r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7222
Expires: Thu, 01 Dec 2022 07:26:34 GMT
Date: Thu, 01 Dec 2022 05:26:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6343
Expires: Thu, 01 Dec 2022 07:11:55 GMT
Date: Thu, 01 Dec 2022 05:26:12 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cqv1P0MEK4mFUBqHPIRl7BoMNE7f9mUHiXPT4MVRofZwUCuj0HGxCtBWEBY8TXXZKGTul4WkpSE=
x-amz-request-id: 8NEHAV6RGXGZRPXB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 04:45:31 GMT
age: 2441
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4501
Cache-Control: max-age=109208
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:26:12 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:46:20 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
url5879.nanosoftconsulting.com/ls/click?upn=CslSuVhwSwBgMrmerft8JLsnN7renNihSKfxzjgIFMh6tZcUNuOvbTz0iY7KNQRLdsbT_gfwnluomX8gJdN8NqM54YhZXCYtGOF9B-2Fq49IaJWQK5E0SOq3CszlBtz-2Bp89p9aqWDxEXA8VKMwucUBIXUP7S-2BaghDfeGFxYqWwieh2uVZyIVA0WSmgTUUzt8bFCm9t5G3gH3pxDOXM2wVmejuyJytWm-2BpxOZIhRpes3IoJyQnwHFdF56Zh8QZoKN6tDgt-2BlmeUWgACG94Juy25834o691k8hqCVyDRnmCqofsTXS-2Fn730fHFnIORyUemBgXjEGwRaDKIIIUMDicebfmY1wLxWeJX5LGihUzzD4EAiUhNRCIBrrxLBMN03H60gEVELguVvjU-2BEq37KIjXq1mt5XXvDSikxQtPE7i4HkTxwnVwMO49jkZYWSR46ykebg4u2OfTddRBRYN8PVLmGTMcwxhTJ9NQsbzqSSrmvNPjI1ERTJwagsyAPBYJjlGS7Yq1yGT
167.89.118.52302 Found 56 B URL HTTP/1.1 url5879.nanosoftconsulting.com/ls/click?upn=CslSuVhwSwBgMrmerft8JLsnN7renNihSKfxzjgIFMh6tZcUNuOvbTz0iY7KNQRLdsbT_gfwnluomX8gJdN8NqM54YhZXCYtGOF9B-2Fq49IaJWQK5E0SOq3CszlBtz-2Bp89p9aqWDxEXA8VKMwucUBIXUP7S-2BaghDfeGFxYqWwieh2uVZyIVA0WSmgTUUzt8bFCm9t5G3gH3pxDOXM2wVmejuyJytWm-2BpxOZIhRpes3IoJyQnwHFdF56Zh8QZoKN6tDgt-2BlmeUWgACG94Juy25834o691k8hqCVyDRnmCqofsTXS-2Fn730fHFnIORyUemBgXjEGwRaDKIIIUMDicebfmY1wLxWeJX5LGihUzzD4EAiUhNRCIBrrxLBMN03H60gEVELguVvjU-2BEq37KIjXq1mt5XXvDSikxQtPE7i4HkTxwnVwMO49jkZYWSR46ykebg4u2OfTddRBRYN8PVLmGTMcwxhTJ9NQsbzqSSrmvNPjI1ERTJwagsyAPBYJjlGS7Yq1yGT
IP 167.89.118.52:0
File type HTML document, ASCII text
Hash 810d371c659029391b8943ba4eab55f5
7dfd4a323ed43a5ab72f5613ba8afac52e0c6ae3
0e6d2bcd1023493705c45b8088ab4fe6384fec5cfe57ada36994a6efb91c118a
Analyzer Verdict Alert fortinet Phishing
GET /ls/click?upn=CslSuVhwSwBgMrmerft8JLsnN7renNihSKfxzjgIFMh6tZcUNuOvbTz0iY7KNQRLdsbT_gfwnluomX8gJdN8NqM54YhZXCYtGOF9B-2Fq49IaJWQK5E0SOq3CszlBtz-2Bp89p9aqWDxEXA8VKMwucUBIXUP7S-2BaghDfeGFxYqWwieh2uVZyIVA0WSmgTUUzt8bFCm9t5G3gH3pxDOXM2wVmejuyJytWm-2BpxOZIhRpes3IoJyQnwHFdF56Zh8QZoKN6tDgt-2BlmeUWgACG94Juy25834o691k8hqCVyDRnmCqofsTXS-2Fn730fHFnIORyUemBgXjEGwRaDKIIIUMDicebfmY1wLxWeJX5LGihUzzD4EAiUhNRCIBrrxLBMN03H60gEVELguVvjU-2BEq37KIjXq1mt5XXvDSikxQtPE7i4HkTxwnVwMO49jkZYWSR46ykebg4u2OfTddRBRYN8PVLmGTMcwxhTJ9NQsbzqSSrmvNPjI1ERTJwagsyAPBYJjlGS7Yq1yGT HTTP/1.1
Host: url5879.nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 01 Dec 2022 05:26:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 56
Connection: keep-alive
Location: http://www.nanosoftconsulting.com
X-Robots-Tag: noindex, nofollow
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 05:18:07 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 485
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 05:26:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 05:08:56 GMT
cache-control: public,max-age=3600
age: 1037
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.nanosoftconsulting.com/
198.54.116.47301 Moved Permanently 707 B URL HTTP/1.1 www.nanosoftconsulting.com/
IP 198.54.116.47:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Thu, 01 Dec 2022 05:26:13 GMT
server: LiteSpeed
location: https://www.nanosoftconsulting.com/
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfdd00e67ee6ca21712b867eb5288ab6
b61d5d6ec3b7ad71619e13e32c87f2d01871b88a
f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4501
Cache-Control: max-age=104139
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:26:13 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 10:21:52 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.166.172.24101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.166.172.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SgzQCULhjjuKyT5qIwtyIA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: H6o4bDVGBYJjC8ZM4FHvrb7wbsE=
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 6bcf3cd12abfa1a40c99554ae9f1ebbe
ef1e518cf7242fbcdef2fec3ad620e476a741b6a
0bcb0075d8c97b27298d74aa98fc7ea9b085e9b5bc9a6125e347817454f91018
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 05:26:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 11:54:15 GMT
Expires: Tue, 06 Dec 2022 11:54:14 GMT
Etag: "ef1e518cf7242fbcdef2fec3ad620e476a741b6a"
Cache-Control: max-age=454680,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 772968205e59b4f3-OSL
www.nanosoftconsulting.com/
198.54.116.47301 Moved Permanently 0 B URL HTTP/2 www.nanosoftconsulting.com/
IP 198.54.116.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://nanosoftconsulting.com/
content-length: 0
date: Thu, 01 Dec 2022 05:26:14 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6552
Expires: Thu, 01 Dec 2022 07:15:27 GMT
Date: Thu, 01 Dec 2022 05:26:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6552
Expires: Thu, 01 Dec 2022 07:15:27 GMT
Date: Thu, 01 Dec 2022 05:26:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6552
Expires: Thu, 01 Dec 2022 07:15:27 GMT
Date: Thu, 01 Dec 2022 05:26:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6552
Expires: Thu, 01 Dec 2022 07:15:27 GMT
Date: Thu, 01 Dec 2022 05:26:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6552
Expires: Thu, 01 Dec 2022 07:15:27 GMT
Date: Thu, 01 Dec 2022 05:26:15 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1df312f-7c86-4a62-be1e-1a72c9b2d228.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1df312f-7c86-4a62-be1e-1a72c9b2d228.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 72735620afafb0d8d91b6d83cf292298
9de2fd7c375e92fd60444dc677cf09428393eff3
9dd40d4adf9e3dacb962cc6e1bd00d38473125567eb2b57eef643be972dfe69f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1df312f-7c86-4a62-be1e-1a72c9b2d228.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8660
x-amzn-requestid: 9474178d-c342-498a-996d-1ef3b804f1a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cWh0hEx_oAMFjmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6385b01c-33e27513010fdec8627942be;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 07:09:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: p4sQ43g-dkGS2IVyfZGDcOWowlL4wI7eEno7_fJAcLaVmunsMAponQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 07:21:04 GMT
age: 79511
etag: "9de2fd7c375e92fd60444dc677cf09428393eff3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff41bace1-a7a5-42ae-b255-862c9cbac9de.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff41bace1-a7a5-42ae-b255-862c9cbac9de.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 291127b670135b42b6e9687aa2a13237
99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1
49b082a738bcd15a0bb4e9f96a180797ffcfa368977ac1927df882a0343664d3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff41bace1-a7a5-42ae-b255-862c9cbac9de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10437
x-amzn-requestid: 2a8183c4-47ec-42bb-8e67-3e742dc3750c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0YpEeooAMFfvg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdd0-2014fd4d49dcd4087bf1db4d;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wQc8gdA6brp46QVd0ee9cBtnmA9q1j3nUO2ou9MDIhecNINtmphq0Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:50:06 GMT
age: 27369
etag: "99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38aeadfb-098c-4e6a-8abc-40288efe2526.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38aeadfb-098c-4e6a-8abc-40288efe2526.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 609419f1a2c58ae67febde5e2cb91c9f
bfb37735a2500848338a8fa12f28516a1ad9b5ba
32a4a65c8bd4da715b5331537bd606bab2767ad8c07af3b8aebbe5cad5591812
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38aeadfb-098c-4e6a-8abc-40288efe2526.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3751
x-amzn-requestid: 80396218-5515-4f77-9d57-95b323e1f1c0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzNHHGGoAMF8mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbed-09f83d1a5b7f65175fb137ab;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _mQdH9J5CaTiYNIQf5xVn-HGUP5tKhW_1foVDdpsVIoG_NKb9wZOJg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:48:09 GMT
age: 27486
etag: "bfb37735a2500848338a8fa12f28516a1ad9b5ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b8802d5080eb35e4052ef31cf7658650
1e78566f2e69268c5f753fb49112ab07aae3eccf
9c96906ee1dea353198c9069fa7e42b100e4fa766e5be8e4d8db036033961086
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4409
x-amzn-requestid: dc9ccdbf-a051-49ce-a535-c100b8ee6f12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz81EHdoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-0b06c368156b828e0c663081;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UsYYNMsulshDYcUC9N2Q3fnxjdZd5ki-0_LlXRchIsNSq0FruNhFqw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:48:09 GMT
age: 27486
etag: "1e78566f2e69268c5f753fb49112ab07aae3eccf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2dd5a4bcfd47db8f38544bf39ce3031
fa2217bae05b7beca2e12597eaad835298276b82
3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4762
x-amzn-requestid: 52b09ca3-705b-4c86-9f56-172637553f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7TVG58oAMFQTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c15-4577a47243ad190672f8ac89;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Y0-NAp2LMMG5TjQQ9ENHwDyKXLObKTYqzPPOWvZhs7Y9WJIC6LoblQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 13:29:35 GMT
age: 57400
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f07f254d44ff2fb86ee22cee39ef3eb0
0660a548a491d4a58ca2246f094f0553437c3f61
859b2416d638b1dc91ff563800517124b38d45b4c5db99e21539c1700829dbe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10985
x-amzn-requestid: ef9e5eb9-b7b3-41e9-9837-a5979ab35d94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91OFzsoAMFcew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-53b152c0027d26e52383e27e;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JGFRksMQ_LxceeV_368Xt-gjhd67bMn7D_s0X1V1fAiR6npuqCHayw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 03:10:11 GMT
age: 8164
etag: "0660a548a491d4a58ca2246f094f0553437c3f61"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:26:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:26:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:26:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nanosoftconsulting.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
198.54.116.47200 OK 12 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (47826)
Hash c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Tue, 15 Nov 2022 22:39:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11616
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/css/classic-themes.min.css?ver=1
198.54.116.47200 OK 217 B URL HTTP/2 nanosoftconsulting.com/wp-includes/css/classic-themes.min.css?ver=1
IP 198.54.116.47:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-length: 217
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
198.54.116.47200 OK 259 B URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
IP 198.54.116.47:0
Hash 49736e2d926fb2846e2df8fc0a1b69f8
0c415addd3603df8843209de4fc448ef5c443761
be091ce2d9948f24a59c9d1578557cd92e8180e2318dc0a21308ca180071f8d0
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Thu, 27 Oct 2022 05:03:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 259
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
198.54.116.47200 OK 3.6 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 198.54.116.47:0
File type ASCII text, with very long lines (19233)
Hash af3bdf44d09914e8adb51fec560d8816
84bb225e096bab405868dd504e62133ba75cf1c1
4325dab21d3eb9efb8e285a0926be743f27e46446ccf5f9be65bb4b60c024152
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Mon, 01 Aug 2022 04:11:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3629
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
198.54.116.47200 OK 12 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (65497)
Hash eae4534b9e0b15aaf7ad9f3111688549
4bde4256711207e4a95c1376f0b453cd660a63d8
b9adb98eaf24ecee30ef9b280527781e217f6e3829b8e22e5a42f7f14819cfec
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 12400
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 1b6ed7424043055f5dc644164a720909
bb270929e84564ffd8e500bdb094d2858d8fc56b
7843c0e977433e1c8e1a781b0b292bbd221de07176c900eff670b47ef126be3e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121087
Date: Thu, 01 Dec 2022 05:26:16 GMT
Etag: "63875f50-1d7"
Expires: Fri, 02 Dec 2022 15:04:23 GMT
Last-Modified: Wed, 30 Nov 2022 13:49:04 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wBh5RIkzYidM9YT_BtTtrzA2-RcUi7tX1VTLU3cSSv_l9TBY78XkDQ==
Age: 4519
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 1b6ed7424043055f5dc644164a720909
bb270929e84564ffd8e500bdb094d2858d8fc56b
7843c0e977433e1c8e1a781b0b292bbd221de07176c900eff670b47ef126be3e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121087
Date: Thu, 01 Dec 2022 05:26:16 GMT
Etag: "63875f50-1d7"
Expires: Fri, 02 Dec 2022 15:04:23 GMT
Last-Modified: Wed, 30 Nov 2022 13:49:04 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yGZtnhu5OjdVVLsS5sTiMaSf4cWJRXqOGXXmULapgsAqGSkfgrixeA==
Age: 4519
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 1b6ed7424043055f5dc644164a720909
bb270929e84564ffd8e500bdb094d2858d8fc56b
7843c0e977433e1c8e1a781b0b292bbd221de07176c900eff670b47ef126be3e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121090
Date: Thu, 01 Dec 2022 05:26:16 GMT
Etag: "63875f50-1d7"
Expires: Fri, 02 Dec 2022 15:04:26 GMT
Last-Modified: Wed, 30 Nov 2022 13:49:04 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nHps81JBDkUwf4klobLRgT6J8RbHfwR6O9ptEvvyjAsP24V57jvbWg==
Age: 4522
nanosoftconsulting.com/wp-content/uploads/elementor/css/global.css?ver=1668360216
198.54.116.47200 OK 1.3 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/elementor/css/global.css?ver=1668360216
IP 198.54.116.47:0
File type ASCII text, with very long lines (6697)
Hash fc6edda31e164cee7091e25022bf94dd
689541cb538ad30d128ed13bfdded51fad82d3e8
704545d1d0d5ef3cc50b0cb5301da68ff6669f1cf1a734b05be20f8198a24530
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/global.css?ver=1668360216 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 17:23:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1274
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-6.css?ver=1668360216
198.54.116.47200 OK 305 B URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/elementor/css/post-6.css?ver=1668360216
IP 198.54.116.47:0
File type ASCII text, with very long lines (1099), with no line terminators
Hash f9f4a316c381f91875e80b91786dc36d
fee0e5117a4be1c06c3415ea188ea061975d7bb4
9f68a480f0cf3e2c02142e5d8d0c0417f9a191db0676a80ac8963514f24586a7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-6.css?ver=1668360216 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 17:23:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 305
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 1b6ed7424043055f5dc644164a720909
bb270929e84564ffd8e500bdb094d2858d8fc56b
7843c0e977433e1c8e1a781b0b292bbd221de07176c900eff670b47ef126be3e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121092
Date: Thu, 01 Dec 2022 05:26:16 GMT
Etag: "63875f50-1d7"
Expires: Fri, 02 Dec 2022 15:04:28 GMT
Last-Modified: Wed, 30 Nov 2022 13:49:04 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mG13gG8P4YflT9ixIDKsWXlVoLXYWs3lVqaMU1QEVtiUmqJJgDq8HA==
Age: 4524
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 1b6ed7424043055f5dc644164a720909
bb270929e84564ffd8e500bdb094d2858d8fc56b
7843c0e977433e1c8e1a781b0b292bbd221de07176c900eff670b47ef126be3e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121089
Date: Thu, 01 Dec 2022 05:26:16 GMT
Etag: "63875f50-1d7"
Expires: Fri, 02 Dec 2022 15:04:25 GMT
Last-Modified: Wed, 30 Nov 2022 13:49:04 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Jx5YKiutSemog_0umpecq6IMb_wGPa8iHiPszT5iU3tpiIVt2giqKQ==
Age: 4521
engitech.s3.amazonaws.com/images/testi1.png
52.216.10.11200 OK 4.4 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/testi1.png
IP 52.216.10.11:0
File type PNG image data, 90 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 4fc0a2074bc73e79eb4e8486191218e4
32d6529e9cf08a17fc2c468c71238f748ad537a1
3bac53891f3fd23db4c5a2b78fdf4d7f7e6c76a20d07202f65a61775b94cffbb
GET /images/testi1.png HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 5elN+XhlMTUF0grYif2P/RU4JL4DznDRZ1ZkpTPoemWxytWns6X7+QS1n8WK2SobjLwA1mAoUYE=
x-amz-request-id: 4SHYX3A3SQEFZP5D
Date: Thu, 01 Dec 2022 05:26:17 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:23 GMT
ETag: "4fc0a2074bc73e79eb4e8486191218e4"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4379
engitech.s3.amazonaws.com/images/testi2.png
52.216.10.11200 OK 3.8 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/testi2.png
IP 52.216.10.11:0
File type PNG image data, 90 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 657ce8a6977b5bb4c216c699ede43c8a
72b7ec8555df950ec4c9bb1ef79432c23baaecf3
1c443889380cbb3fac213c72475db86a5267e764d305a2a6c85a535e981d3896
GET /images/testi2.png HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 0KtGaCCjdher56gNC7FTMmaGJ5SWwEKDb4/eSjyKSlvo1i9nSPYo68f3kvQUYl1sv+vBGfuI958=
x-amz-request-id: 4SHQR84W21VJMG35
Date: Thu, 01 Dec 2022 05:26:17 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:23 GMT
ETag: "657ce8a6977b5bb4c216c699ede43c8a"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3831
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2588.css?ver=1669415892
198.54.116.47200 OK 3.5 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2588.css?ver=1669415892
IP 198.54.116.47:0
File type ASCII text, with very long lines (48195), with no line terminators
Hash ca176df35c48c5a45635bb7bf91a6568
3bf2d7a6cbdc6b65c5e050fad0396ccb22ca9466
02509b5b14bbc4ee11193b58202fa60ac4b7121c862c3dd63b2e30d9996b7923
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-2588.css?ver=1669415892 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 22:38:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3488
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
198.54.116.47200 OK 7.4 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
IP 198.54.116.47:0
File type Unicode text, UTF-8 text, with very long lines (1646)
Hash 806afc62d640eb03fccbd5fe46ed8666
31259bb9e403fbe379125ea0c562ac11d76dc4d7
f7ceb3661377e98e71ccebe4d91336ac77e4e62a84bff79a1e6f865f3d00c26f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Thu, 27 Oct 2022 05:03:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7374
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/css/bootstrap.css?ver=4.0
198.54.116.47200 OK 2.3 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/css/bootstrap.css?ver=4.0
IP 198.54.116.47:0
File type ASCII text, with very long lines (11782), with CRLF line terminators
Hash 774666a507611c0b3aec63c5de5dd8e6
36e2c0b9f0720e51a54797e2d5a9cb76ad8ca526
01f1a8cbd031caab2da2ec38198802ff987dfb473be3d780ef68d3156c6f7947
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/css/bootstrap.css?ver=4.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2342
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
engitech.s3.amazonaws.com/images/image-box4.jpg
52.216.10.11200 OK 56 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/image-box4.jpg
IP 52.216.10.11:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 730x730, components 3\012- data
Hash b3fadc056c43ea9977e09f0b597e49b0
ee954392739b8be50dc211d8a7c50eed95902f3f
1a178d8f9d18d083e57a430e7e8441237ae3ed480e10b4c61b1c8bec1848c985
GET /images/image-box4.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 42tOlgB8qFk/o0SL7sv8bDo60swvsYmvLQlhTwNvRIvHsCa0bEZg73ALdaovSBHwJsnxiyas4xk=
x-amz-request-id: 4SHQXNJVK8E4YZY2
Date: Thu, 01 Dec 2022 05:26:17 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:21 GMT
ETag: "b3fadc056c43ea9977e09f0b597e49b0"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 55591
engitech.s3.amazonaws.com/images/image-box2.jpg
52.216.10.11200 OK 63 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/image-box2.jpg
IP 52.216.10.11:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 730x730, components 3\012- data
Hash 865d6b66b5ce163b233cf4f3abfb736c
2c8d5a1c07392bb84bf6cbad2a06e0abadca5cd9
43883abd419f4fb6bf7fff4c0519e62c393663c08ef291400f6d500e30fe8b8c
GET /images/image-box2.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: qaeVwdmlSEs/+G+rXMG8OjY+MktvrO/4+BuQNbHKHnCQUADFXOeBQV6IfyoeXFHwLpoB+g3WWOk=
x-amz-request-id: 4SHMDJ2R3YJFJBVH
Date: Thu, 01 Dec 2022 05:26:17 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:20 GMT
ETag: "865d6b66b5ce163b233cf4f3abfb736c"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 62567
engitech.s3.amazonaws.com/images/image-box3.jpg
52.216.10.11200 OK 64 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/image-box3.jpg
IP 52.216.10.11:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 730x730, components 3\012- data
Hash b9f69435dbf3640b12e3416f48979686
5618ac0a78133ae0733c727e0efca4f47fd601b4
05845561cbde31f8207f635a25d0121be630c7b8f7891d6ff64122d8fc89d526
GET /images/image-box3.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: mqtD/JM8CKM+MzTdN0V8SfBOcWgRu/y84DhlJeQwz0rpOgw/o7LPoYSGoRVE7nSf3ngveRfkng0=
x-amz-request-id: 4SHWTC1PG0CZ4XHM
Date: Thu, 01 Dec 2022 05:26:17 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:20 GMT
ETag: "b9f69435dbf3640b12e3416f48979686"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 64104
nanosoftconsulting.com/wp-content/themes/engitech/css/font-awesome.min.css?ver=6.1.1
198.54.116.47200 OK 12 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/css/font-awesome.min.css?ver=6.1.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (56940), with CRLF line terminators
Hash b660bad0c3c7a990749c93395510d1b4
94710965e4c818e81722a509047751628acb6163
8d5912663b9529d89fd688547bd6f270aa96516820cc94daaa989d0889614f64
GET /wp-content/themes/engitech/css/font-awesome.min.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11926
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/css/flaticon.css?ver=6.1.1
198.54.116.47200 OK 771 B URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/css/flaticon.css?ver=6.1.1
IP 198.54.116.47:0
File type ASCII text, with CRLF line terminators
Hash 256e996acf577e3a9b3dcba53946e971
57df24c0da737d5315eb8feb67b770ddd2895b30
171481a144a3b9afe5f51a68f28760cbbcdbf4736f311147bb57a2eb4d96eecb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/css/flaticon.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 771
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/css/slick.css?ver=6.1.1
198.54.116.47200 OK 486 B URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/css/slick.css?ver=6.1.1
IP 198.54.116.47:0
Hash 1184e5bfb40a6652367a2a0b1f1899b8
384804cae94a946573797cfd3f474b0d5328942d
70fb8a0b25ca9cd46d835506291b19e68273efc2447b08a108c4a86996b1a086
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/css/slick.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 486
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/css/slick-theme.css?ver=6.1.1
198.54.116.47200 OK 590 B URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/css/slick-theme.css?ver=6.1.1
IP 198.54.116.47:0
Hash ea3f6d80696f37a1a5d2b27a80ff2d93
49e3f6996d030ec8e05fb44325e1cc98a0ab9d31
95c9e7a00c9bd14c4c9107ffe7e7a7cdb7a2a77a3d833de154b94fcbca9dbde6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/css/slick-theme.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 590
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/css/magnific-popup.css?ver=6.1.1
198.54.116.47200 OK 1.7 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/css/magnific-popup.css?ver=6.1.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (5877), with CRLF line terminators
Hash e19ccff794c9acca6467b0f40661d9e5
860c2e23493ef3759827ca21c018782a023ae6bf
af58270d085d0897babc9acb4e26b76daee0d29ee4356cf76b7220e76843168c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/css/magnific-popup.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1659
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
engitech.s3.amazonaws.com/images/image-box1.jpg
52.216.10.11200 OK 69 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/image-box1.jpg
IP 52.216.10.11:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 730x730, components 3\012- data
Hash a54c3e56e64cf35831311094108c9126
8e42782564b11407c2fc1ec2ba02d7d6f394dda2
3a7b210fd49c5dd360dfb140c8568031a8fbbee5d92316bce525f2e4066f3797
GET /images/image-box1.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: gNk5WVV3+pcpMZ+pn5Pd+DWvHAm2lpSKs2p67kbWyzfzSzp/KOszMX5hmfO6gJRcnTNp7nv+Csg=
x-amz-request-id: 4SHT596Q3HEC5V27
Date: Thu, 01 Dec 2022 05:26:17 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:20 GMT
ETag: "a54c3e56e64cf35831311094108c9126"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 69358
nanosoftconsulting.com/wp-content/themes/engitech/style.css?ver=6.1.1
198.54.116.47200 OK 29 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/style.css?ver=6.1.1
IP 198.54.116.47:0
File type Unicode text, UTF-8 text, with very long lines (389)
Hash 99586b4f1f89c4bfd11813e57498975b
1816847ed4015cc508189f46531a17a824072568
b8e321354de7459386f8a0158755a3f9afde629b553d2ed555e808bf7770d699
GET /wp-content/themes/engitech/style.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 29123
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/inc/backend/css/simple-likes-public.css?ver=6.1.1
198.54.116.47200 OK 686 B URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/inc/backend/css/simple-likes-public.css?ver=6.1.1
IP 198.54.116.47:0
File type ASCII text, with CRLF line terminators
Hash f19795d0456614cdb8e8a82a25660486
84d1c9119c3a8dec3f81b474ede03efe08f7e7b0
4e02542032b67ec0924ff1f83debab5c1e72e7215a0cb6fd0e9115e43c38a025
GET /wp-content/themes/engitech/inc/backend/css/simple-likes-public.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 686
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/css/royal-preload.css?ver=6.1.1
198.54.116.47200 OK 1.3 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/css/royal-preload.css?ver=6.1.1
IP 198.54.116.47:0
File type ASCII text, with CRLF line terminators
Hash 4fe32fb6f692d047bfe2569c1effbf3a
16dfeaa691e654f0519a41292d5dc09a19ae5801
79026c71d386fa7e0f6298d90155aec42d53905d84c3a396d87c65173656377a
GET /wp-content/themes/engitech/css/royal-preload.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1261
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
198.54.116.47200 OK 12 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 198.54.116.47:0
File type ASCII text, with very long lines (57726)
Hash f463afd8661ddc733305df1f0cbdaff2
77262f0209e75e340eb7014aba9cd8d69966032f
c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 12133
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
198.54.116.47200 OK 284 B URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 198.54.116.47:0
File type ASCII text, with very long lines (489)
Hash dc279c928e2924b07a4a7575f8070ee8
0196756cacdb61ef40483af7ea982b699b0933de
80b6d9e3f0304f4199350c6015fd96084646c2a0121332bcb5a46d3956b7df5c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 284
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
198.54.116.47200 OK 5.3 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 198.54.116.47:0
File type ASCII text, with very long lines (11126)
Hash 99dc41dda77a312912d6365d01ed9098
463bdd63c43c8bf38d2b326bf5ee57066445a635
6a387c23afa1ec9371e6b524db32fa92319edb9ce4d934d45413f09002b0e789
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5308
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/inc/backend/js/simple-likes-public.js?ver=0.5
198.54.116.47200 OK 1.8 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/inc/backend/js/simple-likes-public.js?ver=0.5
IP 198.54.116.47:0
File type ASCII text, with CRLF, LF line terminators
Hash 6d6bbbfe5602f6ddcc3c96260dc97534
4dcb5333a6e78ae51bae0338832991239c3f123b
c9f4d056a710d6868e82b3eebe2951151c7bd5089acbcc935b81e759efdd4af9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/inc/backend/js/simple-likes-public.js?ver=0.5 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1768
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
198.54.116.47200 OK 906 B URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 198.54.116.47:0
File type ASCII text, with very long lines (11736)
Hash dfa4e3add9f185eaf959509b12a3f2f2
e9fcec09acb8cb18203b3c9c4133ab808576df38
060ede880f21b0bfe96d2e2b5f36606cef794e7e8814d1baf877c4868eca8a43
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 906
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2020/09/Nano-Green-1.png
198.54.116.47200 OK 11 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2020/09/Nano-Green-1.png
IP 198.54.116.47:0
File type PNG image data, 800 x 142, 8-bit/color RGBA, non-interlaced\012- data
Hash f87cfc14ec48b68124d93be70b3b7496
083a06ae167b9148d713df2b93cfe43ac785b22b
50f3af1bda43a8210f7112e03dfa0febf1aa1b1cad89c7282482ea6c6980d39b
GET /wp-content/uploads/2020/09/Nano-Green-1.png HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: image/png
last-modified: Thu, 20 Oct 2022 10:51:47 GMT
accept-ranges: bytes
content-length: 10693
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css
198.54.116.47200 OK 755 B URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css
IP 198.54.116.47:0
File type ASCII text, with very long lines (12953)
Hash 06f8182eaed70ee34f2eb64a5a2cb622
6778128d838f10f7aceb856516ea7064fcf9a082
8581e0bfb9d213aba6a15eb2d4937ac1c34a4e35a6f5cf7254b97db713f33b1a
GET /wp-content/plugins/elementor/assets/css/widget-icon-box.min.css HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 755
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
198.54.116.47200 OK 5.9 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (15660)
Hash 764db34090857ca39d7047ad92326783
99c72d60f20e886e8c75bd8b44bf9265778811f4
f2c0f5c2f25a140c73e9deb8e51d6ef233d80fd6457975f2a4304c6c9d393c4b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5927
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
198.54.116.47200 OK 32 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (65447)
Hash db4a056e3dd5df5511d3f59a2fe5cde1
18d818d2ccdf2ddefc3152adbc17d9c5c253f987
a430e0a3eefbe93df864bee1b025968e839a82949f31ba9315278e5ab1221a1d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 31651
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2849.css?ver=1668360216
198.54.116.47200 OK 1.2 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2849.css?ver=1668360216
IP 198.54.116.47:0
File type ASCII text, with very long lines (9471), with no line terminators
Hash 808d1aa9cc3bba1ccb071b060adc2189
8a4ad81039fc0189f038fd89a4321e7705df2270
09b1bbd8f9ad9cc57b3ad975c2f63401083469313bb2faf3e3e9003edcb20bfc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-2849.css?ver=1668360216 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 17:23:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1216
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2854.css?ver=1668360216
198.54.116.47200 OK 1.4 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2854.css?ver=1668360216
IP 198.54.116.47:0
File type ASCII text, with very long lines (4852)
Hash 27f4076b8744aa9b78e74d0fb7c3445c
5dd8af7601ae01784a8f36155e880bd04703ff74
5467a90dca2516f3f42ec197d89a8cfad35658f4777e231025c493bde8dad8c0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-2854.css?ver=1668360216 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 17:23:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1440
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2856.css?ver=1668360216
198.54.116.47200 OK 564 B URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2856.css?ver=1668360216
IP 198.54.116.47:0
File type ASCII text, with very long lines (4597), with no line terminators
Hash e1dbb723816e43414de85c1b618123d4
c1ee32dc516d8224b008916cb6c31ebc299c57bb
807f1fc3c7a0c49fd1af54fa8b5cb8751b9d075a6a52991d18dea42e368e6c89
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-2856.css?ver=1668360216 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 17:23:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 564
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-1334.css?ver=1668360217
198.54.116.47200 OK 1.1 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/elementor/css/post-1334.css?ver=1668360217
IP 198.54.116.47:0
File type ASCII text, with very long lines (9301), with no line terminators
Hash 0a76012c256e2b2eb25213c460be3a90
eeab19efded7e6a60508c9c12297c33cdaa8c1e1
383cb19496fed4db77b6884319d859ceeba40c8e68027f4ebaf68fdd11e66aad
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-1334.css?ver=1668360217 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 17:23:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1051
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.6.7
198.54.116.47200 OK 6.8 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.6.7
IP 198.54.116.47:0
File type ASCII text, with very long lines (47365), with no line terminators
Hash 0ee79d22a2a5a4f3e7271619921d8278
a862397f0055d6c8248d8e994fc974c65c3f171d
cb343540a6ec474b28cb356f3dd3eb704e557a8cb6f20f8686d81152f94e1f99
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6824
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css?ver=2.6.7
198.54.116.47200 OK 0 B URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css?ver=2.6.7
IP 198.54.116.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-length: 0
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme-ie11.min.css?ver=2.6.7
198.54.116.47200 OK 327 B URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme-ie11.min.css?ver=2.6.7
IP 198.54.116.47:0
File type ASCII text, with very long lines (1757), with no line terminators
Hash ffd5231deea8157c0937ec860a68fad0
a478a46cb41c05f976ae0288964f54654967aa51
61eb67f4e2bccca4bc7c99bf5980a1324451250170dcdf47b6661d78730e76f9
GET /wp-content/plugins/gravityforms/assets/css/dist/theme-ie11.min.css?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 327
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
engitech.s3.amazonaws.com/images/bg-icon-box3.jpg
52.216.10.11200 OK 30 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/bg-icon-box3.jpg
IP 52.216.10.11:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x524, components 3\012- data
Hash b08c65c15fcd7c2bc69abeccd146f2ac
620f28915f093c583c69c792411b2e8f33cf7890
de26ccc277101742184fcfca0d9d418a5ec8b369954c0316f18eff6ea5ac33d5
GET /images/bg-icon-box3.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 4T0N85clsuNHPQqVLDCZahY/d1ihWE0A/OjKFqLKYbQnbyOzEx9gaK2x8zlPyI+TxOLE0iYveCo=
x-amz-request-id: W1PWDQY2PFV0QMJR
Date: Thu, 01 Dec 2022 05:26:18 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:27 GMT
ETag: "b08c65c15fcd7c2bc69abeccd146f2ac"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 29654
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:26:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:26:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
engitech.s3.amazonaws.com/images/bg-icon-box1.jpg
52.216.10.11200 OK 31 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/bg-icon-box1.jpg
IP 52.216.10.11:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x524, components 3\012- data
Hash 2b33b9b5f84c5bd7e81e53ee1e2db6e8
845a1b538936da12031925c16e8e1a1138759cbf
2e5e3ace12750cb11134ab5be198549fc4d4ed0e63c3b72e11ad378e6481fe74
GET /images/bg-icon-box1.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: gTMDJYDkQ2NAJBe0zd6LR0MWpgBcLdKZYwJklYwfIoYUcR0HC+L0XGRlBXHWct1/8Ytmj77bbbI=
x-amz-request-id: W1PWG1ND6T65PMWY
Date: Thu, 01 Dec 2022 05:26:18 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:27 GMT
ETag: "2b33b9b5f84c5bd7e81e53ee1e2db6e8"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 31008
engitech.s3.amazonaws.com/images/bg-icon-box2.jpg
52.216.10.11200 OK 31 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/bg-icon-box2.jpg
IP 52.216.10.11:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x524, components 3\012- data
Hash 38d50aa637619ce80fcc6137119f7253
d87ef26260014b4867834acd9927fdf61e1d6b8d
7dfe0c4277a1cbd835df71b6321e91125dcad445acaaf7f118b17a9b013fe9fc
GET /images/bg-icon-box2.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: PkEMGb7Sn5KB0lf0Who2riEr4Mqs7zo7mixqCxD5FxZrkrpSMKE6ZYTQR9pv3vDoAXqkiGBjh2w=
x-amz-request-id: W1PYQ6TRBB9WVPS2
Date: Thu, 01 Dec 2022 05:26:18 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:27 GMT
ETag: "38d50aa637619ce80fcc6137119f7253"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 30682
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:26:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 06:30:11 GMT
expires: Sat, 25 Nov 2023 06:30:11 GMT
cache-control: public, max-age=31536000
age: 514566
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe01MImSLYBIv1o4X1M8cce4G2JvY1MIUg.woff2
216.58.207.227200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe01MImSLYBIv1o4X1M8cce4G2JvY1MIUg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17688, version 1.0\012- data
Hash 241b1d6a680b6b0d1c70cc45d6aa4066
d10bc093bac070d725ff9379686201b19d9c70f9
9b73529b4e8246ea3f18a62d5166c59e9912d10b4ed05cf4880adb3688a26408
GET /s/nunitosans/v12/pe01MImSLYBIv1o4X1M8cce4G2JvY1MIUg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17688
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 14:58:35 GMT
expires: Sun, 26 Nov 2023 14:58:35 GMT
cache-control: public, max-age=31536000
age: 397662
last-modified: Mon, 09 May 2022 18:31:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 35522
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17116, version 1.0\012- data
Hash bcf3a3fb620dfbee774f84e2c8e71530
40a79d240acdd7e5a95e165515ac7c0958a37971
280aaa8929329764ac3213ca093c63505cfcc665347939c79905c426d33867c5
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:42:48 GMT
expires: Wed, 29 Nov 2023 15:42:48 GMT
cache-control: public, max-age=31536000
age: 135809
last-modified: Mon, 09 May 2022 18:31:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe0oMImSLYBIv1o4X1M8cce4E9lKdg.woff2
216.58.207.227200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe0oMImSLYBIv1o4X1M8cce4E9lKdg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17684, version 1.0\012- data
Hash 67f5e167a73df331cd54701561965cd0
5c6e5ca963553c516240156bcdca131b2d0ac87e
6637ea3139ffb01e240829717a4f8c195d7be6b81780ed643000b49833d8d6d1
GET /s/nunitosans/v12/pe0oMImSLYBIv1o4X1M8cce4E9lKdg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17684
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 12:31:31 GMT
expires: Fri, 24 Nov 2023 12:31:31 GMT
cache-control: public, max-age=31536000
age: 579286
last-modified: Mon, 09 May 2022 18:32:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:26:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16980, version 1.0\012- data
Hash 8a97f720d330e75ccdbda9ae0e9f5e90
8e4fee916581ab48d385187705667cebc7500afe
97d5a594e7f76c7e50045b67667fd6b74b268515efe6425097be1b2647079787
GET /s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:43:01 GMT
expires: Wed, 29 Nov 2023 15:43:01 GMT
cache-control: public, max-age=31536000
age: 135796
last-modified: Mon, 09 May 2022 18:33:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8WAc5tU1E.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8WAc5tU1E.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16920, version 1.0\012- data
Hash 875cd87a3bfd0a454005f2b07ba35328
2ee20c6c9d1549d8d38b538e00903a75f5e02307
976177894b0cca88ff93ab02c6da363f2d55cce5d940139db955b251fcdd19a6
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8WAc5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 23:32:12 GMT
expires: Tue, 28 Nov 2023 23:32:12 GMT
cache-control: public, max-age=31536000
age: 194045
last-modified: Mon, 09 May 2022 18:31:06 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme.min.css?ver=2.6.7
198.54.116.47200 OK 5.3 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme.min.css?ver=2.6.7
IP 198.54.116.47:0
File type ASCII text, with very long lines (31244), with no line terminators
Hash 6a49304cd1223bdc9551ee8747d37393
cd75831a0cfd9f48889b9e4c8034cdd1ce612256
e54b7cfeb9e23e60ec5b2f4043aaa67e453dc9ddc2b84ac930068a10f79e04ed
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/assets/css/dist/theme.min.css?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5349
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
198.54.116.47200 OK 2.4 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (10019)
Hash d2db71c82a8f672aea59a3e050cd8cd7
af626566f94b3164e4310288cfb142431e8349a6
bcd2c9c2ba22a48a8fabf9fbe5e947deb6404367e4be24f48326e302aead1180
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Tue, 13 Mar 2018 15:48:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2442
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
198.54.116.47200 OK 286 B URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 198.54.116.47:0
File type ASCII text, with very long lines (483)
Hash 8828fa3c5bdcfa66615714a2b8c9d807
4f556d0b005ac7754af607418df445f8cf98e8b1
16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 286
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
198.54.116.47200 OK 283 B URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 198.54.116.47:0
File type ASCII text, with very long lines (491)
Hash 453a93dc816be89f942ebb253ff199fb
01563d6019803e3ff2a94c5397e7e771ee6f440d
36beebcd3778e04c8973faa581d07c7e7dc0bac2a77f637379e7d110383ab5d7
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 283
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/js/royal_preloader.min.js?ver=20180910
198.54.116.47200 OK 3.8 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/royal_preloader.min.js?ver=20180910
IP 198.54.116.47:0
File type ASCII text, with very long lines (550), with CRLF, LF line terminators
Hash bea8d67fb58b13a68800c22c252dec14
5a6ea8e4f87bd1c1ad17b6dde4deff343d02a87f
a55fd1baaf9dd6911e5a9dd349bb3a54c15854d5619fcc0d8eb4f6545f60a81b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/js/royal_preloader.min.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3813
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/
198.54.116.47200 OK 32 kB IP 198.54.116.47:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash 2f7703cc34b05cdb1822e66478ddb879
848ecca492eef45c1e4b58b02c7ca924b121bf3d
4339779a6d06a4e0d0a5d24a71dead8f5bbcf612ffb8fc43105c8f0836d24af8
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://nanosoftconsulting.com/wp-json/>; rel="https://api.w.org/", <https://nanosoftconsulting.com/wp-json/wp/v2/pages/2588>; rel="alternate"; type="application/json", <https://nanosoftconsulting.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:26:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17156, version 1.0\012- data
Hash 7e344afc10a492d516789f072fa6edfd
f38bd0b4e9d0577528f533b8ecd80801a0c6340f
c84423c305779f2aab07847a2e3870ac1ea4072e470d5eb149c01e0e0497eae3
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17156
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:12:20 GMT
expires: Tue, 28 Nov 2023 21:12:20 GMT
cache-control: public, max-age=31536000
age: 202437
last-modified: Mon, 09 May 2022 18:33:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:26:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17324, version 1.0\012- data
Hash 51ca5ce70497b58a8cc96b2b26ce2e19
7eb7e4f38f8ebe09b504f6dcc3226a8de63a9042
6fce8ebc3557b63496f8fafe1c182f2aa8669550f9398b4d9beebddd43306ed3
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 02:44:38 GMT
expires: Wed, 29 Nov 2023 02:44:38 GMT
cache-control: public, max-age=31536000
age: 182499
last-modified: Mon, 09 May 2022 18:31:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
engitech.s3.amazonaws.com/images/bg-icon-box5.jpg
52.216.10.11200 OK 29 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/bg-icon-box5.jpg
IP 52.216.10.11:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x524, components 3\012- data
Hash a589c95327e1906f6b5a8caa3928ecf9
3a23ed438d7a2c39b596bf7c82afbd62ccfe52f7
c483e3286b9d575e4bddab8f40257627baa4118046e5e0773521c299f14016e5
GET /images/bg-icon-box5.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: yhi96QWTg6wyGOL1NI9X5tehX/mTsZBW35Cduq7JYel0gWFo2v9l3v6XlMzuMDdan4qs+q1V47Y=
x-amz-request-id: W1PG0VMX5PZDR2YW
Date: Thu, 01 Dec 2022 05:26:18 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:28 GMT
ETag: "a589c95327e1906f6b5a8caa3928ecf9"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 28916
engitech.s3.amazonaws.com/images/bg-art-5.png
52.216.10.11200 OK 13 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/bg-art-5.png
IP 52.216.10.11:0
File type PNG image data, 321 x 447, 8-bit colormap, non-interlaced\012- data
Hash 1f62f659c190de9c2eee49780f8b8605
4b368824176196700ef9c1864f8cd3f4e7fd91d2
33ae30de8b7cdcf64861f16e45682b22e96231fde6c4a873052c7c0c36429571
GET /images/bg-art-5.png HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: pLUY/E13ZJ9e6IfqJrOhyH3IacRi2nIfD8A70EMTdw57Uzhgzsh0LfMGmw+aagTG9ytGvBBZYmM=
x-amz-request-id: W1PNDX8WKACJCTSX
Date: Thu, 01 Dec 2022 05:26:18 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:25 GMT
ETag: "1f62f659c190de9c2eee49780f8b8605"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 13300
engitech.s3.amazonaws.com/images/bg-icon-box6.jpg
52.216.10.11200 OK 40 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/bg-icon-box6.jpg
IP 52.216.10.11:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x524, components 3\012- data
Hash c71fba8b5433c3bd12908e40c8867860
794c0609c456af6ff0742f29632b9a5fa6b19a04
38d63da6b69ad20025b1e2923655c1a8c1e6745ec072d391d489a7fe108bf408
GET /images/bg-icon-box6.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: mIUdh+jV7SZROdc173y/c7BdB1VVxbBkWrKegQI9VZ9Z159qrZSZD4GW9xHDM5APik/89C6ZxpA=
x-amz-request-id: W1PK705BWQPQPKV2
Date: Thu, 01 Dec 2022 05:26:18 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:28 GMT
ETag: "c71fba8b5433c3bd12908e40c8867860"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 40039
engitech.s3.amazonaws.com/images/bg-art-6.png
52.216.10.11200 OK 15 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/bg-art-6.png
IP 52.216.10.11:0
File type PNG image data, 322 x 444, 8-bit colormap, non-interlaced\012- data
Hash b4e5406cc3042bef75740e2d643a7ffd
eac18cce1e90516a37712cc8d5d84e3f07902c01
8ec58c7e8181efbb9dc293dfb3f5b2cc6893a82d7505fb74f09486011cc02115
GET /images/bg-art-6.png HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: q9/qGal375CgeoWBYcW0bqEcx4+lkeMnnWmOl1MfxQEVzfxpcSGZnHA9M7jnopJ3CqeRC8h0i4Y=
x-amz-request-id: W1PP2XBD4TA2ZQC7
Date: Thu, 01 Dec 2022 05:26:18 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:26 GMT
ETag: "b4e5406cc3042bef75740e2d643a7ffd"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 15150
engitech.s3.amazonaws.com/images/fun-fact1.jpg
52.216.10.11200 OK 28 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/fun-fact1.jpg
IP 52.216.10.11:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x480, components 3\012- data
Hash 6042674f5bc8aacc50b13f8b4cf6c8ca
18f29685463df2f47343298cd98f7ee8b2e2b107
85853a38508abccf8a741ae41f780d292ac5b6a96cece6ce74a0ccf1ed794405
GET /images/fun-fact1.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: URrqrT07Jil6b7dUGPx+7LFEmlqHSKom34ZiAMBVBKD2vBjEzt7SWS86ATe6nDUdQ5ydFvANN9U=
x-amz-request-id: W1PQM0WERRJ07YRH
Date: Thu, 01 Dec 2022 05:26:18 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:30 GMT
ETag: "6042674f5bc8aacc50b13f8b4cf6c8ca"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 27935
engitech.s3.amazonaws.com/images/bg-banner-home5.png
52.216.10.11200 OK 254 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/bg-banner-home5.png
IP 52.216.10.11:0
File type PNG image data, 1920 x 719, 8-bit colormap, non-interlaced\012- data
Size 254 kB (253907 bytes)
Hash b00776637242995d70aa24e93bcc73a8
4f2190681187d2ca57de0cda1268016c8e44a029
c9883e635e18cf7fd420775c0bf88ea42b4855f328ec06c7ab45c1077733a711
GET /images/bg-banner-home5.png HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: g2rqwYKPAWAALpGQ0BfzRD0+vFfiBqmBGA5cbcOtQ+HWk3hL0LUBVHK3Z7ZtmUV+7+4hCTBVMBQ=
x-amz-request-id: W1PZ9039AWFYFT3R
Date: Thu, 01 Dec 2022 05:26:18 GMT
Last-Modified: Fri, 13 Mar 2020 08:59:41 GMT
ETag: "b00776637242995d70aa24e93bcc73a8"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 253907
engitech.s3.amazonaws.com/images/fun-fact2.jpg
52.216.10.11200 OK 19 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/fun-fact2.jpg
IP 52.216.10.11:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x480, components 3\012- data
Hash 062cf5f4346d26ab11662c36b1178fe4
ca0f27fba5372fcb7a08ba2713e6c72173db7492
0ccdc1dbbce5ec1ef949a0fe59dde858124fcde82c79057222fdef0e0c028138
GET /images/fun-fact2.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Y3A+2AK3ZD8NxQw0xpyZTwKAZY3j7NqVmOTJPv+7L5Zj6doH4gQA5J/eaaXVKkA1xm531U9trDg=
x-amz-request-id: W1PWBRZ2SN8W2CWS
Date: Thu, 01 Dec 2022 05:26:18 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:30 GMT
ETag: "062cf5f4346d26ab11662c36b1178fe4"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 19128
nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.magnific-popup.min.js?ver=20180910
198.54.116.47200 OK 8.6 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.magnific-popup.min.js?ver=20180910
IP 198.54.116.47:0
File type ASCII text, with very long lines (20840)
Hash 4f4f7b55316c1cbdd546cb7dafde04a7
e3f6960bde17f8f89b550bbd8e674bf8c6c0f267
8f0c0b89f8e547e98e5915888ad9bca9ca18e7d408d31241b89d944bbbdf3c52
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/js/jquery.magnific-popup.min.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 8605
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.isotope.min.js?ver=20190829
198.54.116.47200 OK 11 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.isotope.min.js?ver=20190829
IP 198.54.116.47:0
File type ASCII text, with very long lines (32003), with CRLF, LF line terminators
Hash da0744c72f74982f4960af06f9487cf1
a5c05ef1222786ea4405dc9379b723f68690cc8a
3973763785cedff3ae375cbcf19bec99309b78c07888eab93e5518030f23fb03
GET /wp-content/themes/engitech/js/jquery.isotope.min.js?ver=20190829 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 10806
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/js/slick.min.js?ver=20180910
198.54.116.47200 OK 11 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/slick.min.js?ver=20180910
IP 198.54.116.47:0
File type ASCII text, with very long lines (42862)
Hash 32261bbe6f99681cd77f90b6b4b13b1a
b8cbfe5ed03b80a245c8636bb80f655db2fec03d
1a68e8900e54a8b57e984fca99d185540626ea32b885193de5621d159e2da70a
GET /wp-content/themes/engitech/js/slick.min.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11449
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CNunito+Sans%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext
142.250.74.74200 OK 4.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CNunito+Sans%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext
IP 142.250.74.74:0
Hash c2a2fb88ee47c39bd477142cc2ad9706
d30b6ebed8d9c11287ff0823dd9300a7983ff79e
3207c3c9f254a4d9c88d6c404dadc856cd20bd3285fa3d931548281bc497d6de
GET /css?family=Montserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CNunito+Sans%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 05:26:15 GMT
date: Thu, 01 Dec 2022 05:26:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.74200 OK 4.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.74:0
Hash a44f2200221776fb1cefca28dc476218
3cc8ef88626907b403f7e60e6bcff67c4da750d5
c0a3a6bf40ece395dd70ef56a14f97cfc347d02d95f02dcb0dfb3e0e915c5a6f
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 05:26:15 GMT
date: Thu, 01 Dec 2022 05:26:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/js/elementor.js?ver=20180910
198.54.116.47200 OK 5.7 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/elementor.js?ver=20180910
IP 198.54.116.47:0
File type ASCII text, with CRLF, LF line terminators
Hash 8b3c13a0a2d09205e5f33e7e95b94102
cff7664b6e4745dd524e5952781b188f7fdf963a
f9dfecf94c2c6358bec3d66f3de9e9f2fbbf7b34981cc55b2d30e30f61c1f4b5
GET /wp-content/themes/engitech/js/elementor.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5681
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/js/elementor-header.js?ver=20180910
198.54.116.47200 OK 2.3 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/elementor-header.js?ver=20180910
IP 198.54.116.47:0
File type ASCII text, with CRLF, LF line terminators
Hash 875a1bfe36878f2ab7dcb49f666ad938
ed26253e20c1dcda381a4ca70fd1c7a0d64cf543
d712b6a3f5165041ab3ad18a7e38b300a5ccbb5949569fe91209709180a54beb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/js/elementor-header.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2250
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/js/scripts.js?ver=20180910
198.54.116.47200 OK 3.3 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/scripts.js?ver=20180910
IP 198.54.116.47:0
File type ASCII text, with very long lines (384), with CRLF, LF line terminators
Hash 221fa027ae2088062746426d97023ed1
18d26a30e0362b8d49300d92e347d408b9f0a9e5
aad73556c99b93ae506ce33c0d13ab1685288b8c7a060862514fa3461991ea35
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/js/scripts.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3293
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/js/header-mobile.js?ver=20180910
198.54.116.47200 OK 1.6 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/header-mobile.js?ver=20180910
IP 198.54.116.47:0
File type ASCII text, with CRLF, LF line terminators
Hash 971e7b81fb3d31514a258acd497c4c0b
d9c65f88f1a3520b3799face47d149cb75450e25
52d05f02573badea9890e1e6ed0f06061321682be97fb8bb1f40a6f53ea6e2d5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/js/header-mobile.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:15 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1588
date: Thu, 01 Dec 2022 05:26:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
198.54.116.47200 OK 4.9 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
IP 198.54.116.47:0
Hash 7569cb62361f827219d51ba3a5e4a5c8
2400e05cdcac6ea2d63b32393da41ff5521b7218
a792a1f251a6587aaabf8fc0f019b27c46cc4c212b960d4f4b8d3dc119c8dcac
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 05:03:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4920
date: Thu, 01 Dec 2022 05:26:16 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
198.54.116.47200 OK 3.7 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 198.54.116.47:0
File type ASCII text, with very long lines (6497)
Hash d07e2b8b7607674554b4be03f74f1dee
e52aaef5f1f876e1f46a415d1b543df5632b54b7
7c0fd5ea3ffeecf77b5d8a2d13bd819953746fb8cbc54360f55d163049e97580
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:16 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3689
date: Thu, 01 Dec 2022 05:26:16 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
198.54.116.47200 OK 7.7 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 198.54.116.47:0
File type Unicode text, UTF-8 text, with very long lines (17841)
Hash de9dfec82ce37a4f4c63ae614f6ce045
cbef3ceeea7789bb6b1eb13a1f0982eae98071d8
f93328fa8b32c25071dcf75b1e60f5935b36c6d92f33cc42ca2caa3941cad8a8
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:16 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7654
date: Thu, 01 Dec 2022 05:26:16 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
198.54.116.47200 OK 1.5 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
IP 198.54.116.47:0
File type ASCII text, with very long lines (485)
Hash 664be57f865abb122b10e9495f5361a7
0038c5db3d693746bdceb548f719b727e41dd2e1
c46201fda6e71d81c2aff20b6730cfedbe3d1bbbaec121cdc570ffaf9fc80bc4
GET /wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:16 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1549
date: Thu, 01 Dec 2022 05:26:16 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
198.54.116.47200 OK 2.9 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP 198.54.116.47:0
File type ASCII text, with very long lines (4897)
Hash d7e126c3c59fc52841ca1cd840d661a4
ceb0ae2537e079c97a4b8ede3ed2bc0634ab1733
32827133735f494a1b1949e2191edb8e2ca38d82904c465eb2bdea3b450f0cd4
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:16 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2873
date: Thu, 01 Dec 2022 05:26:16 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
198.54.116.47200 OK 5.0 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP 198.54.116.47:0
Hash b8e3abc8940c66afc084930b157ff120
7e276b657d1082b4a5a1390dcad6280ca180e7ff
1588fcb9959c96cdc1ababdf57bb04fd1d9404f2f15e12679b3ca9b1095e702a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:16 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5030
date: Thu, 01 Dec 2022 05:26:16 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664
198.54.116.47200 OK 2.2 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664
IP 198.54.116.47:0
File type Unicode text, UTF-8 text, with very long lines (2494)
Hash a6fb17b8bf9cdc936c54337785cb409b
f008bbd23d24d53a1c72f5bb2a4608866f132eff
2d105cc39f94d30f8922c2f4b61d020d480967d0a3a276c1e94ed34e9760114a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:16 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2151
date: Thu, 01 Dec 2022 05:26:16 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.7
198.54.116.47200 OK 2.2 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.7
IP 198.54.116.47:0
File type ASCII text, with very long lines (1862)
Hash ebc03d41ae141692b9ff84f36562a443
6893cc96955f2dbb69006c42d7750e553bc0a73f
3d250bfe4218d07b64ba32f891e838219ae546162b99be9f12aee13735bfc477
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:16 GMT
content-type: application/javascript
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2168
date: Thu, 01 Dec 2022 05:26:16 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.7
198.54.116.47200 OK 14 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.7
IP 198.54.116.47:0
File type ASCII text, with very long lines (44351)
Hash 5833e40928086d41017bf2fc1aa7d8e7
0e58345bcf6c45ff7bc87ad3ad2b2c71e1f80972
80f993738d08a642efbadb38cbd0fef933355ec06232e16ff05ac05fa9462fe6
GET /wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:16 GMT
content-type: application/javascript
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 14146
date: Thu, 01 Dec 2022 05:26:16 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.6.7
198.54.116.47200 OK 2.9 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.6.7
IP 198.54.116.47:0
File type ASCII text, with very long lines (4632)
Hash 9e7ae0903b1c56cab77a2aaaa76fcad1
852ddeac3a36a3e15fec5878b0c34ce4c97aa09d
d681a8b5639e3f393902f83cbc0cca04751455a6250463f42415134b3331b236
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:16 GMT
content-type: application/javascript
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2897
date: Thu, 01 Dec 2022 05:26:16 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
198.54.116.47200 OK 3.3 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (4940)
Hash 86b5b108ce8f3af16d26b0364fd7e210
f626d3aa625068d95ef93fbc7d9475467aced52b
41e0163a6285079d8c21328b68b12b0c2707f4c684f46ba0aeb5735cac8e7205
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:16 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3344
date: Thu, 01 Dec 2022 05:26:16 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
198.54.116.47200 OK 12 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP 198.54.116.47:0
File type Unicode text, UTF-8 text, with very long lines (32929)
Hash a9c55d0ccdebd32a354462dcd2da47e8
8274de8c9b233994554632af04ea69483286f53b
54fac913bec6f9f1cca3c521a3d69cce8c9618dba03846c1220c3926e543c07f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:16 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11769
date: Thu, 01 Dec 2022 05:26:16 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
198.54.116.47200 OK 4.2 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 198.54.116.47:0
File type ASCII text, with very long lines (12220)
Hash a27e08757da450c51e86863e57a22eaf
da27e4112f714a520a4ebc90c3ade73730e809c9
e09b1d8ae790b2d9312600f6da43f0673a7b2c0600c8787f7e552ef0a56a73a0
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:16 GMT
content-type: application/javascript
last-modified: Wed, 11 Jan 2017 21:35:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4190
date: Thu, 01 Dec 2022 05:26:16 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
198.54.116.47200 OK 8.1 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 198.54.116.47:0
File type Unicode text, UTF-8 text, with very long lines (8211)
Hash 6e9ebd42a9410ab57cafc1dfd3b6ece7
3066fbef771cf7a63847b91c7b5c78099eef166d
16a472ad9b4c66e3a74791a8ad0728d680b2a3ef4fdf6b5cb3a29bef0f33bf20
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:16 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 8125
date: Thu, 01 Dec 2022 05:26:16 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
198.54.116.47200 OK 13 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (40496)
Hash 606f3449f351f4fb6a7afdaa8ed43dde
e165da9643eefbf0da5200e3d8c5f81450395e06
61ea954526c5dd4f4eaf1c6abd115bacc0a317b85c5e817e63604c848186c85a
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:16 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 13002
date: Thu, 01 Dec 2022 05:26:16 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2020/03/bg-map-dark.jpg
198.54.116.47200 OK 23 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2020/03/bg-map-dark.jpg
IP 198.54.116.47:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x755, components 3\012- data
Hash 56e55231d0caf6138726c4d4b2f4646b
ed96af3fac8a86ef1014c8e1f7104a59268a7886
0f0ffef753ca2037a92f3d98ccb16485de9d8032233e73d55903407370cff37e
GET /wp-content/uploads/2020/03/bg-map-dark.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2588.css?ver=1669415892
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:17 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:49:58 GMT
accept-ranges: bytes
content-length: 22618
date: Thu, 01 Dec 2022 05:26:17 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/fonts/Flaticon.woff2
198.54.116.47200 OK 12 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/fonts/Flaticon.woff2
IP 198.54.116.47:0
File type Web Open Font Format (Version 2), TrueType, length 11896, version 1.0\012- data
Hash abe00f683e10e6978387f5cede633caf
1c4bb3ae0a74206f359b5a27dc37814d3317f440
ed0b55c2609cc4a6039c6fa571235f134ef2230e356491c488278c135fbc0dd6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/fonts/Flaticon.woff2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://nanosoftconsulting.com/wp-content/themes/engitech/css/flaticon.css?ver=6.1.1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:17 GMT
content-type: font/woff2
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-length: 11896
date: Thu, 01 Dec 2022 05:26:17 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 901559b299bf5da715686bf725713575
be30fb222009d3f50896317218213b595e573eba
48849807a5ae96e7a3778f205d4da9c709417cafbf39ead4ef5bd7aefa060d28
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2489
Cache-Control: max-age=168378
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:26:19 GMT
Etag: "63881ffc-118"
Expires: Sat, 03 Dec 2022 04:12:37 GMT
Last-Modified: Thu, 01 Dec 2022 03:31:08 GMT
Server: ECS (amb/6BA9)
X-Cache: HIT
Content-Length: 280
nanosoftconsulting.com/wp-content/fonts/roboto/KFOmCnqEu92Fr1Mu4mxMKTU1Kg.woff
198.54.116.47200 OK 14 kB URL HTTP/2 nanosoftconsulting.com/wp-content/fonts/roboto/KFOmCnqEu92Fr1Mu4mxMKTU1Kg.woff
IP 198.54.116.47:0
File type Web Open Font Format, TrueType, length 14384, version 1.1\012- data
Hash c7ab406db23cf2d880297f07a0ae35d3
53c9df3243c24df8728a0dd5be3c9c82ab7a38af
a9fdbefae33b742c5c1379fabbfa02d3491a9095ef762d8e23f135b66eefd7c9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/fonts/roboto/KFOmCnqEu92Fr1Mu4mxMKTU1Kg.woff HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:17 GMT
content-type: font/woff
last-modified: Fri, 14 Oct 2022 22:44:07 GMT
accept-ranges: bytes
content-length: 14384
date: Thu, 01 Dec 2022 05:26:17 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.formilla.com/scripts/feedback.js
104.26.6.68200 OK 54 kB URL HTTP/2 www.formilla.com/scripts/feedback.js
IP 104.26.6.68:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 134c48799befb9c20982342324aedbc2
6c5edda65dc68d4ef84cb6f8b41e3705f09b62c2
2d8eb1fc958f1cbb72bd5cdd40ed4d6a8b771fd7ac7393d6d2a6771244ed10a3
GET /scripts/feedback.js HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 05:26:19 GMT
content-type: application/javascript
cache-control: max-age=14400
last-modified: Fri, 30 Sep 2022 19:24:40 GMT
etag: W/"0c12492d5d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
access-control-allow-origin: *
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EsEepF91jisIjIgSh9dPnRjf%2FFGqyNR2wd1f9LfRl43K9FsCeNBIIpMDnPiwYXH%2FJHbuse8JGk4fXhfgJDRUbS1DvwYD3Tlvq5I5kqorbFmL5z9PQNHAc2aO1FyPEdfJT0Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 772968416b2fb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.formilla.com/remoteAssets/js/widgets/v4/jquery-3.6.0.min.js
104.26.6.68200 OK 40 kB URL HTTP/2 www.formilla.com/remoteAssets/js/widgets/v4/jquery-3.6.0.min.js
IP 104.26.6.68:0
File type ASCII text, with very long lines (65446), with CRLF line terminators
Hash c76119128515ed6cebe89eccf7183f62
bad30c38efb261dd4cae3775c8bacbb6c0813539
c246046cc30804a5e9ec30f95cf8e9a05818f761b24cd7b3949f3de781e759b4
GET /remoteAssets/js/widgets/v4/jquery-3.6.0.min.js HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 05:26:20 GMT
content-type: application/javascript
cache-control: max-age=604800
last-modified: Fri, 18 Mar 2022 19:47:51 GMT
etag: W/"737195d13bd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
access-control-allow-origin: *
cf-cache-status: HIT
age: 432928
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ouovECDGHmr4ji8TpZY2T2A%2BRMW7aRyMC3HGWraK43RcdxY4u0%2BvZM9HQkahNrckjuP7dJ%2FQNlgvLh6sl1RcsgLruxdqmfTETz%2FoS3%2BMs1x3u58b0SdR4Ny1%2BXEFNIa0ykI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7729684b9c7cb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.formilla.com/formilla-chat.asmx/LoadFormillaChatButton
104.26.6.68200 OK 38 kB URL HTTP/2 www.formilla.com/formilla-chat.asmx/LoadFormillaChatButton
IP 104.26.6.68:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash d89808b18bd5679e1c9791b33152b8db
ce65c6e378c73fd067ffa8c37b1d3c1dbff59318
383e3433e4f5c713ff38dee402bb751469867d6b1d8bdadcad696ade77cfd47f
POST /formilla-chat.asmx/LoadFormillaChatButton HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 977
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 05:26:20 GMT
content-type: application/json
cache-control: private, max-age=0
vary: Accept-Encoding
access-control-allow-origin: *
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a802fZRhaS3uSbpROpx9TXr4%2BznGXQueSFig9H0FceokIHIo804uWmUZa%2Bupmnic79KGi7JB6rwoVxiMbskJ%2BrcqIc7J2F2c7ATS4JID1n6YiYthworRfJWta9d3NHc5wz0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77296848ac54b503-OSL
content-encoding: br
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/fonts/fa-solid-900.woff2
198.54.116.47200 OK 76 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/fonts/fa-solid-900.woff2
IP 198.54.116.47:0
File type Web Open Font Format (Version 2), TrueType, length 76084, version 330.-16253\012- data
Hash f6121be597a72928f54e7ab5b95512a1
b2c74520c3f506efbfefca867918e5ae28bd5222
787d76ad6deab67ccf8bac1b584260205e114f508fc5542b612e3f75d49a34e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/fonts/fa-solid-900.woff2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://nanosoftconsulting.com/wp-content/themes/engitech/css/font-awesome.min.css?ver=6.1.1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:17 GMT
content-type: font/woff2
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-length: 76084
date: Thu, 01 Dec 2022 05:26:17 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
198.54.116.47200 OK 77 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 198.54.116.47:0
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:17 GMT
content-type: font/woff2
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-length: 76764
date: Thu, 01 Dec 2022 05:26:17 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2019/11/project11-720x720.jpg
198.54.116.47200 OK 0 B URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2019/11/project11-720x720.jpg
IP 198.54.116.47:0
GET /wp-content/uploads/2019/11/project11-720x720.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:26:17 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:52:14 GMT
accept-ranges: bytes
content-length: 67347
date: Thu, 01 Dec 2022 05:26:17 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.formilla.com/scripts/fileAttachments.js
104.26.6.68200 OK 0 B URL HTTP/2 www.formilla.com/scripts/fileAttachments.js
IP 104.26.6.68:0
GET /scripts/fileAttachments.js HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 05:26:20 GMT
content-type: application/javascript
cache-control: max-age=14400
last-modified: Fri, 23 Apr 2021 12:02:50 GMT
etag: W/"0512953838d71:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
cf-cache-status: HIT
age: 313
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ubuiZTx8dswZ0OfFutLtrTpSwF2K19etBYCCEXSCfxFy9Wl1%2FZjGmxXEx54owx93X1ppG0A%2BhlABOW5tw6Uf5A2bekxt%2FPqOCKnVJsxjrGamX%2F2qqDIDdAxac6PYgNilJL4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7729684bac8db4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.formilla.com/remoteAssets/js/widgets/v4/jquery.mCustomScrollbar.concat.min.js
104.26.6.68200 OK 0 B URL HTTP/2 www.formilla.com/remoteAssets/js/widgets/v4/jquery.mCustomScrollbar.concat.min.js
IP 104.26.6.68:0
GET /remoteAssets/js/widgets/v4/jquery.mCustomScrollbar.concat.min.js HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 05:26:20 GMT
content-type: application/javascript
cache-control: max-age=604800
last-modified: Fri, 18 Mar 2022 19:47:51 GMT
etag: W/"c9795d13bd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
access-control-allow-origin: *
cf-cache-status: HIT
age: 49982
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UXp4dMSR%2Bu%2BEpvRBuwjFzLhzJeuNHl%2BsoI7hi49QlwiaJn8%2FQfaxUkcd08Kkd2fHNg0kIEAFPjP%2BKFDEWxcefzIo5oCSksrdcJ%2F7%2F%2BzT%2BZkr8dvRMYDoXN6BIPv6YObgrpU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7729684bac8bb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.formilla.com/remoteAssets/js/widgets/v4/autosize.min.js
104.26.6.68200 OK 0 B URL HTTP/2 www.formilla.com/remoteAssets/js/widgets/v4/autosize.min.js
IP 104.26.6.68:0
GET /remoteAssets/js/widgets/v4/autosize.min.js HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 05:26:20 GMT
content-type: application/javascript
cache-control: max-age=604800
last-modified: Wed, 21 Feb 2018 12:57:02 GMT
etag: W/"063697713abd31:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
access-control-allow-origin: *
cf-cache-status: HIT
age: 479979
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yWyv%2FLEUcEQgvY4RFFTMcKkaRXz5Q3erO6516RsyjMvciKHcOb31a6y0lowdT2d1BJKI%2BtRxyRSf9v4%2FzSCwH2XxM2GkB6QVO%2FEeHvTaGqbJspXOqmF%2FQUA%2Fr9uZtIBdook%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7729684bac8cb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2