r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8670
Expires: Wed, 01 Feb 2023 18:16:51 GMT
Date: Wed, 01 Feb 2023 15:52:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10416
Expires: Wed, 01 Feb 2023 18:45:57 GMT
Date: Wed, 01 Feb 2023 15:52:21 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 15:43:25 GMT
content-type: application/json
age: 536
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6424
Expires: Wed, 01 Feb 2023 17:39:25 GMT
Date: Wed, 01 Feb 2023 15:52:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8AK79+vRAAtXvmiVRWgqHvt5EPGfxvhLx2+oSSQwt4rJ8cGgvdprUTuoI4Pw6dHcszqLmOGhLhU=
x-amz-request-id: 7Q43EQMFG9MZAWV2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 15:22:43 GMT
age: 1778
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
206.189.83.207/
206.189.83.207200 OK 4.1 kB IP 206.189.83.207:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3520)
Hash aa9506716e562c8465706ab77ca763a9
bf196182589a4fbf487e1f8f3881787b9036afd4
220db5977b582047817b4b2ab38b584442eb4da4461b8f5f6e4be7e18a978205
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: 206.189.83.207
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 15:52:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Mon, 30 Jan 2023 12:51:37 GMT
ETag: W/"4346-18602bba438"
X-Frame-Options: Allow-From: http://pravaxerp.com
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' https://static.addtoany.com/ ;frame-src 'self' https://drive.google.com/; img-src 'self' https://unpkg.com https://geo0.ggpht.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com https://www.google-analytics.com/ https://static-v.tawk.to http://www.googlemapsmarkers.com https://png.icons8.com/ http://chart.apis.google.com https://khms0.googleapis.com https://khms1.googleapis.com https://developers.google.com https://server2.oneqlik.in/ https://www.oneqlik.in/ http://tracknp.e-fasttracksolutions.com/ https://chart.googleapis.com https://maps.google.com https://maps.googleapis.com https://maps.gstatic.com data:;font-src 'self' https://static-v.tawk.to https://fonts.gstatic.com https://use.fontawesome.com data:;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://npmcdn.com/ https://use.fontawesome.com https://www.w3schools.com https://server2.oneqlik.in/ https://cdn.datatables.net https://cdnjs.cloudflare.com https://fonts.googleapis.com https://unpkg.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.jsdelivr.net https://www.oneqlik.in/ https://server2.oneqlik.in/ https://www.googletagmanager.com https://static.addtoany.com https://embed.tawk.to https://www.google-analytics.com https://oss.sheetjs.com/js-xlsx/ https://npmcdn.com/ https://cdn.datatables.net https://apis.google.com https://code.jquery.com https://www.gstatic.com https://cdn.rawgit.com https://cdnjs.cloudflare.com https://unpkg.com https://maps.googleapis.com https://maps.google.com https://developers.google.com https://ajax.googleapis.com https://maxcdn.bootstrapcdn.com;connect-src 'self' http://ip-api.com/ https://server2.oneqlik.in https://www.oneqlik.in http://uae.oneqlik.in https://soc.oneqlik.in https://sockets.oneqlik.in https://www.google-analytics.com https://*.tawk.to wss://*.tawk.to wss://www.oneqlik.in wss://uae.oneqlik.in ws://uae.oneqlik.in wss://soc.oneqlik.in wss://sockets.oneqlik.in;media-src 'self' https://static-v.tawk.to
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 15:52:21 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jspdf/0.9.0rc1/jspdf.min.js
104.17.25.14200 OK 19 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jspdf/0.9.0rc1/jspdf.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (2318)
Hash 68b4511822ddc2d4a055fc0cc038c992
b72922de8fa1a91a51d3ae7a55e932bc08a118cd
2d60481afcf08295f190145239d2d13762110c460d5ac56ea3b316ce8e0f8498
GET /ajax/libs/jspdf/0.9.0rc1/jspdf.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 19104
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ecd-107c5"
last-modified: Mon, 04 May 2020 16:11:57 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1161649
expires: Mon, 22 Jan 2024 15:52:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EiJHQUdGMJAtbzu2T5%2B6zDw3hhjrWi6ucav61iEofadL1nBzTpTaqgafMhc24e04p85GY0M%2F3wfxSxJJoFiFVNChYwHt4zc09gNWOpCsajfK2sQ1yT4wEy%2B7UXg1Jnm%2FxhUvUiDR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792bda9208f0b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jspdf-autotable/3.0.10/jspdf.plugin.autotable.min.js
104.17.25.14200 OK 8.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jspdf-autotable/3.0.10/jspdf.plugin.autotable.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (22420)
Hash a8779b23d20a69fc746a564236c0d5f2
a49a4814b1e53cbd238bbc53c6af946396046a32
2ee95536e879de6d0093165fbbed5e5958d237c4c86f487484f53149519e27e6
GET /ajax/libs/jspdf-autotable/3.0.10/jspdf.plugin.autotable.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 8385
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ecc-7285"
last-modified: Mon, 04 May 2020 16:11:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1158038
expires: Mon, 22 Jan 2024 15:52:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X4Ob4d0KFxGCDUKEdTOQqmShNoUw45%2Be7eQjvWNiWzYuf2YvJTCwk81yQMuebHsokSSSjHdrYZ4oNFsQycUooLArfptURddHoX8N8Byv6ovZE6GSRytbFBhqs%2FyEjxl8IenDlxro"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792bda9208f3b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/html2canvas/0.4.1/html2canvas.js
104.17.25.14200 OK 18 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/html2canvas/0.4.1/html2canvas.js
IP 104.17.25.14:0
Hash 370f792820bc0f6685e765dbe6c5ad23
a42784327efa99ceb75dc0e81950e623bca52dd1
db28e250e59bb7d8701eb96500b2ed56c0e523b3cc5052c12fea0011baa618dc
GET /ajax/libs/html2canvas/0.4.1/html2canvas.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 17929
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e9d-15a2c"
last-modified: Mon, 04 May 2020 16:11:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4133674
expires: Mon, 22 Jan 2024 15:52:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xciIn7SQwkxan0gLKKMRxA6ixgwwESKVmMvQTgRWcCu2VTNOwMJC80BwUSoTRlKiB4K58EXd9HBleSh5hOglK%2BEmOmC%2BOxWaTzsWpmkX%2FZRRGmsyrYSMxQWPlfSwarLLqGj5UvXQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792bda9208f4b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jspdf/1.3.3/jspdf.min.js
104.17.25.14200 OK 63 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jspdf/1.3.3/jspdf.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (20649)
Hash e3efeb415b039c9c96bea7cf4a6f4e4c
1f9a4a2bb7e4424bf9dd55aa128f92e8ac8a449f
73db9ae65acefbb0e7ea68f8f3553ebfebf58626b357d7b2d6e1e8c52eef5c75
GET /ajax/libs/jspdf/1.3.3/jspdf.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 62570
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ecd-3a005"
last-modified: Mon, 04 May 2020 16:11:57 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 11654095
expires: Mon, 22 Jan 2024 15:52:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sWginYrxAu%2FrVPnGvu5CcwaDn5aOE5mjAHiAsolbkWU4t6S%2Fw9xc1dV%2BIuBPioo%2BEclfi55WSZ6YiRTIan%2BNMdUX6yO8zje1UAM8mCSkKQJRfD6O1%2FHiltdygDDAddh1HtlR4l92"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792bda9208f2b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/qrcode-generator/1.4.1/qrcode.min.js
104.17.25.14200 OK 6.2 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/qrcode-generator/1.4.1/qrcode.min.js
IP 104.17.25.14:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (19533), with no line terminators
Hash 6b81bddd33491620ebc037eaedc33a74
18eae18ef58f2c82d07b517f701da0bbb51c75a0
f935905a9cc3c248770a4d5e3db7b7a3e21269a4cffba4a79bb3b1d5a72586f4
GET /ajax/libs/qrcode-generator/1.4.1/qrcode.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 6170
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fad-4c67"
last-modified: Mon, 04 May 2020 16:15:41 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 203414
expires: Mon, 22 Jan 2024 15:52:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C1Zn0vFS0Yqeo2b28Z%2BiLApl7Yih7UxnylXs4SoBLVoqpDU%2BZINCkDTCUtT%2B1r778QijMnRHmmUx0nxWpc6XSHtH2t9ktjctmABUOaFPJJUu5H9WKL4PZtypeFo6cpu6blMIZqDV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792bda921904b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.0/css/intlTelInput.css
104.17.25.14200 OK 2.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.0/css/intlTelInput.css
IP 104.17.25.14:0
Hash 8c1cfba1c22c25741a5ebd9eb13e366f
17e2dad89a03b9c613d95e84b8f1f6a897b9d9bc
256932d821ecbff898533ff08d57f7b88d91ce6f52812b7c5365a7e6b8a77962
GET /ajax/libs/intl-tel-input/17.0.0/css/intlTelInput.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: text/css; charset=utf-8
content-length: 1970
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ea6-62a6"
last-modified: Mon, 04 May 2020 16:11:18 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 6115543
expires: Mon, 22 Jan 2024 15:52:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cn6dCYDq2JRTeV2Y%2Fsf0wzr%2FyGugLIIa4FM4K78AEThK3EEMKQZ2XVfH64fx%2BAaafL7w8XFdqyW%2BlGI9c5U19CBHalwHV95AIB7%2FyUq3oHrjKeDqhZiNAYqEV7AVU9FefFdaYSUM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792bda921902b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-1.12.3.min.js
69.16.175.10200 OK 34 kB URL HTTP/2 code.jquery.com/jquery-1.12.3.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (32029)
Hash beaa31f7f88eb05cb5e5bf01ce96dc18
4556f88a741898c3b87c39f22c7dae1a19c8c23b
b9b4822df88f4e406f7533efac270146997e0fb0e5b0bd58789e63a04eeda671
GET /jquery-1.12.3.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-encoding: gzip
content-length: 33773
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-17b9c"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675266742.dop010.sk1.t,1675266742.cds246.sk1.hn,1675266742.cds202.sk1.c
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.0/js/intlTelInput-jquery.min.js
104.17.25.14200 OK 9.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.0/js/intlTelInput-jquery.min.js
IP 104.17.25.14:0
File type Unicode text, UTF-8 text, with very long lines (26966)
Hash 2e98ac1cc042ee99e7300be59f998aed
31ca581fa97a6fe4ccd683de3fe00daac187bd3d
5bd5299d7e96ba01f828940d3fe7d7ab68204aba5ab2b4044302dcd443baaad0
GET /ajax/libs/intl-tel-input/17.0.0/js/intlTelInput-jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 8979
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ea6-7363"
last-modified: Mon, 04 May 2020 16:11:18 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 76947
expires: Mon, 22 Jan 2024 15:52:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OT1xnL1Bf9y4cfvpj8g6au0qO94aUjuoD%2F0PHNBkqInpIrLWdiImKOCZmwEmVNsbkAQP4u8hw4meg3KsvNAgleizxqeoKJm6un%2FIcOwKKIfP4uQIWxBdJCb4RRJp3V%2F%2FJWcym7S0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792bda921903b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.4.1.min.js
69.16.175.10200 OK 31 kB URL HTTP/2 code.jquery.com/jquery-3.4.1.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (65451)
Hash 9abb42735168ac9e960b770179b642aa
11475bf8c7244af7a820108b7762e7a3f95aa52c
df53c09a6546b3d23dc0b2d0d92c39808c5663a75f4bf1f8d035fd11b7c81243
GET /jquery-3.4.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-encoding: gzip
content-length: 30638
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15851"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675266742.dop010.sk1.t,1675266742.cds246.sk1.hn,1675266742.cds201.sk1.c
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.11.0/umd/popper.min.js
104.17.25.14200 OK 6.1 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.11.0/umd/popper.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (18860)
Hash 644b7e1b85739d3ef9b424708cc14fa5
8b84449b04a1f5ca00e7ff1d5ef92aebf1ddb4ef
eaec1c8906a7a577d272afbd87ade62bdf3ca3a4a82a497f818485fe7110a0b4
GET /ajax/libs/popper.js/1.11.0/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 6098
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4a59"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3666970
expires: Mon, 22 Jan 2024 15:52:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FYjcDB2Pc1Q2Xefltstv3%2BFd%2BD1xOjtRUXAx9Rb2dTVaprrGXKiSkDj5OJasOtl2wuqceYqG%2BDmrL7lyR2OAc5qIodDw0eQtITsZRB8oEXn%2BmUARlz2LJ2FtiCZXiPh2acPevLRS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792bda922914b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
206.189.83.207/vendor/perfect-scrollbar/perfect-scrollbar.min.js
206.189.83.207200 OK 4.1 kB URL HTTP/1.1 206.189.83.207/vendor/perfect-scrollbar/perfect-scrollbar.min.js
IP 206.189.83.207:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3520)
Hash ef75e970a88581179964a321af986566
5d2937e14a0f529b40d3bc58e5c20c571a30c734
09fe04da758cae17a6199124fe97fccbdfdf675c9c7ced6746264f619b2af613
Analyzer Verdict Alert quad9 Sinkholed
GET /vendor/perfect-scrollbar/perfect-scrollbar.min.js HTTP/1.1
Host: 206.189.83.207
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://206.189.83.207/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 15:52:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: Express
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=0
Last-Modified: Mon, 30 Jan 2023 12:51:37 GMT
ETag: W/"4346-18602bba438"
X-Frame-Options: Allow-From: http://pravaxerp.com
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' https://static.addtoany.com/ ;frame-src 'self' https://drive.google.com/; img-src 'self' https://unpkg.com https://geo0.ggpht.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com https://www.google-analytics.com/ https://static-v.tawk.to http://www.googlemapsmarkers.com https://png.icons8.com/ http://chart.apis.google.com https://khms0.googleapis.com https://khms1.googleapis.com https://developers.google.com https://server2.oneqlik.in/ https://www.oneqlik.in/ http://tracknp.e-fasttracksolutions.com/ https://chart.googleapis.com https://maps.google.com https://maps.googleapis.com https://maps.gstatic.com data:;font-src 'self' https://static-v.tawk.to https://fonts.gstatic.com https://use.fontawesome.com data:;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://npmcdn.com/ https://use.fontawesome.com https://www.w3schools.com https://server2.oneqlik.in/ https://cdn.datatables.net https://cdnjs.cloudflare.com https://fonts.googleapis.com https://unpkg.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.jsdelivr.net https://www.oneqlik.in/ https://server2.oneqlik.in/ https://www.googletagmanager.com https://static.addtoany.com https://embed.tawk.to https://www.google-analytics.com https://oss.sheetjs.com/js-xlsx/ https://npmcdn.com/ https://cdn.datatables.net https://apis.google.com https://code.jquery.com https://www.gstatic.com https://cdn.rawgit.com https://cdnjs.cloudflare.com https://unpkg.com https://maps.googleapis.com https://maps.google.com https://developers.google.com https://ajax.googleapis.com https://maxcdn.bootstrapcdn.com;connect-src 'self' http://ip-api.com/ https://server2.oneqlik.in https://www.oneqlik.in http://uae.oneqlik.in https://soc.oneqlik.in https://sockets.oneqlik.in https://www.google-analytics.com https://*.tawk.to wss://*.tawk.to wss://www.oneqlik.in wss://uae.oneqlik.in ws://uae.oneqlik.in wss://soc.oneqlik.in wss://sockets.oneqlik.in;media-src 'self' https://static-v.tawk.to
Content-Encoding: gzip
cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.1.2/js/bootstrap.min.js
104.17.25.14200 OK 12 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.1.2/js/bootstrap.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (50758)
Hash a70f977d6bcc78918494a1ec98ad4579
ea5fdf947dbe30652c4674d8659a4745e294a189
e41a76ddf2de784ff8bb9c18b4ac1af9ab5317e74e0d420fb80d103daa460085
GET /ajax/libs/twitter-bootstrap/4.1.2/js/bootstrap.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 12265
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04010-c75f"
last-modified: Mon, 04 May 2020 16:17:20 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 20700141
expires: Mon, 22 Jan 2024 15:52:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mQwuT6W0ly9G6r0cUaFHv6bBAEk12qfRmExCvP9s8lmwEyCNzp%2BDd4TQgUGMyA%2Fq0LTuthA%2FNK%2BKtlY3RPQq1kfXSpH%2FN8S8ySR11YJN%2FrDH%2FPQgvyXCw6hIfCIermiWNggSC%2Fws"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792bda922918b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
206.189.83.207/~ng-pick-datetime/assets/style/picker.min.css
206.189.83.207200 OK 4.1 kB URL HTTP/1.1 206.189.83.207/~ng-pick-datetime/assets/style/picker.min.css
IP 206.189.83.207:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3520)
Hash ef75e970a88581179964a321af986566
5d2937e14a0f529b40d3bc58e5c20c571a30c734
09fe04da758cae17a6199124fe97fccbdfdf675c9c7ced6746264f619b2af613
Analyzer Verdict Alert quad9 Sinkholed
GET /~ng-pick-datetime/assets/style/picker.min.css HTTP/1.1
Host: 206.189.83.207
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://206.189.83.207/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 15:52:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: Express
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=0
Last-Modified: Mon, 30 Jan 2023 12:51:37 GMT
ETag: W/"4346-18602bba438"
X-Frame-Options: Allow-From: http://pravaxerp.com
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' https://static.addtoany.com/ ;frame-src 'self' https://drive.google.com/; img-src 'self' https://unpkg.com https://geo0.ggpht.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com https://www.google-analytics.com/ https://static-v.tawk.to http://www.googlemapsmarkers.com https://png.icons8.com/ http://chart.apis.google.com https://khms0.googleapis.com https://khms1.googleapis.com https://developers.google.com https://server2.oneqlik.in/ https://www.oneqlik.in/ http://tracknp.e-fasttracksolutions.com/ https://chart.googleapis.com https://maps.google.com https://maps.googleapis.com https://maps.gstatic.com data:;font-src 'self' https://static-v.tawk.to https://fonts.gstatic.com https://use.fontawesome.com data:;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://npmcdn.com/ https://use.fontawesome.com https://www.w3schools.com https://server2.oneqlik.in/ https://cdn.datatables.net https://cdnjs.cloudflare.com https://fonts.googleapis.com https://unpkg.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.jsdelivr.net https://www.oneqlik.in/ https://server2.oneqlik.in/ https://www.googletagmanager.com https://static.addtoany.com https://embed.tawk.to https://www.google-analytics.com https://oss.sheetjs.com/js-xlsx/ https://npmcdn.com/ https://cdn.datatables.net https://apis.google.com https://code.jquery.com https://www.gstatic.com https://cdn.rawgit.com https://cdnjs.cloudflare.com https://unpkg.com https://maps.googleapis.com https://maps.google.com https://developers.google.com https://ajax.googleapis.com https://maxcdn.bootstrapcdn.com;connect-src 'self' http://ip-api.com/ https://server2.oneqlik.in https://www.oneqlik.in http://uae.oneqlik.in https://soc.oneqlik.in https://sockets.oneqlik.in https://www.google-analytics.com https://*.tawk.to wss://*.tawk.to wss://www.oneqlik.in wss://uae.oneqlik.in ws://uae.oneqlik.in wss://soc.oneqlik.in wss://sockets.oneqlik.in;media-src 'self' https://static-v.tawk.to
Content-Encoding: gzip
cdnjs.cloudflare.com/ajax/libs/jszip/3.1.3/jszip.min.js
104.17.25.14200 OK 26 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jszip/3.1.3/jszip.min.js
IP 104.17.25.14:0
Hash 2765f800cc805f4b9325b440026d7044
38b5b6df5bd43429094ced6a89dbabe29b140a69
c8673ba2da6ef240e5d68fe034e77836c0a8e112818f4eca992b2a421e0ab1a8
GET /ajax/libs/jszip/3.1.3/jszip.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 26506
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ecf-18e33"
last-modified: Mon, 04 May 2020 16:11:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3493641
expires: Mon, 22 Jan 2024 15:52:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i6c2jXWHevr0v%2B2RLn4VcDOF4gH%2F2V94OtH3zMjMzNZocdeE3aWwpUv3ngrpAKlDLZUVQrvp8qilMF2EGEziz0dZGS1KB9%2B5V6YewoF4B2FVq7v3VqiqQhRafn%2Fy0EROdUYam%2BWT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792bda925953b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/pdfmake/0.1.53/vfs_fonts.js
104.17.25.14200 OK 316 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/pdfmake/0.1.53/vfs_fonts.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (65480)
Size 316 kB (315755 bytes)
Hash 2e5df735ed3cbfe71fbd636312cf4600
3d1e113c57de3a8c22b54386087f9e100d59a836
fd619a06d8b7a1e98d7f98e528792dba49944ce7c39ab9fd6e6b994ac9503784
GET /ajax/libs/pdfmake/0.1.53/vfs_fonts.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 315755
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f87-e2214"
last-modified: Mon, 04 May 2020 16:15:03 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 6092511
expires: Mon, 22 Jan 2024 15:52:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fVovu2Kyt10j772weTyJ3%2F0Jf7pwl5wLLK%2FaloUvcuECR4Bz33OPIhFP3%2BNvuaNJpHDMnoZxV8%2BsNS0YeoWftJ2cer0kj%2BVZth2osqBRMKXhZZ8mfcwCdnigJRv8KgWHrJkgplf2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792bda928983b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4f09e8e6169d0a689c44be5fd27668bb
590cc3f74b3e62e982dad3b0c70c70bc380010c6
537a69333d21a4c5f753deb7ae5bbd22fa6e82fd67eea208d9606f8a0856bf5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "537A69333D21A4C5F753DEB7AE5BBD22FA6E82FD67EEA208D9606F8A0856BF5A"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15463
Expires: Wed, 01 Feb 2023 20:10:05 GMT
Date: Wed, 01 Feb 2023 15:52:22 GMT
Connection: keep-alive
cdnjs.cloudflare.com/ajax/libs/qrious/4.0.2/qrious.js
104.17.25.14200 OK 13 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/qrious/4.0.2/qrious.js
IP 104.17.25.14:0
Hash 9f3616cc6e38783d7a7bda5a1e8a10e0
4e4ae0ad49a9146cd9278222d942e867d6ab8284
e641bf81cf0acfc6a322fd7fd66d420faaf4b2c972f14f0975e36164e373f005
GET /ajax/libs/qrious/4.0.2/qrious.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 13297
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fad-118b0"
last-modified: Mon, 04 May 2020 16:15:41 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 20712757
expires: Mon, 22 Jan 2024 15:52:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gQ%2BFI9aqvmY3L3AP35JVn2jTcyCahCbvNMNmNuP2J5EK5xJ0jbgvCDqjinm%2FTymHAJiTENeWMZyipgFMkXllaDhcP8V4PqXrAYr7jXYxmSGdfgHU5Bxc6c7RIJHq%2BEKsZvkDM%2BYX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792bda933a8cb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash d4a58337fdb04ac1b06a2f7bbf693f53
c5676f7964a337332f315e0803de7f1a821705e4
d3f808787a44cb61e4e32c129488b35ed06369f95f2d8ae6ca7ab9a2dc99d5ef
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4623
Cache-Control: max-age=96208
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 15:52:22 GMT
Etag: "63d94d77-116"
Expires: Thu, 02 Feb 2023 18:35:50 GMT
Last-Modified: Tue, 31 Jan 2023 17:18:47 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash d4a58337fdb04ac1b06a2f7bbf693f53
c5676f7964a337332f315e0803de7f1a821705e4
d3f808787a44cb61e4e32c129488b35ed06369f95f2d8ae6ca7ab9a2dc99d5ef
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3090
Cache-Control: max-age=94675
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 15:52:22 GMT
Etag: "63d94d77-116"
Expires: Thu, 02 Feb 2023 18:10:17 GMT
Last-Modified: Tue, 31 Jan 2023 17:18:47 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash cc3a9d24fd12c4fc6c1d96fffff557b0
b464235ef13a5214198489b95a00f0cbb1da3736
074eeb14f115028e12481078d8b2c2597d334364ab42ee25fcd56855cea59cee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 533
Cache-Control: max-age=162693
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 15:52:22 GMT
Etag: "63da6126-117"
Expires: Fri, 03 Feb 2023 13:03:55 GMT
Last-Modified: Wed, 01 Feb 2023 12:55:02 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
cdn.jsdelivr.net/gh/openlayers/openlayers.github.io@master/en/v6.2.1/build/ol.js
151.101.193.229200 OK 158 kB URL HTTP/2 cdn.jsdelivr.net/gh/openlayers/openlayers.github.io@master/en/v6.2.1/build/ol.js
IP 151.101.193.229:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 158 kB (158549 bytes)
Hash 45bb985f7ac854349279a3aefad287ab
378c535a45873114a76854b26be17788a66c5f7b
88b16c51929ae142dbdc675c286d5a0c58cb502d88867dbcb4dc0cc296056ee2
GET /gh/openlayers/openlayers.github.io@master/en/v6.2.1/build/ol.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: master
x-jsd-version-type: branch
etag: W/"a1046-b+m6lYVxEjvU9OYJ7hn5UsIzP9M"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 01 Feb 2023 15:52:22 GMT
age: 2441
x-served-by: cache-fra-eddf8230113-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 158549
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/chart.js@2.8.0
151.101.193.229200 OK 47 kB URL HTTP/2 cdn.jsdelivr.net/npm/chart.js@2.8.0
IP 151.101.193.229:0
File type ASCII text, with very long lines (65414)
Hash 75ced00e9d1925e561199c4187bfc9d2
906a13bc9224fdce8c5d58bbcf14791cc21d9470
258519d80a8f62fa3583c5f4a4c78f3377b74cc4215b4eeca200a3ed61859ce7
GET /npm/chart.js@2.8.0 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.8.0
x-jsd-version-type: version
etag: W/"26431-Lr+QDgOGdJNz6YhwJlkP59r8MK4"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 01 Feb 2023 15:52:22 GMT
age: 1948871
x-served-by: cache-fra-eddf8230075-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 46999
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e0bc98d03057dabba1334b62bea0975b
b358a8123908fe4b1c94a1273cac45c4e23b212e
10ef320ba825ca0e17d039b66fd2f321f4d2c687a8734d226fa25e9b45e109d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 15:52:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.datatables.net/buttons/1.6.1/js/dataTables.buttons.min.js
172.67.14.139200 OK 6.4 kB URL HTTP/2 cdn.datatables.net/buttons/1.6.1/js/dataTables.buttons.min.js
IP 172.67.14.139:0
File type Unicode text, UTF-8 text, with very long lines (563)
Hash 5ff945edd4f89b01cf8c2ec773f42457
b837df07cec2db9b497cfb2383f20311899adc0d
3f35eff6adf6a3f2b36910f54081944e7af8b4217a82388025ce98c22ab42541
GET /buttons/1.6.1/js/dataTables.buttons.min.js HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 6431
x-frame-options: SAMEORIGIN
last-modified: Mon, 06 Jun 2022 14:37:36 GMT
etag: "112156b-4c4c-5e0c869d057d6-gzip"
cache-control: max-age=31536000
expires: Thu, 08 Jun 2023 09:29:01 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 20586200
accept-ranges: bytes
server: cloudflare
cf-ray: 792bda94cf73b509-OSL
X-Firefox-Spdy: h2
cdn.datatables.net/buttons/1.6.1/js/buttons.html5.min.js
172.67.14.139200 OK 6.6 kB URL HTTP/2 cdn.datatables.net/buttons/1.6.1/js/buttons.html5.min.js
IP 172.67.14.139:0
File type Unicode text, UTF-8 text, with very long lines (9902)
Hash 1331f64b4e4102c6b6b37a5516b893ee
e1716f0beb803fd276fe087ed7b9cda06607f653
e3d6072f74555b930ba2a1287c76915f4ac621972960c051af292718c3faa814
GET /buttons/1.6.1/js/buttons.html5.min.js HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 6608
x-frame-options: SAMEORIGIN
last-modified: Mon, 06 Jun 2022 14:37:36 GMT
etag: "112155a-60be-5e0c869cf792e-gzip"
cache-control: max-age=31536000
expires: Tue, 06 Jun 2023 22:57:09 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 20710512
accept-ranges: bytes
server: cloudflare
cf-ray: 792bda94cf77b509-OSL
X-Firefox-Spdy: h2
cdn.datatables.net/1.10.18/js/dataTables.foundation.min.js
172.67.14.139200 OK 1.1 kB URL HTTP/2 cdn.datatables.net/1.10.18/js/dataTables.foundation.min.js
IP 172.67.14.139:0
File type Unicode text, UTF-8 text, with very long lines (527)
Hash c6a9f6ba619179a055ce57cac921969f
28a6465e054004b6dc04e1d6f0db2be87beb99ff
89af50b1fa38e56ccc59a07ea356e25b71ad674396a96f18708b87222129b745
GET /1.10.18/js/dataTables.foundation.min.js HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 1089
x-frame-options: SAMEORIGIN
last-modified: Tue, 17 Jul 2018 10:18:26 GMT
etag: "1121b39-854-5712f444e063a-gzip"
cache-control: max-age=31536000
expires: Thu, 01 Feb 2024 09:53:46 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 21516
accept-ranges: bytes
server: cloudflare
cf-ray: 792bda94bf6cb509-OSL
X-Firefox-Spdy: h2
cdn.datatables.net/buttons/1.6.1/js/buttons.flash.min.js
172.67.14.139200 OK 6.8 kB URL HTTP/2 cdn.datatables.net/buttons/1.6.1/js/buttons.flash.min.js
IP 172.67.14.139:0
File type Unicode text, UTF-8 text, with very long lines (9646)
Hash 368dd29871a9dfd4c98c1bb5e06d30db
e928a2b9256cb83dda1d135a8bded67421e171a8
cc5698a6fb1274ef3a65c5100c4c8a90ae6eb14fb701f25be2712dfbc872d59e
GET /buttons/1.6.1/js/buttons.flash.min.js HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 6819
x-frame-options: SAMEORIGIN
last-modified: Mon, 06 Jun 2022 14:37:36 GMT
etag: "1121556-6677-5e0c869cf7546-gzip"
cache-control: max-age=31536000
expires: Tue, 06 Jun 2023 23:10:38 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 20709704
accept-ranges: bytes
server: cloudflare
cf-ray: 792bda94cf76b509-OSL
X-Firefox-Spdy: h2
cdn.datatables.net/buttons/1.2.4/js/buttons.print.min.js
172.67.14.139200 OK 927 B URL HTTP/2 cdn.datatables.net/buttons/1.2.4/js/buttons.print.min.js
IP 172.67.14.139:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (509)
Hash 5a918036939a7e05cf8670550a8c8e66
bec18c98e4c640cef74bf659c209d1d61fe332bb
0d986621aca8aadbd58fa4042b31bb6a1b951cdb616fe2c5136cf42e6e35bff9
GET /buttons/1.2.4/js/buttons.print.min.js HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 927
x-frame-options: SAMEORIGIN
last-modified: Fri, 11 Nov 2022 14:46:38 GMT
etag: "1120a6b-728-5ed32f4fe7990-gzip"
cache-control: max-age=31536000
expires: Fri, 26 Jan 2024 00:32:08 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 573614
accept-ranges: bytes
server: cloudflare
cf-ray: 792bda94ef9eb509-OSL
X-Firefox-Spdy: h2
cdn.datatables.net/scroller/2.0.2/css/scroller.dataTables.min.css
172.67.14.139200 OK 307 B URL HTTP/2 cdn.datatables.net/scroller/2.0.2/css/scroller.dataTables.min.css
IP 172.67.14.139:0
File type ASCII text, with very long lines (570)
Hash 7e9f1b675d903081d6afcfaa78be679f
dd73a4afedbb2c597c276378dd75c656183d856c
d39aaae4fc2937ea06e111c8c7bf12e98cb0147b98cd5d47eb37f949ff10140d
GET /scroller/2.0.2/css/scroller.dataTables.min.css HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: text/css; charset=utf-8
content-length: 307
x-frame-options: SAMEORIGIN
last-modified: Fri, 11 Nov 2022 14:47:22 GMT
etag: "1a001db-23b-5ed32f7a162e8-gzip"
cache-control: max-age=31536000
expires: Wed, 31 Jan 2024 18:59:24 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 75177
accept-ranges: bytes
server: cloudflare
cf-ray: 792bda94ffaeb509-OSL
X-Firefox-Spdy: h2
cdn.datatables.net/1.10.20/js/jquery.dataTables.min.js
172.67.14.139200 OK 29 kB URL HTTP/2 cdn.datatables.net/1.10.20/js/jquery.dataTables.min.js
IP 172.67.14.139:0
File type Unicode text, UTF-8 text, with very long lines (624)
Hash 7b38e6f42077260e579c99ba80802d1c
e1636a36e6a0c54a1458da63f3081529c1289563
5403e5fa131411677bad5d7701fb4635fd07bdc23bbd3692bffed7087cb97cb6
GET /1.10.20/js/jquery.dataTables.min.js HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 28862
x-frame-options: SAMEORIGIN
last-modified: Mon, 06 Jun 2022 14:37:27 GMT
etag: "1120c9b-14961-5e0c8693f52d6-gzip"
cache-control: max-age=31536000
expires: Thu, 08 Jun 2023 09:27:58 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 20586263
accept-ranges: bytes
server: cloudflare
cf-ray: 792bda94ffb0b509-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 15:52:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.datatables.net/1.10.20/css/jquery.dataTables.min.css
172.67.14.139200 OK 2.1 kB URL HTTP/2 cdn.datatables.net/1.10.20/css/jquery.dataTables.min.css
IP 172.67.14.139:0
File type ASCII text, with very long lines (13899)
Hash f1c730cb36b02ff6f5f79035d08514d2
3cf50dcd231f50143037d15c2d26d6a3ef2ce428
2c4bdf8fbeadffec85b8aee8f45d5942836a04ea6b1c5ede435db7f607379f24
GET /1.10.20/css/jquery.dataTables.min.css HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: text/css; charset=utf-8
content-length: 2109
x-frame-options: SAMEORIGIN
last-modified: Fri, 11 Nov 2022 14:46:27 GMT
etag: "1120a3c-364c-5ed32f45a88d0-gzip"
cache-control: max-age=31536000
expires: Fri, 19 Jan 2024 03:24:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 1168097
accept-ranges: bytes
server: cloudflare
cf-ray: 792bda951fd7b509-OSL
X-Firefox-Spdy: h2
cdn.datatables.net/scroller/2.0.1/js/dataTables.scroller.min.js
172.67.14.139200 OK 4.3 kB URL HTTP/2 cdn.datatables.net/scroller/2.0.1/js/dataTables.scroller.min.js
IP 172.67.14.139:0
File type C source, Unicode text, UTF-8 text, with very long lines (538)
Hash c2cf84e93ba4f8632fd2d96703066532
c9fe74da7983764773893f8d9990240e40a6edf6
fc105b09c5277c05abf151bafb783bf317c81dacb39c5918fd19e2be56eb04fb
GET /scroller/2.0.1/js/dataTables.scroller.min.js HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 4291
x-frame-options: SAMEORIGIN
last-modified: Fri, 11 Nov 2022 14:47:22 GMT
etag: "11210ee-31d3-5ed32f7a13020-gzip"
cache-control: max-age=31536000
expires: Sun, 07 Jan 2024 13:57:32 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 2166889
accept-ranges: bytes
server: cloudflare
cf-ray: 792bda951fddb509-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 15:52:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/charts/loader.js
216.58.211.3200 OK 20 kB URL HTTP/2 www.gstatic.com/charts/loader.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (2134)
Hash f3341efa0432876b1697ccec98c33b01
55044e79afbe25d119b7b87dc7b5d1b3ec0c607a
6672904faeb4f203e0109279aa99d88f9e8690d2d696d80309ef50a974f88c77
GET /charts/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 19937
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 15:12:11 GMT
expires: Wed, 01 Feb 2023 16:12:11 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 18:41:30 GMT
content-type: text/javascript
age: 2411
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.datatables.net/buttons/1.6.1/css/buttons.dataTables.min.css
172.67.14.139200 OK 1.8 kB URL HTTP/2 cdn.datatables.net/buttons/1.6.1/css/buttons.dataTables.min.css
IP 172.67.14.139:0
File type ASCII text, with very long lines (9652)
Hash b0537a680294b5832dff494a1f8b7abb
f103732500363c7db3d92797bbab06252b40bcf0
35a6fbbf75eb9baa46432f854cf40e733f389d74e52142ac0a9fb90e728d45d5
GET /buttons/1.6.1/css/buttons.dataTables.min.css HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: text/css; charset=utf-8
content-length: 1841
x-frame-options: SAMEORIGIN
last-modified: Wed, 22 Jun 2022 13:36:17 GMT
etag: "112153e-25b5-5e2096bf71411-gzip"
cache-control: max-age=31536000
expires: Tue, 04 Jul 2023 17:49:08 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: GET
cf-cache-status: HIT
age: 18309794
accept-ranges: bytes
server: cloudflare
cf-ray: 792bda951fdab509-OSL
X-Firefox-Spdy: h2
maps.google.com/maps/api/js?libraries=geometry,places,drawing&key=AIzaSyDVIbXWYxfPifIt_ZSdZzDfrUEhwTb2p2Y
142.250.74.142200 OK 58 kB URL HTTP/2 maps.google.com/maps/api/js?libraries=geometry,places,drawing&key=AIzaSyDVIbXWYxfPifIt_ZSdZzDfrUEhwTb2p2Y
IP 142.250.74.142:0
File type ASCII text, with very long lines (2409)
Hash daf40fceb497890ca7b3c0c3ec3425e2
239cf75b1407d8ccd232a307497c2389b3078814
c7aafbcd4f5fc6f44b080ccc768ddd61cd58ebe39beaa48bf5fb18e27f81eeba
GET /maps/api/js?libraries=geometry,places,drawing&key=AIzaSyDVIbXWYxfPifIt_ZSdZzDfrUEhwTb2p2Y HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Wed, 01 Feb 2023 15:52:22 GMT
expires: Wed, 01 Feb 2023 16:22:22 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 58446
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=32
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
206.189.83.207/inline.45ea3256f47f460b4979.bundle.js
206.189.83.207200 OK 841 B URL HTTP/1.1 206.189.83.207/inline.45ea3256f47f460b4979.bundle.js
IP 206.189.83.207:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (1472), with no line terminators
Hash 283bacc980af00385a9f7b28a87ca339
dfc033a2785a9c64b0ebf53a3d8b5ecc72a4de27
c4e73db49f04d999937fb27481e5f4e77f8e1b1a4bf92a5fda9a962fd0907254
Analyzer Verdict Alert quad9 Sinkholed
GET /inline.45ea3256f47f460b4979.bundle.js HTTP/1.1
Host: 206.189.83.207
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://206.189.83.207/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 15:52:22 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Mon, 30 Jan 2023 12:51:37 GMT
ETag: W/"5c0-18602bba40c"
X-Frame-Options: Allow-From: http://pravaxerp.com
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' https://static.addtoany.com/ ;frame-src 'self' https://drive.google.com/; img-src 'self' https://unpkg.com https://geo0.ggpht.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com https://www.google-analytics.com/ https://static-v.tawk.to http://www.googlemapsmarkers.com https://png.icons8.com/ http://chart.apis.google.com https://khms0.googleapis.com https://khms1.googleapis.com https://developers.google.com https://server2.oneqlik.in/ https://www.oneqlik.in/ http://tracknp.e-fasttracksolutions.com/ https://chart.googleapis.com https://maps.google.com https://maps.googleapis.com https://maps.gstatic.com data:;font-src 'self' https://static-v.tawk.to https://fonts.gstatic.com https://use.fontawesome.com data:;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://npmcdn.com/ https://use.fontawesome.com https://www.w3schools.com https://server2.oneqlik.in/ https://cdn.datatables.net https://cdnjs.cloudflare.com https://fonts.googleapis.com https://unpkg.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.jsdelivr.net https://www.oneqlik.in/ https://server2.oneqlik.in/ https://www.googletagmanager.com https://static.addtoany.com https://embed.tawk.to https://www.google-analytics.com https://oss.sheetjs.com/js-xlsx/ https://npmcdn.com/ https://cdn.datatables.net https://apis.google.com https://code.jquery.com https://www.gstatic.com https://cdn.rawgit.com https://cdnjs.cloudflare.com https://unpkg.com https://maps.googleapis.com https://maps.google.com https://developers.google.com https://ajax.googleapis.com https://maxcdn.bootstrapcdn.com;connect-src 'self' http://ip-api.com/ https://server2.oneqlik.in https://www.oneqlik.in http://uae.oneqlik.in https://soc.oneqlik.in https://sockets.oneqlik.in https://www.google-analytics.com https://*.tawk.to wss://*.tawk.to wss://www.oneqlik.in wss://uae.oneqlik.in ws://uae.oneqlik.in wss://soc.oneqlik.in wss://sockets.oneqlik.in;media-src 'self' https://static-v.tawk.to
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 15:41:42 GMT
age: 640
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
142.250.74.170200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (32065)
Hash 6d973c8b7e2439d958e09c0a1ab9fe50
05ae0830200c20b9a2dfd5a825adc400481a60fb
f3c122dc227e829ed96b2a754296809201bd78abbad7ba50ef5079654e1cc894
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 06:58:32 GMT
expires: Sun, 28 Jan 2024 06:58:32 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 377630
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.20.226:0
Hash 320b7d4401e5b825e8b56ec4da91407a
889d5f343c8dc6d21e01a86c7256df43437c534a
5782a892fae69b7792d5d33cb9799e37b4e8f43955816b09dbdf243c385c83e2
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 15:52:22 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "FCE204C988AD7BE65F04A64FA56F859BF8CE73C3"
Expires: Thu, 02 Feb 2023 02:00:00 GMT
Last-Modified: Wed, 01 Feb 2023 14:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3300
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792bda95bd05b4f1-OSL
npmcdn.com/sweetalert2@4.0.15/dist/sweetalert2.min.css
172.67.73.81200 OK 2.8 kB URL HTTP/2 npmcdn.com/sweetalert2@4.0.15/dist/sweetalert2.min.css
IP 172.67.73.81:0
File type ASCII text, with very long lines (10863), with no line terminators
Hash a33685a9e05b8b675c271ce4f05432a3
8a30f4d2072f5970a5b307cf33ea3fd4bba8d8e8
de618a5346794159b8fee8d39937b60e833c4e3b0bb89556752e81cea46535a1
GET /sweetalert2@4.0.15/dist/sweetalert2.min.css HTTP/1.1
Host: npmcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 23 Jul 2016 14:11:20 GMT
etag: W/"2a6f-9XBRGIGNH4Dk/2v2aEQZFvsHTz0"
via: 1.1 fly.io
fly-request-id: 01GQX92E49HXTWPBV6JTGW2RDD-fra
cf-cache-status: HIT
age: 320641
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T0kq0WgsJ1hpeWc9hIwvvOfuHka8fyZwSQOHUrJkjV3IrtNtOyZlYfjxpzwcWy58Wriw5so1oSbyQ5kj8k0%2BUPVU8CSU9PqFnKHvZ8kUIQLvWc2XKjzr94ExVFA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792bda94bb3eb512-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e0bc98d03057dabba1334b62bea0975b
b358a8123908fe4b1c94a1273cac45c4e23b212e
10ef320ba825ca0e17d039b66fd2f321f4d2c687a8734d226fa25e9b45e109d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 15:52:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
206.189.83.207/assets/js/infobox.js
206.189.83.207200 OK 6.6 kB URL HTTP/1.1 206.189.83.207/assets/js/infobox.js
IP 206.189.83.207:0
ASN #14061 DIGITALOCEAN-ASN
Hash ce4b2393f95b3af1c24db2ac6b8f2495
940bf82ce183ca07dcda4fe4045af99a34745035
ca30a010524359693ebfcd301e313958b2b4bdb2727a83a25b93566bd082e5c8
Analyzer Verdict Alert quad9 Sinkholed
GET /assets/js/infobox.js HTTP/1.1
Host: 206.189.83.207
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://206.189.83.207/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 15:52:22 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Mon, 30 Jan 2023 12:51:36 GMT
ETag: W/"681a-18602bba2ac"
X-Frame-Options: Allow-From: http://pravaxerp.com
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' https://static.addtoany.com/ ;frame-src 'self' https://drive.google.com/; img-src 'self' https://unpkg.com https://geo0.ggpht.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com https://www.google-analytics.com/ https://static-v.tawk.to http://www.googlemapsmarkers.com https://png.icons8.com/ http://chart.apis.google.com https://khms0.googleapis.com https://khms1.googleapis.com https://developers.google.com https://server2.oneqlik.in/ https://www.oneqlik.in/ http://tracknp.e-fasttracksolutions.com/ https://chart.googleapis.com https://maps.google.com https://maps.googleapis.com https://maps.gstatic.com data:;font-src 'self' https://static-v.tawk.to https://fonts.gstatic.com https://use.fontawesome.com data:;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://npmcdn.com/ https://use.fontawesome.com https://www.w3schools.com https://server2.oneqlik.in/ https://cdn.datatables.net https://cdnjs.cloudflare.com https://fonts.googleapis.com https://unpkg.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.jsdelivr.net https://www.oneqlik.in/ https://server2.oneqlik.in/ https://www.googletagmanager.com https://static.addtoany.com https://embed.tawk.to https://www.google-analytics.com https://oss.sheetjs.com/js-xlsx/ https://npmcdn.com/ https://cdn.datatables.net https://apis.google.com https://code.jquery.com https://www.gstatic.com https://cdn.rawgit.com https://cdnjs.cloudflare.com https://unpkg.com https://maps.googleapis.com https://maps.google.com https://developers.google.com https://ajax.googleapis.com https://maxcdn.bootstrapcdn.com;connect-src 'self' http://ip-api.com/ https://server2.oneqlik.in https://www.oneqlik.in http://uae.oneqlik.in https://soc.oneqlik.in https://sockets.oneqlik.in https://www.google-analytics.com https://*.tawk.to wss://*.tawk.to wss://www.oneqlik.in wss://uae.oneqlik.in ws://uae.oneqlik.in wss://soc.oneqlik.in wss://sockets.oneqlik.in;media-src 'self' https://static-v.tawk.to
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 15:52:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 15:52:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5610
Expires: Wed, 01 Feb 2023 17:25:52 GMT
Date: Wed, 01 Feb 2023 15:52:22 GMT
Connection: keep-alive
developers.google.com/maps/documentation/javascript/examples/markerclusterer/markerclusterer.js
142.250.74.142200 OK 8.9 kB URL HTTP/2 developers.google.com/maps/documentation/javascript/examples/markerclusterer/markerclusterer.js
IP 142.250.74.142:0
File type HTML document, ASCII text
Hash 31a1c004af4989db32977dc55890c4db
dd063e7955e12755305d0d091441f23b48ea3db3
b4c5dec79ef34d8eff84c2617542e08837036c64ba6ddc89fc840912f7bb63f5
GET /maps/documentation/javascript/examples/markerclusterer/markerclusterer.js HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 16 Jan 2017 03:43:59 GMT
set-cookie: _ga_devsite=GA1.3.2186111301.1675266742; Expires=Fri, 31 Jan 2025 15:52:22 GMT; Max-Age=63072000; Path=/
content-security-policy: base-uri 'self'; object-src 'none'; script-src 'strict-dynamic' 'unsafe-inline' https: http: 'nonce-a4498ts0FAOw5oOj0rPu9JGGh7oXZ/' 'unsafe-eval'; report-uri https://csp.withgoogle.com/csp/devsite/v2
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
cache-control: no-cache, must-revalidate
expires: 0
pragma: no-cache
content-encoding: gzip
x-cloud-trace-context: 52ea8f89a7d0485cc9e711331bac29d6
vary: Accept-Encoding
date: Wed, 01 Feb 2023 15:52:22 GMT
server: Google Frontend
content-length: 8937
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
206.189.83.207/polyfills.1e1af4953b35782602a0.bundle.js
206.189.83.207200 OK 22 kB URL HTTP/1.1 206.189.83.207/polyfills.1e1af4953b35782602a0.bundle.js
IP 206.189.83.207:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document, ASCII text, with very long lines (64709), with no line terminators
Hash ebb7190eef866bbbfeb08fc648a2272f
c452314db0c58b21e40a62088b4ffaa41d1d4e56
dfaa16b00e37652fceddfe4e5a2ee2e9ebd8c4995e94718d2a4deecbac01ea5e
Analyzer Verdict Alert quad9 Sinkholed
GET /polyfills.1e1af4953b35782602a0.bundle.js HTTP/1.1
Host: 206.189.83.207
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://206.189.83.207/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 15:52:22 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Mon, 30 Jan 2023 12:51:37 GMT
ETag: W/"fcc5-18602bba420"
X-Frame-Options: Allow-From: http://pravaxerp.com
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' https://static.addtoany.com/ ;frame-src 'self' https://drive.google.com/; img-src 'self' https://unpkg.com https://geo0.ggpht.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com https://www.google-analytics.com/ https://static-v.tawk.to http://www.googlemapsmarkers.com https://png.icons8.com/ http://chart.apis.google.com https://khms0.googleapis.com https://khms1.googleapis.com https://developers.google.com https://server2.oneqlik.in/ https://www.oneqlik.in/ http://tracknp.e-fasttracksolutions.com/ https://chart.googleapis.com https://maps.google.com https://maps.googleapis.com https://maps.gstatic.com data:;font-src 'self' https://static-v.tawk.to https://fonts.gstatic.com https://use.fontawesome.com data:;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://npmcdn.com/ https://use.fontawesome.com https://www.w3schools.com https://server2.oneqlik.in/ https://cdn.datatables.net https://cdnjs.cloudflare.com https://fonts.googleapis.com https://unpkg.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.jsdelivr.net https://www.oneqlik.in/ https://server2.oneqlik.in/ https://www.googletagmanager.com https://static.addtoany.com https://embed.tawk.to https://www.google-analytics.com https://oss.sheetjs.com/js-xlsx/ https://npmcdn.com/ https://cdn.datatables.net https://apis.google.com https://code.jquery.com https://www.gstatic.com https://cdn.rawgit.com https://cdnjs.cloudflare.com https://unpkg.com https://maps.googleapis.com https://maps.google.com https://developers.google.com https://ajax.googleapis.com https://maxcdn.bootstrapcdn.com;connect-src 'self' http://ip-api.com/ https://server2.oneqlik.in https://www.oneqlik.in http://uae.oneqlik.in https://soc.oneqlik.in https://sockets.oneqlik.in https://www.google-analytics.com https://*.tawk.to wss://*.tawk.to wss://www.oneqlik.in wss://uae.oneqlik.in ws://uae.oneqlik.in wss://soc.oneqlik.in wss://sockets.oneqlik.in;media-src 'self' https://static-v.tawk.to
Content-Encoding: gzip
206.189.83.207/~ng-pick-datetime/assets/style/picker.min.css
206.189.83.207200 OK 4.1 kB URL HTTP/1.1 206.189.83.207/~ng-pick-datetime/assets/style/picker.min.css
IP 206.189.83.207:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3520)
Hash ef75e970a88581179964a321af986566
5d2937e14a0f529b40d3bc58e5c20c571a30c734
09fe04da758cae17a6199124fe97fccbdfdf675c9c7ced6746264f619b2af613
Analyzer Verdict Alert quad9 Sinkholed
GET /~ng-pick-datetime/assets/style/picker.min.css HTTP/1.1
Host: 206.189.83.207
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://206.189.83.207/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 15:52:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: Express
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=0
Last-Modified: Mon, 30 Jan 2023 12:51:37 GMT
ETag: W/"4346-18602bba438"
X-Frame-Options: Allow-From: http://pravaxerp.com
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' https://static.addtoany.com/ ;frame-src 'self' https://drive.google.com/; img-src 'self' https://unpkg.com https://geo0.ggpht.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com https://www.google-analytics.com/ https://static-v.tawk.to http://www.googlemapsmarkers.com https://png.icons8.com/ http://chart.apis.google.com https://khms0.googleapis.com https://khms1.googleapis.com https://developers.google.com https://server2.oneqlik.in/ https://www.oneqlik.in/ http://tracknp.e-fasttracksolutions.com/ https://chart.googleapis.com https://maps.google.com https://maps.googleapis.com https://maps.gstatic.com data:;font-src 'self' https://static-v.tawk.to https://fonts.gstatic.com https://use.fontawesome.com data:;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://npmcdn.com/ https://use.fontawesome.com https://www.w3schools.com https://server2.oneqlik.in/ https://cdn.datatables.net https://cdnjs.cloudflare.com https://fonts.googleapis.com https://unpkg.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.jsdelivr.net https://www.oneqlik.in/ https://server2.oneqlik.in/ https://www.googletagmanager.com https://static.addtoany.com https://embed.tawk.to https://www.google-analytics.com https://oss.sheetjs.com/js-xlsx/ https://npmcdn.com/ https://cdn.datatables.net https://apis.google.com https://code.jquery.com https://www.gstatic.com https://cdn.rawgit.com https://cdnjs.cloudflare.com https://unpkg.com https://maps.googleapis.com https://maps.google.com https://developers.google.com https://ajax.googleapis.com https://maxcdn.bootstrapcdn.com;connect-src 'self' http://ip-api.com/ https://server2.oneqlik.in https://www.oneqlik.in http://uae.oneqlik.in https://soc.oneqlik.in https://sockets.oneqlik.in https://www.google-analytics.com https://*.tawk.to wss://*.tawk.to wss://www.oneqlik.in wss://uae.oneqlik.in ws://uae.oneqlik.in wss://soc.oneqlik.in wss://sockets.oneqlik.in;media-src 'self' https://static-v.tawk.to
Content-Encoding: gzip
206.189.83.207/styles.a44c444cf7a3f2d7ed78.bundle.css
206.189.83.207200 OK 41 kB URL HTTP/1.1 206.189.83.207/styles.a44c444cf7a3f2d7ed78.bundle.css
IP 206.189.83.207:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (43180)
Hash d0b45b9ddcbb90e1f809ba179be181c0
982e013a54b719243713c394c8c434d062510946
b61da0422a28eb5cb2bbe78de6c4c80ee837298a5515b3003b0ec4087af9cde9
Analyzer Verdict Alert quad9 Sinkholed
GET /styles.a44c444cf7a3f2d7ed78.bundle.css HTTP/1.1
Host: 206.189.83.207
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://206.189.83.207/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 15:52:22 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Mon, 30 Jan 2023 12:51:36 GMT
ETag: W/"3334f-18602bba2a4"
X-Frame-Options: Allow-From: http://pravaxerp.com
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' https://static.addtoany.com/ ;frame-src 'self' https://drive.google.com/; img-src 'self' https://unpkg.com https://geo0.ggpht.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com https://www.google-analytics.com/ https://static-v.tawk.to http://www.googlemapsmarkers.com https://png.icons8.com/ http://chart.apis.google.com https://khms0.googleapis.com https://khms1.googleapis.com https://developers.google.com https://server2.oneqlik.in/ https://www.oneqlik.in/ http://tracknp.e-fasttracksolutions.com/ https://chart.googleapis.com https://maps.google.com https://maps.googleapis.com https://maps.gstatic.com data:;font-src 'self' https://static-v.tawk.to https://fonts.gstatic.com https://use.fontawesome.com data:;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://npmcdn.com/ https://use.fontawesome.com https://www.w3schools.com https://server2.oneqlik.in/ https://cdn.datatables.net https://cdnjs.cloudflare.com https://fonts.googleapis.com https://unpkg.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.jsdelivr.net https://www.oneqlik.in/ https://server2.oneqlik.in/ https://www.googletagmanager.com https://static.addtoany.com https://embed.tawk.to https://www.google-analytics.com https://oss.sheetjs.com/js-xlsx/ https://npmcdn.com/ https://cdn.datatables.net https://apis.google.com https://code.jquery.com https://www.gstatic.com https://cdn.rawgit.com https://cdnjs.cloudflare.com https://unpkg.com https://maps.googleapis.com https://maps.google.com https://developers.google.com https://ajax.googleapis.com https://maxcdn.bootstrapcdn.com;connect-src 'self' http://ip-api.com/ https://server2.oneqlik.in https://www.oneqlik.in http://uae.oneqlik.in https://soc.oneqlik.in https://sockets.oneqlik.in https://www.google-analytics.com https://*.tawk.to wss://*.tawk.to wss://www.oneqlik.in wss://uae.oneqlik.in ws://uae.oneqlik.in wss://soc.oneqlik.in wss://sockets.oneqlik.in;media-src 'self' https://static-v.tawk.to
Content-Encoding: gzip
push.services.mozilla.com/
54.190.123.170101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.190.123.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HhsWHlrane7SQSvyoPZ7Hg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lIXzxh0UMNmQhlx8pTifvkLS36Y=
206.189.83.207/vendor/perfect-scrollbar/perfect-scrollbar.min.js
206.189.83.207200 OK 4.4 kB URL HTTP/1.1 206.189.83.207/vendor/perfect-scrollbar/perfect-scrollbar.min.js
IP 206.189.83.207:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3520)
Hash 654a9b93a3c233c4a388dad21d7058d7
b996af07901acb93f8df920fa8fd63c72e890ebb
8db3741003ed7e6ef188cc3e7c01603797bad9dda88abd2fcf03add1343943be
Analyzer Verdict Alert quad9 Sinkholed
GET /vendor/perfect-scrollbar/perfect-scrollbar.min.js HTTP/1.1
Host: 206.189.83.207
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://206.189.83.207/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 15:52:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: Express
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=0
Last-Modified: Mon, 30 Jan 2023 12:51:37 GMT
ETag: W/"4346-18602bba438"
X-Frame-Options: Allow-From: http://pravaxerp.com
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' https://static.addtoany.com/ ;frame-src 'self' https://drive.google.com/; img-src 'self' https://unpkg.com https://geo0.ggpht.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com https://www.google-analytics.com/ https://static-v.tawk.to http://www.googlemapsmarkers.com https://png.icons8.com/ http://chart.apis.google.com https://khms0.googleapis.com https://khms1.googleapis.com https://developers.google.com https://server2.oneqlik.in/ https://www.oneqlik.in/ http://tracknp.e-fasttracksolutions.com/ https://chart.googleapis.com https://maps.google.com https://maps.googleapis.com https://maps.gstatic.com data:;font-src 'self' https://static-v.tawk.to https://fonts.gstatic.com https://use.fontawesome.com data:;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://npmcdn.com/ https://use.fontawesome.com https://www.w3schools.com https://server2.oneqlik.in/ https://cdn.datatables.net https://cdnjs.cloudflare.com https://fonts.googleapis.com https://unpkg.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.jsdelivr.net https://www.oneqlik.in/ https://server2.oneqlik.in/ https://www.googletagmanager.com https://static.addtoany.com https://embed.tawk.to https://www.google-analytics.com https://oss.sheetjs.com/js-xlsx/ https://npmcdn.com/ https://cdn.datatables.net https://apis.google.com https://code.jquery.com https://www.gstatic.com https://cdn.rawgit.com https://cdnjs.cloudflare.com https://unpkg.com https://maps.googleapis.com https://maps.google.com https://developers.google.com https://ajax.googleapis.com https://maxcdn.bootstrapcdn.com;connect-src 'self' http://ip-api.com/ https://server2.oneqlik.in https://www.oneqlik.in http://uae.oneqlik.in https://soc.oneqlik.in https://sockets.oneqlik.in https://www.google-analytics.com https://*.tawk.to wss://*.tawk.to wss://www.oneqlik.in wss://uae.oneqlik.in ws://uae.oneqlik.in wss://soc.oneqlik.in wss://sockets.oneqlik.in;media-src 'self' https://static-v.tawk.to
Content-Encoding: gzip
206.189.83.207/vendor.8c6622533d805b29febd.bundle.js
206.189.83.207200 OK 766 kB URL HTTP/1.1 206.189.83.207/vendor.8c6622533d805b29febd.bundle.js
IP 206.189.83.207:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (65536), with no line terminators
Size 766 kB (766512 bytes)
Hash 312e92b7f3aed5fe29cb055d0ef79ea4
6959c701ef2142ac9190566c84575945e5dca1f4
d5cbbad15d5804faf4bd6ad512a690a9edf35fb70845fb981bbbe6e85ff26877
Analyzer Verdict Alert quad9 Sinkholed
GET /vendor.8c6622533d805b29febd.bundle.js HTTP/1.1
Host: 206.189.83.207
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://206.189.83.207/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 15:52:22 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Mon, 30 Jan 2023 12:51:37 GMT
ETag: W/"31a361-18602bba438"
X-Frame-Options: Allow-From: http://pravaxerp.com
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' https://static.addtoany.com/ ;frame-src 'self' https://drive.google.com/; img-src 'self' https://unpkg.com https://geo0.ggpht.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com https://www.google-analytics.com/ https://static-v.tawk.to http://www.googlemapsmarkers.com https://png.icons8.com/ http://chart.apis.google.com https://khms0.googleapis.com https://khms1.googleapis.com https://developers.google.com https://server2.oneqlik.in/ https://www.oneqlik.in/ http://tracknp.e-fasttracksolutions.com/ https://chart.googleapis.com https://maps.google.com https://maps.googleapis.com https://maps.gstatic.com data:;font-src 'self' https://static-v.tawk.to https://fonts.gstatic.com https://use.fontawesome.com data:;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://npmcdn.com/ https://use.fontawesome.com https://www.w3schools.com https://server2.oneqlik.in/ https://cdn.datatables.net https://cdnjs.cloudflare.com https://fonts.googleapis.com https://unpkg.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.jsdelivr.net https://www.oneqlik.in/ https://server2.oneqlik.in/ https://www.googletagmanager.com https://static.addtoany.com https://embed.tawk.to https://www.google-analytics.com https://oss.sheetjs.com/js-xlsx/ https://npmcdn.com/ https://cdn.datatables.net https://apis.google.com https://code.jquery.com https://www.gstatic.com https://cdn.rawgit.com https://cdnjs.cloudflare.com https://unpkg.com https://maps.googleapis.com https://maps.google.com https://developers.google.com https://ajax.googleapis.com https://maxcdn.bootstrapcdn.com;connect-src 'self' http://ip-api.com/ https://server2.oneqlik.in https://www.oneqlik.in http://uae.oneqlik.in https://soc.oneqlik.in https://sockets.oneqlik.in https://www.google-analytics.com https://*.tawk.to wss://*.tawk.to wss://www.oneqlik.in wss://uae.oneqlik.in ws://uae.oneqlik.in wss://soc.oneqlik.in wss://sockets.oneqlik.in;media-src 'self' https://static-v.tawk.to
Content-Encoding: gzip
206.189.83.207/main.f861cf1ff9f77a5cd930.bundle.js
206.189.83.207200 OK 1.1 MB URL HTTP/1.1 206.189.83.207/main.f861cf1ff9f77a5cd930.bundle.js
IP 206.189.83.207:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (65536), with no line terminators
Size 1.1 MB (1095743 bytes)
Hash 7dc944581973609b1d9d7044473868d6
a9fbf544b3bcf299cf3814187329020b1de0a49d
de4258bf57b205a95fb009f2c726d4aef5a6ce63ad07f5ef414ca80babb433cd
Analyzer Verdict Alert quad9 Sinkholed
GET /main.f861cf1ff9f77a5cd930.bundle.js HTTP/1.1
Host: 206.189.83.207
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://206.189.83.207/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 15:52:22 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Mon, 30 Jan 2023 12:51:37 GMT
ETag: W/"91de93-18602bba420"
X-Frame-Options: Allow-From: http://pravaxerp.com
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' https://static.addtoany.com/ ;frame-src 'self' https://drive.google.com/; img-src 'self' https://unpkg.com https://geo0.ggpht.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com https://www.google-analytics.com/ https://static-v.tawk.to http://www.googlemapsmarkers.com https://png.icons8.com/ http://chart.apis.google.com https://khms0.googleapis.com https://khms1.googleapis.com https://developers.google.com https://server2.oneqlik.in/ https://www.oneqlik.in/ http://tracknp.e-fasttracksolutions.com/ https://chart.googleapis.com https://maps.google.com https://maps.googleapis.com https://maps.gstatic.com data:;font-src 'self' https://static-v.tawk.to https://fonts.gstatic.com https://use.fontawesome.com data:;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://npmcdn.com/ https://use.fontawesome.com https://www.w3schools.com https://server2.oneqlik.in/ https://cdn.datatables.net https://cdnjs.cloudflare.com https://fonts.googleapis.com https://unpkg.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.jsdelivr.net https://www.oneqlik.in/ https://server2.oneqlik.in/ https://www.googletagmanager.com https://static.addtoany.com https://embed.tawk.to https://www.google-analytics.com https://oss.sheetjs.com/js-xlsx/ https://npmcdn.com/ https://cdn.datatables.net https://apis.google.com https://code.jquery.com https://www.gstatic.com https://cdn.rawgit.com https://cdnjs.cloudflare.com https://unpkg.com https://maps.googleapis.com https://maps.google.com https://developers.google.com https://ajax.googleapis.com https://maxcdn.bootstrapcdn.com;connect-src 'self' http://ip-api.com/ https://server2.oneqlik.in https://www.oneqlik.in http://uae.oneqlik.in https://soc.oneqlik.in https://sockets.oneqlik.in https://www.google-analytics.com https://*.tawk.to wss://*.tawk.to wss://www.oneqlik.in wss://uae.oneqlik.in ws://uae.oneqlik.in wss://soc.oneqlik.in wss://sockets.oneqlik.in;media-src 'self' https://static-v.tawk.to
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2276
Expires: Wed, 01 Feb 2023 16:30:20 GMT
Date: Wed, 01 Feb 2023 15:52:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2276
Expires: Wed, 01 Feb 2023 16:30:20 GMT
Date: Wed, 01 Feb 2023 15:52:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2276
Expires: Wed, 01 Feb 2023 16:30:20 GMT
Date: Wed, 01 Feb 2023 15:52:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 22:03:43 GMT
age: 64121
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/xlsx/0.15.1/xlsx.full.min.js
104.17.25.14200 OK 6.8 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/xlsx/0.15.1/xlsx.full.min.js
IP 104.17.25.14:0
Hash ec7e808a5e82552c46c3417a5b32b836
f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd
f16d982224dfeb0753eaf9d4eb87d80fd1111f682fd8fa36f3177aad5bf926a4
GET /ajax/libs/xlsx/0.15.1/xlsx.full.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 212506
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04034-e1bf9"
last-modified: Mon, 04 May 2020 16:17:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 12385
expires: Mon, 22 Jan 2024 15:52:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vyPP12B0TMLYOCONzdMor7eljhKaINJ9sZLXoU8SdPmrRVyQFh7temLcyrlpmrzzR4BjAq3ai%2FFD9v7ZpuG5jPQ2PaZVyYWi2AcaT%2FNiHpJkDI9ZhoSmcpskSbt1oGk66kddsqg%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792bda9218fab4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb36bfce9-5d67-458e-846d-ca30f9242449.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb36bfce9-5d67-458e-846d-ca30f9242449.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78fe9a77211d6f9a462f625af0c6f9bc
ac0b58423d7578e7a1b60a62220c0a57924dda82
e047466c3ae0a55509f4ace49d0476f94271b5a25e71caa3b06ec468a238b652
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb36bfce9-5d67-458e-846d-ca30f9242449.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14041
x-amzn-requestid: 2be6655d-3b0e-4e65-b44b-11682610b640
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaRGFpIAMFbMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-5554d18d5db235913afa77a2;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: MeSOuCSjsjhK6FOS67rw6oF4rS08twjOACGbXJrNPH6vwZb8lZh9lw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:18 GMT
etag: "ac0b58423d7578e7a1b60a62220c0a57924dda82"
content-type: image/jpeg
age: 64866
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/pdfmake/0.1.22/pdfmake.min.js
104.17.25.14200 OK 5.7 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/pdfmake/0.1.22/pdfmake.min.js
IP 104.17.25.14:0
Hash 2998f7f50ac0eec931c348e8a0fb0c60
f5e411cda74cb7fb4a662f4787e9543b9749c8b5
0c81413a819e379212bf757b1c9469415aec2ac8fdf47f94ff23c420a1da20e1
GET /ajax/libs/pdfmake/0.1.22/pdfmake.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 306549
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f87-faadc"
last-modified: Mon, 04 May 2020 16:15:03 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 571327
expires: Mon, 22 Jan 2024 15:52:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hkqcx7C7D2v1ta6w0JmBtLhnJeEwQc0lUHMxWPEeqUGURUqR9PPEPMyM2RIAFVFZwi7g2Nv4PwxV9x%2FLCribHHuuiYyqoj%2ByHjYPNvIl2kXnRcTWd6dhItW9K69uYltVE9TE0IY3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792bda92fa34b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:53:10 GMT
age: 28754
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
unpkg.com/multiple-select@1.3.1/dist/multiple-select.min.css
104.16.122.175200 OK 9.8 kB URL HTTP/2 unpkg.com/multiple-select@1.3.1/dist/multiple-select.min.css
IP 104.16.122.175:0
File type ASCII text, with very long lines (3450)
Hash 3a7bc79fce427d7a2d981e443b8b4859
bf600396e1f9aa1c8b69df537316971b4c62f23a
207cef8812c200d9f70f7c2f2517378f1ba2a005988c2b95c5fb06d4c1599024
GET /multiple-select@1.3.1/dist/multiple-select.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"e97-GBTv1n582faaGp15wegRsjl8CNE"
via: 1.1 fly.io
fly-request-id: 01GQAQBX8C4KFH9EECF256E9WS-ams
cf-cache-status: HIT
age: 943186
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792bda951bfeb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash fdbf000f99c93d77c5169461da113540
a04cfd05dbda17eba5660db0fcdeeef482af339a
152308cc51f2263be54334999586abda3f7c0652abe171ecbc8839b1cc578a29
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 15:52:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1429)
Hash 2354fa28c58e16af89e7da6224aeca93
6bd3430a81730ed77c5d53f5406ddb40306ecabd
dc35ae752b7be035bd3a3bd4ae205e41afce5fa8f88e1bfe0e9524610df10f3b
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Wed, 01 Feb 2023 15:52:24 GMT
expires: Wed, 01 Feb 2023 15:52:24 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "03884666a30c671f"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
206.189.83.207/faviconn.ico
206.189.83.207200 OK 2.4 kB URL HTTP/1.1 206.189.83.207/faviconn.ico
IP 206.189.83.207:0
ASN #14061 DIGITALOCEAN-ASN
File type MS Windows icon resource - 1 icon, 27x21, 32 bits/pixel\012- data
Hash 748d78035a5326303ff3afe61d9a9738
64cc0f3f5117c97749b2274b4a762478c9ee3130
f98b6f17ee0e3279db2661277b4b4763518b4d6f428d61966362b5094cef3913
Analyzer Verdict Alert quad9 Sinkholed
GET /faviconn.ico HTTP/1.1
Host: 206.189.83.207
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://206.189.83.207/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 15:52:24 GMT
Content-Type: image/x-icon
Content-Length: 2414
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Mon, 30 Jan 2023 12:51:37 GMT
ETag: W/"96e-18602bba438"
X-Frame-Options: Allow-From: http://pravaxerp.com
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' https://static.addtoany.com/ ;frame-src 'self' https://drive.google.com/; img-src 'self' https://unpkg.com https://geo0.ggpht.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com https://www.google-analytics.com/ https://static-v.tawk.to http://www.googlemapsmarkers.com https://png.icons8.com/ http://chart.apis.google.com https://khms0.googleapis.com https://khms1.googleapis.com https://developers.google.com https://server2.oneqlik.in/ https://www.oneqlik.in/ http://tracknp.e-fasttracksolutions.com/ https://chart.googleapis.com https://maps.google.com https://maps.googleapis.com https://maps.gstatic.com data:;font-src 'self' https://static-v.tawk.to https://fonts.gstatic.com https://use.fontawesome.com data:;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://npmcdn.com/ https://use.fontawesome.com https://www.w3schools.com https://server2.oneqlik.in/ https://cdn.datatables.net https://cdnjs.cloudflare.com https://fonts.googleapis.com https://unpkg.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.jsdelivr.net https://www.oneqlik.in/ https://server2.oneqlik.in/ https://www.googletagmanager.com https://static.addtoany.com https://embed.tawk.to https://www.google-analytics.com https://oss.sheetjs.com/js-xlsx/ https://npmcdn.com/ https://cdn.datatables.net https://apis.google.com https://code.jquery.com https://www.gstatic.com https://cdn.rawgit.com https://cdnjs.cloudflare.com https://unpkg.com https://maps.googleapis.com https://maps.google.com https://developers.google.com https://ajax.googleapis.com https://maxcdn.bootstrapcdn.com;connect-src 'self' http://ip-api.com/ https://server2.oneqlik.in https://www.oneqlik.in http://uae.oneqlik.in https://soc.oneqlik.in https://sockets.oneqlik.in https://www.google-analytics.com https://*.tawk.to wss://*.tawk.to wss://www.oneqlik.in wss://uae.oneqlik.in ws://uae.oneqlik.in wss://soc.oneqlik.in wss://sockets.oneqlik.in;media-src 'self' https://static-v.tawk.to
206.189.83.207/assets/image/android.png
206.189.83.207200 OK 15 kB URL HTTP/1.1 206.189.83.207/assets/image/android.png
IP 206.189.83.207:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 394 x 117, 8-bit/color RGBA, non-interlaced\012- data
Hash b09aa4135a59d6443955e283513c216f
a80ce920b8ec8caaf92564b300fdd58037a8bb2c
18d44f12018ea14ec302b3b0349c08199e5b05279bb4cc621ef80e3b9c430a28
Analyzer Verdict Alert quad9 Sinkholed
GET /assets/image/android.png HTTP/1.1
Host: 206.189.83.207
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://206.189.83.207/login
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 15:52:25 GMT
Content-Type: image/png
Content-Length: 15077
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Mon, 30 Jan 2023 12:51:37 GMT
ETag: W/"3ae5-18602bba3b8"
X-Frame-Options: Allow-From: http://pravaxerp.com
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' https://static.addtoany.com/ ;frame-src 'self' https://drive.google.com/; img-src 'self' https://unpkg.com https://geo0.ggpht.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com https://www.google-analytics.com/ https://static-v.tawk.to http://www.googlemapsmarkers.com https://png.icons8.com/ http://chart.apis.google.com https://khms0.googleapis.com https://khms1.googleapis.com https://developers.google.com https://server2.oneqlik.in/ https://www.oneqlik.in/ http://tracknp.e-fasttracksolutions.com/ https://chart.googleapis.com https://maps.google.com https://maps.googleapis.com https://maps.gstatic.com data:;font-src 'self' https://static-v.tawk.to https://fonts.gstatic.com https://use.fontawesome.com data:;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://npmcdn.com/ https://use.fontawesome.com https://www.w3schools.com https://server2.oneqlik.in/ https://cdn.datatables.net https://cdnjs.cloudflare.com https://fonts.googleapis.com https://unpkg.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.jsdelivr.net https://www.oneqlik.in/ https://server2.oneqlik.in/ https://www.googletagmanager.com https://static.addtoany.com https://embed.tawk.to https://www.google-analytics.com https://oss.sheetjs.com/js-xlsx/ https://npmcdn.com/ https://cdn.datatables.net https://apis.google.com https://code.jquery.com https://www.gstatic.com https://cdn.rawgit.com https://cdnjs.cloudflare.com https://unpkg.com https://maps.googleapis.com https://maps.google.com https://developers.google.com https://ajax.googleapis.com https://maxcdn.bootstrapcdn.com;connect-src 'self' http://ip-api.com/ https://server2.oneqlik.in https://www.oneqlik.in http://uae.oneqlik.in https://soc.oneqlik.in https://sockets.oneqlik.in https://www.google-analytics.com https://*.tawk.to wss://*.tawk.to wss://www.oneqlik.in wss://uae.oneqlik.in ws://uae.oneqlik.in wss://soc.oneqlik.in wss://sockets.oneqlik.in;media-src 'self' https://static-v.tawk.to
206.189.83.207/assets/image/iosLink.png
206.189.83.207200 OK 10 kB URL HTTP/1.1 206.189.83.207/assets/image/iosLink.png
IP 206.189.83.207:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 394 x 117, 8-bit/color RGBA, non-interlaced\012- data
Hash fc3226cd396215d1856a90c6fd2bcc96
993d92ba5b4ed0f908a37cecce6ff60ee20a01fe
ecd466015fdce0a159d571da04b250f887de573ac96ec6c4bb55e03ef3a73cec
Analyzer Verdict Alert quad9 Sinkholed
GET /assets/image/iosLink.png HTTP/1.1
Host: 206.189.83.207
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://206.189.83.207/login
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 15:52:25 GMT
Content-Type: image/png
Content-Length: 10492
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Mon, 30 Jan 2023 12:51:36 GMT
ETag: W/"28fc-18602bba2f4"
X-Frame-Options: Allow-From: http://pravaxerp.com
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' https://static.addtoany.com/ ;frame-src 'self' https://drive.google.com/; img-src 'self' https://unpkg.com https://geo0.ggpht.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com https://www.google-analytics.com/ https://static-v.tawk.to http://www.googlemapsmarkers.com https://png.icons8.com/ http://chart.apis.google.com https://khms0.googleapis.com https://khms1.googleapis.com https://developers.google.com https://server2.oneqlik.in/ https://www.oneqlik.in/ http://tracknp.e-fasttracksolutions.com/ https://chart.googleapis.com https://maps.google.com https://maps.googleapis.com https://maps.gstatic.com data:;font-src 'self' https://static-v.tawk.to https://fonts.gstatic.com https://use.fontawesome.com data:;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://npmcdn.com/ https://use.fontawesome.com https://www.w3schools.com https://server2.oneqlik.in/ https://cdn.datatables.net https://cdnjs.cloudflare.com https://fonts.googleapis.com https://unpkg.com;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.jsdelivr.net https://www.oneqlik.in/ https://server2.oneqlik.in/ https://www.googletagmanager.com https://static.addtoany.com https://embed.tawk.to https://www.google-analytics.com https://oss.sheetjs.com/js-xlsx/ https://npmcdn.com/ https://cdn.datatables.net https://apis.google.com https://code.jquery.com https://www.gstatic.com https://cdn.rawgit.com https://cdnjs.cloudflare.com https://unpkg.com https://maps.googleapis.com https://maps.google.com https://developers.google.com https://ajax.googleapis.com https://maxcdn.bootstrapcdn.com;connect-src 'self' http://ip-api.com/ https://server2.oneqlik.in https://www.oneqlik.in http://uae.oneqlik.in https://soc.oneqlik.in https://sockets.oneqlik.in https://www.google-analytics.com https://*.tawk.to wss://*.tawk.to wss://www.oneqlik.in wss://uae.oneqlik.in ws://uae.oneqlik.in wss://soc.oneqlik.in wss://sockets.oneqlik.in;media-src 'self' https://static-v.tawk.to
npmcdn.com/sweetalert2@4.0.15/dist/sweetalert2.min.js
172.67.73.81200 OK 0 B URL HTTP/2 npmcdn.com/sweetalert2@4.0.15/dist/sweetalert2.min.js
IP 172.67.73.81:0
GET /sweetalert2@4.0.15/dist/sweetalert2.min.js HTTP/1.1
Host: npmcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 23 Jul 2016 14:11:20 GMT
etag: W/"4308-CPEp/X55xjOL9kQ/3PWkKz4vgJw"
via: 1.1 fly.io
fly-request-id: 01GR11Z9PD6Y19H10EY5DMFSK4-fra
cf-cache-status: HIT
age: 193867
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZfOn4Wh35Dl563C2O8KYfYCxOxy%2BetOmKhODtLCWzVYwJCp0IOHv90hyVMxfO9skIq2qFy4XcdfBFQX0DkRqo1SR%2B6eXDk0DotU9x%2By0cxNHqbklWcpjXyrkJmA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792bda94cb4cb512-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/pdfmake/0.1.53/pdfmake.min.js
104.17.25.14200 OK 0 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/pdfmake/0.1.53/pdfmake.min.js
IP 104.17.25.14:0
GET /ajax/libs/pdfmake/0.1.53/pdfmake.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 344327
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f87-10af19"
last-modified: Mon, 04 May 2020 16:15:03 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1069044
expires: Mon, 22 Jan 2024 15:52:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=245dnAXW1Wxca4hDx5%2B9lP7jE8QcswEKENaGRViYX1Q26ulgpK7Fg3lkJ29SYJ2sMClW6h%2FDENfm6YJX82RvqsgHmd2MxgciGIomDDU5v5hJ7eh71BAHPK9u%2BI7GtJBu5DNDGW7j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792bda925954b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
oss.sheetjs.com/js-xlsx/shim.js
104.21.80.4200 OK 0 B URL HTTP/2 oss.sheetjs.com/js-xlsx/shim.js
IP 104.21.80.4:0
GET /js-xlsx/shim.js HTTP/1.1
Host: oss.sheetjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6%2BczdWizHtWE24LbkpxggtawJAUssdgNENSyZ6YFBrHVrhuOf7qw4P2KfO5llSnJ8R7kBePOp5P1or2CVhyk8IZAHfZVkWctWMHBBTj1JNIU38PXuSTfRNA6hccE0KjIATY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 792bda93ea0ab512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
unpkg.com/multiple-select@1.3.1/dist/multiple-select.min.js
104.16.122.175200 OK 0 B URL HTTP/2 unpkg.com/multiple-select@1.3.1/dist/multiple-select.min.js
IP 104.16.122.175:0
GET /multiple-select@1.3.1/dist/multiple-select.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 15:52:22 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"66f0-fGb/OZ9aiHLc/QBeJJV8uJYmnJU"
via: 1.1 fly.io
fly-request-id: 01GQAQBX86BVS6AWP36XSJ8HY2-ams
cf-cache-status: HIT
age: 943186
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792bda951bfcb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Play:700,400
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Play:700,400
IP 142.250.74.106:0
GET /css?family=Play:700,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://206.189.83.207/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 01 Feb 2023 15:52:22 GMT
date: Wed, 01 Feb 2023 15:52:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2