Report - tele123.store/cl/500/env/wom/

Report Overview

Submitted URL
tele123.store/cl/500/env/wom/
IP
79.98.29.10
ASN
#212531 UAB Interneto vizija
Submitted
2022-12-07 06:58:54
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.5 kB	23.33.119.27
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
production-cmp.isgprivacy.cbsi.com	11058	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	799 B	14 kB	151.101.85.188
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	4.2 kB	142.250.74.131
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	374 B	29 kB	31.13.72.12
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	36 kB	34.120.237.76
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	846 B	349 B	31.13.72.36
revpu.sh	711295	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	853 B	395 B	139.162.186.41
tele123.store	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	360 B	240 B	79.98.29.10
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
whampamp.com	30947	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	697 B	2.5 kB	139.45.197.236
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.37.79.227
cdn.cookielaw.org	502	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	124 kB	104.16.148.64
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	372 B	54 kB	216.58.207.228
my.rtmark.net	9054	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	402 B	681 B	139.45.195.8
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	1.0 kB	143.204.42.165
partner.googleadservices.com	798	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	472 B	844 B	216.58.207.194
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	4.4 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
www.helpwire.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	21 kB	63 kB	54.230.111.93
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	28 kB	104.17.25.14
cdn.galattic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	373 B	916 B	95.110.203.212
www.googletagservices.com	169	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	375 B	28 kB	142.250.74.162
securepubads.g.doubleclick.net	190	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	833 B	135 kB	142.250.74.130
geolocation.onetrust.com	802	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	436 B	394 B	104.18.27.85

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-07	medium	whampamp.com	Sinkholed
2022-12-07	medium	whampamp.com	Sinkholed

JavaScript (41)

	URL	Size	First Seen	Last Seen
	unknown	0 B	2023-03-07	2024-04-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 07:13:28 Times Seen37033828 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	whampamp.com/4/5087048?var=ag_error	974 B	2023-03-08	2023-03-08
Pretty URL whampamp.com/4/5087048?var=ag_error IP 139.45.197.236 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2023-03-08 20:41:40 Times Seen1 Hash 3efe5f765a052802722430e2b5e52034 8a8558d243d9df73e4712149cbfc684ee105135e 71b236c1e60f357c10a36b3e339f2df6e11eb40b06c1688c20a4c376148535ef Loading...

	www.helpwire.com/_next/static/chunks/9669-97c5cf1761642ab6.js	21 kB	2023-03-08	2024-01-30
Pretty URL www.helpwire.com/_next/static/chunks/9669-97c5cf1761642ab6.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2024-01-30 02:56:10 Times Seen14 Hash 3b84c3631391d301a78a469413875f14 a79a5dafa6463f90296c418bbe9e6708f018b92e bbe33de04f4075a65c3296583de5924d6fc4c35bbd0f94b77a255222523e3f95 Loading...

	production-cmp.isgprivacy.cbsi.com/cps/shamanNotifier.js	4.3 kB	2023-03-07	2023-03-12
Pretty URL production-cmp.isgprivacy.cbsi.com/cps/shamanNotifier.js IP 151.101.85.188 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:45:22 Last Seen2023-03-12 15:32:54 Times Seen1 Hash 3e0cf3a78511da0d4110ac814d88e0ec 1a18b5c024a19028a496ae7a4a58286010a9255b aac09c9727b7292d3a3a67516ddf59d2d88dae057d16c18f18c2f38108e1e2dc Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery.iframetracker/1.1.0/jquery.iframetracker.min.js	2.8 kB	2023-03-07	2024-02-16
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery.iframetracker/1.1.0/jquery.iframetracker.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:07:04 Last Seen2024-02-16 06:48:49 Times Seen35 Hash c1262abf48ee29d59e4500e67ec0fc5c 563a08e27b03091bff2d2e5a0a42ed9cdcb9f1f0 428b948dd972b7591b2102877052d2a481e61a551a18566ced653d19f00d788e Loading...

	www.helpwire.com/scripts/fb.js?v=0	1.1 kB	2023-03-08	2023-03-11
Pretty URL www.helpwire.com/scripts/fb.js?v=0 IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2023-03-11 22:14:16 Times Seen1 Hash e9075df74bdbf0956f03b84308a735d8 8701f88f323d02cc9c7660e481ea1fcc58c7ba33 43ae8416d35119176ce1d094ab9e7a886d86b11dc2aafcbe9cb1ca6f7ca9614a Loading...

	connect.facebook.net/signals/config/1741246512876651?v=2.9.89&r=stable	300 kB	2023-03-08	2023-03-11
Pretty URL connect.facebook.net/signals/config/1741246512876651?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2023-03-11 22:14:16 Times Seen1 Hash 916a8cab17b8f5cd57d7a03840d47499 0ad29b71c1352f744d23da17452827b978dc3e8f c9bfe516275575007e3e0a535fc011f0e37df565234eb515dffd5631dc5f6b1e Loading...

	partner.googleadservices.com/gampad/cookie.js?domain=www.helpwire.com&client=partner-helpwire-content-4&product=SAS&callback=__sasCookie	189 B	2023-03-08	2023-03-08
Pretty URL partner.googleadservices.com/gampad/cookie.js?domain=www.helpwire.com&client=partner-helpwire-content-4&product=SAS&callback=__sasCookie IP 216.58.207.194 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2023-03-08 20:41:40 Times Seen1 Hash 654feb0484dcbf874cf8c30746dbeeb1 c65faef5233963e9f35aacb101563605c5d9ae4a c2467f271d312493a37c0ac2f120901c9dacb8b45cd9f15ec1d62d9d1de69055 Loading...

	www.helpwire.com/_next/static/chunks/framework-a661be0ab3977016.js	130 kB	2023-03-08	2024-01-30
Pretty URL www.helpwire.com/_next/static/chunks/framework-a661be0ab3977016.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2024-01-30 02:56:10 Times Seen14 Hash 42969190930a47add78d0553ad3decd6 6e2019ae774a8e8dcab0829e4d8af7829ff9359c b195366efe4c5f9c4c23d6c643a4bdeeb03febb5894a43aa49d3c2dd969da48b Loading...

	cdn.cookielaw.org/scripttemplates/otSDKStub.js	22 kB	2023-03-07	2024-03-05
Pretty URL cdn.cookielaw.org/scripttemplates/otSDKStub.js IP 104.16.148.64 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:58:52 Last Seen2024-03-05 19:00:25 Times Seen96 Hash a750a84d2cd5eb69aa0b8b1b94db6da8 56fd3e55c49aa5f3e48e525ae794da9b070cfa6c bbc4456bca95006683a8f081d0d2ed645eef5b14c62eca12c70f7e1cec26c1a0 Loading...

	www.helpwire.com/_next/static/chunks/4963.2b7c7ead79fd7562.js	705 B	2023-03-08	2023-03-11
Pretty URL www.helpwire.com/_next/static/chunks/4963.2b7c7ead79fd7562.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2023-03-11 22:14:16 Times Seen1 Hash 032c63d7d69c01f1d1e645bd93ff7210 3c0677bd33069b32ac660f354ab807d9625c7e08 a24eef15ae3579a3947bd6798c646fcb8b556a293bfb8c24a00225376a7c0316 Loading...

	www.helpwire.com/_next/static/chunks/pages/articles/%5Bslug%5D-8d887ec3c4fe42a8.js	2.8 kB	2023-03-08	2023-03-11
Pretty URL www.helpwire.com/_next/static/chunks/pages/articles/%5Bslug%5D-8d887ec3c4fe42a8.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2023-03-11 22:14:16 Times Seen1 Hash e15eeefc27e2f5e37f3cbb8759623c5b 7849724776e07097f37833928e2d33281a598fa3 ff1c832696c5dda74e27426f7fc3443703c0aa4f0146d0416b9f2d8c46f1a18a Loading...

	www.helpwire.com/_next/static/AwjeBsmdDVNGYeOtHruZM/_ssgManifest.js	77 B	2023-03-07	2024-04-24
Pretty URL www.helpwire.com/_next/static/AwjeBsmdDVNGYeOtHruZM/_ssgManifest.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2024-04-24 06:55:16 Times Seen85221 Hash b6652df95db52feb4daf4eca35380933 65451d110137761b318c82d9071c042db80c4036 6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e Loading...

	www.helpwire.com/_next/static/chunks/main-b9cb64723e338c4c.js	120 kB	2023-03-08	2023-03-12
Pretty URL www.helpwire.com/_next/static/chunks/main-b9cb64723e338c4c.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2023-03-12 06:42:30 Times Seen1 Hash 2fb1f137ee1b94f6d707d0e5bb718d68 c964cb000426a9545d779c45ce4f07f9db405798 9d7a515c27b86ef177707a9b3756d60ce1faf503bcf9ba9d64e15573905f3a16 Loading...

	www.helpwire.com/_next/static/chunks/2121-4fe4ce6739beb5e7.js	155 kB	2023-03-08	2024-01-30
Pretty URL www.helpwire.com/_next/static/chunks/2121-4fe4ce6739beb5e7.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2024-01-30 02:56:10 Times Seen10 Hash df06edd9f2d58887377191e1def2d748 62fa893e489aa8b15d423ff5289215eda8320c28 67b0b3bf117252f51886d851a3d15695d9eeddce9fa95a6b1d8e170e05c95e77 Loading...

	www.helpwire.com/_next/static/chunks/pages/_app-ae91de5da9f4357b.js	1.1 kB	2023-03-08	2024-01-30
Pretty URL www.helpwire.com/_next/static/chunks/pages/_app-ae91de5da9f4357b.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2024-01-30 02:56:10 Times Seen10 Hash 63a86bcb0a35020870cc81256fbc1581 b01b99c9f086beb180b11c2c725b38ef9ca1cf8b d3f4253a2b92ea0f13ee33154a2ff8dd1090d3cfe607d20022edf8d929f02f64 Loading...

	www.helpwire.com/scripts/jquery.js	734 B	2023-03-08	2023-03-12
Pretty URL www.helpwire.com/scripts/jquery.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2023-03-12 06:42:30 Times Seen1 Hash 8ffe2fe575d8d70031baae73f19cbaeb c5afaec856ef45509bd5e9fda32c72ca62cbaf6d 3704ddc18365094439dcd2fbb36cbefec4e69c0b81c3dd6331d886984f29cab6 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js	87 kB	2023-03-07	2024-04-24
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-24 06:27:21 Times Seen61695 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	cdn.galattic.com/bidder/pm.v2.js	14 kB	2023-03-08	2023-03-08
Pretty URL cdn.galattic.com/bidder/pm.v2.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2023-03-08 20:43:02 Times Seen1 Hash fb96346e43380da9b6817ce945a55526 2fdc477f5119f22ac053907c5f88a1a5a49f1585 6e25757a96fb224db244cf9d0d570183b9ae358b39e78a442b85a0ffb81b7120 Loading...

	www.helpwire.com/scripts/optanonApiBootstrap.js	541 B	2023-03-08	2023-03-12
Pretty URL www.helpwire.com/scripts/optanonApiBootstrap.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2023-03-12 06:42:30 Times Seen1 Hash a350eef484fa9186bf408beda6538334 39838a84ccd3d3407b873bf64d20830ee1174a9e 759eb2ef0ee7c0dd29b8d3d17f9d4b3da3549ff715fa764745cb5129ccc53009 Loading...

	www.helpwire.com/scripts/google_head.js	123 B	2023-03-08	2023-03-11
Pretty URL www.helpwire.com/scripts/google_head.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2023-03-11 22:14:16 Times Seen1 Hash f8c8167390a88fb75b4faac761c487e5 ab257ec7e73a989a17553450985fcfd660be8e7a 1278654f4fa2f333df55a3f0ef92282fdfb657dd40b952e17c84f2372ef76727 Loading...

	www.helpwire.com/_next/static/chunks/3493.e102016899dee344.js	5.8 kB	2023-03-08	2023-03-11
Pretty URL www.helpwire.com/_next/static/chunks/3493.e102016899dee344.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2023-03-11 22:14:16 Times Seen1 Hash 1fe1f60389ad9fd611c6389ff6e2611e 63fa35b1ef13a7754688574904776d1bf4ebac73 6eea2a4850729ecf2067f1af34205ade61b8fa8043d36a4cf61adbe8c27ef1c7 Loading...

	www.helpwire.com/_next/static/chunks/5729.31080824f0d629b2.js	12 kB	2023-03-08	2023-03-08
Pretty URL www.helpwire.com/_next/static/chunks/5729.31080824f0d629b2.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:40 Last Seen2023-03-08 20:43:02 Times Seen1 Hash 489a9bb7ca6f3965afd3155a5050414d 799e9198abfbe1ec21e1f7b3c398374eab5aa048 a60e6426242e86569b65146f393069e639cf64bf7e8476932e2951b5b370ac92 Loading...

	www.helpwire.com/scripts/google_rs_body.js	2.1 kB	2023-03-08	2023-03-08
Pretty URL www.helpwire.com/scripts/google_rs_body.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:41 Last Seen2023-03-08 20:43:02 Times Seen1 Hash 8d537ab256654672dd15b33bb8ac6eac 2270286522d59e232172d6a7569813662bc56e37 41a814f7bb7f3364d28c4ab403ab2813f95fbe4994a2e570ad8f57f29464d9f7 Loading...

	www.helpwire.com/_next/static/AwjeBsmdDVNGYeOtHruZM/_buildManifest.js	1.7 kB	2023-03-08	2023-03-08
Pretty URL www.helpwire.com/_next/static/AwjeBsmdDVNGYeOtHruZM/_buildManifest.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:41 Last Seen2023-03-08 20:43:02 Times Seen1 Hash 58ae92e18213cfd5cd715261c7a63634 7de3cd24a2d5f0b645ec740bfb7e27eccbb24211 4f1642ce879126c17fccb8f31003df18289c64c6f38ba4c48eed00151546d83c Loading...

	www.helpwire.com/scripts/productAdsScroll.js	1.8 kB	2023-03-08	2023-03-12
Pretty URL www.helpwire.com/scripts/productAdsScroll.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:41 Last Seen2023-03-12 06:42:30 Times Seen1 Hash 315aa28ec31f4142831cef224bc0b74f 4abedd6b17464b7a93dc5c63f9e7b139fe7ad585 c7184fb9e196c2defdd015c7d3ec2e69d6efc9a710a12cf63e4f203b3b452136 Loading...

	securepubads.g.doubleclick.net/gpt/pubads_impl_2022120101.js	394 kB	2023-03-08	2023-03-11
Pretty URL securepubads.g.doubleclick.net/gpt/pubads_impl_2022120101.js IP 142.250.74.130 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:50:57 Last Seen2023-03-11 23:43:43 Times Seen1 Hash af3daeb4f6707f6ab45d43169300fcf3 10bbf4731867b41d927227b0790272a2d6887222 c0b59c362ae740c391e742fa4517d90b9461b416b9bec855d14c04603dbaf71c Loading...

	www.google.com/afs/ads?psid=1151113086&channel=T0000012&client=helpwire-content-4&q=Veeam%20Ransomware%20Protection&r=m&hl=no&type=0&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=p5%7Cn5&ad=n5p5&nocache=6221670396325462&num=0&output=uds_ads_only&v=3&preload=true&bsl=8&pac=0&u_his=4&u_tz=0&dt=1670396325465&u_w=1280&u_h=1024&biw=1280&bih=939&psw=1280&psh=424&frm=0&cl=491710121&uio=--&cont=afscontainer1%7Cafscontainer2&qup=1&jsid=csa&jsv=491710121&rurl=https%3A%2F%2Fwww.helpwire.com%2Farticles%2Feasy-home-improvement%3Fq%3DVeeam%2520Ransomware%2520Protection%26src%3Dmg%26gch%3DT0000012%26visitor_id%3D624250023257051260%26target_id%3D5087048%26campaign_id%3D6397242%26link_key%3D044b19c4909988c1a51b958aa7e2bfdd	58 kB	2023-03-08	2023-03-08
Pretty URL www.google.com/afs/ads?psid=1151113086&channel=T0000012&client=helpwire-content-4&q=Veeam%20Ransomware%20Protection&r=m&hl=no&type=0&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=p5%7Cn5&ad=n5p5&nocache=6221670396325462&num=0&output=uds_ads_only&v=3&preload=true&bsl=8&pac=0&u_his=4&u_tz=0&dt=1670396325465&u_w=1280&u_h=1024&biw=1280&bih=939&psw=1280&psh=424&frm=0&cl=491710121&uio=--&cont=afscontainer1%7Cafscontainer2&qup=1&jsid=csa&jsv=491710121&rurl=https%3A%2F%2Fwww.helpwire.com%2Farticles%2Feasy-home-improvement%3Fq%3DVeeam%2520Ransomware%2520Protection%26src%3Dmg%26gch%3DT0000012%26visitor_id%3D624250023257051260%26target_id%3D5087048%26campaign_id%3D6397242%26link_key%3D044b19c4909988c1a51b958aa7e2bfdd IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:41 Last Seen2023-03-08 20:41:41 Times Seen1 Hash 18b81b383d8789822bebf5ca3a40ca21 5b301812dde3cf2018fd9e1382dc0bb61de90d39 0a4699240aac8280a89acd2bd102c1a7a476d2a07f960325ceb66964d9d29021 Loading...

	www.helpwire.com/_next/static/chunks/c16184b3-278d9312fe59238e.js	5.8 kB	2023-03-08	2023-03-12
Pretty URL www.helpwire.com/_next/static/chunks/c16184b3-278d9312fe59238e.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:41 Last Seen2023-03-12 06:42:30 Times Seen1 Hash 11bc8ea090dda19d4435839a4b7ab376 85403ded6d07a531325fdf681be7de5ac55f8f10 fb69602bb670b0997f8ea8e235f8f568b7cdfdb1ae0d4e21688130bae5ac0aa7 Loading...

	www.helpwire.com/_next/static/chunks/2489-8969c03bb192615f.js	68 kB	2023-03-08	2023-03-12
Pretty URL www.helpwire.com/_next/static/chunks/2489-8969c03bb192615f.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:41 Last Seen2023-03-12 06:42:30 Times Seen1 Hash 91e4cc118694d429f40b290fabc6c486 427966fd18496178eaaed465ecb57e14f52cdc4e d0443c3fd22c9e8d34dcaa8021770e0fb5c2fa7b0b9cf4c1bbe07a6f85682c44 Loading...

	www.helpwire.com/_next/static/chunks/webpack-6bf17bd08c9c0c1f.js	4.7 kB	2023-03-08	2023-03-08
Pretty URL www.helpwire.com/_next/static/chunks/webpack-6bf17bd08c9c0c1f.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:41 Last Seen2023-03-08 20:43:02 Times Seen1 Hash 6352db52f27a8ed05afa440d06cfbe9e b0d49fa9985ea7f83e64da0b7b96d489d2a26abf 8ab3e07d2772b827191249e35da8509a78f542a8a5a6d472cec313c7acc39c40 Loading...

	www.googletagservices.com/tag/js/gpt.js	82 kB	2023-03-08	2023-03-08
Pretty URL www.googletagservices.com/tag/js/gpt.js IP 142.250.74.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:35:19 Last Seen2023-03-08 20:44:13 Times Seen1 Hash 46cd3b550b96ebd0cd9c7e6e5c1859ad 417aa03b90bf53e267576961bc7321893d34542d 66ca93061f138be7313ad4ce4b840cd88f49e6a2d5d22f118ef5cd9bcd55b0fe Loading...

	www.helpwire.com/_next/static/chunks/5675-87136af191a34387.js	11 kB	2023-03-08	2024-01-30
Pretty URL www.helpwire.com/_next/static/chunks/5675-87136af191a34387.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:41 Last Seen2024-01-30 02:56:11 Times Seen17 Hash e195706c78902e7db3c14efa1580fee1 288af2078661491bc2ac1ff0ae116bda9a4bac22 584b691284439b3b60e9ae0c702fd8092b6468cd0c252ab91c610e4e5a48e7ce Loading...

	www.helpwire.com/_next/static/chunks/7203.d962e336ccf4b740.js	6.8 kB	2023-03-08	2023-03-08
Pretty URL www.helpwire.com/_next/static/chunks/7203.d962e336ccf4b740.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:41 Last Seen2023-03-08 20:43:02 Times Seen1 Hash ba529874fcd0e69dfd8c9126603ba23b 71f6d81e49c41848d5206ce0ae7f50f376b2826a 6c8880c0dc956824c62aced27bfb7a8a71c387d5e9506a6dc9bbf3fb624fcef1 Loading...

	cdn.galattic.com/bidder/cbs/filter.js	702 B	2023-03-08	2023-03-08
Pretty URL cdn.galattic.com/bidder/cbs/filter.js IP 95.110.203.212 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:41 Last Seen2023-03-08 20:43:02 Times Seen1 Hash 4f365869800b5f3f74bdffa7282ae328 fc92e2ff298add45ce305cb5bed38a1dc9ecc206 ddf562167e791b7ba0adc9d8965651e385f8d3cde57697651fbb12f0a712cea3 Loading...

	www.helpwire.com/scripts/google_body.js	5.9 kB	2023-03-08	2023-03-11
Pretty URL www.helpwire.com/scripts/google_body.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:41 Last Seen2023-03-11 22:14:16 Times Seen1 Hash bc241cfddb77e291a3781f1946b1796e eeaca73cb1ae4d485906f705107767ef031bd5c3 14980d5dfa5fba45420813da0771b479db9dc3a23baf2a3b8a2580eb3ab03278 Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-08	2023-11-28
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-11-28 17:55:58 Times Seen32 Hash a6ef7927128284961f4cadd572969f09 57e21033749687e69de710a0be6d4244edf1fe51 d5c905d7ce4679b183eb11f7c6811682ddffbf0f037590360ae2b1a84a51ef1b Loading...

	www.helpwire.com/_next/static/chunks/9063-1bec776d34b6942e.js	8.3 kB	2023-03-08	2023-05-06
Pretty URL www.helpwire.com/_next/static/chunks/9063-1bec776d34b6942e.js IP 54.230.111.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:41 Last Seen2023-05-06 08:57:23 Times Seen3 Hash 4e505b655b165ba96b14f7a6ad8d06f9 7c3cf8111cfa4ac321e5774cf3979c7159dd55d2 ecca681187731a9e4b5678cd68b8ce39a7a019ebb89b4c00c974f0d708814d84 Loading...

	production-cmp.isgprivacy.cbsi.com/dist/optanon-v1.1.0.js	39 kB	2023-03-08	2023-05-27
Pretty URL production-cmp.isgprivacy.cbsi.com/dist/optanon-v1.1.0.js IP 151.101.85.188 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:41 Last Seen2023-05-27 19:10:12 Times Seen11 Hash bea9da88ccef790fb77abaea44ea345e e29e1f0956a9d811351a88da327d13985abe65e5 ad6c004c443d6c1ac8a66e25a5973b3d49fddcb31dc4574c6504e8f1df66aaeb Loading...

	www.google.com/adsense/search/ads.js	144 kB	2023-03-08	2023-03-08
Pretty URL www.google.com/adsense/search/ads.js IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:41:41 Last Seen2023-03-08 20:42:50 Times Seen1 Hash 5b308df4d1455fbb5c0a66c4ad58a3bf 2aff76bd65432f963cc6981df7c52e63cfd5c767 6f1042e714298d285ee6fee218a538bcc9c8221607e1e88b3d667784b583755a Loading...

		Size	First Seen	Last Seen
	#1 Eval - d41d8cd98f00b204e9800998ecf8427e	0 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 07:13:28 Times Seen37033828 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (76)

URL IP Response Size

tele123.store/cl/500/env/wom/

79.98.29.10

302 Found

0 B

URL HTTP/1.1
tele123.store/cl/500/env/wom/
IP
79.98.29.10:0
ASN
#212531 UAB Interneto vizija

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cl/500/env/wom/ HTTP/1.1
Host: tele123.store
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 06:58:42 GMT
Server: Apache
Connection: Upgrade, Keep-Alive
Location: //whampamp.com/4/5087048?var=ag_error
Keep-Alive: timeout=2, max=100
Transfer-Encoding: chunked
Content-Type: text/html

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2741
Expires: Wed, 07 Dec 2022 07:44:24 GMT
Date: Wed, 07 Dec 2022 06:58:43 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f83c5e33ba42e312ee398848bbb711f5
caa1fd23b1fbbe883292ded04404c1cfd861eb09
106d08fba45f1e13f85b4b5abc456594878494238933e54b6a06e21ed8a52bc9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 404
Cache-Control: max-age=99559
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:58:43 GMT
Etag: "638f19f6-1d7"
Expires: Thu, 08 Dec 2022 10:38:02 GMT
Last-Modified: Tue, 06 Dec 2022 10:31:18 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a0abf10fb7e96c1c98dacf2f013a68b4
acdd839bce85eadc78a8e821e32e00a958d5c0c8
b85d98f8df05431777d96c767ce4c152302ec3f653cdf6e61c8c3fa9574f3255

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2771
Expires: Wed, 07 Dec 2022 07:44:54 GMT
Date: Wed, 07 Dec 2022 06:58:43 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 06:18:45 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2398
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 1zW2RN/LsEdVbKwv9HV81x6n+LpWrahDFGNbFBCmlriVsc8I5E//W4G/w+TJk2ySXSHFndIcQX4=
x-amz-request-id: 5YJMGDNNYDQ1VYBJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 06:47:24 GMT
age: 679
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

whampamp.com/4/5087048?var=ag_error

139.45.197.236

200 OK

960 B

URL HTTP/1.1
whampamp.com/4/5087048?var=ag_error
IP
139.45.197.236:0
ASN
#9002 RETN Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (532)
Size
960 B (960 bytes)
Hash
db90907a8abd9af9ac28427cf8060c98
555573ad6439ddbd05e9f572c9001e82104ed3af
53680de0f017568b815117209a7ee41d429262885ba668d8ff9271f2f0756dfa

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /4/5087048?var=ag_error HTTP/1.1
Host: whampamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 06:58:43 GMT
Content-Type: text/html; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 05761e4c0115706bc90ae60e2b461921
Link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch", <https://revpu.sh>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 86400
Timing-Allow-Origin: *
Set-Cookie: OAID=a3aa25f39fdb44dea881cbe836dfcac9; expires=Thu, 07 Dec 2023 06:58:43 GMT; path=/
oaidts=1670396323; expires=Thu, 07 Dec 2023 06:58:43 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
Pragma: no-cache, no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
Access-Control-Allow-Origin: *, *
Access-Control-Allow-Methods: GET, POST, OPTIONS, POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, Accept, Content-Type, Content-Length, Accept-Encoding
Content-Encoding: gzip

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:58:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b22490b02628e79842aa551994331a2e
238870b8a3e6ef3b6a761154e3abee386643597c
ef2e0268a5ed0ca7d64dfc1baa3d56d55f4062e4d84972bc9423fe56df585673

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF2E0268A5ED0CA7D64DFC1BAA3D56D55F4062E4D84972BC9423FE56DF585673"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2027
Expires: Wed, 07 Dec 2022 07:32:30 GMT
Date: Wed, 07 Dec 2022 06:58:43 GMT
Connection: keep-alive

whampamp.com/favicon.ico

139.45.197.236

204 No Content

0 B

URL HTTP/1.1
whampamp.com/favicon.ico
IP
139.45.197.236:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: whampamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: OAID=a3aa25f39fdb44dea881cbe836dfcac9; oaidts=1670396323

HTTP/1.1 204 No Content
Server: nginx
Date: Wed, 07 Dec 2022 06:58:43 GMT
Connection: keep-alive
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Pragma: public
Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate

my.rtmark.net/img.gif?f=merge&userId=a3aa25f39fdb44dea881cbe836dfcac9

139.45.195.8

200 OK

43 B

URL HTTP/2
my.rtmark.net/img.gif?f=merge&userId=a3aa25f39fdb44dea881cbe836dfcac9
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

POST /img.gif?f=merge&userId=a3aa25f39fdb44dea881cbe836dfcac9 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 06:58:43 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: null
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=a3aa25f39fdb44dea881cbe836dfcac9; expires=Thu, 07 Dec 2023 06:58:43 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 07 Dec 2022 06:08:58 GMT
cache-control: public,max-age=3600
age: 2985
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
a1329676cb87c885b6249a2bc670a193
1445bdcc4d011a945a204c337a1b19594d102353
99a49b8c2af3aaece408d3b535fb87fb3a7f70f0f7945aa9ed7222047a2ee12c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=140744
Date: Wed, 07 Dec 2022 06:58:43 GMT
Etag: "638fbbb0-1d7"
Expires: Thu, 08 Dec 2022 22:04:27 GMT
Last-Modified: Tue, 06 Dec 2022 22:01:20 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NLi_8P4MpAnywTQyRL7qr8nzRntKJ8RiCDzGrzFR9DlPbUkxjieHTw==
Age: 187

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0f7dcaa590e32cfd1c075255188d5f06
d4bb4954fefdb3b59560b54adf500e806e252e39
195795c2511b31519134f5eb4442d8708918ecaff72f8e821a5473ad7c97c448

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 388
Cache-Control: max-age=94475
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:58:43 GMT
Etag: "638f062a-1d7"
Expires: Thu, 08 Dec 2022 09:13:18 GMT
Last-Modified: Tue, 06 Dec 2022 09:06:50 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.37.79.227

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.37.79.227:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JFcN2VjMHy+Z+/iFGxAP7A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nWabUNIoii9IL8iPYK8zPqb4ZoI=

www.helpwire.com/_next/static/chunks/4963.2b7c7ead79fd7562.js

54.230.111.93

200 OK

705 B

URL HTTP/2
www.helpwire.com/_next/static/chunks/4963.2b7c7ead79fd7562.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (705), with no line terminators
Size
705 B (705 bytes)
Hash
032c63d7d69c01f1d1e645bd93ff7210
3c0677bd33069b32ac660f354ab807d9625c7e08
a24eef15ae3579a3947bd6798c646fcb8b556a293bfb8c24a00225376a7c0316

HTTP Headers

GET /_next/static/chunks/4963.2b7c7ead79fd7562.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 705
date: Wed, 07 Dec 2022 00:44:14 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: "032c63d7d69c01f1d1e645bd93ff7210"
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -k5AoS0moR4rTa_g44zfN_6dE5AylpUcNRaPFGQN2ZlzwlC3NrZF4Q==
age: 22471
X-Firefox-Spdy: h2

www.helpwire.com/_next/static/AwjeBsmdDVNGYeOtHruZM/_ssgManifest.js

54.230.111.93

200 OK

77 B

URL HTTP/2
www.helpwire.com/_next/static/AwjeBsmdDVNGYeOtHruZM/_ssgManifest.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
77 B (77 bytes)
Hash
b6652df95db52feb4daf4eca35380933
65451d110137761b318c82d9071c042db80c4036
6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e

HTTP Headers

GET /_next/static/AwjeBsmdDVNGYeOtHruZM/_ssgManifest.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 77
date: Wed, 07 Dec 2022 00:44:14 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: "b6652df95db52feb4daf4eca35380933"
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NYojmY0C4WPjFeYHFhw258JWTwMu4llyqvjcFYOItEV1u45vL3x3uw==
age: 22471
X-Firefox-Spdy: h2

www.helpwire.com/_next/static/chunks/3493.e102016899dee344.js

54.230.111.93

200 OK

2.5 kB

URL HTTP/2
www.helpwire.com/_next/static/chunks/3493.e102016899dee344.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type
data
Size
2.5 kB (2547 bytes)
Hash
5fb717f3bc419f6d90b144af07b8dc51
a797fd2b41de3e7f824b11502f63589e3f386082
29dddffe5b5c1471e9a5516e64b2664b5c7f19ccfbd0767b55df630efe9ad0ba

HTTP Headers

GET /_next/static/chunks/3493.e102016899dee344.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 00:44:13 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"1fe1f60389ad9fd611c6389ff6e2611e"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NmRH4LcCVMVHOuo4p5rke4mHs1KhjoZcnGSYJtmoSTgjduN2xlhfzw==
age: 22472
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/otSDKStub.js

104.16.148.64

200 OK

7.2 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (21747)
Size
7.2 kB (7151 bytes)
Hash
6ca9058d9138dc07d9a378e6f20a8b7b
ff5f65ad24a8e2b3042cbb0136be7edb52215c1a
1561d36bd995a09ea69c243767e196dd2e76a2753b59b78ecbf999161904f86d

HTTP Headers

GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Dec 2022 06:58:44 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: bKkFjZE43AfZo3jm8gqLew==
last-modified: Tue, 06 Dec 2022 07:45:09 GMT
etag: 0x8DAD75DCC9E2F9F
x-ms-request-id: b80b8554-f01e-014c-18d0-0959ac000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 18546
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 775b5fe50a46b505-OSL
X-Firefox-Spdy: h2

production-cmp.isgprivacy.cbsi.com/dist/optanon-v1.1.0.js

151.101.85.188

200 OK

11 kB

URL HTTP/2
production-cmp.isgprivacy.cbsi.com/dist/optanon-v1.1.0.js
IP
151.101.85.188:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (30787)
Size
11 kB (10990 bytes)
Hash
67ef57e9804d6164ab0228529c00634a
b6221503720655cb5587ac02ab142e86547752c6
3e017104b5ad4b26d0365897e175f1c912c7d0272bfbf685a61187ed83ab95d8

HTTP Headers

GET /dist/optanon-v1.1.0.js HTTP/1.1
Host: production-cmp.isgprivacy.cbsi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: jtR/w/ggy4yJybv8Q6oEEVlLz2NZxrzjcRxyRWtbYV7zCAyFvJhKzrR2NoszBfi2tPd/SVORBTc=
last-modified: Wed, 30 Nov 2022 19:44:06 GMT
etag: "bea9da88ccef790fb77abaea44ea345e"
x-amz-meta-codebuild-buildarn: arn:aws:codebuild:us-east-2:485666168322:build/prod-optanon-pipeline:8320ed39-e573-464a-ae46-962fa1ee7233
content-type: application/x-javascript
access-control-allow-origin: *
access-control-expose-headers: X-CDN
content-encoding: gzip
accept-ranges: bytes
date: Wed, 07 Dec 2022 06:58:44 GMT
via: 1.1 varnish
age: 507
x-served-by: cache-bma1621-BMA
x-cache: HIT
x-cache-hits: 9
x-timer: S1670396325.663512,VS0,VE0
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 10990
X-Firefox-Spdy: h2

production-cmp.isgprivacy.cbsi.com/cps/shamanNotifier.js

151.101.85.188

200 OK

1.6 kB

URL HTTP/2
production-cmp.isgprivacy.cbsi.com/cps/shamanNotifier.js
IP
151.101.85.188:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (4276), with no line terminators
Size
1.6 kB (1598 bytes)
Hash
763348e62c55c7dd9305ec53c9625fb8
4ab12704650190c06e311bb87b1061189aeef8ed
ad386546b56fdbc7ca27432d19cc95b00804bad4222e51e2d9edc3e46526c0e2

HTTP Headers

GET /cps/shamanNotifier.js HTTP/1.1
Host: production-cmp.isgprivacy.cbsi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: uubeTO18Dft9kzTBI/Toah17xX2B9HhMK6uDNdisIz7t5yffuVq6RDpXmOO3yypBeEdy+jCZy8Q=
last-modified: Fri, 22 Jul 2022 19:02:28 GMT
etag: "3e0cf3a78511da0d4110ac814d88e0ec"
x-amz-meta-codebuild-buildarn: arn:aws:codebuild:us-east-2:485666168322:build/prod-shaman-notifier-pipeline:65247f02-0cba-4f78-bd98-f251a31929ac
content-type: application/x-javascript
access-control-allow-origin: *
access-control-expose-headers: X-CDN
content-encoding: gzip
accept-ranges: bytes
date: Wed, 07 Dec 2022 06:58:44 GMT
via: 1.1 varnish
age: 2807
x-served-by: cache-bma1621-BMA
x-cache: HIT
x-cache-hits: 62
x-timer: S1670396325.716193,VS0,VE0
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 1598
X-Firefox-Spdy: h2

www.helpwire.com/_next/static/chunks/9669-97c5cf1761642ab6.js

54.230.111.93

200 OK

9.5 kB

URL HTTP/2
www.helpwire.com/_next/static/chunks/9669-97c5cf1761642ab6.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (25286), with no line terminators
Size
9.5 kB (9457 bytes)
Hash
f967060a7c49c86f7b811b01776ca013
3a558f6628473cd0aa29610233c4322102ae07b5
a84a2880fd85bf12af5eb221c32ee95adeb74e6af56e743bbeb32db2056d107f

HTTP Headers

GET /_next/static/chunks/9669-97c5cf1761642ab6.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 00:44:13 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"3b84c3631391d301a78a469413875f14"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: siZsSqBetjxR-Y3PwnJyF1x8r7_UKNRWAbqoAFU1rjrQdhkiSkjbVw==
age: 22472
X-Firefox-Spdy: h2

www.helpwire.com/scripts/jquery.js

54.230.111.93

200 OK

734 B

URL HTTP/2
www.helpwire.com/scripts/jquery.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
734 B (734 bytes)
Hash
8ffe2fe575d8d70031baae73f19cbaeb
c5afaec856ef45509bd5e9fda32c72ca62cbaf6d
3704ddc18365094439dcd2fbb36cbefec4e69c0b81c3dd6331d886984f29cab6

HTTP Headers

GET /scripts/jquery.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 734
date: Wed, 07 Dec 2022 06:58:45 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: "8ffe2fe575d8d70031baae73f19cbaeb"
accept-ranges: bytes
server: AmazonS3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WNh9oMCZHu_USFseq2fFfNj6RO94E1EWXl3e6fJMmlmWJJPPvOs87A==
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js

104.17.25.14

200 OK

27 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (32058)
Size
27 kB (27277 bytes)
Hash
b51f9d778be466703e73aceee13d836d
cc5cd9dd2b48712dcf90f14a1ff19d729c43e378
f1e36d8f99614eef048fe3cb4275f3234536bff3e3b1b8f763f14a8a0cadab45

HTTP Headers

GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Dec 2022 06:58:44 GMT
content-type: application/javascript; charset=utf-8
content-length: 27277
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15283"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 6064954
expires: Mon, 27 Nov 2023 06:58:44 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uwL3nGYxQuALyH5vsDCLrmL1OxtLxFoWQEyPj3pEUk9JhQf1A%2B1jfVngcQ5htsv4pGsU9yedkSYlrlm%2B7yKjgmNs4gYGSxL%2BsUrWW6GwmZg84MNEEnWHxX720KJG35jcdzMIWJQW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 775b5fe68ba3b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.helpwire.com/_next/static/AwjeBsmdDVNGYeOtHruZM/_buildManifest.js

54.230.111.93

200 OK

1.3 kB

URL HTTP/2
www.helpwire.com/_next/static/AwjeBsmdDVNGYeOtHruZM/_buildManifest.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type
data
Size
1.3 kB (1260 bytes)
Hash
e81e6d5d9483e1800bdfa6de69ee01c4
3b3ce09c3e8f1ed29331be4d9b6e988fddf29b5a
3719acd95f04f67729f54eb5187083c7b3739ed68c0f45becf0891fe8fa73cad

HTTP Headers

GET /_next/static/AwjeBsmdDVNGYeOtHruZM/_buildManifest.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 00:44:14 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"58ae92e18213cfd5cd715261c7a63634"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HWIsV-lTCEXVwjfs3bWKENQ6wb_yk8WQl0hpBbqeXD8cbeTV9iL2MQ==
age: 22471
X-Firefox-Spdy: h2

cdn.galattic.com/bidder/cbs/filter.js

95.110.203.212

200 OK

424 B

URL HTTP/1.1
cdn.galattic.com/bidder/cbs/filter.js
IP
95.110.203.212:0
ASN
#31034 Aruba S.p.A.

File type
ASCII text, with very long lines (337)
Size
424 B (424 bytes)
Hash
7ce4858083c37871907f2f338f4371a0
1e0050323a2b1216eb0e9d2c0091ee91659a0503
8c6c7f84863db2932af068a41425b1532fa27df39688fdb0e016c336dfb74145

HTTP Headers

GET /bidder/cbs/filter.js HTTP/1.1
Host: cdn.galattic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 07 Dec 2022 09:11:28 GMT
Content-Type: application/javascript
Content-Length: 424
Connection: keep-alive
Last-Modified: Wed, 03 Aug 2022 11:33:13 GMT
ETag: "2be-5e55499294238-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
X-Cacheable: YES
cache-control: max-age=900
X-UnsetCookies: TRUE
X-Varnish: 162460291 587140619
Via: 1.1 varnish (Varnish/5.2)
age: 0
X-Cache: HIT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

www.helpwire.com/_next/static/chunks/9063-1bec776d34b6942e.js

54.230.111.93

200 OK

8.1 kB

URL HTTP/2
www.helpwire.com/_next/static/chunks/9063-1bec776d34b6942e.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (5103)
Size
8.1 kB (8134 bytes)
Hash
7a7bfa8a2672d692694c9be0191db4a9
cfde250cff4102b4332d5d09c2672ab78a4ca80d
04f4d2049ff5938ec2faadfb307f4a482b3e1526662b666e0bce91954dcb56a9

HTTP Headers

GET /_next/static/chunks/9063-1bec776d34b6942e.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 00:44:14 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"4e505b655b165ba96b14f7a6ad8d06f9"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9AINCrvWt2KyOEF6CwT8x-fp08KbVaTM6nirYYD2iwK87acPlZr64A==
age: 22471
X-Firefox-Spdy: h2

www.helpwire.com/_next/static/chunks/5729.31080824f0d629b2.js

54.230.111.93

200 OK

5.9 kB

URL HTTP/2
www.helpwire.com/_next/static/chunks/5729.31080824f0d629b2.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type
data
Size
5.9 kB (5933 bytes)
Hash
4b7217e7057668908607ba489f347076
c0e2104ec021ec11d74450511de67e4f32db6f1d
4944d00ac811eb1913c799ee276ff2270aaea9ddc35e7cdaf33956e76188ed12

HTTP Headers

GET /_next/static/chunks/5729.31080824f0d629b2.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 00:44:14 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"489a9bb7ca6f3965afd3155a5050414d"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Q02ZHGOvLVetR6UVMyPp4Oj0CjML9Pu6WHlAyhcXgi4g2TseHo6kiA==
age: 22471
X-Firefox-Spdy: h2

www.helpwire.com/scripts/optanonApiBootstrap.js

54.230.111.93

200 OK

541 B

URL HTTP/2
www.helpwire.com/scripts/optanonApiBootstrap.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
541 B (541 bytes)
Hash
a350eef484fa9186bf408beda6538334
39838a84ccd3d3407b873bf64d20830ee1174a9e
759eb2ef0ee7c0dd29b8d3d17f9d4b3da3549ff715fa764745cb5129ccc53009

HTTP Headers

GET /scripts/optanonApiBootstrap.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 541
date: Wed, 07 Dec 2022 06:58:46 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: "a350eef484fa9186bf408beda6538334"
accept-ranges: bytes
server: AmazonS3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iqsQzSHOlOyQaKM7tRldZnnuUTXTKGNR8jkGuHgjII4EEi9Gpl-wug==
X-Firefox-Spdy: h2

www.helpwire.com/scripts/google_head.js

54.230.111.93

200 OK

123 B

URL HTTP/2
www.helpwire.com/scripts/google_head.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
123 B (123 bytes)
Hash
f8c8167390a88fb75b4faac761c487e5
ab257ec7e73a989a17553450985fcfd660be8e7a
1278654f4fa2f333df55a3f0ef92282fdfb657dd40b952e17c84f2372ef76727

HTTP Headers

GET /scripts/google_head.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 123
date: Wed, 07 Dec 2022 06:58:46 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: "f8c8167390a88fb75b4faac761c487e5"
accept-ranges: bytes
server: AmazonS3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0XgRifSqW9DBVXJO0FLdf-0ubnOL6EJrq4iflktQ_Ei19paudzpmbg==
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
81a7e0ed8b45460991a7d9b719423d48
fa4824b64d5484b955cecebbeea06710ced4fba5
2fb356139722003d5c83566b936968a5ce9ba3756f69ace50a53bea6c1b9f7eb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9084a518c70ad57bb3226fb519b648fd
79348ebe6f5900a035d4d65e08a7409fd9708f15
f0c6b0f66c31aa7cb2d2808eb4c04c3681d48e731efc8cbba0f3fef1d218ce7b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9084a518c70ad57bb3226fb519b648fd
79348ebe6f5900a035d4d65e08a7409fd9708f15
f0c6b0f66c31aa7cb2d2808eb4c04c3681d48e731efc8cbba0f3fef1d218ce7b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagservices.com/tag/js/gpt.js

142.250.74.162

200 OK

28 kB

URL HTTP/2
www.googletagservices.com/tag/js/gpt.js
IP
142.250.74.162:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (40252)
Size
28 kB (27564 bytes)
Hash
9f220d7f24304047ffe2176bb485bc01
f91c90d658491f94e73dfc9855c47b8fa877dff6
abfca8bf66c69e0e2136f9609c0ded21b387fdcef710b40618dee7ad4d070631

HTTP Headers

GET /tag/js/gpt.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27564
date: Wed, 07 Dec 2022 06:58:45 GMT
expires: Wed, 07 Dec 2022 06:58:45 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1414 / 571 of 1000 / last-modified: 1670367953"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d44205a852cedc47da2373b3542f2ca0
884e5d2d7ef372a86e7edc3f8c1dc63a3b4fbe82
f2adb5b3e4b05ad953d43f483497243ae66c148f2af8f39473ddc6fcf2623bb9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 625
Cache-Control: max-age=108054
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:58:45 GMT
Etag: "638f3a4a-1d7"
Expires: Thu, 08 Dec 2022 12:59:39 GMT
Last-Modified: Tue, 06 Dec 2022 12:49:14 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13389
Expires: Wed, 07 Dec 2022 10:41:54 GMT
Date: Wed, 07 Dec 2022 06:58:45 GMT
Connection: keep-alive

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27340 bytes)
Hash
44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: IaJlINFQ+aU6nvwHzMydHzTLUwFXVe49ER2x9ILJxSdnG/43TYKTMaJwHEzl8Xqna9UE3/ihfz99ZtfT8Q4udA==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1904183273
date: Wed, 07 Dec 2022 06:58:45 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cd6dabd083ee1c237c8ea3ba38cc48d5
bbe4420bf1c0fe0d5621336865563418d2f16f39
c9314cdac13bc2ea94505f473538ab4d5c0a940dfbc2f5447e6f22a5af580572

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9613 bytes)
Hash
b92721cbe24623f1713a5248d6a7c1b2
3628390c62642dcc375b28f58c9b48180c4abd73
37d0451c03bc7cf0253aba6d3204cbf38502692a0fbc751a3ead01b07e9a65d6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9613
x-amzn-requestid: 3542fd4f-74e3-450b-b7fc-04034d680bf4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cslIEEDtIAMFfuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e8233-40eaebed627d374d0910e456;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 23:43:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2aI7z8gOkQiNDlj2tbsoWibfupjl25ZjoO_QRbfmXQKwO-yF455yXg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 07:18:37 GMT
age: 85208
etag: "3628390c62642dcc375b28f58c9b48180c4abd73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.google.com/adsense/search/ads.js

216.58.207.228

200 OK

53 kB

URL HTTP/2
www.google.com/adsense/search/ads.js
IP
216.58.207.228:0
ASN
#15169 GOOGLE

File type
data
Size
53 kB (52984 bytes)
Hash
a90932542806859286380b26e65d1d86
36b030236ce8d0338718113f4d95e6b1cd4c4c3e
36dae9c8b0fa8896e39d1c06815a10c922739ebf074c7f42ed335842e583ab52

HTTP Headers

GET /adsense/search/ads.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Wed, 07 Dec 2022 06:58:45 GMT
expires: Wed, 07 Dec 2022 06:58:45 GMT
cache-control: private, max-age=3600
etag: "6213113356093713992"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8116e95d-8c6c-4a81-8560-89710dcf8c9b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8659 bytes)
Hash
22e3174edbfe337cc29266cc38abb51e
80283cb298a1b2326620be406ee3daa42ee0b3ef
520858a9d9540d5768988d0ebb04f0162ded5eb9cd8f4718989b033d04702111

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8116e95d-8c6c-4a81-8560-89710dcf8c9b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 3b64a1cf-0ad7-4ecf-a25e-ca65c06330ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csVFcECMoAMF1SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6889-42dde2da60f083383ab06b82;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:54:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z3yEknYzqJG3oEe-t3nxHYkDXSYGdWkRdbB1V4ixYcJjV5DjxzLzEA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 09:19:50 GMT
age: 77935
etag: "80283cb298a1b2326620be406ee3daa42ee0b3ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6b1394-57be-42ed-ad12-94fa7a0b4be7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7609 bytes)
Hash
0d0219e6bee2a28f003f396f872eecf0
b3d22d146c6094cb539de40a72b9c5a140802ee5
41c1b037e8e654c19f36b74cceccd1fc841cc9fb7de39ac552ab5089dc3e82db

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6b1394-57be-42ed-ad12-94fa7a0b4be7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7609
x-amzn-requestid: 02299a39-6804-49ae-b415-313b6e06b2ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfj24G39oAMF25Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63894cf8-5f578e3f211063bd125b645a;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 00:55:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uMTaiFjrcbJxWm4M7BuSHPu0BFUMp9UIpMvnvlLs_dajlM0_iObY2A==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:57:52 GMT
age: 32453
etag: "b3d22d146c6094cb539de40a72b9c5a140802ee5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d44205a852cedc47da2373b3542f2ca0
884e5d2d7ef372a86e7edc3f8c1dc63a3b4fbe82
f2adb5b3e4b05ad953d43f483497243ae66c148f2af8f39473ddc6fcf2623bb9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 625
Cache-Control: max-age=108054
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:58:45 GMT
Etag: "638f3a4a-1d7"
Expires: Thu, 08 Dec 2022 12:59:39 GMT
Last-Modified: Tue, 06 Dec 2022 12:49:14 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

www.helpwire.com/scripts/productAdsScroll.js

54.230.111.93

200 OK

7.3 kB

URL HTTP/2
www.helpwire.com/scripts/productAdsScroll.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type
data
Size
7.3 kB (7341 bytes)
Hash
f96506ecb60722a64fe3d941f3e5a033
e6f2e024b221a41fe7827e99a90654ae6fedbf2a
821f85fe44f68b0ff760946451c8df227a9a62a527da613d2eb636484f31439c

HTTP Headers

GET /scripts/productAdsScroll.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 06:58:46 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"315aa28ec31f4142831cef224bc0b74f"
server: AmazonS3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XQBqKyDdOUXPVm7UcSXJ6RMn5gLpSxhz4JazJah438dv_iSZcMDRJQ==
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e6c8e9d-aef1-4772-8747-82ef7e4ceeb1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.1 kB (6110 bytes)
Hash
fb1ea0161d261518c99909aff49e6f58
c3b915cb579b651db25442fea0bbedd0d292c0fc
d877a21abfd883a368da0136c4e56d7f590fa9e9ea09dec3675823211fe56385

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e6c8e9d-aef1-4772-8747-82ef7e4ceeb1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6110
x-amzn-requestid: 2ebf542a-dacc-472a-81c0-0c69cb1ec143
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEQAH2doAMFljA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb3ff-7173ff7941b57fa163e3cc6b;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:16:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5fxuPjC35VBDaymSCPY_iBxDnQY4CFHgolHSmnDhCRUjzw5UzY7ovA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 04:14:32 GMT
age: 9853
etag: "c3b915cb579b651db25442fea0bbedd0d292c0fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.helpwire.com/scripts/fb.js?v=0

54.230.111.93

200 OK

11 kB

URL HTTP/2
www.helpwire.com/scripts/fb.js?v=0
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type
data
Size
11 kB (10914 bytes)
Hash
fd4e66b93d043dd55a2ff1e0a942340f
48e4e8888097b6ecf1a500931885ece9389bcf55
ef1ae1d1b6869b86014d54040bea6c3ebf70ee5c4c4fa6904d089af5a46f4534

HTTP Headers

GET /scripts/fb.js?v=0 HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 06:58:46 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"e9075df74bdbf0956f03b84308a735d8"
server: AmazonS3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c5nXc80hqni1jkVYtU7KaBsHojxZCBPJHvOY_joDMJd6qdnJi22_Xg==
X-Firefox-Spdy: h2

securepubads.g.doubleclick.net/pagead/ppub_config?ippd=www.helpwire.com

142.250.74.130

200 OK

53 B

URL HTTP/2
securepubads.g.doubleclick.net/pagead/ppub_config?ippd=www.helpwire.com
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
53 B (53 bytes)
Hash
dc3a0ef5da57705b1fe3d54ad354c65b
cc19b634ab794f0039560319bb7b0fc472999679
f54b1818340e775893dcedbb70603f2475bc2b869414b49b323d9271676bc2be

HTTP Headers

GET /pagead/ppub_config?ippd=www.helpwire.com HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.helpwire.com
Connection: keep-alive
Referer: https://www.helpwire.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
date: Wed, 07 Dec 2022 06:58:45 GMT
expires: Wed, 07 Dec 2022 06:58:45 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 53
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 07-Dec-2022 07:13:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

securepubads.g.doubleclick.net/gpt/pubads_impl_2022120101.js

142.250.74.130

200 OK

133 kB

URL HTTP/2
securepubads.g.doubleclick.net/gpt/pubads_impl_2022120101.js
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65395)
Size
133 kB (133241 bytes)
Hash
9f3f59466f142e1011bdec6662ab4d75
c91ea6d30ad3a7804fc1bfcd27708615a3e03f06
f68e0a509557f4011af937e8d063c37f2dfc2b39ca3e0dbc1b23a0dcede9e0d3

HTTP Headers

GET /gpt/pubads_impl_2022120101.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 133241
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 06:48:25 GMT
expires: Thu, 07 Dec 2023 06:48:25 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 01 Dec 2022 09:36:23 GMT
content-type: text/javascript
age: 620
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
aa0e64420f718aa4713e3f080b8d4099
927435ff8af66fa63c34aa0670ae80a997d59cd9
f8e0ab18de96e3d7aa4ed6a819740957b38c0c5d9571c8ccc23ba2dd4530fd42

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

partner.googleadservices.com/gampad/cookie.js?domain=www.helpwire.com&client=partner-helpwire-content-4&product=SAS&callback=__sasCookie

216.58.207.194

200 OK

181 B

URL HTTP/2
partner.googleadservices.com/gampad/cookie.js?domain=www.helpwire.com&client=partner-helpwire-content-4&product=SAS&callback=__sasCookie
IP
216.58.207.194:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
181 B (181 bytes)
Hash
46f3cd1e8d2a6689048a93321ed9469e
ba643764939d9b2eb3ad1e2f9456fe10def002c1
6b781055d4384c76f112f38bc338d0b95024a05e4624ec9c49723784622921b9

HTTP Headers

GET /gampad/cookie.js?domain=www.helpwire.com&client=partner-helpwire-content-4&product=SAS&callback=__sasCookie HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 07 Dec 2022 06:58:45 GMT
server: cafe
cache-control: private
content-length: 181
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
aa0e64420f718aa4713e3f080b8d4099
927435ff8af66fa63c34aa0670ae80a997d59cd9
f8e0ab18de96e3d7aa4ed6a819740957b38c0c5d9571c8ccc23ba2dd4530fd42

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.facebook.com/tr/?id=1741246512876651&ev=PageView&dl=https%3A%2F%2Fwww.helpwire.com%2Farticles%2Feasy-home-improvement%3Fq%3DVeeam%2520Ransomware%2520Protection%26src%3Dmg%26gch%3DT0000012%26visitor_id%3D624250023257051260%26target_id%3D5087048%26campaign_id%3D6397242%26link_key%3D044b19c4909988c1a51b958aa7e2bfdd&rl=&if=false&ts=1670396325688&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670396325687.1160277159&it=1670396325483&coo=false&dpo=LDU&dpoco=0&dpost=0&tm=1&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=1741246512876651&ev=PageView&dl=https%3A%2F%2Fwww.helpwire.com%2Farticles%2Feasy-home-improvement%3Fq%3DVeeam%2520Ransomware%2520Protection%26src%3Dmg%26gch%3DT0000012%26visitor_id%3D624250023257051260%26target_id%3D5087048%26campaign_id%3D6397242%26link_key%3D044b19c4909988c1a51b958aa7e2bfdd&rl=&if=false&ts=1670396325688&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670396325687.1160277159&it=1670396325483&coo=false&dpo=LDU&dpoco=0&dpost=0&tm=1&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=1741246512876651&ev=PageView&dl=https%3A%2F%2Fwww.helpwire.com%2Farticles%2Feasy-home-improvement%3Fq%3DVeeam%2520Ransomware%2520Protection%26src%3Dmg%26gch%3DT0000012%26visitor_id%3D624250023257051260%26target_id%3D5087048%26campaign_id%3D6397242%26link_key%3D044b19c4909988c1a51b958aa7e2bfdd&rl=&if=false&ts=1670396325688&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670396325687.1160277159&it=1670396325483&coo=false&dpo=LDU&dpoco=0&dpost=0&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 07 Dec 2022 06:58:46 GMT
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
b746371785ba1bc6cb2cc00c52bde896
20009dbca55e8dcce2a4d2ac36111204c70d53cb
996b87c3a6dcd333df24be291f9e2b7b5631fbc3f0809f04c47cd76043a466f2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6334
Cache-Control: max-age=110881
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:58:46 GMT
Etag: "638f2f09-117"
Expires: Thu, 08 Dec 2022 13:46:47 GMT
Last-Modified: Tue, 06 Dec 2022 12:01:13 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279

cdn.cookielaw.org/scripttemplates/6.32.0/otBannerSdk.js

104.16.148.64

200 OK

81 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/6.32.0/otBannerSdk.js
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65455)
Size
81 kB (81095 bytes)
Hash
af27d9858b2a2e2b0912706c3aa815b1
10c1fa093e80cbcb3ba39b8e54e934b37cb3aa57
a736527d6f80163a1b0ec8f7f8a2902c7005b4ec61fce5295d9612df48a72d06

HTTP Headers

GET /scripttemplates/6.32.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 06:58:46 GMT
content-type: application/javascript
content-length: 81095
content-encoding: gzip
content-md5: ryfZhYsqLisJEnBsOqgVsQ==
last-modified: Fri, 18 Mar 2022 16:29:23 GMT
etag: 0x8DA08FC76466F7A
x-ms-request-id: 4e03c84a-e01e-0031-75f4-3a8331000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 18520
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 775b5fee7b87b505-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/consent/87c26e94-acc3-41b3-85ed-3c9e1e798677/db9a8bfb-f407-4613-87a1-5679f28a722a/en.json

104.16.148.64

200 OK

13 kB

URL HTTP/2
cdn.cookielaw.org/consent/87c26e94-acc3-41b3-85ed-3c9e1e798677/db9a8bfb-f407-4613-87a1-5679f28a722a/en.json
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (50338), with no line terminators
Size
13 kB (13391 bytes)
Hash
fa3718df3afd6e77692e4439dafd9f43
7948e94914845712bfcde422358430aa7f802b2f
773000749ff033354710f616a152ee9c13cc6004e08dcd883fc114815716d675

HTTP Headers

GET /consent/87c26e94-acc3-41b3-85ed-3c9e1e798677/db9a8bfb-f407-4613-87a1-5679f28a722a/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.helpwire.com/
Origin: https://www.helpwire.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 06:58:46 GMT
content-type: application/x-javascript
content-length: 13391
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: +jcY3zr9bndpLkQ52v2fQw==
last-modified: Tue, 27 Sep 2022 17:18:58 GMT
etag: 0x8DAA0AC5CF2AD31
x-ms-request-id: ceb7e151-301e-00ff-4795-d2e57e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 5005
expires: Thu, 08 Dec 2022 06:58:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 775b5fef2ac7b506-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/6.32.0/assets/otFloatingRoundedCorner.json

104.16.148.64

200 OK

2.6 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/6.32.0/assets/otFloatingRoundedCorner.json
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (7860)
Size
2.6 kB (2565 bytes)
Hash
b287063f84278e7a19dd038cdf2ed9b6
ad982f153b4e3fab6f0a33714d7ba60fc963c5f0
aafb5e4fd2ee23d7b06bbdbd0be1c00ca7f804fb29e9171f2a97995e3644bb36

HTTP Headers

GET /scripttemplates/6.32.0/assets/otFloatingRoundedCorner.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.helpwire.com/
Origin: https://www.helpwire.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 06:58:46 GMT
content-type: application/json
content-length: 2565
content-encoding: gzip
content-md5: socGP4QnjnoZ3QOM3y7Ztg==
last-modified: Fri, 18 Mar 2022 16:29:16 GMT
etag: 0x8DA08FC71DCDA25
x-ms-request-id: aab9ca01-701e-00da-19b4-567dcd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 775b5fef5aeeb506-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/6.32.0/assets/v2/otPcTab.json

104.16.148.64

200 OK

12 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/6.32.0/assets/v2/otPcTab.json
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (36232)
Size
12 kB (11931 bytes)
Hash
5a9bd274ec42175644c81d3d3a9dfd4f
48456f3b2295d725ed3e241afb5f02c57325aab0
cc3efa846541bfb923aa1ca04687dde040cf9cf7781855655077b4429b61b9d9

HTTP Headers

GET /scripttemplates/6.32.0/assets/v2/otPcTab.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.helpwire.com/
Origin: https://www.helpwire.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 06:58:46 GMT
content-type: application/json
content-length: 11931
content-encoding: gzip
content-md5: WpvSdOxCF1ZEyB09Op39Tw==
last-modified: Fri, 18 Mar 2022 16:29:17 GMT
etag: 0x8DA08FC7270043D
x-ms-request-id: e1fa97ac-e01e-011c-7fad-5646a4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 775b5fef5aefb506-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg

104.16.148.64

200 OK

1.5 kB

URL HTTP/2
cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2998), with no line terminators
Size
1.5 kB (1539 bytes)
Hash
e7fcdccb9d2a50dfa3c8ec4053f09d23
83d66edbca5457a40e2211b4ebfd663ba2b469bf
4f14bb961ffd676774869916ba5ab0ba156355b175ec1aca7c68161ae3992009

HTTP Headers

GET /logos/static/poweredBy_ot_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 06:58:46 GMT
content-type: image/svg+xml
content-md5: LpuayL42jB78xRllx0vkOw==
last-modified: Tue, 06 Dec 2022 07:45:20 GMT
x-ms-request-id: 89c12fbb-201e-0101-31d9-099f4e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 18550
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 775b5ff00d03b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
e212a52bff44776e39a0d58077799be4
248f12fb3e0421e97d05f5f0d9475f7fbc8e06c7
8231e2fdacf43a377bf9c619a52ef742f447081ca03a043bf4bf9ca12403f85f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2658
Cache-Control: max-age=147514
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 06:58:51 GMT
Etag: "638fcc83-118"
Expires: Thu, 08 Dec 2022 23:57:25 GMT
Last-Modified: Tue, 06 Dec 2022 23:13:07 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280

www.helpwire.com/_next/static/chunks/2489-8969c03bb192615f.js

54.230.111.93

200 OK

0 B

URL HTTP/2
www.helpwire.com/_next/static/chunks/2489-8969c03bb192615f.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/2489-8969c03bb192615f.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 00:44:13 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"91e4cc118694d429f40b290fabc6c486"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dcFnnre9exnstUGNI57_V5wuHZMV2m1lNju9zS7Jw6J-IGdEsDF_9g==
age: 22472
X-Firefox-Spdy: h2

www.helpwire.com/scripts/google_body.js

54.230.111.93

200 OK

0 B

URL HTTP/2
www.helpwire.com/scripts/google_body.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /scripts/google_body.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 06:58:46 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"bc241cfddb77e291a3781f1946b1796e"
server: AmazonS3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ihUIceNVa8yCWXgHoRgMxP5lTKB8zoGkOKn1vOcjAJ2Z-9BISfux7Q==
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/6.32.0/assets/otCommonStyles.css

104.16.148.64

200 OK

0 B

URL HTTP/2
cdn.cookielaw.org/scripttemplates/6.32.0/assets/otCommonStyles.css
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /scripttemplates/6.32.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.helpwire.com/
Origin: https://www.helpwire.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 06:58:46 GMT
content-type: text/css
content-md5: SHFDtZO2nDZuiPDW83p1IQ==
last-modified: Fri, 18 Mar 2022 16:29:27 GMT
x-ms-request-id: 27c0e757-101e-00a7-5d44-66e105000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 775b5fef5af0b506-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.helpwire.com/_next/static/chunks/webpack-6bf17bd08c9c0c1f.js

54.230.111.93

200 OK

0 B

URL HTTP/2
www.helpwire.com/_next/static/chunks/webpack-6bf17bd08c9c0c1f.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/webpack-6bf17bd08c9c0c1f.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 00:44:14 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"6352db52f27a8ed05afa440d06cfbe9e"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TYl50f5JtKTABBfOPsA8LRBjShc86A_PzcNy8Ui_dhLg9HKgHL0X-Q==
age: 22471
X-Firefox-Spdy: h2

www.helpwire.com/_next/static/chunks/pages/articles/%5Bslug%5D-8d887ec3c4fe42a8.js

54.230.111.93

200 OK

0 B

URL HTTP/2
www.helpwire.com/_next/static/chunks/pages/articles/%5Bslug%5D-8d887ec3c4fe42a8.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/pages/articles/%5Bslug%5D-8d887ec3c4fe42a8.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 00:44:14 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"e15eeefc27e2f5e37f3cbb8759623c5b"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c0tpz-20ui8sa9AOtcqo_lAp3cib4VWLmF6WLByG2roJNI2muRkENA==
age: 22471
X-Firefox-Spdy: h2

revpu.sh/redir?page=aHR0cHM6Ly93d3cuaGVscHdpcmUuY29tL2FydGljbGVzL2Vhc3ktaG9tZS1pbXByb3ZlbWVudD9xPVZlZWFtK1JhbnNvbXdhcmUrUHJvdGVjdGlvbiZzcmM9bWcmZ2NoPVQwMDAwMDEyJnZpc2l0b3JfaWQ9JTI0JTdCU1VCSUQlN0QmdGFyZ2V0X2lkPSU3QnpvbmVpZCU3RCZjYW1wYWlnbl9pZD0lN0JjYW1wYWlnbmlkJTdEJmxpbmtfa2V5PTA0NGIxOWM0OTA5OTg4YzFhNTFiOTU4YWE3ZTJiZmRk&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd&rdk=rk1

139.162.186.41

302 Found

0 B

URL HTTP/2
revpu.sh/redir?page=aHR0cHM6Ly93d3cuaGVscHdpcmUuY29tL2FydGljbGVzL2Vhc3ktaG9tZS1pbXByb3ZlbWVudD9xPVZlZWFtK1JhbnNvbXdhcmUrUHJvdGVjdGlvbiZzcmM9bWcmZ2NoPVQwMDAwMDEyJnZpc2l0b3JfaWQ9JTI0JTdCU1VCSUQlN0QmdGFyZ2V0X2lkPSU3QnpvbmVpZCU3RCZjYW1wYWlnbl9pZD0lN0JjYW1wYWlnbmlkJTdEJmxpbmtfa2V5PTA0NGIxOWM0OTA5OTg4YzFhNTFiOTU4YWE3ZTJiZmRk&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd&rdk=rk1
IP
139.162.186.41:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /redir?page=aHR0cHM6Ly93d3cuaGVscHdpcmUuY29tL2FydGljbGVzL2Vhc3ktaG9tZS1pbXByb3ZlbWVudD9xPVZlZWFtK1JhbnNvbXdhcmUrUHJvdGVjdGlvbiZzcmM9bWcmZ2NoPVQwMDAwMDEyJnZpc2l0b3JfaWQ9JTI0JTdCU1VCSUQlN0QmdGFyZ2V0X2lkPSU3QnpvbmVpZCU3RCZjYW1wYWlnbl9pZD0lN0JjYW1wYWlnbmlkJTdEJmxpbmtfa2V5PTA0NGIxOWM0OTA5OTg4YzFhNTFiOTU4YWE3ZTJiZmRk&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd&rdk=rk1 HTTP/1.1
Host: revpu.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
content-type: text/html; charset=UTF-8
location: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
cache-control: no-cache, private
date: Wed, 07 Dec 2022 06:58:39 GMT
X-Firefox-Spdy: h2

geolocation.onetrust.com/cookieconsentpub/v1/geo/location

104.18.27.85

200 OK

0 B

URL HTTP/2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP
104.18.27.85:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.helpwire.com
Connection: keep-alive
Referer: https://www.helpwire.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Dec 2022 06:58:46 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 775b5fee3a700b4d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.helpwire.com/_next/static/chunks/main-b9cb64723e338c4c.js

54.230.111.93

200 OK

0 B

URL HTTP/2
www.helpwire.com/_next/static/chunks/main-b9cb64723e338c4c.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/main-b9cb64723e338c4c.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 00:44:14 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"2fb1f137ee1b94f6d707d0e5bb718d68"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cus8ZegwKk4ylNOXKMV2aB3p7T9cI56k0IT0FB_x_45gjLEAaKUjcA==
age: 22471
X-Firefox-Spdy: h2

www.helpwire.com/_next/static/css/8f57e9c85b5d5070.css

54.230.111.93

200 OK

0 B

URL HTTP/2
www.helpwire.com/_next/static/css/8f57e9c85b5d5070.css
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/css/8f57e9c85b5d5070.css HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
date: Wed, 07 Dec 2022 00:44:12 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"dcb484010de231dc283a4396d33734d0"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qyaWpH8ymGRBG5qWchHJU-aY_6AryEFqlLGyn3BKrL7qvIrKIbvG-Q==
age: 22473
X-Firefox-Spdy: h2

www.helpwire.com/_next/static/chunks/c16184b3-278d9312fe59238e.js

54.230.111.93

200 OK

0 B

URL HTTP/2
www.helpwire.com/_next/static/chunks/c16184b3-278d9312fe59238e.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/c16184b3-278d9312fe59238e.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 00:44:12 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"11bc8ea090dda19d4435839a4b7ab376"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rXGNMDf8CvL5ZQH85et1PrtWn3HRRmzspQ3xXUp7tFX1lzLe_GchKw==
age: 22473
X-Firefox-Spdy: h2

www.helpwire.com/_next/static/chunks/5675-87136af191a34387.js

54.230.111.93

200 OK

0 B

URL HTTP/2
www.helpwire.com/_next/static/chunks/5675-87136af191a34387.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/5675-87136af191a34387.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 00:44:13 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"e195706c78902e7db3c14efa1580fee1"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: P6hlpLM5idzBGM6Q_VO52_Oilu41Vsr91umQV1UzNFAnYbWL5Mo8Cw==
age: 22472
X-Firefox-Spdy: h2

www.helpwire.com/_next/static/chunks/pages/_app-ae91de5da9f4357b.js

54.230.111.93

200 OK

0 B

URL HTTP/2
www.helpwire.com/_next/static/chunks/pages/_app-ae91de5da9f4357b.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/pages/_app-ae91de5da9f4357b.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 00:44:14 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"63a86bcb0a35020870cc81256fbc1581"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BTBsx3oj99rhYH8J-423oJJOw5-TDboEIJx0IGnvLHM3yDGsSE0Okg==
age: 22471
X-Firefox-Spdy: h2

www.helpwire.com/_next/static/chunks/2121-4fe4ce6739beb5e7.js

54.230.111.93

200 OK

0 B

URL HTTP/2
www.helpwire.com/_next/static/chunks/2121-4fe4ce6739beb5e7.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/2121-4fe4ce6739beb5e7.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 00:44:14 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"df06edd9f2d58887377191e1def2d748"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fvHE1mcve9GWSQblPD7twQjwBSdlduqk-dhcPY7_3meXhH3hSghz2w==
age: 22471
X-Firefox-Spdy: h2

www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd

54.230.111.93

200 OK

0 B

URL HTTP/2
www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: CloudFront
date: Wed, 07 Dec 2022 06:58:44 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: public, max-age=600, s-maxage=1200, stale-while-revalidate=60
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-powered-by: PHP 8.1.2
set-cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}; path=/; secure; httponly
etag: W/"ej0ju333ebxf1"
content-encoding: gzip
vary: Accept-Encoding
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Jv5C4PnioybBnJR7TCDeAvOr9-31m9txLdwgB4NJBxyX63U7VHHiuA==
X-Firefox-Spdy: h2

www.helpwire.com/_next/static/chunks/7203.d962e336ccf4b740.js

54.230.111.93

200 OK

0 B

URL HTTP/2
www.helpwire.com/_next/static/chunks/7203.d962e336ccf4b740.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/7203.d962e336ccf4b740.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 00:44:13 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"ba529874fcd0e69dfd8c9126603ba23b"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vUTrMnLrm-JRDVigivSLgxwusymn6pxEpp5LjTvZXtKTSQgau7dXWw==
age: 22472
X-Firefox-Spdy: h2

www.helpwire.com/_next/static/chunks/framework-a661be0ab3977016.js

54.230.111.93

200 OK

0 B

URL HTTP/2
www.helpwire.com/_next/static/chunks/framework-a661be0ab3977016.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_next/static/chunks/framework-a661be0ab3977016.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 00:44:14 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"42969190930a47add78d0553ad3decd6"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c_osgbMM8GXWtSUwA7B0JmbX_515Y09ZfiMBrw_jvzFdmbUQqyevag==
age: 22471
X-Firefox-Spdy: h2

www.helpwire.com/scripts/google_rs_body.js

54.230.111.93

200 OK

0 B

URL HTTP/2
www.helpwire.com/scripts/google_rs_body.js
IP
54.230.111.93:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /scripts/google_rs_body.js HTTP/1.1
Host: www.helpwire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.helpwire.com/articles/easy-home-improvement?q=Veeam%20Ransomware%20Protection&src=mg&gch=T0000012&visitor_id=624250023257051260&target_id=5087048&campaign_id=6397242&link_key=044b19c4909988c1a51b958aa7e2bfdd
Cookie: np_data_cookie={"src":"mg","site":"helpwire","tt":"T0000000","q":"Veeam Ransomware Protection","gch":"T0000012","usx":"b7957f60-8782-46b8-833a-e7850e9d6282","htc":"07122022-12121559fd67a700c75346ccc1df09f67a34f9"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 07 Dec 2022 06:58:45 GMT
last-modified: Wed, 07 Dec 2022 00:38:33 GMT
etag: W/"8d537ab256654672dd15b33bb8ac6eac"
server: AmazonS3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: l7wWqRQ__fjsNab_W4L8e2UOU0rkySUDo0h_xNbdFznYINHpIIC3qw==
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (41)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP