Report - proposal-pdffill.vercel.app/?email=hgpark@slurpmail.net

Report Overview

Visitedpublic

2025-06-22 09:31:14

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
marvel-b1-cdn.bc0a.com	24317	2018-05-01	2020-04-05	2025-06-17	534 B	115 kB	54.240.174.60
proposal-pdffill.vercel.app	unknown	2020-01-28	2025-06-20	2025-06-20	2.5 kB	265 kB	64.29.17.193
s.smallpdf.com	unknown	2013-02-13	2022-07-31	2025-06-20	934 B	8.7 kB	0.0.0.0
geolocation-db.com	237326	2019-10-23	2019-10-31	2025-06-21	495 B	358 B	159.89.102.253

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-06-22 09:30:42	medium	Client IP	159.89.102.253	ETPRO INFO External IP Address Lookup Domain in TLS SNI (geolocation-db .com)
2025-06-22 09:30:42	low	Client IP	159.89.102.253	ET INFO External IP Lookup Domain (geolocation-db .com) in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2025-06-22	medium	proposal-pdffill.vercel.app/static/js/main.9cf42851.js	Detects file containing Telegram Bot API
2025-06-22	medium	javascript.script.md5:bbe988702042d6833cb291a79d5cedd9	Detects file containing Telegram Bot API

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Telegram Bot detected (1)

URL

proposal-pdffill.vercel.app/static/js/main.9cf42851.js

IP / ASN

64.29.17.193

#16509 AMAZON-02

Token

7890102767:AAHrLvrxYwLpWV4xIjuGyw2LFluj3DWs3ZI

Bot Overview

User ID7890102767

Usernamemybrotherpdf_bot

First NamePDF

Last NameN/A

Chat Info

Chat ID7569215383

Chat Typeprivate

TitleN/A

User Count2

Admins0

Pending Msgs0

JavaScript (1)

URL

From

Size

First Seen

Last Seen

proposal-pdffill.vercel.app/static/js/main.9cf42851.js

ScriptElement

186 kB

2025-06-20

2025-07-02

URL

proposal-pdffill.vercel.app/static/js/main.9cf42851.js

IP / ASN

64.29.17.193

#16509 AMAZON-02

Introduced by ScriptElement

Embedded false

Resource Info

First Seen 2025-06-20

Last Seen 2025-07-02

Times Seen 316

Size 186 kB (185630 bytes)

MD5 bbe988702042d6833cb291a79d5cedd9

SHA1 beca78622a5bde5b3f33518710440b88a3eff000

SHA256 6602c37efb250c0ebfee3673d268b575350075d5247dfec97c4cd52fcecca86c

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Detects file containing Telegram Bot API

Format Code

HTTP Transactions (9)

URL IP Response Size

GET marvel-b1-cdn.bc0a.com/f00000000215549/www.fhsu.edu/nursing/BSN-DNP-Info/bsn-to-dnp-summer-2020-and-after-pos.jpg

54.240.174.60

200 OK

114 kB

URL

marvel-b1-cdn.bc0a.com/f00000000215549/www.fhsu.edu/nursing/BSN-DNP-Info/bsn-to-dnp-summer-2020-and-after-pos.jpg

IP / ASN

54.240.174.60

#16509 AMAZON-02

Requested byhttps://proposal-pdffill.vercel.app/?email=hgpark@slurpmail.net

Resource Info

File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 660x797, components 3

First Seen2024-06-12

Last Seen2025-07-31

Times Seen414

Size114 kB (114245 bytes)

MD55d03ff80b7001bb2822a11e86bb5cbd9

SHA12dd100e72be49f1e4317ecd5e724b3de53c7e928

SHA2564d4dbe4e2bd7a2ba5243827f34d3c0a0b60eefd3a0d16588a654b1ceadde8a63

Certificate Info

IssuerAmazon

Subjectmarvel-cdn.bc0a.com

FingerprintC0:6F:9D:0B:2C:40:B6:32:61:06:85:72:B9:C4:D7:A0:B2:45:2A:82

ValidityTue, 10 Dec 2024 00:00:00 GMT - Wed, 07 Jan 2026 23:59:59 GMT

HTTP Headers

GET /f00000000215549/www.fhsu.edu/nursing/BSN-DNP-Info/bsn-to-dnp-summer-2020-and-after-pos.jpg HTTP/1.1
Host: marvel-b1-cdn.bc0a.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://proposal-pdffill.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 114245
x-amz-id-2: D4QJQUjGZMJ9N0fRkx99czIxvWSf7Mn+pfMnXIXvB0+Pxh91n4YTAZkIANczchf18EnNHqsB1dT7C0ELrJdcIMm0XPIZH5Aa
x-amz-request-id: 65GD7DMDTWVV4R0H
last-modified: Sat, 23 Mar 2024 14:56:46 GMT
x-amz-expiration: expiry-date="Mon, 15 Sep 2025 00:00:00 GMT", rule-id="delete-old-images"
x-amz-server-side-encryption: AES256
x-amz-version-id: lZGsujDG03zzdnfOtXW0Xw7u8ojs0sLv
accept-ranges: bytes
server: AmazonS3
date: Sun, 22 Jun 2025 09:12:11 GMT
cache-control: max-age=31536000
etag: "5d03ff80b7001bb2822a11e86bb5cbd9"
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2eSmUNwpyfw0nArcLEouTqa5IJc_GrVJgOK8CuV3Hm5bpjJi9JTQnw==
age: 1112
X-Firefox-Spdy: h2

GET proposal-pdffill.vercel.app/favicon.ico

64.29.17.193

200 OK

68 kB

URL

proposal-pdffill.vercel.app/favicon.ico

IP / ASN

64.29.17.193

#16509 AMAZON-02

Requested byhttps://proposal-pdffill.vercel.app/?email=hgpark@slurpmail.net

Resource Info

File typeMS Windows icon resource - 1 icon, -128x-128, 32 bits/pixel

First Seen2024-06-12

Last Seen2025-07-31

Times Seen424

Size68 kB (67646 bytes)

MD5f2defaa9e5394c101bb856b7c52e683d

SHA18905b72ba904cb7e4ab8eadd05493ab6ded86422

SHA2565791affeaafa20097252abafe0c6ae4a401099a690d36150baa0bfeae042967b

Certificate Info

IssuerLet's Encrypt

Subject*.vercel.app

FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1

ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: proposal-pdffill.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://proposal-pdffill.vercel.app/?email=hgpark@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 719161
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="favicon.ico"
content-encoding: br
content-type: image/vnd.microsoft.icon
date: Sun, 22 Jun 2025 09:30:43 GMT
etag: "f2defaa9e5394c101bb856b7c52e683d"
last-modified: Sat, 14 Jun 2025 01:44:41 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::bzn44-1750584643047-c40fc4ec6d0c
content-length: 3284
X-Firefox-Spdy: h2

GET s.smallpdf.com/static/8bfe6e572c81ad5bdc63.svg

0.0.0.0

0 B

URL

s.smallpdf.com/static/8bfe6e572c81ad5bdc63.svg

IP / ASN

0.0.0.0

Requested byhttps://proposal-pdffill.vercel.app/?email=hgpark@slurpmail.net

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606718

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/8bfe6e572c81ad5bdc63.svg HTTP/1.1
Host: s.smallpdf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://proposal-pdffill.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET s.smallpdf.com/static/8bfe6e572c81ad5bdc63.svg

54.240.174.98

200 OK

8.1 kB

URL

s.smallpdf.com/static/8bfe6e572c81ad5bdc63.svg

IP / ASN

54.240.174.98

#16509 AMAZON-02

Requested byhttps://proposal-pdffill.vercel.app/?email=hgpark@slurpmail.net

Resource Info

File typeSVG Scalable Vector Graphics image

First Seen2023-06-13

Last Seen2025-07-31

Times Seen403

Size8.1 kB (8064 bytes)

MD5af5f7740f40643c8ddfe847ac794b9e6

SHA1efabe4f3dfcd67496c6c786b5de327e36611bd6b

SHA2564bddedbb4320342782d819d10808ce5c2202224016052f363a8d0e87124bae8a

Certificate Info

IssuerAmazon

Subjectsmallpdf.com

Fingerprint83:EF:C9:42:0F:73:23:A4:BF:81:15:1D:27:F8:84:6E:D0:64:17:D0

ValidityTue, 04 Jun 2024 00:00:00 GMT - Wed, 02 Jul 2025 23:59:59 GMT

HTTP Headers

GET /static/8bfe6e572c81ad5bdc63.svg HTTP/1.1
Host: s.smallpdf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://proposal-pdffill.vercel.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Tue, 18 Apr 2023 13:24:00 GMT
content-encoding: br
x-amz-server-side-encryption: AES256
server: AmazonS3
date: Sun, 22 Jun 2025 09:12:10 GMT
etag: W/"af5f7740f40643c8ddfe847ac794b9e6"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -yaSoESnOB_uLpnkVUh2DBG_eXXer1olg3-zYkF5JWU7dXUpZpLh3A==
age: 25676
strict-transport-security: max-age=15552000
cache-control: public, max-age=31536000, must-revalidate
X-Firefox-Spdy: h2

GET geolocation-db.com/json/

159.89.102.253

200 OK

157 B

URL

geolocation-db.com/json/

IP / ASN

159.89.102.253

#14061 DIGITALOCEAN-ASN

Requested byhttps://proposal-pdffill.vercel.app/?email=hgpark@slurpmail.net

Resource Info

File typeJSON text data

First Seen2023-05-05

Last Seen2025-08-01

Times Seen807

Size157 B (157 bytes)

MD5af629c65c781f91a82df769f639e46d3

SHA14aeba59f761fc8b9e0f0d0419c2923d9c00dc2cf

SHA25677c6232f05bbf7942dcfba46016279584bc3cf11ab13bbf6f2737615f0462dd0

Certificate Info

IssuerLet's Encrypt

Subjectgeolocation-db.com

Fingerprint0E:39:B1:C3:29:46:A8:5B:FC:F6:1E:0E:F4:D4:1E:4E:6D:4C:E4:84

ValidityTue, 06 May 2025 08:41:20 GMT - Mon, 04 Aug 2025 08:41:19 GMT

HTTP Headers

GET /json/ HTTP/1.1
Host: geolocation-db.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://proposal-pdffill.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://proposal-pdffill.vercel.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
date: Sun, 22 Jun 2025 09:30:42 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

GET proposal-pdffill.vercel.app/logo192.png

64.29.17.193

200 OK

5.3 kB

URL

proposal-pdffill.vercel.app/logo192.png

IP / ASN

64.29.17.193

#16509 AMAZON-02

Requested byhttps://proposal-pdffill.vercel.app/?email=hgpark@slurpmail.net

Resource Info

File typePNG image data, 192 x 192, 8-bit colormap, non-interlaced

First Seen2023-04-21

Last Seen2025-08-02

Times Seen3568

Size5.3 kB (5347 bytes)

MD533dbdd0177549353eeeb785d02c294af

SHA17f4f2d68782a7fafceda84554ecab9b489877500

SHA256c386396ec70db3608075b5fbfaac4ab1ccaa86ba05a68ab393ec551eb66c3e00

Certificate Info

IssuerLet's Encrypt

Subject*.vercel.app

FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1

ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

HTTP Headers

GET /logo192.png HTTP/1.1
Host: proposal-pdffill.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://proposal-pdffill.vercel.app/?email=hgpark@slurpmail.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 866136
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="logo192.png"
content-type: image/png
date: Sun, 22 Jun 2025 09:30:43 GMT
etag: "33dbdd0177549353eeeb785d02c294af"
last-modified: Thu, 12 Jun 2025 08:55:06 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::h6rsq-1750584643046-b2e15fe02e28
content-length: 5347
X-Firefox-Spdy: h2

GET proposal-pdffill.vercel.app/?email=hgpark@slurpmail.net

64.29.17.193

200 OK

734 B

URL

proposal-pdffill.vercel.app/?email=hgpark@slurpmail.net

IP / ASN

64.29.17.193

#16509 AMAZON-02

Requested byN/A

Resource Info

File typeHTML document, ASCII text, with CRLF line terminators

First Seen2025-01-09

Last Seen2025-07-31

Times Seen397

Size734 B (734 bytes)

MD579ebf2c65bffe4fbfe6143b4417cf016

SHA1f9ae33bf9648ca5ae8784973b1c89e6c052fe0f2

SHA25681dc1b6d94cc37bff8e8e99c14c318ccf5cf71e03fa634fbed1009dbfc4e31d5

Certificate Info

IssuerLet's Encrypt

Subject*.vercel.app

FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1

ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

HTTP Headers

GET /?email=hgpark@slurpmail.net HTTP/1.1
Host: proposal-pdffill.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 719220
cache-control: public, max-age=0, must-revalidate
content-disposition: inline
content-type: text/html; charset=utf-8
date: Sun, 22 Jun 2025 09:30:42 GMT
etag: "79ebf2c65bffe4fbfe6143b4417cf016"
last-modified: Sat, 14 Jun 2025 01:43:41 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::k2nvl-1750584642381-a8b20f53a3db
content-length: 734
X-Firefox-Spdy: h2

GET proposal-pdffill.vercel.app/static/css/main.dd795d25.css

64.29.17.193

200 OK

3.0 kB

URL

proposal-pdffill.vercel.app/static/css/main.dd795d25.css

IP / ASN

64.29.17.193

#16509 AMAZON-02

Requested byhttps://proposal-pdffill.vercel.app/?email=hgpark@slurpmail.net

Resource Info

File typeASCII text, with very long lines (2934)

First Seen2024-08-19

Last Seen2025-07-31

Times Seen402

Size3.0 kB (2979 bytes)

MD5bb556cf329a2fa615e14e92ddd458fe9

SHA10a3c9d640ba990f690a820d13235cf6e693d1cf8

SHA256e0371c1f0c03cf25bb9a96f647c509fd4721faa50e8fdff929d5dbf975ecf8a9

Certificate Info

IssuerLet's Encrypt

Subject*.vercel.app

FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1

ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

HTTP Headers

GET /static/css/main.dd795d25.css HTTP/1.1
Host: proposal-pdffill.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://proposal-pdffill.vercel.app/?email=hgpark@slurpmail.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 866136
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="main.dd795d25.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Sun, 22 Jun 2025 09:30:42 GMT
etag: "bb556cf329a2fa615e14e92ddd458fe9"
last-modified: Thu, 12 Jun 2025 08:55:05 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::n6m7z-1750584642600-23cf4b7b4bae
content-length: 1215
X-Firefox-Spdy: h2

GET proposal-pdffill.vercel.app/static/js/main.9cf42851.js

64.29.17.193

200 OK

186 kB

URL

proposal-pdffill.vercel.app/static/js/main.9cf42851.js

IP / ASN

64.29.17.193

#16509 AMAZON-02

Requested byhttps://proposal-pdffill.vercel.app/?email=hgpark@slurpmail.net

Resource Info

File typeJavaScript source, ASCII text, with very long lines (65465)

First Seen2025-06-20

Last Seen2025-07-02

Times Seen316

Size186 kB (185630 bytes)

MD5bbe988702042d6833cb291a79d5cedd9

SHA1beca78622a5bde5b3f33518710440b88a3eff000

SHA2566602c37efb250c0ebfee3673d268b575350075d5247dfec97c4cd52fcecca86c

Certificate Info

IssuerLet's Encrypt

Subject*.vercel.app

FingerprintE3:1E:98:A9:DD:8B:60:D7:46:D6:CC:B1:15:28:72:F4:76:3D:CE:C1

ValidityMon, 21 Apr 2025 19:55:43 GMT - Sun, 20 Jul 2025 19:55:42 GMT

Detections

Analyzer	Verdict	Alert
YARAhub by abuse.ch	malware	Detects file containing Telegram Bot API
urlquery	suspicious	Suspicious - Suspicious Javascript code

HTTP Headers

GET /static/js/main.9cf42851.js HTTP/1.1
Host: proposal-pdffill.vercel.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://proposal-pdffill.vercel.app/?email=hgpark@slurpmail.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 719174
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="main.9cf42851.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Sun, 22 Jun 2025 09:30:42 GMT
etag: "bbe988702042d6833cb291a79d5cedd9"
last-modified: Sat, 14 Jun 2025 01:44:27 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-cache: HIT
x-vercel-id: arn1::bzn44-1750584642599-84849ca593db
content-length: 63069
X-Firefox-Spdy: h2