11R61LVSIw8mfig==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 184
last-modified: Wed, 23 Feb 2022 14:13:21 GMT
etag: "8309a0420ab5d51eb52d5488c3c99f8a"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/award-images/lander/av-comparatives-award-sept-1645625600.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/award-images/lander/av-comparatives-award-1645625648.png

82.102.27.18

200 OK

12 kB

URL HTTP/2
resources.totalav.com/img/global/award-images/lander/av-comparatives-award-1645625648.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 156 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12364 bytes)
Hash
ab2bf5c58c184fc8f312e1126fe6a0e6
ae55fac0ada8401a1f10d124370e3408b1f54f23
7d22938a255cccde8ae3999e5fe5c60b33ce8acaca37e31e012da71747371112

HTTP Headers

GET /img/global/award-images/lander/av-comparatives-award-1645625648.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: application/octet-stream
content-length: 12364
x-guploader-uploadid: ADPycdtimC0er6mMl6iI-a9T5S7KtwnZNQskMsRrpT2ZCV0hK-tZccBI11HYiRPSgil69bm5O_ur4ylnZvVDJWgS1P1uS2ZdaDqm
x-goog-generation: 1645625648455513
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 12364
x-goog-hash: crc32c=Jeg+wg==, md5=qyv1xYwYT8jzEuESb+ag5g==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 243
last-modified: Wed, 23 Feb 2022 14:14:08 GMT
etag: "ab2bf5c58c184fc8f312e1126fe6a0e6"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/award-images/lander/av-comparatives-award-1645625648.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/packages/icomoon/www/fonts/icomoon.woff2?dtv932

82.102.27.18

200 OK

15 kB

URL HTTP/2
resources.totalav.com/packages/icomoon/www/fonts/icomoon.woff2?dtv932
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 15088, version 1.0\012- data
Size
15 kB (15088 bytes)
Hash
0aab1b0ae968c239e36514cfed2939f1
e068d9ce64bd9b39c36098e33b09bacd47f22fd0
95c34b12647d187606c19c6aa1b1a0be32d85e41dd39bc5f8d48147d1363567d

HTTP Headers

GET /packages/icomoon/www/fonts/icomoon.woff2?dtv932 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: application/octet-stream
content-length: 15088
x-guploader-uploadid: ADPycdtC0WKp6cGLaQhsxfwDQw8OohueiFsacrJkWazpHCf3-tuZ36vCbOc-v95w4P9UTACSD-fs7If4VFfC2Zo9zRGT
x-goog-generation: 1580314132569558
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 15088
x-goog-hash: crc32c=AeYl0g==, md5=CqsbCulowjnjZRTP7Sk58Q==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 12
last-modified: Wed, 29 Jan 2020 16:08:52 GMT
etag: "0aab1b0ae968c239e36514cfed2939f1"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/packages/icomoon/www/fonts/icomoon.woff2?dtv932>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/award-images/lander/avtest-top-product--1645625794.png

82.102.27.18

200 OK

14 kB

URL HTTP/2
resources.totalav.com/img/global/award-images/lander/avtest-top-product--1645625794.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 162 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (14337 bytes)
Hash
7dddf426960c5952411f77ad8a91577d
1a7427425f2eaf89cb064567ab0c9d53bef982b0
de8ff9f2e369cbaf825d49ed8cdca7b5d48260f26527edbf9c4a2ba0e776e078

HTTP Headers

GET /img/global/award-images/lander/avtest-top-product--1645625794.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: application/octet-stream
content-length: 14337
x-guploader-uploadid: ADPycdvctsPbIXPm5nfhJJpRJIXAAPBkoG6FyFdLnc374YV8PPuCriMwDxQbLHipz916gcaSmxnRHf0L6WsjUW7AuZB0
x-goog-generation: 1645625794904180
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 14337
x-goog-hash: crc32c=YQcksA==, md5=fd30JpYMWVJBH3etipFXfQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 243
last-modified: Wed, 23 Feb 2022 14:16:34 GMT
etag: "7dddf426960c5952411f77ad8a91577d"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/award-images/lander/avtest-top-product--1645625794.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/award-images/lander/virusbulletin-vb100-1645625825.jpg

82.102.27.18

200 OK

5.5 kB

URL HTTP/2
resources.totalav.com/img/global/award-images/lander/virusbulletin-vb100-1645625825.jpg
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 54x80, components 3\012- data
Size
5.5 kB (5496 bytes)
Hash
07a896487bfc05f183c2347d9a443aed
59b9cdd3d39cb8fc5f65922a7e2ac8e0f2219dae
681e0f87a0788283a9016846579782e2b096f068037af53cf307bbcb9c16fbca

HTTP Headers

GET /img/global/award-images/lander/virusbulletin-vb100-1645625825.jpg HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: application/octet-stream
content-length: 5496
x-guploader-uploadid: ADPycdtKmLAhL93b7C7IUOd8ImkPO147guUE9Qk0W5mdEGhrDTv4lmb8962DuCqXQZoC117B2GLkgBuKRRAr3YQwjb2Z
x-goog-generation: 1645625826567118
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 5496
x-goog-hash: crc32c=0LkbZQ==, md5=B6iWSHv8BfGDwjR9mkQ67Q==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 243
last-modified: Wed, 23 Feb 2022 14:17:06 GMT
etag: "07a896487bfc05f183c2347d9a443aed"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/award-images/lander/virusbulletin-vb100-1645625825.jpg>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/award-images/lander/av-comparatives-malware-award-1645625869.png

82.102.27.18

200 OK

13 kB

URL HTTP/2
resources.totalav.com/img/global/award-images/lander/av-comparatives-malware-award-1645625869.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 156 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (12828 bytes)
Hash
b2f4a61d304070ca12d9dc361c899353
34e57d09c1094f9f4f0b43b67d2bce6ec0539524
e617b7de87d133dd96abafce72329876da5d7ca256b0d23907571c543bf218f6

HTTP Headers

GET /img/global/award-images/lander/av-comparatives-malware-award-1645625869.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: application/octet-stream
content-length: 12828
x-guploader-uploadid: ADPycdvFxdxPX09YXASbH-wFkCbbLl6dUOjnt6ayfn5w1dsZOWHL7LXsqALmdYmA_fcT8dEq36Jf3r_wcqXs2Lf-WPrSxA
x-goog-generation: 1645625869702468
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 12828
x-goog-hash: crc32c=TGhR8Q==, md5=svSmHTBAcMoS2dw2HImTUw==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 243
last-modified: Wed, 23 Feb 2022 14:17:49 GMT
etag: "b2f4a61d304070ca12d9dc361c899353"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/award-images/lander/av-comparatives-malware-award-1645625869.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/layout/_totalav/www/background/content_image/white-background-shield.png

82.102.27.18

200 OK

6.0 kB

URL HTTP/2
resources.totalav.com/img/layout/_totalav/www/background/content_image/white-background-shield.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 503 x 469, 8-bit colormap, non-interlaced\012- data
Size
6.0 kB (6041 bytes)
Hash
3cf4995ee3f7812a37f7f93533d179a1
47c53a56b22caa69319f31f743504e19bce5548e
6c13ffdc95e6d0874472e3bd8833bf2aaa3197538e31aeba41c80dab83ca941b

HTTP Headers

GET /img/layout/_totalav/www/background/content_image/white-background-shield.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 6041
x-guploader-uploadid: ADPycdsKNBjl2L4ZdpQbca_nnkjTujb1u3LJYZ5Eq_5aHcQdIYPkv9RTjhjJd_ODgcXXtNaS9p8QAaIjcfmbeQCuBgrg5w
x-goog-generation: 1565685610122523
x-goog-metageneration: 7
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 6041
x-goog-hash: crc32c=P/FPlQ==, md5=PPSZXuP3gSo39/k1M9F5oQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Tue, 13 Aug 2019 08:40:10 GMT
etag: "3cf4995ee3f7812a37f7f93533d179a1"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/layout/_totalav/www/background/content_image/white-background-shield.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/layout/_totalav/www/content-img/en/trustpilot-free-download-exit-pop-white.png

82.102.27.18

200 OK

2.2 kB

URL HTTP/2
resources.totalav.com/img/layout/_totalav/www/content-img/en/trustpilot-free-download-exit-pop-white.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 220 x 91, 8-bit colormap, non-interlaced\012- data
Size
2.2 kB (2162 bytes)
Hash
0b4ecddec2124c27f7c7c06a6885614e
c27b43f13af0536b965347a1cc63bf7598932e3e
f5b9a8c99b53ebc9934be056720e17a3e585af336a6d7785323e59db9b0a4360

HTTP Headers

GET /img/layout/_totalav/www/content-img/en/trustpilot-free-download-exit-pop-white.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 2162
x-guploader-uploadid: ADPycdvvzMzrWML5KnvjsKuZ1smX-LTQ6wNzDbXjFXltdu1uEDcwC6WX4knjoIPDyBRiy2um_ICOQPVFQ1HFb9lrh9Y_
x-goog-generation: 1565685625011720
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2162
x-goog-hash: crc32c=Y63ZBA==, md5=C07N3sISTCf3x8BqaIVhTg==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 946
last-modified: Tue, 13 Aug 2019 08:40:25 GMT
etag: "0b4ecddec2124c27f7c7c06a6885614e"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/layout/_totalav/www/content-img/en/trustpilot-free-download-exit-pop-white.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/logo/tav-logo-white.png

82.102.27.18

200 OK

1.8 kB

URL HTTP/2
resources.totalav.com/img/global/_totalav/logo/tav-logo-white.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 145 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1801 bytes)
Hash
5f416e10e2e2e0a95d9172eda9ef8c7e
88aed48ecd7cae254e17dc6b9595ec2f1445fa23
2d4889a9379bd86f3b2daa82cd06be537e5f4bc89276fd33fe2faa7d94a201da

HTTP Headers

GET /img/global/_totalav/logo/tav-logo-white.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 1801
x-guploader-uploadid: ADPycdukWeFHmY4CGYL8fk-R_hhSe5Aelm30PWHoYYUXXRl8WQ9eipwsTk_v0Ep1s99pjpO0_d-Ho9YDltXL84YRQpf4vQ
x-goog-generation: 1565684158560914
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1801
x-goog-hash: crc32c=JFWGXw==, md5=X0FuEOLi4KldkXLtqe+Mfg==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Tue, 13 Aug 2019 08:15:58 GMT
etag: "5f416e10e2e2e0a95d9172eda9ef8c7e"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/logo/tav-logo-white.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/icons/en/money-back.png

82.102.27.18

200 OK

6.0 kB

URL HTTP/2
resources.totalav.com/img/global/_totalav/icons/en/money-back.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 176 x 175, 8-bit colormap, non-interlaced\012- data
Size
6.0 kB (5999 bytes)
Hash
6d6ea3076564b2984dc4aabdc9e42abf
a03594bd8f7e27cc13c2c5e86acc9d331f7a8b81
a0e072f9837ba4fbb22488b4a0e69e101ff48cb9972024dbdbc6521a6426d288

HTTP Headers

GET /img/global/_totalav/icons/en/money-back.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 5999
x-guploader-uploadid: ADPycduyGV7RF6SeVW5hu-rAgEz50cUVXK732Jkn3Er_eAlycONXxMI9rWq2BgTuDqCYBUDa94EfZX2kzLfeGdqH3hA1wYxYO6Ek
x-goog-generation: 1565684110166236
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 5999
x-goog-hash: crc32c=Gzn7ZA==, md5=bW6jB2VksphNxKq9yeQqvw==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Tue, 13 Aug 2019 08:15:10 GMT
etag: "6d6ea3076564b2984dc4aabdc9e42abf"
age: 946
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/icons/en/money-back.png>; rel="canonical"
x-cache: STALE
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/icons/en/diagnostic_scan_rosette.png

82.102.27.18

200 OK

6.0 kB

URL HTTP/2
resources.totalav.com/img/global/_totalav/icons/en/diagnostic_scan_rosette.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 176 x 176, 8-bit colormap, non-interlaced\012- data
Size
6.0 kB (6044 bytes)
Hash
104b47969383ae4773b99688e25937cc
de5ee5369729a1d50b8fe7635a9a5a73e44a97f1
d76f7b4db2b42e35ce80e036cdc9ca78b16526a160cc1cd265684fa353823b35

HTTP Headers

GET /img/global/_totalav/icons/en/diagnostic_scan_rosette.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 6044
x-guploader-uploadid: ADPycdsr6TFOxCKnu0aKrXjZoliUhFY5M8t8Ccxbzuqu_4oZVY_4_yWa2YDCjWIg_okT8pj2FRu-YMgnlIXdBoDp17PUUkzYAksY
x-goog-generation: 1565684109764714
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 6044
x-goog-hash: crc32c=zj+FDg==, md5=EEtHlpODrkdzuZaI4lk3zA==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Tue, 13 Aug 2019 08:15:09 GMT
etag: "104b47969383ae4773b99688e25937cc"
age: 946
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/icons/en/diagnostic_scan_rosette.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/layout/_totalav/my/modal/roundel-confirmation.png

82.102.27.18

200 OK

9.0 kB

URL HTTP/2
resources.totalav.com/img/layout/_totalav/my/modal/roundel-confirmation.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 184 x 184, 8-bit/color RGBA, non-interlaced\012- data
Size
9.0 kB (9005 bytes)
Hash
0ee02abe3c37b38d79ec081e8fc2fb6d
76324b117312b2e2cea1a464b541bebf650f2307
6aae5290cf05db992f9f62a224ffa7ace67ee1941a4f870694cb3d7c893bdf17

HTTP Headers

GET /img/layout/_totalav/my/modal/roundel-confirmation.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 9005
x-guploader-uploadid: ADPycdtBan5mso7w7PbU2Ce_X9YJTWFqi7EEcXbqCFbztyGc9pBM7qKoik0O3DhS3YIsmJ4DeKPn7E9Pryd3GcXg0w3s2g
x-goog-generation: 1565685557968795
x-goog-metageneration: 7
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9005
x-goog-hash: crc32c=gyxWdw==, md5=DuAqvjw3s4157Agej8L7bQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Tue, 13 Aug 2019 08:39:17 GMT
etag: "0ee02abe3c37b38d79ec081e8fc2fb6d"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/layout/_totalav/my/modal/roundel-confirmation.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/build/prod/22.285.2/js/global/global.min.js

82.102.27.18

200 OK

43 kB

URL HTTP/2
resources.totalav.com/build/prod/22.285.2/js/global/global.min.js
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Unicode text, UTF-8 text, with very long lines (31984)
Size
43 kB (43079 bytes)
Hash
7ecda81ff550c736701ffb97e2b96607
10528d19ee9dc7f3e4cce53fc7499de541caaf73
77d259a1c4087660ae2b79b7760309a6a9ac25ac940a8192e0e90109183077f9

HTTP Headers

GET /build/prod/22.285.2/js/global/global.min.js HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: application/javascript
content-length: 43079
x-guploader-uploadid: ADPycduzYRsGTwysQChaZ7Co1LFrXZbn5yTm0RIi3wJYax4X58kB-74liymhm0ya_zzmwrPR9Rj8V0paQbctDkXmjX9FmBNC3MoI
x-goog-generation: 1669397725557169
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 43079
content-encoding: gzip
x-goog-hash: crc32c=oL2/8w==, md5=fs2oH/VQxzZwH/uX4rlmBw==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Fri, 25 Nov 2022 17:35:25 GMT
etag: "7ecda81ff550c736701ffb97e2b96607"
age: 112
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/build/prod/22.285.2/js/global/global.min.js>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/build/prod/22.285.2/js/download-overlay/download-overlay.min.js

82.102.27.18

200 OK

1.7 kB

URL HTTP/2
resources.totalav.com/build/prod/22.285.2/js/download-overlay/download-overlay.min.js
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Unicode text, UTF-8 text, with very long lines (5185), with no line terminators
Size
1.7 kB (1670 bytes)
Hash
3715f56999afe9e1d022fbfb8e850c3d
f63ee6818d69c4feb03cfe4c8f65f4c73968347d
a62f4c2dea8e57fe3b1b24e27b5b7c0c31d013148e5161c65cc1b49748ec79b7

HTTP Headers

GET /build/prod/22.285.2/js/download-overlay/download-overlay.min.js HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: application/javascript
content-length: 1670
x-guploader-uploadid: ADPycdvs8Sk6ugMJ6J2NfU23rlPPfAFa5Dme8MsYTthI185t9NW14yeYC5TPgbjvlfPjsuHM8nn_df9ni0Tn1XGb50sya-Fs9AeX
x-goog-generation: 1669397725356345
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1670
content-encoding: gzip
x-goog-hash: crc32c=0kAZrg==, md5=NxX1aZmv6eHQIvv7joUMPQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Fri, 25 Nov 2022 17:35:25 GMT
etag: "3715f56999afe9e1d022fbfb8e850c3d"
age: 63
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/build/prod/22.285.2/js/download-overlay/download-overlay.min.js>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/build/prod/22.285.2/css/global/_totalav/global.min-1-bless-section.css?z=890

82.102.27.18

200 OK

25 kB

URL HTTP/2
resources.totalav.com/build/prod/22.285.2/css/global/_totalav/global.min-1-bless-section.css?z=890
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65395)
Size
25 kB (25108 bytes)
Hash
ba413b08288bf083cea8aedc87c39de5
8194bd01574e32e59e14675c7decb32a9df7a164
acd050d1ea0333cfdb5aa86c522bff594ae2f4cf355b9fcc8ace71d65e7a9cb4

HTTP Headers

GET /build/prod/22.285.2/css/global/_totalav/global.min-1-bless-section.css?z=890 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.285.2/css/global/_totalav/global.min.css
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: text/css
content-length: 25108
x-guploader-uploadid: ADPycdv9f1gBr5SgR6TvoP7AZ2801neOyqJtj8bDUSvDb6rTQ0M7zspeJ_L7-TcL4afMffBSX-H0LOIx0pyYc-B8qu80dzqtW5IW
x-goog-generation: 1669397708937852
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 25108
content-encoding: gzip
x-goog-hash: crc32c=Nj/Vuw==, md5=ukE7CCiL8IPOqK7ch8Od5Q==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Fri, 25 Nov 2022 17:35:08 GMT
etag: "ba413b08288bf083cea8aedc87c39de5"
age: 112
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/build/prod/22.285.2/css/global/_totalav/global.min-1-bless-section.css?z=890>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:22:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

resources.totalav.com/build/prod/22.285.2/css/layout/www/_totalav/layout.min-1-bless-section.css?z=21

82.102.27.18

200 OK

39 kB

URL HTTP/2
resources.totalav.com/build/prod/22.285.2/css/layout/www/_totalav/layout.min-1-bless-section.css?z=21
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65395)
Size
39 kB (39445 bytes)
Hash
ffe6250119b50ac20a7cbde65eb89e9d
304e4c701b8775aca9f3c4e551e522b352121e05
5922f37f4c1d1be9d408fdb647db727c60d75410369af520b1559ff2c12cd798

HTTP Headers

GET /build/prod/22.285.2/css/layout/www/_totalav/layout.min-1-bless-section.css?z=21 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.285.2/css/layout/www/_totalav/layout.min.css
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: text/css
content-length: 39445
x-guploader-uploadid: ADPycdtUllCJnI1mjbIhZ-CiGGqWZjQ3sNRd_OZ4m11sA041OjwZyD4HILj1M9TctyH2BKiQoiuOu6I4b6G-Cf8rKqx8XMSqva9F
x-goog-generation: 1669397697010556
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 39445
content-encoding: gzip
x-goog-hash: crc32c=CxxHBw==, md5=/+YlARm1CsIKfL3mXrienQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Fri, 25 Nov 2022 17:34:57 GMT
etag: "ffe6250119b50ac20a7cbde65eb89e9d"
age: 42
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/build/prod/22.285.2/css/layout/www/_totalav/layout.min-1-bless-section.css?z=21>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:22:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:22:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/lato/v16/S6uyw4BMUTPHjx4wXiWtFCc.woff2

216.58.207.195

200 OK

14 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v16/S6uyw4BMUTPHjx4wXiWtFCc.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 14044, version 1.0\012- data
Size
14 kB (14044 bytes)
Hash
129179c4eeb1d784d3d3ad95e0b35905
f75444b5ef6205ee4301d632adf17e28985b0840
036d841b132c14046e26d8f2da1bc634c6ad34885ed1295660694a91c98933a6

HTTP Headers

GET /s/lato/v16/S6uyw4BMUTPHjx4wXiWtFCc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14044
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:46:54 GMT
expires: Thu, 23 Nov 2023 19:46:54 GMT
cache-control: public, max-age=31536000
age: 336929
last-modified: Tue, 23 Jul 2019 03:45:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v16/S6u9w4BMUTPHh6UVSwiPGQ3q5d0.woff2

216.58.207.195

200 OK

14 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v16/S6u9w4BMUTPHh6UVSwiPGQ3q5d0.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 14176, version 1.0\012- data
Size
14 kB (14176 bytes)
Hash
c8dcbaf22349dba5061d93607ca9b37c
548040e31d6eef3d621157a3b3ae5b0be5618460
9baad10e85c5be8d5697086479983b6b477197103bf8f0f11817b1bdfb9a7451

HTTP Headers

GET /s/lato/v16/S6u9w4BMUTPHh6UVSwiPGQ3q5d0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14176
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 02:23:14 GMT
expires: Sun, 26 Nov 2023 02:23:14 GMT
cache-control: public, max-age=31536000
age: 140349
last-modified: Tue, 23 Jul 2019 03:45:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js

143.204.55.78

200 OK

6.1 kB

URL HTTP/2
widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
IP
143.204.55.78:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (19239)
Size
6.1 kB (6124 bytes)
Hash
5add60196e5f96a414fb4b9586764e5d
633f471b3c2fcedeef9cad90cb5bf56f5fe55588
5370f4ba91dda790c7cae92817b812fcbd1ab367cbb4862f5669960ae4e2c9e0

HTTP Headers

GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6124
last-modified: Mon, 30 May 2022 14:38:02 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Sun, 27 Nov 2022 01:28:23 GMT
cache-control: max-age=86400
etag: "5add60196e5f96a414fb4b9586764e5d"
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uZO5yhGJqtseNHL3EnDU92WvNDmnndyReBehi7jCOfaajMm-0rtOGw==
age: 57240
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:22:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:22:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1d4/RhOt3BdMrr4

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/RhOt3BdMrr4
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
416a0a241a540a3918891bba16be710c
041348cd820ba22907b693d3643d61bc2bad6359
9ed1c91d2071c4d0d6c97aa80b3b0adba8655c0587244c3cc02dcf4d49d1cd3a

HTTP Headers

POST /s/gts1d4/RhOt3BdMrr4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:22:23 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

resources.totalav.com/img/global/flag/no.png

82.102.27.18

200 OK

14 kB

URL HTTP/2
resources.totalav.com/img/global/flag/no.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (13699 bytes)
Hash
dcbf2604c9071fb939dd3907fc59c4cd
42079c567ef2bc728c75e734905cf24924642dd7
0b54a3901bc88d72a53568a19fd5ce09a4444f22882afb31a597ce1850167f0a

HTTP Headers

GET /img/global/flag/no.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.285.2/css/layout/www/_totalav/layout.min-1-bless-section.css?z=21
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 13699
x-guploader-uploadid: ADPycdv4DnN5lh9CAGenzJT_DrKAdqn2dfDO1_NOW0g71dmBzCmGwwXEqI-4G6tQVPlhAsUDOxHDGv6drwJEpcLkG3lT
x-goog-generation: 1565684619095737
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 13699
x-goog-hash: crc32c=EvRRpw==, md5=3L8mBMkHH7k53TkH/FnEzQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 3
last-modified: Tue, 13 Aug 2019 08:23:39 GMT
etag: "dcbf2604c9071fb939dd3907fc59c4cd"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/flag/no.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/layout/_totalav/www/background/free-download-hero-banner.jpg

82.102.27.18

200 OK

41 kB

URL HTTP/2
resources.totalav.com/img/layout/_totalav/www/background/free-download-hero-banner.jpg
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x420, components 3\012- data
Size
41 kB (41383 bytes)
Hash
d6243d53891711d727d81e6cd722a6c7
73ceb6cfd3ea8cec41791831d19dcb714f6a71d3
5634537de5de09d385b7e054bd06b6efbccf3fbe1793e31cbc1e5838c71b1f06

HTTP Headers

GET /img/layout/_totalav/www/background/free-download-hero-banner.jpg HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.285.2/css/layout/www/_totalav/layout.min-1-bless-section.css?z=21
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/jpeg
content-length: 41383
x-guploader-uploadid: ADPycdv4g7nC2dqCybeGSEUUBEe-HmdM-70upt0_FSnCEtS6-LtdgRmj4b7CvvQJ16hIs5lCoRkCUfRn04X8v-PcAMtUWg
x-goog-generation: 1565685612193807
x-goog-metageneration: 7
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 41383
x-goog-hash: crc32c=8+7Gzw==, md5=1iQ9U4kXEdcn2B5s1yKmxw==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Tue, 13 Aug 2019 08:40:12 GMT
etag: "d6243d53891711d727d81e6cd722a6c7"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/layout/_totalav/www/background/free-download-hero-banner.jpg>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/font/lato/lato-light-webfont.woff2

82.102.27.18

200 OK

30 kB

URL HTTP/2
resources.totalav.com/font/lato/lato-light-webfont.woff2
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 29576, version 2.983\012- data
Size
30 kB (29576 bytes)
Hash
1af6ec82f706979f0d68fb228a968d22
18bce2921cf2bf6364274a031c9b769827a6a341
52d1ff4da5ae1dc05d99c6550f596a67d0c859bc163f99096cfdce5b18d38e21

HTTP Headers

GET /font/lato/lato-light-webfont.woff2 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://resources.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: font/woff2
content-length: 29576
x-guploader-uploadid: ADPycdsrRkL_9bzMD3TQi5MeOsCgY_cvjuYRslWIvTC1Ye9BoHulylHj_7k7hO1FIumQTr0Wqj5xqdyqkjAJq2jAOqVGna9lzjK6
x-goog-generation: 1566228744427533
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 29576
x-goog-hash: crc32c=Uvxomw==, md5=GvbsgvcGl58NaPsiipaNIg==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 224
last-modified: Mon, 19 Aug 2019 15:32:24 GMT
etag: "1af6ec82f706979f0d68fb228a968d22"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/font/lato/lato-light-webfont.woff2>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4/RhOt3BdMrr4

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/RhOt3BdMrr4
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
416a0a241a540a3918891bba16be710c
041348cd820ba22907b693d3643d61bc2bad6359
9ed1c91d2071c4d0d6c97aa80b3b0adba8655c0587244c3cc02dcf4d49d1cd3a

HTTP Headers

POST /s/gts1d4/RhOt3BdMrr4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:22:23 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

resources.totalav.com/font/lato/lato-regular-webfont.woff2

82.102.27.18

200 OK

30 kB

URL HTTP/2
resources.totalav.com/font/lato/lato-regular-webfont.woff2
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 30468, version 2.983\012- data
Size
30 kB (30468 bytes)
Hash
1a9cf8e82e21e6c72b3233785434c732
adbd46e6f5e1e14ee05d57c6bde0fb2a9443b538
89bac0b5661b66d578cafa238d0b813568b2a38bc8551a9206d684aee6874927

HTTP Headers

GET /font/lato/lato-regular-webfont.woff2 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://resources.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: font/woff2
content-length: 30468
x-guploader-uploadid: ADPycdtJ6qWUIwzPmpyfNqnbXYSiwOkjvU32sk5L-Vt0-X8hxpJ2mjn22Mj8a5PrzjQon8eKFC2O5wkudqTkVh0pH-kh9w
x-goog-generation: 1566228756589294
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 30468
x-goog-hash: crc32c=WH/LhQ==, md5=Gpz46C4h5scrMjN4VDTHMg==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Mon, 19 Aug 2019 15:32:36 GMT
etag: "1a9cf8e82e21e6c72b3233785434c732"
age: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/font/lato/lato-regular-webfont.woff2>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Lato:300,400,700&display=swap

142.250.74.10

200 OK

31 kB

URL HTTP/2
fonts.googleapis.com/css?family=Lato:300,400,700&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
31 kB (30924 bytes)
Hash
a5b827840167bae78ad7fedd9e767692
770b6b84ab9f1ba37e386f379760b3aa7b10fcdc
a3c3c618af761f28da66b1117f9aed871fa0f85c845473ac6fd4f02f5540b49d

HTTP Headers

GET /css?family=Lato:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 17:22:23 GMT
date: Sun, 27 Nov 2022 17:22:23 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

static.totalav.com/packages/fontawesome/webfonts/fa-light-300.woff2?22.285.2

35.186.251.103

200 OK

146 kB

URL HTTP/2
static.totalav.com/packages/fontawesome/webfonts/fa-light-300.woff2?22.285.2
IP
35.186.251.103:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 145656, version 1.0\012- data
Size
146 kB (145656 bytes)
Hash
b076f7ccd174eeb6ea55b9857c50f37c
43ae8d7a5fee84c0947b97bd7a9217db19b5247d
448f45a0ba44410ee2f4a475d56719fd1531dcd274876d8e3ef96b4cf01125e1

HTTP Headers

GET /packages/fontawesome/webfonts/fa-light-300.woff2?22.285.2 HTTP/1.1
Host: static.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
x-guploader-uploadid: ADPycdvoR8CFTKl8n7HlHt86c37L8u6ctaHLWCrQ6mpUJfiym4AbjNKdpLlCr8qCpW-IL_X6OLEVZyFt5hwRv30x0ue2DQ
x-goog-generation: 1566377986064902
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 145656
x-goog-hash: crc32c=JMV6oA==, md5=sHb3zNF07rbqVbmFfFDzfA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 145656
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sat, 12 Nov 2022 17:08:49 GMT
expires: Sun, 12 Nov 2023 17:08:49 GMT
cache-control: public, max-age=31536000
age: 1296814
last-modified: Wed, 21 Aug 2019 08:59:46 GMT
etag: "b076f7ccd174eeb6ea55b9857c50f37c"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

resources.totalav.com/packages/fontawesome/webfonts/fa-brands-400.woff2

82.102.27.18

200 OK

70 kB

URL HTTP/2
resources.totalav.com/packages/fontawesome/webfonts/fa-brands-400.woff2
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 69644, version 1.0\012- data
Size
70 kB (69644 bytes)
Hash
0896516daa9ef0a4169465a6fa281d68
d79042d11372b9c84aec373f49a291f99d4336c3
e705082b8a630b4d0190bb13e20f4d127f75ad88c271c749ff0c4e10c6acacf9

HTTP Headers

GET /packages/fontawesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://resources.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: application/octet-stream
content-length: 69644
x-guploader-uploadid: ADPycdvAf-GXuSRc5ckUagXH_fnKH8WPS7rwkJatrmQyN59V_KniRggMreW1wLl2YA_dZ1shOEcmhcFqWwLSRZA0rEchUQ
x-goog-generation: 1566377984564371
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 69644
x-goog-hash: crc32c=3nh1GQ==, md5=CJZRbaqe8KQWlGWm+igdaA==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 274
last-modified: Wed, 21 Aug 2019 08:59:44 GMT
etag: "0896516daa9ef0a4169465a6fa281d68"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/packages/fontawesome/webfonts/fa-brands-400.woff2>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

static.totalav.com/packages/fontawesome/webfonts/fa-brands-400.woff2?22.285.2

35.186.251.103

200 OK

70 kB

URL HTTP/2
static.totalav.com/packages/fontawesome/webfonts/fa-brands-400.woff2?22.285.2
IP
35.186.251.103:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 69644, version 1.0\012- data
Size
70 kB (69644 bytes)
Hash
0896516daa9ef0a4169465a6fa281d68
d79042d11372b9c84aec373f49a291f99d4336c3
e705082b8a630b4d0190bb13e20f4d127f75ad88c271c749ff0c4e10c6acacf9

HTTP Headers

GET /packages/fontawesome/webfonts/fa-brands-400.woff2?22.285.2 HTTP/1.1
Host: static.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
x-guploader-uploadid: ADPycduMvnLto1tMJ3m3Mpfyb-VDY20fqV04p1jeUUDgnyGsLVFiDytAvHc2fJIITRpJkt1dppwLMDfadiIILd8aiNkLazPTI2fP
x-goog-generation: 1566377984564371
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 69644
x-goog-hash: crc32c=3nh1GQ==, md5=CJZRbaqe8KQWlGWm+igdaA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 69644
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sat, 12 Nov 2022 05:55:29 GMT
expires: Sun, 12 Nov 2023 05:55:29 GMT
cache-control: public, max-age=31536000
age: 1337214
last-modified: Wed, 21 Aug 2019 08:59:44 GMT
etag: "0896516daa9ef0a4169465a6fa281d68"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
8d05bc41087cb912f5357f33dfd05ac1
1a9ceb9dcf8baa408f18fb821f6e341272e4aaee
6cb49aa9c702807c2858dcebf79ec76644002d17996ac21d25ad47123b932b67

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 17:22:23 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 08:04:12 GMT
Expires: Fri, 02 Dec 2022 08:04:11 GMT
Etag: "1a9ceb9dcf8baa408f18fb821f6e341272e4aaee"
Cache-Control: max-age=397907,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 770c8baf5a5efab8-OSL

resources.totalav.com/packages/fontawesome/webfonts/fa-solid-900.woff2

82.102.27.18

200 OK

111 kB

URL HTTP/2
resources.totalav.com/packages/fontawesome/webfonts/fa-solid-900.woff2
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 110892, version 1.0\012- data
Size
111 kB (110892 bytes)
Hash
a265bbc20e40ae6e6b45e0b78ab08c41
72dfb20ed2e0c80534e3972ed65f98684fd8f3cc
88876fcd5eb71de865d889ea63df11b023ef1d1365124305c2708f61cbb04339

HTTP Headers

GET /packages/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://resources.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: application/octet-stream
content-length: 110892
x-guploader-uploadid: ADPycdtP0yRAgS1XFsv8_pFhYaS9idPM0PQPufjaOw7gC8qwSqKocuEstYDHBETHk9_Z74ANWTORiECLbVe3LNxR5UnknbJqZ733
x-goog-generation: 1566377982457480
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 110892
x-goog-hash: crc32c=w+vXRg==, md5=omW7wg5Arm5rReC3irCMQQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 499
last-modified: Wed, 21 Aug 2019 08:59:42 GMT
etag: "a265bbc20e40ae6e6b45e0b78ab08c41"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/packages/fontawesome/webfonts/fa-solid-900.woff2>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/font/lato/lato-semibold-webfont.woff2

82.102.27.18

200 OK

31 kB

URL HTTP/2
resources.totalav.com/font/lato/lato-semibold-webfont.woff2
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 30576, version 2.983\012- data
Size
31 kB (30576 bytes)
Hash
ee2eae440d9dd60b13ffef00c16793b4
3b25e29e2893933e2b37348f2244a8a7d1c43733
be6eec6c2e212e21a1641bbbbbc3fdecb5f9ca1c1e5636ebcba6f666fac69bdf

HTTP Headers

GET /font/lato/lato-semibold-webfont.woff2 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://resources.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: font/woff2
content-length: 30576
x-guploader-uploadid: ADPycdtk-WCYh4R85cbH1yNJahvN3mrClPWOsMK10qKZO12G53qxKeUzQrErQjr0BDEyXcAo5r0MCxmsdIU7r-qrLjBT
x-goog-generation: 1566228755008890
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 30576
x-goog-hash: crc32c=g05elA==, md5=7i6uRA2d1gsT/+8AwWeTtA==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 224
last-modified: Mon, 19 Aug 2019 15:32:35 GMT
etag: "ee2eae440d9dd60b13ffef00c16793b4"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/font/lato/lato-semibold-webfont.woff2>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4/RhOt3BdMrr4

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/RhOt3BdMrr4
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
416a0a241a540a3918891bba16be710c
041348cd820ba22907b693d3643d61bc2bad6359
9ed1c91d2071c4d0d6c97aa80b3b0adba8655c0587244c3cc02dcf4d49d1cd3a

HTTP Headers

POST /s/gts1d4/RhOt3BdMrr4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:22:23 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.195

200 OK

24 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:10:21 GMT
expires: Wed, 22 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 432722
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140

143.204.55.78

200 OK

3.3 kB

URL HTTP/2
widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140
IP
143.204.55.78:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (12963)
Size
3.3 kB (3267 bytes)
Hash
2922a85ce6caf46f828c097bf7aa1036
afedbac8e6480a8c59cc6ca3359381731f75795b
12d369c3d585d564678ed15f99b53dad29faa1e05475825ccd0e8f4c50cfb779

HTTP Headers

GET /trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/html
content-length: 3267
last-modified: Tue, 04 Oct 2022 10:24:57 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Sun, 27 Nov 2022 03:47:41 GMT
cache-control: max-age=86400
etag: "2922a85ce6caf46f828c097bf7aa1036"
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4ZHDTNiwuuATKCs_COm_ZNNscRmM7djTeqXzylDM1_ZxTfeDbyq3VQ==
age: 49129
X-Firefox-Spdy: h2

widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/main.js

143.204.55.78

200 OK

30 kB

URL HTTP/2
widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/main.js
IP
143.204.55.78:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (64281), with no line terminators
Size
30 kB (29756 bytes)
Hash
5b76b943a9533254775b33e002b1c884
4c884b91ed0762c5380da136c5d09edb9b4fbd14
003b5a563be7a0444ca3be97ace94a5b4ec478009ffa159767c5873ee61e5bdb

HTTP Headers

GET /trustboxes/53aa8912dec7e10d38f59f36/main.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/x-javascript
content-length: 29756
last-modified: Tue, 04 Oct 2022 10:24:58 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Sun, 27 Nov 2022 04:22:48 GMT
cache-control: max-age=86400
etag: "5b76b943a9533254775b33e002b1c884"
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LnDo81KyGHKt4Meq6fn_E7U3ylwTHVYZcoY5Yzb8gvDv4cJg1Zmrwg==
age: 46775
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/favicons/favicon-16x16.png

82.102.27.18

200 OK

673 B

URL HTTP/2
resources.totalav.com/img/global/_totalav/favicons/favicon-16x16.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
673 B (673 bytes)
Hash
9df1557ead386902196ca7cfd44e22a9
a8edf72156e4a99dcb7b3faf9c777320d274adab
a2f0809bbe20db682f7cb3d3f8aba0a0675f2a852b78d99b5743f67ed94e5ca4

HTTP Headers

GET /img/global/_totalav/favicons/favicon-16x16.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 673
x-guploader-uploadid: ADPycduBEjn8n2SEX_rlow0lfkBegyui38iZEws9c8l9pL3Nz2wfPGwK867TloyEdHt-V_pTPBXUuDm5OmlPymxkmj1k
x-goog-generation: 1565684079441538
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 673
x-goog-hash: crc32c=+n3gkQ==, md5=nfFVfq04aQIZbKfP1E4iqQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Tue, 13 Aug 2019 08:14:39 GMT
etag: "9df1557ead386902196ca7cfd44e22a9"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/favicons/favicon-16x16.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/favicons/apple-touch-icon-180x180.png

82.102.27.18

200 OK

3.0 kB

URL HTTP/2
resources.totalav.com/img/global/_totalav/favicons/apple-touch-icon-180x180.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Size
3.0 kB (2981 bytes)
Hash
fbdf2f4c943ffef889eb6b7c0595819b
0d61d94b2bf64fc0bc5f56584ed6246ed8cb7e67
0aba5a4e4969c15465fa7eed5748a4989e007f2519e9164ccc59996642199d74

HTTP Headers

GET /img/global/_totalav/favicons/apple-touch-icon-180x180.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 2981
x-guploader-uploadid: ADPycdsZ73py9WqXD_2kni5epLcosKgthh1DsQyJKWDSmhF_cfN7m5Qk8NchY-0gclLHp24afGlMoQ5UV2Uq1TErKyODPA
x-goog-generation: 1565684076522942
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2981
x-goog-hash: crc32c=hPTJ9Q==, md5=+98vTJQ//viJ62t8BZWBmw==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 3575
last-modified: Tue, 13 Aug 2019 08:14:36 GMT
etag: "fbdf2f4c943ffef889eb6b7c0595819b"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/favicons/apple-touch-icon-180x180.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/download-overlay/browser-icons/icons.png

82.102.27.18

200 OK

61 kB

URL HTTP/2
resources.totalav.com/img/global/download-overlay/browser-icons/icons.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 73 x 511, 8-bit/color RGBA, non-interlaced\012- data
Size
61 kB (60983 bytes)
Hash
f742badf7478a9b45f46f857e85d045e
866fb896e4073852423b7953f87f2b247bec710b
f45e73fea684187af13d7080276fd4b1394618ead4b629090e86831f55dbaf0a

HTTP Headers

GET /img/global/download-overlay/browser-icons/icons.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.285.2/css/global/_totalav/global.min.css
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 60983
x-guploader-uploadid: ADPycduH25kUJr7AFMWLW9-wLYjtSv7sO2rJdjjMB0zrh2rjeiahpU7PznYphbbH7Sk8CMH01vMNoNEVCZJ3qgEWGAi9hQ
x-goog-generation: 1607337077411113
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 60983
x-goog-hash: crc32c=z2lYJw==, md5=90K633R4qbRfRvhX6F0EXg==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 500
last-modified: Mon, 07 Dec 2020 10:31:17 GMT
etag: "f742badf7478a9b45f46f857e85d045e"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/download-overlay/browser-icons/icons.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/download-overlay/arrows/arrow.png

82.102.27.18

200 OK

1.0 kB

URL HTTP/2
resources.totalav.com/img/global/download-overlay/arrows/arrow.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 95 x 184, 8-bit colormap, non-interlaced\012- data
Size
1.0 kB (1013 bytes)
Hash
44b57491a2f0b1ecfacce48e5759a7d4
bcfc601622982f754f3bc2e7c1bd832eed7fe3a7
e62559518386f5218cf1db89f0848cf293b2a93a0bd0af4d918297c112bb2ee5

HTTP Headers

GET /img/global/download-overlay/arrows/arrow.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.285.2/css/global/_totalav/global.min.css
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 1013
x-guploader-uploadid: ADPycdselDGqtbMjwa3cOZf8fHg__8vE3LWg25Kwe3-tKQ2CYTC5yA6_wTE_eyi8NBS8p1GqJsZtG3pS5z-AMo8Pqm34OwspC_bC
x-goog-generation: 1565684514180273
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1013
x-goog-hash: crc32c=2bEhgA==, md5=RLV0kaLwsez6zOSOV1mn1A==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 500
last-modified: Tue, 13 Aug 2019 08:21:54 GMT
etag: "44b57491a2f0b1ecfacce48e5759a7d4"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/download-overlay/arrows/arrow.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/download-overlay/brand-icons/icons.png

82.102.27.18

200 OK

6.2 kB

URL HTTP/2
resources.totalav.com/img/global/download-overlay/brand-icons/icons.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 36 x 216, 8-bit/color RGBA, non-interlaced\012- data
Size
6.2 kB (6223 bytes)
Hash
b365b404916d4cc08f676458a94921a8
22a216d372f4dbfa7c3725ae01fa5d19d0fad98f
a1e7c1aa84e4706f6c057d940505b6ba655ba3843204cd4c1f851120c106bd6b

HTTP Headers

GET /img/global/download-overlay/brand-icons/icons.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.285.2/css/global/_totalav/global.min.css
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 6223
x-guploader-uploadid: ADPycdua_Mx53BeRfYp8XjhLb6D693wOeB9nx7N0N2rL9H26HcisZh2npK7iI-8gMFVCaZkjlgFRTbX6ohi_RFpU9Ey0JJO1cITl
x-goog-generation: 1565684514584875
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 6223
x-goog-hash: crc32c=2LZ4Gw==, md5=s2W0BJFtTMCPZ2RYqUkhqA==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 311
last-modified: Tue, 13 Aug 2019 08:21:54 GMT
etag: "b365b404916d4cc08f676458a94921a8"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/download-overlay/brand-icons/icons.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/download-overlay/main-overlays/totalav/win-10/en/overlay.png

82.102.27.18

200 OK

560 kB

URL HTTP/2
resources.totalav.com/img/global/download-overlay/main-overlays/totalav/win-10/en/overlay.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 899 x 2274, 8-bit/color RGBA, non-interlaced\012- data
Size
560 kB (560224 bytes)
Hash
3694e3381849027289ffa5557b46e991
926cb1892677e88f990771196d575be25eeb87fd
aa7d5ca64e61cef66c47587ef4e5e38eb1d9eaee62378eb5f4f9010cbadef7d4

HTTP Headers

GET /img/global/download-overlay/main-overlays/totalav/win-10/en/overlay.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.285.2/css/global/_totalav/global.min.css
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 560224
x-guploader-uploadid: ADPycdtlnDlTMMxFC3R5sLHFjVTGkldUTIkjCog6ETdU2H3qFd8a0OcZ2vC09UD7mRg1H620rskg36lrQfpI1IsT4KBbniMRKS5G
x-goog-generation: 1619089605640762
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 560224
x-goog-hash: crc32c=Z3s3GA==, md5=NpTjOBhJAnKJ/6VVe0bpkQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 805
last-modified: Thu, 22 Apr 2021 11:06:45 GMT
etag: "3694e3381849027289ffa5557b46e991"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/download-overlay/main-overlays/totalav/win-10/en/overlay.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/icon/close-cross.png

82.102.27.18

200 OK

552 B

URL HTTP/2
resources.totalav.com/img/global/icon/close-cross.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 30 x 30, 8-bit colormap, non-interlaced\012- data
Size
552 B (552 bytes)
Hash
e87c7a9c544a64d715fd0d305dc8972d
7d867419e849c0a28c5b6bd655a6b9b8180ce68b
c13eabea58fca86b259c4e67ff9c7977a1062e4638b05675b9dc07c08f934f28

HTTP Headers

GET /img/global/icon/close-cross.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.285.2/css/layout/www/_totalav/layout.min-1-bless-section.css?z=21
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: image/png
content-length: 552
x-guploader-uploadid: ADPycduhXW2jlzyhRursY3XOrTYLfSX9iZN7BcIud9GhGWevLI-Z2f17y0_y3ZrvTuO6pQOCgp4o-JlV6HTD92aXI6xTBg
x-goog-generation: 1565684680543383
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 552
x-goog-hash: crc32c=D9mhSw==, md5=6Hx6nFRKZNcV/Q0wXciXLQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 143
last-modified: Tue, 13 Aug 2019 08:24:40 GMT
etag: "e87c7a9c544a64d715fd0d305dc8972d"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/icon/close-cross.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/packages/fontawesome/webfonts/fa-light-300.woff2

82.102.27.18

200 OK

146 kB

URL HTTP/2
resources.totalav.com/packages/fontawesome/webfonts/fa-light-300.woff2
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 145656, version 1.0\012- data
Size
146 kB (145656 bytes)
Hash
b076f7ccd174eeb6ea55b9857c50f37c
43ae8d7a5fee84c0947b97bd7a9217db19b5247d
448f45a0ba44410ee2f4a475d56719fd1531dcd274876d8e3ef96b4cf01125e1

HTTP Headers

GET /packages/fontawesome/webfonts/fa-light-300.woff2 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://resources.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: application/octet-stream
content-length: 145656
x-guploader-uploadid: ADPycdveX7nYZ9DQNw6kJPq0Mqjyy-E5SnscbuLVrgpbu0dwPcy626euCIq2jfQkq7umBelgY5hvW-fVLYmvYs3IVOwDyw
x-goog-generation: 1566377986064902
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 145656
x-goog-hash: crc32c=JMV6oA==, md5=sHb3zNF07rbqVbmFfFDzfA==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
age: 231
last-modified: Wed, 21 Aug 2019 08:59:46 GMT
etag: "b076f7ccd174eeb6ea55b9857c50f37c"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/packages/fontawesome/webfonts/fa-light-300.woff2>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

widget.trustpilot.com/trustbox-data/53aa8912dec7e10d38f59f36?businessUnitId=594e8fb40000ff0005a54140&locale=en-US&reviewLanguages=en&reviewStars=5&includeReviews=true&reviewsPerPage=15

143.204.55.78

200 OK

2.4 kB

URL HTTP/2
widget.trustpilot.com/trustbox-data/53aa8912dec7e10d38f59f36?businessUnitId=594e8fb40000ff0005a54140&locale=en-US&reviewLanguages=en&reviewStars=5&includeReviews=true&reviewsPerPage=15
IP
143.204.55.78:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (8430), with no line terminators
Size
2.4 kB (2433 bytes)
Hash
b1bb0eebd532ff680e676ac04b6b220b
530d4fe80ca119917489c1c94bbe85d7b244972d
b524c246eec2cd9ec1c363a936c931cfbc0debebe5d5ae13330ffd53053ce70f

HTTP Headers

GET /trustbox-data/53aa8912dec7e10d38f59f36?businessUnitId=594e8fb40000ff0005a54140&locale=en-US&reviewLanguages=en&reviewStars=5&includeReviews=true&reviewsPerPage=15 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 2433
cache-control: public,max-age=1800
content-encoding: gzip
date: Sun, 27 Nov 2022 16:59:49 GMT
etag: "29fa5f270475416b312a4880ba3f43dd"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-fallback-status: BYPASS
x-skip-cache-cookie: 0
x-xss-protection: 1; mode=block
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8kPceXp8JHtBSu7zshZ-8wHVG8ZxmkW1SbOv8kI0tHaeLruzyHhG6A==
age: 1354
X-Firefox-Spdy: h2

widget.trustpilot.com/stats/TrustboxView?locale=en-US&styleHeight=155px&styleWidth=100%25&theme=light&stars=5&reviewLanguages=en&url=https%3A%2F%2Fwww.totalav.com%2Ffree-download&referrer=https%3A%2F%2F4ecb8.trknovi.com%2F&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=594e8fb40000ff0005a54140&widgetId=53aa8912dec7e10d38f59f36

143.204.55.78

204 No Content

0 B

URL HTTP/2
widget.trustpilot.com/stats/TrustboxView?locale=en-US&styleHeight=155px&styleWidth=100%25&theme=light&stars=5&reviewLanguages=en&url=https%3A%2F%2Fwww.totalav.com%2Ffree-download&referrer=https%3A%2F%2F4ecb8.trknovi.com%2F&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=594e8fb40000ff0005a54140&widgetId=53aa8912dec7e10d38f59f36
IP
143.204.55.78:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /stats/TrustboxView?locale=en-US&styleHeight=155px&styleWidth=100%25&theme=light&stars=5&reviewLanguages=en&url=https%3A%2F%2Fwww.totalav.com%2Ffree-download&referrer=https%3A%2F%2F4ecb8.trknovi.com%2F&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=594e8fb40000ff0005a54140&widgetId=53aa8912dec7e10d38f59f36 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Sun, 27 Nov 2022 17:22:23 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Dw14eBQ9v9RfTgEFhJXRePa4UGDM3fMzjhXoRe0iODaPjheShRzRmw==
X-Firefox-Spdy: h2

widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=155px&styleWidth=100%25&theme=light&stars=5&reviewLanguages=en&url=https%3A%2F%2Fwww.totalav.com%2Ffree-download&referrer=https%3A%2F%2F4ecb8.trknovi.com%2F&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=594e8fb40000ff0005a54140&widgetId=53aa8912dec7e10d38f59f36

143.204.55.78

204 No Content

0 B

URL HTTP/2
widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=155px&styleWidth=100%25&theme=light&stars=5&reviewLanguages=en&url=https%3A%2F%2Fwww.totalav.com%2Ffree-download&referrer=https%3A%2F%2F4ecb8.trknovi.com%2F&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=594e8fb40000ff0005a54140&widgetId=53aa8912dec7e10d38f59f36
IP
143.204.55.78:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /stats/TrustboxImpression?locale=en-US&styleHeight=155px&styleWidth=100%25&theme=light&stars=5&reviewLanguages=en&url=https%3A%2F%2Fwww.totalav.com%2Ffree-download&referrer=https%3A%2F%2F4ecb8.trknovi.com%2F&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=594e8fb40000ff0005a54140&widgetId=53aa8912dec7e10d38f59f36 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Sun, 27 Nov 2022 17:22:23 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dmC73oKDn5rc7T8b34BLaLouS48Ca13e3a86oJDbhGE3JIUqUZ-XVA==
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12784
Expires: Sun, 27 Nov 2022 20:55:28 GMT
Date: Sun, 27 Nov 2022 17:22:24 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12784
Expires: Sun, 27 Nov 2022 20:55:28 GMT
Date: Sun, 27 Nov 2022 17:22:24 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12784
Expires: Sun, 27 Nov 2022 20:55:28 GMT
Date: Sun, 27 Nov 2022 17:22:24 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F597d0b25-8af2-425a-be32-195ac8e4bc00.jpeg

34.120.237.76

200 OK

4.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F597d0b25-8af2-425a-be32-195ac8e4bc00.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.4 kB (4374 bytes)
Hash
514b4077fad50ba782e4bbb2c95c6852
4770f56d4d9489df43f33952e4bfa84d8e46414e
a97ce7c911625345342731b96cf423ee36182e101e3039694a666d6508a702ef

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F597d0b25-8af2-425a-be32-195ac8e4bc00.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4374
x-amzn-requestid: 16fa9401-4b57-4300-9377-3a7d96de3a38
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGB7uFWJIAMFfTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f16b1-3386c7b54d828c3b1393b9ce;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:01:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6XMNeYqDwM9yHZf1rkBRhZ6k_iZE92MWKavu0vlQnT2jZ--tswQwWw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 07:07:11 GMT
age: 36913
etag: "4770f56d4d9489df43f33952e4bfa84d8e46414e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13049 bytes)
Hash
1db6041a0bdb2319ae85afcc30caaeec
3b0ec6a7188dadf986f72fda8110296d9abd6f35
05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: y0ofyT6UcPjB8mfRR1VMjHSTW64Qb_EQ0rrjsOdbby1CG-xMIFJMPw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:49:19 GMT
age: 70385
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10199 bytes)
Hash
2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: K2eKLQhrsCdd4ASsfEibRuZAYW4CpPTlO3fZs7xdoKrw1HBxfTGkEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
age: 70810
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.1 kB (5099 bytes)
Hash
433875a1b1fef34e45f2d8ac344c07e3
f2129466436cbbdd58abe42a47fb7af19eba58e6
ab1e7b46f3804640c7dd94d70c8c31ec2dfc3e2f0f015a8556d04d9d9089c450

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5099
x-amzn-requestid: 57648043-7820-453d-9549-0f743b6c2557
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4jFBvoAMFl1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-53b59d607b82c264180f469d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: VsdLWuh4rCawI5V0YYGaHxEMl2YEVNgsbjfCwzDsrnCZhRK2FkCkVw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "f2129466436cbbdd58abe42a47fb7af19eba58e6"
content-type: image/jpeg
age: 70810
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7380 bytes)
Hash
76c00eceed956377d7469ef58b0815cb
97a135335f5b1b042adeb385718f8808cb78528b
81fb72ab752b2eb39ab6ee015055304490b3b6c3259968703fd07c2a2eed1e61

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7380
x-amzn-requestid: 18589644-299c-4a39-9376-db1bd1472009
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iEegIAMFeuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-23990acc0fdc599a75a534e3;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RqsZxAtbOkWBGbXJ3sZHxcS-ZvWOw7Yg2Qd4zj0QLhrp3wAXC8w6jA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "97a135335f5b1b042adeb385718f8808cb78528b"
content-type: image/jpeg
age: 70810
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
age: 70810
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

resources.totalav.com/packages/fontawesome/webfonts/fa-regular-400.woff2

82.102.27.18

200 OK

136 kB

URL HTTP/2
resources.totalav.com/packages/fontawesome/webfonts/fa-regular-400.woff2
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 135488, version 1.0\012- data
Size
136 kB (135488 bytes)
Hash
8b13141deffa0a1d715d14a470aea6de
21fb38519daa38707e7564e558f133e779c59007
ee41bc0e3059351bcca7313fe1d7f9053a164ba2f2e1df3df39260217298a03b

HTTP Headers

GET /packages/fontawesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://resources.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:24 GMT
content-type: application/octet-stream
content-length: 135488
x-guploader-uploadid: ADPycdvAasdC1qCD2hlwCu1SjgOtzCsC4ulZh_96AnZvenWscypuXlmDtZrWQxQTcKQbQDfDBqepk0UfcfSxGn58zlXErg
x-goog-generation: 1566377985865825
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 135488
x-goog-hash: crc32c=2K3sWg==, md5=ixMUHe/6Ch1xXRSkcK6m3g==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sun, 04 Dec 2022 17:22:24 GMT
cache-control: max-age=604800
age: 597
last-modified: Wed, 21 Aug 2019 08:59:45 GMT
etag: "8b13141deffa0a1d715d14a470aea6de"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/packages/fontawesome/webfonts/fa-regular-400.woff2>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

4ecb8.trknovi.com/smartlink-css/63839ccd76c5d6548762d8c2

188.240.52.20

200 OK

0 B

URL HTTP/2
4ecb8.trknovi.com/smartlink-css/63839ccd76c5d6548762d8c2
IP
188.240.52.20:0
ASN
#20857 Signet B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /smartlink-css/63839ccd76c5d6548762d8c2 HTTP/1.1
Host: 4ecb8.trknovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4ecb8.trknovi.com/smartlink?track=eyJ1c2VyX2lkIjoxMzc5LCJjcmVhdGl2ZV9pZCI6IjI3NDU2OSJ9&click_id=w79cod106ab0e9pki3bg3d3i&subid=9dd1b15d-f028-4d41-b731-bec13c85ae61
Cookie: XSRF-TOKEN=eyJpdiI6IldVRU9TemV5Uk9yaFNjSU8yVzVnSUE9PSIsInZhbHVlIjoiMWhOdUFycXpWSmZzd0FJS2FMMWhLRG9hOFVWbFU4aHJiQSttbmJIWHRmYkY3clB4dHlmQ0EwWDBPR3Y4ZkJuWXpsWHpLVHpiRFBndjRCc01jVEQ3U1RZb2JKV1NLMUQ1QTV3MHk1cmczcnVzUFdJdlRHdmNINUZvRE5uK2MwSFkiLCJtYWMiOiI0N2VlMGNiOWIwN2Q1MzQwN2MyYzMxYzA3ODg0NTY4YzA5YzgzODE1N2Q5NWUyZTA0NmU4MmVmOGY2MWFmN2FjIiwidGFnIjoiIn0%3D; novidash_session=eyJpdiI6IkFobEYwalRscnRydE9zYVZaTU9GZVE9PSIsInZhbHVlIjoiZzZrOTVJUkRwM1ZmdVZYa01aZ1ZZUGhTTCtnbTJWcWFVVzlFZWxBdzY4cHlIVEk0d01Kbjc1cU5NdWFLWjRvRUNwWG45aURVNzFhWk13cC9lVEtzeHMreVBLSXFEUVJqMU02WE1UMUtuU29mZ0ZDRWE4VDViVHBYR2xaTWx6TUciLCJtYWMiOiJkYTlhNDU2MmU1ZDg2YjdjM2RkYTk5Y2M3MmYyMTIxYzc2YzA5Mjk5MGYwNjIwNTZlZGY0YWUxNTk5Y2M1MzBiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.19.10
date: Sun, 27 Nov 2022 17:22:22 GMT
content-type: text/css; charset=UTF-8
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: XSRF-TOKEN=eyJpdiI6InRiaC9qMU1tSk15cWNtWmoxa3NTcFE9PSIsInZhbHVlIjoiaURqR2p3dDFHcFNYR05YZFVHRDdDaXFrTS9WdjQwN1dVNkhDNm5Tbm9XRDhxS21LTUpPU1Vtcmo3QVg5SmVXZ3BDY3NKTHlQSDNGSHJZeElkTnlNNWkvRmwxTzN6SUY2V3RDQkU4cWRSR1YwMEkxQmh6V3N2M1hZODNkSFVNOUIiLCJtYWMiOiIyMDc5YTJjN2E5NTA1NTczMGQ3NDY1MDg3YjZhYzNhNjZmODVjOGYzZmQ1MTUzMmMzZDJmYWFmNjllNTEzZmRhIiwidGFnIjoiIn0%3D; expires=Sun, 27-Nov-2022 19:22:22 GMT; Max-Age=7200; path=/; samesite=lax
novidash_session=eyJpdiI6IjlobTZkcElkZGZ4cURZek10aitnTmc9PSIsInZhbHVlIjoiRHRXVnJhOTBTRzQyUmZ5T2tWSVdYTG5CUVQwcFZ6RTNwRFQ5MDhTSVVlOE4vYmFpbFdpU3ExVDRUTWVuR3J1SS90YlhyTVFQQUc3bmxCaDJjaXNpMHhicS8zM3ArYXpOVEd5VHFRYUhsSFkydjdHbWhMTGUwSWlMVFd3czNYd3EiLCJtYWMiOiIxOGE0NGQzZWZkZDM4Y2FmNmNlYWRiZmZmZGViOTRlZWVlM2VjYWE1ZDI0NzM3MzFmYjVlOTQ0NjAwZDdkZmU3IiwidGFnIjoiIn0%3D; expires=Sun, 27-Nov-2022 19:22:22 GMT; Max-Age=7200; path=/; httponly; samesite=lax
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

4ecb8.trknovi.com/smartlink?mongo_id=63839ccd76c5d6548762d8c2&mongo_grouped_id=63839ccd76c5d6548762d8c3&redirect_url=https%3A%2F%2Ftrack.totalav.com%2F5daedde3b30e2%2Fclick%2F1379%2F936997663&fingerprint=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&js=1

188.240.52.20

302 Found

0 B

URL HTTP/2
4ecb8.trknovi.com/smartlink?mongo_id=63839ccd76c5d6548762d8c2&mongo_grouped_id=63839ccd76c5d6548762d8c3&redirect_url=https%3A%2F%2Ftrack.totalav.com%2F5daedde3b30e2%2Fclick%2F1379%2F936997663&fingerprint=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&js=1
IP
188.240.52.20:0
ASN
#20857 Signet B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /smartlink?mongo_id=63839ccd76c5d6548762d8c2&mongo_grouped_id=63839ccd76c5d6548762d8c3&redirect_url=https%3A%2F%2Ftrack.totalav.com%2F5daedde3b30e2%2Fclick%2F1379%2F936997663&fingerprint=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&js=1 HTTP/1.1
Host: 4ecb8.trknovi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4ecb8.trknovi.com/smartlink?track=eyJ1c2VyX2lkIjoxMzc5LCJjcmVhdGl2ZV9pZCI6IjI3NDU2OSJ9&click_id=w79cod106ab0e9pki3bg3d3i&subid=9dd1b15d-f028-4d41-b731-bec13c85ae61
Cookie: XSRF-TOKEN=eyJpdiI6InRiaC9qMU1tSk15cWNtWmoxa3NTcFE9PSIsInZhbHVlIjoiaURqR2p3dDFHcFNYR05YZFVHRDdDaXFrTS9WdjQwN1dVNkhDNm5Tbm9XRDhxS21LTUpPU1Vtcmo3QVg5SmVXZ3BDY3NKTHlQSDNGSHJZeElkTnlNNWkvRmwxTzN6SUY2V3RDQkU4cWRSR1YwMEkxQmh6V3N2M1hZODNkSFVNOUIiLCJtYWMiOiIyMDc5YTJjN2E5NTA1NTczMGQ3NDY1MDg3YjZhYzNhNjZmODVjOGYzZmQ1MTUzMmMzZDJmYWFmNjllNTEzZmRhIiwidGFnIjoiIn0%3D; novidash_session=eyJpdiI6IjlobTZkcElkZGZ4cURZek10aitnTmc9PSIsInZhbHVlIjoiRHRXVnJhOTBTRzQyUmZ5T2tWSVdYTG5CUVQwcFZ6RTNwRFQ5MDhTSVVlOE4vYmFpbFdpU3ExVDRUTWVuR3J1SS90YlhyTVFQQUc3bmxCaDJjaXNpMHhicS8zM3ArYXpOVEd5VHFRYUhsSFkydjdHbWhMTGUwSWlMVFd3czNYd3EiLCJtYWMiOiIxOGE0NGQzZWZkZDM4Y2FmNmNlYWRiZmZmZGViOTRlZWVlM2VjYWE1ZDI0NzM3MzFmYjVlOTQ0NjAwZDdkZmU3IiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 302 Found
server: nginx/1.19.10
date: Sun, 27 Nov 2022 17:22:22 GMT
content-type: text/html; charset=UTF-8
location: https://track.totalav.com/5daedde3b30e2/click/1379/936997663
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
set-cookie: XSRF-TOKEN=eyJpdiI6IlFFNENHanQ2SUE2Rjc4MlJrRG5IOVE9PSIsInZhbHVlIjoiV1lUY1hzSll0T0NsVEdYUzc2eWdzZmNqamJ3Y3p3SlVwTzZMKzBwT0ZIci9HRnlEazlXZHZnQWRwYVlkb1FYTHo2QThKUFV6YjR5T1F4QnNHMk56dmlvd09VTE5ZZWxyRUo3VFdwZ2dMME94NlcyMVN5RGVBVm1MSFFDVllBT0ciLCJtYWMiOiI1YzJmNzNjZjNlZWM1OGFkOTFkMWY5MGU5OWU4MjAzNmFiZWZkZTQ4ZTdkYTFkZGNjMGUyNWZmN2UyMmViOGFiIiwidGFnIjoiIn0%3D; expires=Sun, 27-Nov-2022 19:22:22 GMT; Max-Age=7200; path=/; samesite=lax
novidash_session=eyJpdiI6ImpEenFvVlpoYVRpVDdyV0NRMnhidXc9PSIsInZhbHVlIjoiMitGYVV1YjEvQkNmZkFWYUhLQjhsaVlGcVFWbis4YkJJeUkvdk12SkxIR3lJbE55NFcySm5PRDhiRk41MERYWUxJbkFZeEV2M2tYb1JvK0VHSVplSHpJL1UrWVJWdy9pRXRjR3ZrRm9WcFhKNEd3eVYyazRrL3pVYXVhcEhJUlIiLCJtYWMiOiJhZDFhMGUxNGE1Y2MxM2VmMjVlNTY2ZjZkMDJjM2QwZWZhZGU3YzRjMThhMWU5NTI1NzY4Y2U1MTBjYTRjMTA2IiwidGFnIjoiIn0%3D; expires=Sun, 27-Nov-2022 19:22:22 GMT; Max-Age=7200; path=/; httponly; samesite=lax
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

resources.totalav.com/packages/icomoon/www/style.css

82.102.27.18

200 OK

0 B

URL HTTP/2
resources.totalav.com/packages/icomoon/www/style.css
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /packages/icomoon/www/style.css HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: text/css
x-guploader-uploadid: ADPycdtjpjfKIbytrKNTxIN7MRgD4bvuifSnM5xLcHRmpbvrgX3wJ8hMeUTQbRiVr3xFQrBh3WcyeZL71orR9D478_3oPg
x-goog-generation: 1580314147124457
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3656
x-goog-hash: crc32c=M/Vc1A==, md5=mL8UO8y3T6ZBKuouvHiE5g==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sun, 04 Dec 2022 17:22:23 GMT
cache-control: max-age=604800
last-modified: Wed, 29 Jan 2020 16:09:07 GMT
etag: W/"98bf143bccb74fa6412aea2ebc7884e6"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/packages/icomoon/www/style.css>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

url.totalav.com/fp/init/fortifi.js

35.224.74.90

200 OK

0 B

URL HTTP/2
url.totalav.com/fp/init/fortifi.js
IP
35.224.74.90:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /fp/init/fortifi.js HTTP/1.1
Host: url.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.13.12
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, private
x-content-type-options: nosniff
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

ajax.totalav.com/free-download

35.190.24.19

200 OK

0 B

URL HTTP/2
ajax.totalav.com/free-download
IP
35.190.24.19:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /free-download HTTP/1.1
Host: ajax.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
access-control-allow-origin: https://www.totalav.com
access-control-allow-credentials: true
set-cookie: PHPSESSID=a5e4544a6f1a805cf4aa6198e23cf7c7; path=/; domain=totalav.com
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

url.totalav.com/fp/common/9f1ecd79.js

35.224.74.90

200 OK

0 B

URL HTTP/2
url.totalav.com/fp/common/9f1ecd79.js
IP
35.224.74.90:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /fp/common/9f1ecd79.js HTTP/1.1
Host: url.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.13.12
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: text/javascript;charset=UTF-8
cache-control: max-age=2592000, public, s-maxage=2592000
x-content-type-options: nosniff
vary: Accept-Encoding, Accept-Encoding
etag: W/"a9862a989af816992a8f31065dd40433"
expires: Tue, 27 Dec 2022 17:22:23 GMT
last-modified: Sun, 27 Nov 2022 17:22:23 GMT
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

track.totalav.com/5daedde3b30e2/click/1379/936997663

35.224.74.90

301 Moved Permanently

0 B

URL HTTP/2
track.totalav.com/5daedde3b30e2/click/1379/936997663
IP
35.224.74.90:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /5daedde3b30e2/click/1379/936997663 HTTP/1.1
Host: track.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4ecb8.trknovi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx/1.13.12
date: Sun, 27 Nov 2022 17:22:22 GMT
content-type: text/html; charset=UTF-8
location: https://www.totalav.com/free-download
set-cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; expires=Sat, 25-Feb-2023 17:22:22 GMT; Max-Age=7776000; path=/; domain=.totalav.com
FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; expires=Sat, 25-Feb-2023 17:22:22 GMT; Max-Age=7776000; path=/; domain=.totalav.com
FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; expires=Sat, 25-Feb-2023 17:22:22 GMT; Max-Age=7776000; path=/; domain=.totalav.com
FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; expires=Sat, 25-Feb-2023 17:22:22 GMT; Max-Age=7776000; path=/; domain=.totalav.com
x-content-type-options: nosniff
access-control-allow-origin: *
x-execution-time: 45.362 ms
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

resources.totalav.com/build/prod/22.285.2/ts/bundle/totalAvApp.min.js

82.102.27.18

200 OK

0 B

URL HTTP/2
resources.totalav.com/build/prod/22.285.2/ts/bundle/totalAvApp.min.js
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /build/prod/22.285.2/ts/bundle/totalAvApp.min.js HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991; PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; toast-message-seen=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 27 Nov 2022 17:22:23 GMT
content-type: application/javascript
content-length: 101520
x-guploader-uploadid: ADPycdsiCGWdEwjzks1cLqLWw68Au6xgsMxbY_Z_DgP6pnFMW3fQxqzkvJsCJZN6b6Gxgyae_Esxy28_UhtWYeI70jhu8Z_tBbvO
cache-control: max-age=604800
expires: Sun, 04 Dec 2022 17:22:23 GMT
last-modified: Fri, 25 Nov 2022 17:35:32 GMT
etag: "3a225c4afbb7aed6c7ee1d6dee8c76ab"
x-goog-generation: 1669397732100885
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 101520
content-encoding: gzip
x-goog-hash: crc32c=VbiLdQ==, md5=OiJcSvu3rtbH7h1t7ox2qw==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/build/prod/22.285.2/ts/bundle/totalAvApp.min.js>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

url.totalav.com/fp/commit/apply.js?

35.224.74.90

200 OK

0 B

URL HTTP/2
url.totalav.com/fp/commit/apply.js?
IP
35.224.74.90:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /fp/commit/apply.js? HTTP/1.1
Host: url.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 671
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.13.12
date: Sun, 27 Nov 2022 17:22:24 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: FRT:VIS=VIS%3A221123919042154637e99ff48c411.01061945; expires=Sat, 25-Feb-2023 17:22:24 GMT; Max-Age=7776000; path=/; domain=.totalav.com
FRT:DCE=DCE%3A84866c3ab11af347041eb45918c2c89d32ed537c; expires=Mon, 27-Nov-2023 17:22:24 GMT; Max-Age=31536000; path=/; domain=.totalav.com; httponly
FRT:FPID=2685988437; expires=Mon, 27-Nov-2023 17:22:24 GMT; Max-Age=31536000; path=/; domain=.totalav.com; httponly
FRT:FPRINT=374d488b0560f15fd45d8f70fffa702cd9f6cf4d; expires=Mon, 27-Nov-2023 17:22:24 GMT; Max-Age=31536000; path=/; domain=.totalav.com; httponly
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

www.totalav.com/free-download

35.190.24.19

200 OK

0 B

URL HTTP/2
www.totalav.com/free-download
IP
35.190.24.19:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /free-download HTTP/1.1
Host: www.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4ecb8.trknovi.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1571741140%3AhgK9Qv62ABRde%2F5daedde3b30e2%2F1379%2F936997663%2F; FRT:VIS=VIS%3A22112791904215463839cceb491a3.24509991
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-store, no-cache, must-revalidate
content-encoding: gzip
content-security-policy: frame-ancestors 'self'
content-type: text/html; charset=UTF-8
date: Sun, 27 Nov 2022 17:22:23 GMT
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
server: nginx
set-cookie: PHPSESSID=03e5c259f35e54b7d440acffe2b953ea; path=/; domain=totalav.com
toast-message-seen=1; expires=Mon, 28-Nov-2022 17:22:23 GMT; Max-Age=86400; path=/; domain=.totalav.com
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP