Report - setupsophisticatedhighlyinfo-file.info/-I9sj3EsvyLJ5jNaGkrEvO-6T2uF8AYJ-B5Kg2HjqRc

Report Overview

Submitted URL
setupsophisticatedhighlyinfo-file.info/-I9sj3EsvyLJ5jNaGkrEvO-6T2uF8AYJ-B5Kg2HjqRc
IP
3.226.146.143
ASN
#14618 AMAZON-AES
Submitted
2022-12-03 07:02:13
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
static.totalav.com	641868	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	217 kB	35.186.251.103
resources.totalav.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	26 kB	1.7 MB	82.102.27.18
url.totalav.com	439190	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	28 kB	35.224.74.90
ajax.totalav.com	941761	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	621 B	35.190.24.19
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	963 B	172.64.155.188
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.186.169.128
www.totalav.com	425785	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	19 kB	35.190.24.19
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.1 kB	6.3 kB	142.250.74.131
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	95.101.11.115
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
widget.trustpilot.com	6018	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.2 kB	45 kB	143.204.55.80
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	39 kB	34.120.237.76
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	410 B	746 B	142.250.74.106
track.totalav.com	616534	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	505 B	1.0 kB	35.224.74.90
setupsophisticatedhighlyinfo-file.info	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	478 B	3.226.146.143
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.9 kB	70 kB	216.58.207.227
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-02	medium	setupsophisticatedhighlyinfo-file.info	Sinkholed

JavaScript (13)

	URL	Size	First Seen	Last Seen
	resources.totalav.com/build/prod/22.291.1/js/global/global.min.js	138 kB	2023-03-08	2023-03-11
Pretty URL resources.totalav.com/build/prod/22.291.1/js/global/global.min.js IP 82.102.27.18 ASN #9009 M247 Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:09:32 Last Seen2023-03-11 22:51:30 Times Seen1 Hash a27c0ecf8f698d0026eb8a03517db3d2 b32af514b720193fe8533871b4fe61f7f326c095 6266bd939b930ec337832d96b27e3b660e1c8dfef3f498f99ec138f6656a49ce Loading...

	www.totalav.com/free-download?exit	271 B	2023-03-08	2023-12-11
Pretty URL www.totalav.com/free-download?exit IP 35.190.24.19 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:26 Last Seen2023-12-11 13:00:45 Times Seen85 Hash 2c0f681642abd121c43e023561d044ac a385248dbb3a1074044110e6438e6e4ab3fa4306 2e06083f749c43c9ba52f9fea089591a376757a7139fb4687c6b318208bc58e2 Loading...

	www.totalav.com/free-download?exit	129 B	2023-03-08	2023-12-11
Pretty URL www.totalav.com/free-download?exit IP 35.190.24.19 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:26 Last Seen2023-12-11 13:00:45 Times Seen85 Hash ef31f781b99944799ddaef175a4d30b4 07c4f783a529d9ec7ae8b47f549f455241195883 477e352ced615640359998be6f4b153182ec307d6c464431add8e040910d9958 Loading...

	url.totalav.com/fp/init/fortifi.js	614 B	2023-03-08	2023-03-08
Pretty URL url.totalav.com/fp/init/fortifi.js IP 35.224.74.90 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:09:32 Last Seen2023-03-08 15:09:32 Times Seen1 Hash 5287d6bc9fdf0de9568add82dae81ee8 484837d99b622240e2bd2342041020909e2ae023 61321418532fe20f18f8f94cb015784dd57a245a1ed44a4c5af1306af95a6590 Loading...

	widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js	19 kB	2023-03-07	2023-11-04
Pretty URL widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js IP 143.204.55.80 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2023-11-04 14:10:25 Times Seen853 Hash 09f25c4b4cb4f5d5bd2bf7adf3235bc0 dbe22054d87d6ef7127d98ceab7650eaa0f6ed68 f3496bc7c277d917d35553c46ed1597a86065494cac582e42a3a1d55aedef7fb Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 06:39:19 Times Seen36953488 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	resources.totalav.com/build/prod/22.291.1/js/download-overlay/download-overlay.min.js	5.2 kB	2023-03-08	2023-12-11
Pretty URL resources.totalav.com/build/prod/22.291.1/js/download-overlay/download-overlay.min.js IP 82.102.27.18 ASN #9009 M247 Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:26 Last Seen2023-12-11 13:00:46 Times Seen169 Hash 0e1e1e8b2cde9276baf524d341fbd0a7 471ea6ac5f71db93e9e90e60940d6fda0021e31d badfeca0301df0ded6b8f4612d2021625f35a7818b4606ebd419741e07c79a88 Loading...

	www.totalav.com/free-download?exit	156 B	2023-03-08	2023-12-11
Pretty URL www.totalav.com/free-download?exit IP 35.190.24.19 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:26 Last Seen2023-12-11 13:00:45 Times Seen85 Hash 6b9dd3d76d044129b60185caee92c517 496fbd409616056515f1da298b2abc269292fa0f 5c456c89bc16617eeef622ff4f14c4ecbc004a4e4434bcecd8bc9ef0ff1f52ef Loading...

	widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/main.js	110 kB	2023-03-08	2023-03-26
Pretty URL widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/main.js IP 143.204.55.80 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:50:02 Last Seen2023-03-26 14:15:02 Times Seen20 Hash 18e8a3e6ccc8ae1a5382d5e18dc5672a f5278821235a542f2b082148bdaed5ba0f10812f 64fee55dbfb407c1fd13837da9212e0b9851677272b288012193432e851ddd87 Loading...

	url.totalav.com/fp/common/9f1ecd79.js	56 kB	2023-03-08	2023-05-24
Pretty URL url.totalav.com/fp/common/9f1ecd79.js IP 35.224.74.90 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:26 Last Seen2023-05-24 19:31:27 Times Seen17 Hash a9862a989af816992a8f31065dd40433 19406fbe6da5e4a0e677d9c2a20df7a6a9b8138d a30ce1b3b45c998834153ee51d6381e1fe104e59ffdf813771e35eebfeddb1e7 Loading...

	www.totalav.com/cross-domain/respond.src.js	8.5 kB	2023-03-07	2024-03-29
Pretty URL www.totalav.com/cross-domain/respond.src.js IP 35.190.24.19 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:41 Last Seen2024-03-29 11:40:17 Times Seen126 Hash 9034d02a3ff78ccdd81f0790a83940dd bcea82d7fac61d713bdb73a332f6435c6c88a58b 8219937fb5d40ea3720fb56701c5f55b462a0f77b19074190b2d15242c5caeaf Loading...

	www.totalav.com/free-download?exit	998 B	2023-03-08	2023-03-13
Pretty URL www.totalav.com/free-download?exit IP 35.190.24.19 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:26 Last Seen2023-03-13 12:03:00 Times Seen1 Hash 264726e88b4b5d483a9fa296b7a0cddb 015120a1938499f47033eb0b16abca75a71b61a3 df7077b9a60c95cbd0ebcfb4585005a3794c65e2047c4ebb624478b2c00bebc3 Loading...

	www.totalav.com/free-download?exit	2.6 kB	2023-03-08	2023-03-13
Pretty URL www.totalav.com/free-download?exit IP 35.190.24.19 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:26 Last Seen2023-03-13 02:47:08 Times Seen1 Hash 6759f9bff777189f8847ad3ef99f93b9 4828cfcd20ded03f040457cea41bc96e09a8d141 a92d964bd283e9a684fd693bd8b0ba2269a1cf8487f813b85bd103455a840cf1 Loading...

HTTP Transactions (88)

URL IP Response Size

setupsophisticatedhighlyinfo-file.info/-I9sj3EsvyLJ5jNaGkrEvO-6T2uF8AYJ-B5Kg2HjqRc

3.226.146.143

302 Moved Temporarily

142 B

URL HTTP/1.1
setupsophisticatedhighlyinfo-file.info/-I9sj3EsvyLJ5jNaGkrEvO-6T2uF8AYJ-B5Kg2HjqRc
IP
3.226.146.143:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /-I9sj3EsvyLJ5jNaGkrEvO-6T2uF8AYJ-B5Kg2HjqRc HTTP/1.1
Host: setupsophisticatedhighlyinfo-file.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Moved Temporarily
Date: Sat, 03 Dec 2022 07:02:01 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Set-Cookie: session=6GQBQmr26WcfsxUfMpLUmeI-qZ689f90
Access-Control-Allow-Origin: *
Location: https://track.totalav.com/5f15d31c0f80e/click/58094/6GQBQmr26WcfsxUfMpLUmeI-qZ689f90
Server: nginx

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3105
Expires: Sat, 03 Dec 2022 07:53:46 GMT
Date: Sat, 03 Dec 2022 07:02:01 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11509
Expires: Sat, 03 Dec 2022 10:13:50 GMT
Date: Sat, 03 Dec 2022 07:02:01 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4805
Cache-Control: max-age=103759
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:02:01 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 11:51:20 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: f1YHIsGnNf+l6GLolQer++KbXGI73VnX7SYen0Xw82R/ga4CB/jsj3BR1zFP/ikUPO8Dnqba/nA=
x-amz-request-id: H98K80E3AC1VZXTD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 06:46:28 GMT
age: 933
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 06:19:59 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2522
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 07:02:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 06:11:17 GMT
cache-control: public,max-age=3600
age: 3045
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4793
Cache-Control: max-age=98685
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:02:02 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 10:26:47 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aa8fbc033aa59645648f8f3ba276f5ba
4cc81d1cbdfa628280ee12653f355701a3cbc07a
a781421a8b082cd58566b080c0927572d98a838b9bcbc2cf4e171040e08dceeb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A781421A8B082CD58566B080C0927572D98A838B9BCBC2CF4E171040E08DCEEB"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21554
Expires: Sat, 03 Dec 2022 13:01:16 GMT
Date: Sat, 03 Dec 2022 07:02:02 GMT
Connection: keep-alive

push.services.mozilla.com/

54.186.169.128

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.186.169.128:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zEhAGiC82Do/7s5QMqrxPw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: HKsqEcEO0sE/gZOO22twT8Y9OHI=

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
94e225f03a23f6fd6ee0c9976cfe6f00
1699d92b421a94cc6f9f02ffa51dee19eb2b6357
8364ce7d4257c5d86ceeafcb5718571eb878bbf8fa06d0dd88f01f612520e34f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 07:02:03 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 08:04:10 GMT
Expires: Fri, 09 Dec 2022 08:04:09 GMT
Etag: "1699d92b421a94cc6f9f02ffa51dee19eb2b6357"
Cache-Control: max-age=521525,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773a6f3cea201bfa-OSL

www.totalav.com/free-download?exit

35.190.24.19

200 OK

18 kB

URL HTTP/2
www.totalav.com/free-download?exit
IP
35.190.24.19:0
ASN
#15169 GOOGLE

File type
data
Size
18 kB (17938 bytes)
Hash
eb43add2a35e9dec7286c99e53d3ad95
0154e5401c388032086589ea960d89a322433089
097511a4de37e2137559e0ac336df669c03d098694a4632db1d201f573bf25e2

HTTP Headers

GET /free-download?exit HTTP/1.1
Host: www.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
cache-control: no-store, no-cache, must-revalidate
content-encoding: gzip
content-security-policy: frame-ancestors 'self'
content-type: text/html; charset=UTF-8
date: Sat, 03 Dec 2022 07:02:03 GMT
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
server: nginx
set-cookie: PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; path=/; domain=totalav.com
toast-message-seen=1; expires=Sun, 04-Dec-2022 07:02:03 GMT; Max-Age=86400; path=/; domain=.totalav.com
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:02:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:02:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:02:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:02:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/lato/v16/S6u9w4BMUTPHh7USSwiPGQ3q5d0.woff2

216.58.207.227

200 OK

14 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v16/S6u9w4BMUTPHh7USSwiPGQ3q5d0.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 13912, version 1.0\012- data
Size
14 kB (13912 bytes)
Hash
789ad04dc3f39dc3314b12ad25a1c65e
cccbdfef8dde1a50f347fde7ecf5a3840add1b56
706494a230ae9c22ebbda2b9fce9af786bac0ea5f315c80e3fbe9f44e7883c38

HTTP Headers

GET /s/lato/v16/S6u9w4BMUTPHh7USSwiPGQ3q5d0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13912
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 10:13:26 GMT
expires: Wed, 29 Nov 2023 10:13:26 GMT
cache-control: public, max-age=31536000
age: 334117
last-modified: Tue, 23 Jul 2019 03:45:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v16/S6uyw4BMUTPHjx4wXiWtFCc.woff2

216.58.207.227

200 OK

14 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v16/S6uyw4BMUTPHjx4wXiWtFCc.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 14044, version 1.0\012- data
Size
14 kB (14044 bytes)
Hash
129179c4eeb1d784d3d3ad95e0b35905
f75444b5ef6205ee4301d632adf17e28985b0840
036d841b132c14046e26d8f2da1bc634c6ad34885ed1295660694a91c98933a6

HTTP Headers

GET /s/lato/v16/S6uyw4BMUTPHjx4wXiWtFCc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14044
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 23:11:33 GMT
expires: Thu, 30 Nov 2023 23:11:33 GMT
cache-control: public, max-age=31536000
age: 201030
last-modified: Tue, 23 Jul 2019 03:45:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v16/S6u9w4BMUTPHh6UVSwiPGQ3q5d0.woff2

216.58.207.227

200 OK

14 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v16/S6u9w4BMUTPHh6UVSwiPGQ3q5d0.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 14176, version 1.0\012- data
Size
14 kB (14176 bytes)
Hash
c8dcbaf22349dba5061d93607ca9b37c
548040e31d6eef3d621157a3b3ae5b0be5618460
9baad10e85c5be8d5697086479983b6b477197103bf8f0f11817b1bdfb9a7451

HTTP Headers

GET /s/lato/v16/S6u9w4BMUTPHh6UVSwiPGQ3q5d0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14176
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 06:42:25 GMT
expires: Sat, 02 Dec 2023 06:42:25 GMT
cache-control: public, max-age=31536000
age: 87578
last-modified: Tue, 23 Jul 2019 03:45:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js

143.204.55.80

200 OK

6.1 kB

URL HTTP/2
widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
IP
143.204.55.80:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (19239)
Size
6.1 kB (6124 bytes)
Hash
5add60196e5f96a414fb4b9586764e5d
633f471b3c2fcedeef9cad90cb5bf56f5fe55588
5370f4ba91dda790c7cae92817b812fcbd1ab367cbb4862f5669960ae4e2c9e0

HTTP Headers

GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6124
last-modified: Mon, 30 May 2022 14:38:02 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Sat, 03 Dec 2022 01:28:24 GMT
cache-control: max-age=86400
etag: "5add60196e5f96a414fb4b9586764e5d"
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EiWQ-HX9W1tmEn-htkGX5LDn1bNCr5gcRM9IPQlD3KqCv2AszOlT7Q==
age: 20020
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4/RhOt3BdMrr4

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/RhOt3BdMrr4
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
bf5e76d90815cee47f249384645a9ec5
eed220f1d51b2e01d7a8c28c5b64f781936ffa18
2451ce8d6970000c36b0ba5d0e18540067a2a23b1abe17ba7a318daf2c94c8e0

HTTP Headers

POST /s/gts1d4/RhOt3BdMrr4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:02:03 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1d4/RhOt3BdMrr4

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/RhOt3BdMrr4
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
bf5e76d90815cee47f249384645a9ec5
eed220f1d51b2e01d7a8c28c5b64f781936ffa18
2451ce8d6970000c36b0ba5d0e18540067a2a23b1abe17ba7a318daf2c94c8e0

HTTP Headers

POST /s/gts1d4/RhOt3BdMrr4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:02:03 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

static.totalav.com/packages/fontawesome/webfonts/fa-light-300.woff2?22.291.1

35.186.251.103

200 OK

146 kB

URL HTTP/2
static.totalav.com/packages/fontawesome/webfonts/fa-light-300.woff2?22.291.1
IP
35.186.251.103:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 145656, version 1.0\012- data
Size
146 kB (145656 bytes)
Hash
b076f7ccd174eeb6ea55b9857c50f37c
43ae8d7a5fee84c0947b97bd7a9217db19b5247d
448f45a0ba44410ee2f4a475d56719fd1531dcd274876d8e3ef96b4cf01125e1

HTTP Headers

GET /packages/fontawesome/webfonts/fa-light-300.woff2?22.291.1 HTTP/1.1
Host: static.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
x-guploader-uploadid: ADPycdu_73ta8R1E1Nz9NxlcaSCUz_pD-3OyXcIaLC9rC2Tx0D0TycdSF2Ud21bocFLTxkMj8wbWeAsHe0xtQx5E8tz3NA
x-goog-generation: 1566377986064902
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 145656
x-goog-hash: crc32c=JMV6oA==, md5=sHb3zNF07rbqVbmFfFDzfA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 145656
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Fri, 02 Dec 2022 08:59:28 GMT
expires: Sat, 02 Dec 2023 08:59:28 GMT
cache-control: public, max-age=31536000
age: 79355
last-modified: Wed, 21 Aug 2019 08:59:46 GMT
etag: "b076f7ccd174eeb6ea55b9857c50f37c"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:02:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

static.totalav.com/packages/fontawesome/webfonts/fa-brands-400.woff2?22.291.1

35.186.251.103

200 OK

70 kB

URL HTTP/2
static.totalav.com/packages/fontawesome/webfonts/fa-brands-400.woff2?22.291.1
IP
35.186.251.103:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 69644, version 1.0\012- data
Size
70 kB (69644 bytes)
Hash
0896516daa9ef0a4169465a6fa281d68
d79042d11372b9c84aec373f49a291f99d4336c3
e705082b8a630b4d0190bb13e20f4d127f75ad88c271c749ff0c4e10c6acacf9

HTTP Headers

GET /packages/fontawesome/webfonts/fa-brands-400.woff2?22.291.1 HTTP/1.1
Host: static.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
x-guploader-uploadid: ADPycdv4Ioxs3jYh6eqasLNHz7fdBWj6GdAw1qUkQdR4lEPMKmFRhkeP1zHB94G9S9cHAAb6HR2-lpYG_LZEuxWbvquRi6NhDC8h
x-goog-generation: 1566377984564371
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 69644
x-goog-hash: crc32c=3nh1GQ==, md5=CJZRbaqe8KQWlGWm+igdaA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 69644
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Fri, 11 Nov 2022 06:44:41 GMT
expires: Sat, 11 Nov 2023 06:44:41 GMT
cache-control: public, max-age=31536000
age: 1901842
last-modified: Wed, 21 Aug 2019 08:59:44 GMT
etag: "0896516daa9ef0a4169465a6fa281d68"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:02:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

resources.totalav.com/build/prod/22.291.1/css/layout/www/_totalav/layout.min.css

82.102.27.18

200 OK

10 kB

URL HTTP/2
resources.totalav.com/build/prod/22.291.1/css/layout/www/_totalav/layout.min.css
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
ASCII text, with very long lines (65536), with no line terminators
Size
10 kB (10370 bytes)
Hash
6c5ab6be6eb42fd58dff0fd76bfee61e
565cc084277114b65612ad854cb62c5650556eb0
941ce46214e782c31bcde8ee50dc4b8e53e3241bc5093433126fb0e50934c515

HTTP Headers

GET /build/prod/22.291.1/css/layout/www/_totalav/layout.min.css HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: text/css
content-length: 10370
x-guploader-uploadid: ADPycdvZugqA-5BUh9taZe_LsOR0Byo0cTVjNU5rlm2yHaqEQeZhC29ErWPwB85U2bgrfAcPutxje5M3fMkJ1pEtg8EOvgI5IUCW
x-goog-generation: 1669916269946145
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10370
content-encoding: gzip
x-goog-hash: crc32c=e7WERg==, md5=bFq2vm60L9WN/w/Xa/7mHg==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
last-modified: Thu, 01 Dec 2022 17:37:49 GMT
etag: "6c5ab6be6eb42fd58dff0fd76bfee61e"
age: 108
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/build/prod/22.291.1/css/layout/www/_totalav/layout.min.css>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/content_image/en/windows-laptop-app-mid-scan.png

82.102.27.18

200 OK

81 kB

URL HTTP/2
resources.totalav.com/img/global/_totalav/content_image/en/windows-laptop-app-mid-scan.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 623 x 500, 8-bit/color RGB, non-interlaced\012- data
Size
81 kB (80623 bytes)
Hash
f94079d830d4a79be5573bf7c5fff5da
14684e50f99519c2694fc6027a2994bf1698f640
fa0f63188275fb4ebca258cee7ca1a5e5aed28ec81b04bdd95027318d390fb67

HTTP Headers

GET /img/global/_totalav/content_image/en/windows-laptop-app-mid-scan.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: image/png
content-length: 80623
x-guploader-uploadid: ADPycdvX-QAPy13_abz7hcnG4gTDXTGGRxyDPkK55mOUSVxmmMqjkSjJcoyADjIikAOJeYWe7GA5nP-eyauZsIuVJJSvxSathX6V
x-goog-generation: 1613475924459852
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 80623
x-goog-hash: crc32c=eiYBow==, md5=+UB52DDUp5vlVzv3xf/12g==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
last-modified: Tue, 16 Feb 2021 11:45:24 GMT
etag: "f94079d830d4a79be5573bf7c5fff5da"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/content_image/en/windows-laptop-app-mid-scan.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/award-images/lander/av-comparatives-award-sept-1645625600.png

82.102.27.18

200 OK

13 kB

URL HTTP/2
resources.totalav.com/img/global/award-images/lander/av-comparatives-award-sept-1645625600.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 156 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (12683 bytes)
Hash
8309a0420ab5d51eb52d5488c3c99f8a
8a5bc404765793d8b6c8ee5e43d24d55f138f50d
897df4560f049c54b4508a6c9fab50596310ebae48361b5021ccde451242d09c

HTTP Headers

GET /img/global/award-images/lander/av-comparatives-award-sept-1645625600.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: application/octet-stream
content-length: 12683
x-guploader-uploadid: ADPycdvPt_q5_QtmU1RZrm9EnusmAerRIcXHcfk9qNH2FEAv4Nfa2U3uuqY34wWG1tVkvuEB15qwY9OeJ6HBbJpek6YDyphUwoVQ
x-goog-generation: 1645625601276985
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 12683
x-goog-hash: crc32c=m2oasw==, md5=gwmgQgq11R61LVSIw8mfig==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
age: 184
last-modified: Wed, 23 Feb 2022 14:13:21 GMT
etag: "8309a0420ab5d51eb52d5488c3c99f8a"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/award-images/lander/av-comparatives-award-sept-1645625600.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/award-images/lander/av-comparatives-award-1645625648.png

82.102.27.18

200 OK

12 kB

URL HTTP/2
resources.totalav.com/img/global/award-images/lander/av-comparatives-award-1645625648.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 156 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12364 bytes)
Hash
ab2bf5c58c184fc8f312e1126fe6a0e6
ae55fac0ada8401a1f10d124370e3408b1f54f23
7d22938a255cccde8ae3999e5fe5c60b33ce8acaca37e31e012da71747371112

HTTP Headers

GET /img/global/award-images/lander/av-comparatives-award-1645625648.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: application/octet-stream
content-length: 12364
x-guploader-uploadid: ADPycdtimC0er6mMl6iI-a9T5S7KtwnZNQskMsRrpT2ZCV0hK-tZccBI11HYiRPSgil69bm5O_ur4ylnZvVDJWgS1P1uS2ZdaDqm
x-goog-generation: 1645625648455513
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 12364
x-goog-hash: crc32c=Jeg+wg==, md5=qyv1xYwYT8jzEuESb+ag5g==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
age: 243
last-modified: Wed, 23 Feb 2022 14:14:08 GMT
etag: "ab2bf5c58c184fc8f312e1126fe6a0e6"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/award-images/lander/av-comparatives-award-1645625648.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/packages/icomoon/www/fonts/icomoon.woff2?dtv932

82.102.27.18

200 OK

15 kB

URL HTTP/2
resources.totalav.com/packages/icomoon/www/fonts/icomoon.woff2?dtv932
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 15088, version 1.0\012- data
Size
15 kB (15088 bytes)
Hash
0aab1b0ae968c239e36514cfed2939f1
e068d9ce64bd9b39c36098e33b09bacd47f22fd0
95c34b12647d187606c19c6aa1b1a0be32d85e41dd39bc5f8d48147d1363567d

HTTP Headers

GET /packages/icomoon/www/fonts/icomoon.woff2?dtv932 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: application/octet-stream
content-length: 15088
x-guploader-uploadid: ADPycdtC0WKp6cGLaQhsxfwDQw8OohueiFsacrJkWazpHCf3-tuZ36vCbOc-v95w4P9UTACSD-fs7If4VFfC2Zo9zRGT
x-goog-generation: 1580314132569558
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 15088
x-goog-hash: crc32c=AeYl0g==, md5=CqsbCulowjnjZRTP7Sk58Q==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
age: 12
last-modified: Wed, 29 Jan 2020 16:08:52 GMT
etag: "0aab1b0ae968c239e36514cfed2939f1"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/packages/icomoon/www/fonts/icomoon.woff2?dtv932>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/award-images/lander/avtest-top-product--1645625794.png

82.102.27.18

200 OK

14 kB

URL HTTP/2
resources.totalav.com/img/global/award-images/lander/avtest-top-product--1645625794.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 162 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (14337 bytes)
Hash
7dddf426960c5952411f77ad8a91577d
1a7427425f2eaf89cb064567ab0c9d53bef982b0
de8ff9f2e369cbaf825d49ed8cdca7b5d48260f26527edbf9c4a2ba0e776e078

HTTP Headers

GET /img/global/award-images/lander/avtest-top-product--1645625794.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: application/octet-stream
content-length: 14337
x-guploader-uploadid: ADPycdvctsPbIXPm5nfhJJpRJIXAAPBkoG6FyFdLnc374YV8PPuCriMwDxQbLHipz916gcaSmxnRHf0L6WsjUW7AuZB0
x-goog-generation: 1645625794904180
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 14337
x-goog-hash: crc32c=YQcksA==, md5=fd30JpYMWVJBH3etipFXfQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
age: 243
last-modified: Wed, 23 Feb 2022 14:16:34 GMT
etag: "7dddf426960c5952411f77ad8a91577d"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/award-images/lander/avtest-top-product--1645625794.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/award-images/lander/virusbulletin-vb100-1645625825.jpg

82.102.27.18

200 OK

5.5 kB

URL HTTP/2
resources.totalav.com/img/global/award-images/lander/virusbulletin-vb100-1645625825.jpg
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 54x80, components 3\012- data
Size
5.5 kB (5496 bytes)
Hash
07a896487bfc05f183c2347d9a443aed
59b9cdd3d39cb8fc5f65922a7e2ac8e0f2219dae
681e0f87a0788283a9016846579782e2b096f068037af53cf307bbcb9c16fbca

HTTP Headers

GET /img/global/award-images/lander/virusbulletin-vb100-1645625825.jpg HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: application/octet-stream
content-length: 5496
x-guploader-uploadid: ADPycdtKmLAhL93b7C7IUOd8ImkPO147guUE9Qk0W5mdEGhrDTv4lmb8962DuCqXQZoC117B2GLkgBuKRRAr3YQwjb2Z
x-goog-generation: 1645625826567118
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 5496
x-goog-hash: crc32c=0LkbZQ==, md5=B6iWSHv8BfGDwjR9mkQ67Q==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
age: 243
last-modified: Wed, 23 Feb 2022 14:17:06 GMT
etag: "07a896487bfc05f183c2347d9a443aed"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/award-images/lander/virusbulletin-vb100-1645625825.jpg>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/award-images/lander/av-comparatives-malware-award-1645625869.png

82.102.27.18

200 OK

13 kB

URL HTTP/2
resources.totalav.com/img/global/award-images/lander/av-comparatives-malware-award-1645625869.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 156 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (12828 bytes)
Hash
b2f4a61d304070ca12d9dc361c899353
34e57d09c1094f9f4f0b43b67d2bce6ec0539524
e617b7de87d133dd96abafce72329876da5d7ca256b0d23907571c543bf218f6

HTTP Headers

GET /img/global/award-images/lander/av-comparatives-malware-award-1645625869.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: application/octet-stream
content-length: 12828
x-guploader-uploadid: ADPycdvFxdxPX09YXASbH-wFkCbbLl6dUOjnt6ayfn5w1dsZOWHL7LXsqALmdYmA_fcT8dEq36Jf3r_wcqXs2Lf-WPrSxA
x-goog-generation: 1645625869702468
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 12828
x-goog-hash: crc32c=TGhR8Q==, md5=svSmHTBAcMoS2dw2HImTUw==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
age: 243
last-modified: Wed, 23 Feb 2022 14:17:49 GMT
etag: "b2f4a61d304070ca12d9dc361c899353"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/award-images/lander/av-comparatives-malware-award-1645625869.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/layout/_totalav/www/background/content_image/white-background-shield.png

82.102.27.18

200 OK

6.0 kB

URL HTTP/2
resources.totalav.com/img/layout/_totalav/www/background/content_image/white-background-shield.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 503 x 469, 8-bit colormap, non-interlaced\012- data
Size
6.0 kB (6041 bytes)
Hash
3cf4995ee3f7812a37f7f93533d179a1
47c53a56b22caa69319f31f743504e19bce5548e
6c13ffdc95e6d0874472e3bd8833bf2aaa3197538e31aeba41c80dab83ca941b

HTTP Headers

GET /img/layout/_totalav/www/background/content_image/white-background-shield.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: image/png
content-length: 6041
x-guploader-uploadid: ADPycdsKNBjl2L4ZdpQbca_nnkjTujb1u3LJYZ5Eq_5aHcQdIYPkv9RTjhjJd_ODgcXXtNaS9p8QAaIjcfmbeQCuBgrg5w
x-goog-generation: 1565685610122523
x-goog-metageneration: 7
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 6041
x-goog-hash: crc32c=P/FPlQ==, md5=PPSZXuP3gSo39/k1M9F5oQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
last-modified: Tue, 13 Aug 2019 08:40:10 GMT
etag: "3cf4995ee3f7812a37f7f93533d179a1"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/layout/_totalav/www/background/content_image/white-background-shield.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/layout/_totalav/www/content-img/en/trustpilot-free-download-exit-pop-white.png

82.102.27.18

200 OK

2.2 kB

URL HTTP/2
resources.totalav.com/img/layout/_totalav/www/content-img/en/trustpilot-free-download-exit-pop-white.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 220 x 91, 8-bit colormap, non-interlaced\012- data
Size
2.2 kB (2162 bytes)
Hash
0b4ecddec2124c27f7c7c06a6885614e
c27b43f13af0536b965347a1cc63bf7598932e3e
f5b9a8c99b53ebc9934be056720e17a3e585af336a6d7785323e59db9b0a4360

HTTP Headers

GET /img/layout/_totalav/www/content-img/en/trustpilot-free-download-exit-pop-white.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: image/png
content-length: 2162
x-guploader-uploadid: ADPycdvvzMzrWML5KnvjsKuZ1smX-LTQ6wNzDbXjFXltdu1uEDcwC6WX4knjoIPDyBRiy2um_ICOQPVFQ1HFb9lrh9Y_
x-goog-generation: 1565685625011720
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2162
x-goog-hash: crc32c=Y63ZBA==, md5=C07N3sISTCf3x8BqaIVhTg==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
age: 946
last-modified: Tue, 13 Aug 2019 08:40:25 GMT
etag: "0b4ecddec2124c27f7c7c06a6885614e"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/layout/_totalav/www/content-img/en/trustpilot-free-download-exit-pop-white.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/logo/tav-logo-white.png

82.102.27.18

200 OK

1.8 kB

URL HTTP/2
resources.totalav.com/img/global/_totalav/logo/tav-logo-white.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 145 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1801 bytes)
Hash
5f416e10e2e2e0a95d9172eda9ef8c7e
88aed48ecd7cae254e17dc6b9595ec2f1445fa23
2d4889a9379bd86f3b2daa82cd06be537e5f4bc89276fd33fe2faa7d94a201da

HTTP Headers

GET /img/global/_totalav/logo/tav-logo-white.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: image/png
content-length: 1801
x-guploader-uploadid: ADPycdukWeFHmY4CGYL8fk-R_hhSe5Aelm30PWHoYYUXXRl8WQ9eipwsTk_v0Ep1s99pjpO0_d-Ho9YDltXL84YRQpf4vQ
x-goog-generation: 1565684158560914
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1801
x-goog-hash: crc32c=JFWGXw==, md5=X0FuEOLi4KldkXLtqe+Mfg==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
last-modified: Tue, 13 Aug 2019 08:15:58 GMT
etag: "5f416e10e2e2e0a95d9172eda9ef8c7e"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/logo/tav-logo-white.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/logo/logo_alt.png

82.102.27.18

200 OK

2.7 kB

URL HTTP/2
resources.totalav.com/img/global/_totalav/logo/logo_alt.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 195 x 41, 8-bit colormap, non-interlaced\012- data
Size
2.7 kB (2661 bytes)
Hash
7c5cc0cfcfbccc2afb39557b38c62b01
e4d22f9f78678ec6ee15cca1f338bb93275d8403
e746903c381d592a4956313d46d9ebe14bdb76a03de83b4406f68d83a9f50c98

HTTP Headers

GET /img/global/_totalav/logo/logo_alt.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: image/png
content-length: 2661
x-guploader-uploadid: ADPycdt2SBO47o3QT7KKCTNt6u5UWAAPtgN5MKt9_sFjVVh-41-V1nA3UuZqe34om3TT-P1RosECnw_UPn01m_7dq9TJwA
x-goog-generation: 1565684147649748
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2661
x-goog-hash: crc32c=FbdGRw==, md5=fFzAz8+8zCr7OVV7OMYrAQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
last-modified: Tue, 13 Aug 2019 08:15:47 GMT
etag: "7c5cc0cfcfbccc2afb39557b38c62b01"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/logo/logo_alt.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4/RhOt3BdMrr4

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/RhOt3BdMrr4
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
bf5e76d90815cee47f249384645a9ec5
eed220f1d51b2e01d7a8c28c5b64f781936ffa18
2451ce8d6970000c36b0ba5d0e18540067a2a23b1abe17ba7a318daf2c94c8e0

HTTP Headers

POST /s/gts1d4/RhOt3BdMrr4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:02:03 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

resources.totalav.com/img/global/_totalav/logo/logo_totalav_modal.png

82.102.27.18

200 OK

2.9 kB

URL HTTP/2
resources.totalav.com/img/global/_totalav/logo/logo_totalav_modal.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 229 x 48, 8-bit colormap, non-interlaced\012- data
Size
2.9 kB (2878 bytes)
Hash
fa60a1ee48b5fd657b626e8fc517bd8d
b81da12306e123f9243bb7d4cd6b013a8627ad25
f2ed506e7531884684014a2d75381c82bd4bf399274be9595139607a9d85e07d

HTTP Headers

GET /img/global/_totalav/logo/logo_totalav_modal.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: image/png
content-length: 2878
x-guploader-uploadid: ADPycdsFPqkqyNX1T_-uPWwRhdYeFCll1Z4z9kG0LMbyjcUxKJ4ffKK-bggNIAMGBqMo0jeBASEbr4vKSEsVqWDVF5QW3Q
x-goog-generation: 1565684149503375
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2878
x-goog-hash: crc32c=+gGdaA==, md5=+mCh7ki1/WV7Ym6PxRe9jQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
age: 98
last-modified: Tue, 13 Aug 2019 08:15:49 GMT
etag: "fa60a1ee48b5fd657b626e8fc517bd8d"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/logo/logo_totalav_modal.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/logo/logo_totalav.png

82.102.27.18

200 OK

2.9 kB

URL HTTP/2
resources.totalav.com/img/global/_totalav/logo/logo_totalav.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 229 x 48, 8-bit colormap, non-interlaced\012- data
Size
2.9 kB (2878 bytes)
Hash
fa60a1ee48b5fd657b626e8fc517bd8d
b81da12306e123f9243bb7d4cd6b013a8627ad25
f2ed506e7531884684014a2d75381c82bd4bf399274be9595139607a9d85e07d

HTTP Headers

GET /img/global/_totalav/logo/logo_totalav.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: image/png
content-length: 2878
x-guploader-uploadid: ADPycdskMAGhYmBRxizlfoujja_jmrc7OzBDI1CkMCAs6GGz6qDluIHjE0A_2bsNvv0GrVBs-RVqZsrQEH2P4pNqa5Nh
x-goog-generation: 1565684148016337
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2878
x-goog-hash: crc32c=+gGdaA==, md5=+mCh7ki1/WV7Ym6PxRe9jQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
age: 141
last-modified: Tue, 13 Aug 2019 08:15:48 GMT
etag: "fa60a1ee48b5fd657b626e8fc517bd8d"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/logo/logo_totalav.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/icons/en/money-back.png

82.102.27.18

200 OK

6.0 kB

URL HTTP/2
resources.totalav.com/img/global/_totalav/icons/en/money-back.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 176 x 175, 8-bit colormap, non-interlaced\012- data
Size
6.0 kB (5999 bytes)
Hash
6d6ea3076564b2984dc4aabdc9e42abf
a03594bd8f7e27cc13c2c5e86acc9d331f7a8b81
a0e072f9837ba4fbb22488b4a0e69e101ff48cb9972024dbdbc6521a6426d288

HTTP Headers

GET /img/global/_totalav/icons/en/money-back.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: image/png
content-length: 5999
x-guploader-uploadid: ADPycduyGV7RF6SeVW5hu-rAgEz50cUVXK732Jkn3Er_eAlycONXxMI9rWq2BgTuDqCYBUDa94EfZX2kzLfeGdqH3hA1wYxYO6Ek
x-goog-generation: 1565684110166236
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 5999
x-goog-hash: crc32c=Gzn7ZA==, md5=bW6jB2VksphNxKq9yeQqvw==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
last-modified: Tue, 13 Aug 2019 08:15:10 GMT
etag: "6d6ea3076564b2984dc4aabdc9e42abf"
age: 946
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/icons/en/money-back.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/icons/en/diagnostic_scan_rosette.png

82.102.27.18

200 OK

6.0 kB

URL HTTP/2
resources.totalav.com/img/global/_totalav/icons/en/diagnostic_scan_rosette.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 176 x 176, 8-bit colormap, non-interlaced\012- data
Size
6.0 kB (6044 bytes)
Hash
104b47969383ae4773b99688e25937cc
de5ee5369729a1d50b8fe7635a9a5a73e44a97f1
d76f7b4db2b42e35ce80e036cdc9ca78b16526a160cc1cd265684fa353823b35

HTTP Headers

GET /img/global/_totalav/icons/en/diagnostic_scan_rosette.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: image/png
content-length: 6044
x-guploader-uploadid: ADPycdsr6TFOxCKnu0aKrXjZoliUhFY5M8t8Ccxbzuqu_4oZVY_4_yWa2YDCjWIg_okT8pj2FRu-YMgnlIXdBoDp17PUUkzYAksY
x-goog-generation: 1565684109764714
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 6044
x-goog-hash: crc32c=zj+FDg==, md5=EEtHlpODrkdzuZaI4lk3zA==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
last-modified: Tue, 13 Aug 2019 08:15:09 GMT
etag: "104b47969383ae4773b99688e25937cc"
age: 946
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/icons/en/diagnostic_scan_rosette.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/layout/_totalav/my/modal/roundel-confirmation.png

82.102.27.18

200 OK

9.0 kB

URL HTTP/2
resources.totalav.com/img/layout/_totalav/my/modal/roundel-confirmation.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 184 x 184, 8-bit/color RGBA, non-interlaced\012- data
Size
9.0 kB (9005 bytes)
Hash
0ee02abe3c37b38d79ec081e8fc2fb6d
76324b117312b2e2cea1a464b541bebf650f2307
6aae5290cf05db992f9f62a224ffa7ace67ee1941a4f870694cb3d7c893bdf17

HTTP Headers

GET /img/layout/_totalav/my/modal/roundel-confirmation.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: image/png
content-length: 9005
x-guploader-uploadid: ADPycdtBan5mso7w7PbU2Ce_X9YJTWFqi7EEcXbqCFbztyGc9pBM7qKoik0O3DhS3YIsmJ4DeKPn7E9Pryd3GcXg0w3s2g
x-goog-generation: 1565685557968795
x-goog-metageneration: 7
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9005
x-goog-hash: crc32c=gyxWdw==, md5=DuAqvjw3s4157Agej8L7bQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
last-modified: Tue, 13 Aug 2019 08:39:17 GMT
etag: "0ee02abe3c37b38d79ec081e8fc2fb6d"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/layout/_totalav/my/modal/roundel-confirmation.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/build/prod/22.291.1/ts/bundle/totalAvApp.min.js

82.102.27.18

200 OK

102 kB

URL HTTP/2
resources.totalav.com/build/prod/22.291.1/ts/bundle/totalAvApp.min.js
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Unicode text, UTF-8 text, with very long lines (65510), with no line terminators
Size
102 kB (101520 bytes)
Hash
e9fed6c081570ac7984ed3302b126ce2
5009bfdce85ba369a3608e0ab1ff74f31c0a89b9
01fbb86ef3c0d793c3cca6007695b11917461793c4f606dd8a50a1efa60f65ce

HTTP Headers

GET /build/prod/22.291.1/ts/bundle/totalAvApp.min.js HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: application/javascript
content-length: 101520
x-guploader-uploadid: ADPycdsnW9_BZA-GhmUp8zMCY8toB3eLlTRn7NaTYq5IWS0OqIQLHeZoVBcjyxGW6PjJAJwFDOQ8TzU6ZQQwNqhAoF8NcSJ6GI_8
x-goog-generation: 1669916313193577
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 101520
content-encoding: gzip
x-goog-hash: crc32c=OokqPA==, md5=6f7WwIFXCseYTtMwKxJs4g==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
last-modified: Thu, 01 Dec 2022 17:38:33 GMT
etag: "e9fed6c081570ac7984ed3302b126ce2"
age: 1814
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/build/prod/22.291.1/ts/bundle/totalAvApp.min.js>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/build/prod/22.291.1/js/download-overlay/download-overlay.min.js

82.102.27.18

200 OK

1.7 kB

URL HTTP/2
resources.totalav.com/build/prod/22.291.1/js/download-overlay/download-overlay.min.js
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Unicode text, UTF-8 text, with very long lines (5185), with no line terminators
Size
1.7 kB (1670 bytes)
Hash
557e15ddef65f0460df41946b2732fb1
1f49576a89fbf904cf2c907a46d8f60e5209c939
14c4d641ee1dd61dd9789114feb6ba33fd8bd93a59aeedd6b1267ba7788fa145

HTTP Headers

GET /build/prod/22.291.1/js/download-overlay/download-overlay.min.js HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: application/javascript
content-length: 1670
x-guploader-uploadid: ADPycduuQpo34d3L9Emiy7pOWtuT6um-GSF1Itwxup3ZykYvVZckyvLkBg8wyQ6X7Up5LE2mqnAjEZ4Ms_ATO8ToRtrn6Q
cache-control: max-age=604800
expires: Sat, 10 Dec 2022 07:02:03 GMT
last-modified: Thu, 01 Dec 2022 17:38:25 GMT
etag: "557e15ddef65f0460df41946b2732fb1"
x-goog-generation: 1669916305426561
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1670
content-encoding: gzip
x-goog-hash: crc32c=g+Jcdw==, md5=VX4V3e9l8EYN9BlGsnMvsQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/build/prod/22.291.1/js/download-overlay/download-overlay.min.js>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/build/prod/22.291.1/js/global/global.min.js

82.102.27.18

200 OK

43 kB

URL HTTP/2
resources.totalav.com/build/prod/22.291.1/js/global/global.min.js
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Unicode text, UTF-8 text, with very long lines (31984)
Size
43 kB (43079 bytes)
Hash
0eedf2edfe0884645b14ebf9d7c04c4f
4befea48e91597d26d55ac3ce9668935efc52e71
7c27893c5e94372eb181dba7efb9309131813f403dffaefd71f8b37a44154c5c

HTTP Headers

GET /build/prod/22.291.1/js/global/global.min.js HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: application/javascript
content-length: 43079
x-guploader-uploadid: ADPycdva8jyEc7LzGNgc-c3FOXR5X1upPPWxEfdz4BHcCkh1Z9PCtzQIhM0f0tm5ymbXIDruTQpFHVIw0YEpUrLFlgexqd3cMjSh
x-goog-generation: 1669916305667753
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 43079
content-encoding: gzip
x-goog-hash: crc32c=j0Y67A==, md5=Du3y7f4IhGRbFOv518BMTw==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
last-modified: Thu, 01 Dec 2022 17:38:25 GMT
etag: "0eedf2edfe0884645b14ebf9d7c04c4f"
age: 109
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/build/prod/22.291.1/js/global/global.min.js>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/build/prod/22.291.1/css/global/_totalav/global.min-1-bless-section.css?z=775

82.102.27.18

200 OK

25 kB

URL HTTP/2
resources.totalav.com/build/prod/22.291.1/css/global/_totalav/global.min-1-bless-section.css?z=775
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65395)
Size
25 kB (25108 bytes)
Hash
874b61bfe6e7c5cfd1fe969769738e55
4a5bd9ee78d8814fa8c24462a31804cdf46508f5
4f3609c0cdbeb79569c6e2981c085e0cc641199dda00eea9b39a3bf2a0eb18ea

HTTP Headers

GET /build/prod/22.291.1/css/global/_totalav/global.min-1-bless-section.css?z=775 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.291.1/css/global/_totalav/global.min.css
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: text/css
content-length: 25108
x-guploader-uploadid: ADPycdsl6F62YwOKRiLACSgazOcvXGEPiTJX3Gag2B_R2IwBt9RiYpySSCYrurV2UcEhjJ-X64ZWKhgHLbhCnsCZcZcW
x-goog-generation: 1669916285760729
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 25108
content-encoding: gzip
x-goog-hash: crc32c=lFf63Q==, md5=h0thv+bnxc/R/paXaXOOVQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
last-modified: Thu, 01 Dec 2022 17:38:05 GMT
etag: "874b61bfe6e7c5cfd1fe969769738e55"
age: 109
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/build/prod/22.291.1/css/global/_totalav/global.min-1-bless-section.css?z=775>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/flag/no.png

82.102.27.18

200 OK

14 kB

URL HTTP/2
resources.totalav.com/img/global/flag/no.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (13699 bytes)
Hash
dcbf2604c9071fb939dd3907fc59c4cd
42079c567ef2bc728c75e734905cf24924642dd7
0b54a3901bc88d72a53568a19fd5ce09a4444f22882afb31a597ce1850167f0a

HTTP Headers

GET /img/global/flag/no.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.291.1/css/layout/www/_totalav/layout.min-1-bless-section.css?z=374
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: image/png
content-length: 13699
x-guploader-uploadid: ADPycdv4DnN5lh9CAGenzJT_DrKAdqn2dfDO1_NOW0g71dmBzCmGwwXEqI-4G6tQVPlhAsUDOxHDGv6drwJEpcLkG3lT
x-goog-generation: 1565684619095737
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 13699
x-goog-hash: crc32c=EvRRpw==, md5=3L8mBMkHH7k53TkH/FnEzQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
age: 3
last-modified: Tue, 13 Aug 2019 08:23:39 GMT
etag: "dcbf2604c9071fb939dd3907fc59c4cd"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/flag/no.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/layout/_totalav/www/background/free-download-hero-banner.jpg

82.102.27.18

200 OK

41 kB

URL HTTP/2
resources.totalav.com/img/layout/_totalav/www/background/free-download-hero-banner.jpg
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x420, components 3\012- data
Size
41 kB (41383 bytes)
Hash
d6243d53891711d727d81e6cd722a6c7
73ceb6cfd3ea8cec41791831d19dcb714f6a71d3
5634537de5de09d385b7e054bd06b6efbccf3fbe1793e31cbc1e5838c71b1f06

HTTP Headers

GET /img/layout/_totalav/www/background/free-download-hero-banner.jpg HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.291.1/css/layout/www/_totalav/layout.min-1-bless-section.css?z=374
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: image/jpeg
content-length: 41383
x-guploader-uploadid: ADPycdv4g7nC2dqCybeGSEUUBEe-HmdM-70upt0_FSnCEtS6-LtdgRmj4b7CvvQJ16hIs5lCoRkCUfRn04X8v-PcAMtUWg
x-goog-generation: 1565685612193807
x-goog-metageneration: 7
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 41383
x-goog-hash: crc32c=8+7Gzw==, md5=1iQ9U4kXEdcn2B5s1yKmxw==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
last-modified: Tue, 13 Aug 2019 08:40:12 GMT
etag: "d6243d53891711d727d81e6cd722a6c7"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/layout/_totalav/www/background/free-download-hero-banner.jpg>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/font/lato/lato-light-webfont.woff2

82.102.27.18

200 OK

30 kB

URL HTTP/2
resources.totalav.com/font/lato/lato-light-webfont.woff2
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 29576, version 2.983\012- data
Size
30 kB (29576 bytes)
Hash
1af6ec82f706979f0d68fb228a968d22
18bce2921cf2bf6364274a031c9b769827a6a341
52d1ff4da5ae1dc05d99c6550f596a67d0c859bc163f99096cfdce5b18d38e21

HTTP Headers

GET /font/lato/lato-light-webfont.woff2 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://resources.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: font/woff2
content-length: 29576
x-guploader-uploadid: ADPycdsrRkL_9bzMD3TQi5MeOsCgY_cvjuYRslWIvTC1Ye9BoHulylHj_7k7hO1FIumQTr0Wqj5xqdyqkjAJq2jAOqVGna9lzjK6
x-goog-generation: 1566228744427533
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 29576
x-goog-hash: crc32c=Uvxomw==, md5=GvbsgvcGl58NaPsiipaNIg==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
age: 224
last-modified: Mon, 19 Aug 2019 15:32:24 GMT
etag: "1af6ec82f706979f0d68fb228a968d22"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/font/lato/lato-light-webfont.woff2>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/font/lato/lato-regular-webfont.woff2

82.102.27.18

200 OK

30 kB

URL HTTP/2
resources.totalav.com/font/lato/lato-regular-webfont.woff2
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 30468, version 2.983\012- data
Size
30 kB (30468 bytes)
Hash
1a9cf8e82e21e6c72b3233785434c732
adbd46e6f5e1e14ee05d57c6bde0fb2a9443b538
89bac0b5661b66d578cafa238d0b813568b2a38bc8551a9206d684aee6874927

HTTP Headers

GET /font/lato/lato-regular-webfont.woff2 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://resources.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: font/woff2
content-length: 30468
x-guploader-uploadid: ADPycdtJ6qWUIwzPmpyfNqnbXYSiwOkjvU32sk5L-Vt0-X8hxpJ2mjn22Mj8a5PrzjQon8eKFC2O5wkudqTkVh0pH-kh9w
x-goog-generation: 1566228756589294
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 30468
x-goog-hash: crc32c=WH/LhQ==, md5=Gpz46C4h5scrMjN4VDTHMg==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
last-modified: Mon, 19 Aug 2019 15:32:36 GMT
etag: "1a9cf8e82e21e6c72b3233785434c732"
age: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/font/lato/lato-regular-webfont.woff2>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/font/lato/lato-bold-webfont.woff2

82.102.27.18

200 OK

30 kB

URL HTTP/2
resources.totalav.com/font/lato/lato-bold-webfont.woff2
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 30524, version 2.983\012- data
Size
30 kB (30524 bytes)
Hash
d8b4b413a5e5ce7d310935ddc7e72be9
7ba1cad12e69da2c0657be9f3d966e2ed13c9b37
9f22fe17bd728cf90bc1ba5e1e0df73b1e0840fcc852eb916bc8dc1b38212671

HTTP Headers

GET /font/lato/lato-bold-webfont.woff2 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://resources.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: font/woff2
content-length: 30524
x-guploader-uploadid: ADPycdttelnBD2mkgaC1BwnaSId-ptCKIQlHvQtCdPS2aq5IGBeQJSsCazIL9Xbb7xpY7hUnwIrpswFlMn99kTmvKyofjoO731vr
x-goog-generation: 1566228744072322
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 30524
x-goog-hash: crc32c=x8DmHA==, md5=2LS0E6Xlzn0xCTXdx+cr6Q==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
age: 224
last-modified: Mon, 19 Aug 2019 15:32:24 GMT
etag: "d8b4b413a5e5ce7d310935ddc7e72be9"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/font/lato/lato-bold-webfont.woff2>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/packages/fontawesome/webfonts/fa-brands-400.woff2

82.102.27.18

200 OK

70 kB

URL HTTP/2
resources.totalav.com/packages/fontawesome/webfonts/fa-brands-400.woff2
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 69644, version 1.0\012- data
Size
70 kB (69644 bytes)
Hash
0896516daa9ef0a4169465a6fa281d68
d79042d11372b9c84aec373f49a291f99d4336c3
e705082b8a630b4d0190bb13e20f4d127f75ad88c271c749ff0c4e10c6acacf9

HTTP Headers

GET /packages/fontawesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://resources.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: application/octet-stream
content-length: 69644
x-guploader-uploadid: ADPycdvAf-GXuSRc5ckUagXH_fnKH8WPS7rwkJatrmQyN59V_KniRggMreW1wLl2YA_dZ1shOEcmhcFqWwLSRZA0rEchUQ
x-goog-generation: 1566377984564371
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 69644
x-goog-hash: crc32c=3nh1GQ==, md5=CJZRbaqe8KQWlGWm+igdaA==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
age: 274
last-modified: Wed, 21 Aug 2019 08:59:44 GMT
etag: "0896516daa9ef0a4169465a6fa281d68"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/packages/fontawesome/webfonts/fa-brands-400.woff2>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/packages/fontawesome/webfonts/fa-solid-900.woff2

82.102.27.18

200 OK

111 kB

URL HTTP/2
resources.totalav.com/packages/fontawesome/webfonts/fa-solid-900.woff2
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 110892, version 1.0\012- data
Size
111 kB (110892 bytes)
Hash
a265bbc20e40ae6e6b45e0b78ab08c41
72dfb20ed2e0c80534e3972ed65f98684fd8f3cc
88876fcd5eb71de865d889ea63df11b023ef1d1365124305c2708f61cbb04339

HTTP Headers

GET /packages/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://resources.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: application/octet-stream
content-length: 110892
x-guploader-uploadid: ADPycdtP0yRAgS1XFsv8_pFhYaS9idPM0PQPufjaOw7gC8qwSqKocuEstYDHBETHk9_Z74ANWTORiECLbVe3LNxR5UnknbJqZ733
x-goog-generation: 1566377982457480
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 110892
x-goog-hash: crc32c=w+vXRg==, md5=omW7wg5Arm5rReC3irCMQQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
age: 499
last-modified: Wed, 21 Aug 2019 08:59:42 GMT
etag: "a265bbc20e40ae6e6b45e0b78ab08c41"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/packages/fontawesome/webfonts/fa-solid-900.woff2>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.227

200 OK

24 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:11:08 GMT
expires: Wed, 29 Nov 2023 17:11:08 GMT
cache-control: public, max-age=31536000
age: 309056
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

resources.totalav.com/font/lato/lato-semibold-webfont.woff2

82.102.27.18

200 OK

31 kB

URL HTTP/2
resources.totalav.com/font/lato/lato-semibold-webfont.woff2
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 30576, version 2.983\012- data
Size
31 kB (30576 bytes)
Hash
ee2eae440d9dd60b13ffef00c16793b4
3b25e29e2893933e2b37348f2244a8a7d1c43733
be6eec6c2e212e21a1641bbbbbc3fdecb5f9ca1c1e5636ebcba6f666fac69bdf

HTTP Headers

GET /font/lato/lato-semibold-webfont.woff2 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://resources.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: font/woff2
content-length: 30576
x-guploader-uploadid: ADPycdtk-WCYh4R85cbH1yNJahvN3mrClPWOsMK10qKZO12G53qxKeUzQrErQjr0BDEyXcAo5r0MCxmsdIU7r-qrLjBT
x-goog-generation: 1566228755008890
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 30576
x-goog-hash: crc32c=g05elA==, md5=7i6uRA2d1gsT/+8AwWeTtA==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
age: 224
last-modified: Mon, 19 Aug 2019 15:32:35 GMT
etag: "ee2eae440d9dd60b13ffef00c16793b4"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/font/lato/lato-semibold-webfont.woff2>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140

143.204.55.80

200 OK

3.3 kB

URL HTTP/2
widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140
IP
143.204.55.80:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (12963)
Size
3.3 kB (3267 bytes)
Hash
2922a85ce6caf46f828c097bf7aa1036
afedbac8e6480a8c59cc6ca3359381731f75795b
12d369c3d585d564678ed15f99b53dad29faa1e05475825ccd0e8f4c50cfb779

HTTP Headers

GET /trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/html
content-length: 3267
last-modified: Tue, 04 Oct 2022 10:24:57 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Sat, 03 Dec 2022 00:53:52 GMT
cache-control: max-age=86400
etag: "2922a85ce6caf46f828c097bf7aa1036"
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FhTUm-QS-n1qA_-YQ13w8vCwuTyPn_GDwFpMTnfAfjfyQ_jU3XwpGQ==
age: 22294
X-Firefox-Spdy: h2

widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/main.js

143.204.55.80

200 OK

30 kB

URL HTTP/2
widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/main.js
IP
143.204.55.80:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (64281), with no line terminators
Size
30 kB (29756 bytes)
Hash
5b76b943a9533254775b33e002b1c884
4c884b91ed0762c5380da136c5d09edb9b4fbd14
003b5a563be7a0444ca3be97ace94a5b4ec478009ffa159767c5873ee61e5bdb

HTTP Headers

GET /trustboxes/53aa8912dec7e10d38f59f36/main.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/x-javascript
content-length: 29756
last-modified: Tue, 04 Oct 2022 10:24:58 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Sat, 03 Dec 2022 04:22:49 GMT
cache-control: max-age=86400
etag: "5b76b943a9533254775b33e002b1c884"
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BbmqiAUzw8PAAQ6Lz_7iYA1_2dADCN82AEmtbj9F9r1fzL5US_FYYw==
age: 9556
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3712
Expires: Sat, 03 Dec 2022 08:03:56 GMT
Date: Sat, 03 Dec 2022 07:02:04 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3712
Expires: Sat, 03 Dec 2022 08:03:56 GMT
Date: Sat, 03 Dec 2022 07:02:04 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3712
Expires: Sat, 03 Dec 2022 08:03:56 GMT
Date: Sat, 03 Dec 2022 07:02:04 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (8016 bytes)
Hash
436b46a2eea584bd8ec1dba5603c8659
fed437d1919af63f9d58396f318568aadae3d868
fff21dd129f35807bfc29c6582661a79e764238076e540968b57fcad18811566

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8016
x-amzn-requestid: bfb5f288-4467-467a-9b30-1055a4e6bc54
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZPeE4nIAMFvnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2f-53a5a66704157f4e003ecfa4;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:35 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lUqXgbpEaZh9DO_rv0K5pzHUAF1DsASkKYNTU6t5AUWZjHNV9LRojA==
via: 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:01:05 GMT
age: 32459
etag: "fed437d1919af63f9d58396f318568aadae3d868"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7eba81de-c3ae-4d3a-8f94-5bb79e5c457e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.6 kB (4635 bytes)
Hash
d90d64885baa162bfbf40c700a85fa99
480de0fed1c4f588fe6675591731d56b28ae8795
d6dfee6a25a9453f530343912e8f82021fef2c7f41bfe1e7368aafc490758758

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7eba81de-c3ae-4d3a-8f94-5bb79e5c457e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4635
x-amzn-requestid: 5dfc2fd6-3d4e-49e1-9cc2-7202a8a76834
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cTOtUEi6oAMFljA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63845e55-07837bf068799c3f36e3d599;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 07:08:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: NLTE_akk9ylRIWCLui94hV_XksCKgkdbJCjJ8k4Du-_vJWbPJZew6g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 08:55:57 GMT
age: 79567
etag: "480de0fed1c4f588fe6675591731d56b28ae8795"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9715 bytes)
Hash
45182367fd4f8b6dd234eef1022acdb1
d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:51:06 GMT
age: 33058
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4309 bytes)
Hash
fcb89ca25035b2bbb71ae5dd175fcd40
544428cdad754b1bb7be3cd46a79bf078fd5b450
36dcbbe6cd2710ee502776b4bcf32053e92b750a55e2bd4cdeadbc694c7c2699

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: c824c317-e6e3-4006-9f9d-ea54e8170a4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cf2_tGErIAMF8_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63896b97-7fc523296afea4dd4b5d1de8;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 03:05:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bd85z5A6C0nxpDjeSEPp1NHJxXFO5sy1OgTLz7KpdWz61TNrfyQ47Q==
via: 1.1 40b967aa4aa18637c4b91214147f3cb4.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 03:53:20 GMT
age: 11324
etag: "544428cdad754b1bb7be3cd46a79bf078fd5b450"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.9 kB (2942 bytes)
Hash
b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:02:08 GMT
age: 7196
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8498f68-55a6-46be-9eb1-671b7a90a148.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.3 kB (3321 bytes)
Hash
ce5811e1c83156e6a6d4557c33faafe5
ba23b3c6adc42832ccd60941123d78dab3e435d5
a9394a4f8f80733a19fb03bc3ad216f4e15c9ba7110e2e181272304ea2f3f2df

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8498f68-55a6-46be-9eb1-671b7a90a148.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3321
x-amzn-requestid: b418b18c-969e-4525-8263-0c910593f7fa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN2HJaoAMFQ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-5196fa3028f5fb80160617af;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: zjXwnCMm7SoCWDGhO71JV6Itob3-rdlXetrU2UmDw6p-eeFt0T6sfA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:49:27 GMT
etag: "ba23b3c6adc42832ccd60941123d78dab3e435d5"
content-type: image/jpeg
age: 33157
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

resources.totalav.com/img/global/download-overlay/browser-icons/icons.png

82.102.27.18

200 OK

61 kB

URL HTTP/2
resources.totalav.com/img/global/download-overlay/browser-icons/icons.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 73 x 511, 8-bit/color RGBA, non-interlaced\012- data
Size
61 kB (60983 bytes)
Hash
f742badf7478a9b45f46f857e85d045e
866fb896e4073852423b7953f87f2b247bec710b
f45e73fea684187af13d7080276fd4b1394618ead4b629090e86831f55dbaf0a

HTTP Headers

GET /img/global/download-overlay/browser-icons/icons.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.291.1/css/global/_totalav/global.min.css
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:04 GMT
content-type: image/png
content-length: 60983
x-guploader-uploadid: ADPycduH25kUJr7AFMWLW9-wLYjtSv7sO2rJdjjMB0zrh2rjeiahpU7PznYphbbH7Sk8CMH01vMNoNEVCZJ3qgEWGAi9hQ
x-goog-generation: 1607337077411113
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 60983
x-goog-hash: crc32c=z2lYJw==, md5=90K633R4qbRfRvhX6F0EXg==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:04 GMT
cache-control: max-age=604800
age: 500
last-modified: Mon, 07 Dec 2020 10:31:17 GMT
etag: "f742badf7478a9b45f46f857e85d045e"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/download-overlay/browser-icons/icons.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/download-overlay/arrows/arrow.png

82.102.27.18

200 OK

1.0 kB

URL HTTP/2
resources.totalav.com/img/global/download-overlay/arrows/arrow.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 95 x 184, 8-bit colormap, non-interlaced\012- data
Size
1.0 kB (1013 bytes)
Hash
44b57491a2f0b1ecfacce48e5759a7d4
bcfc601622982f754f3bc2e7c1bd832eed7fe3a7
e62559518386f5218cf1db89f0848cf293b2a93a0bd0af4d918297c112bb2ee5

HTTP Headers

GET /img/global/download-overlay/arrows/arrow.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.291.1/css/global/_totalav/global.min.css
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:04 GMT
content-type: image/png
content-length: 1013
x-guploader-uploadid: ADPycdselDGqtbMjwa3cOZf8fHg__8vE3LWg25Kwe3-tKQ2CYTC5yA6_wTE_eyi8NBS8p1GqJsZtG3pS5z-AMo8Pqm34OwspC_bC
x-goog-generation: 1565684514180273
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1013
x-goog-hash: crc32c=2bEhgA==, md5=RLV0kaLwsez6zOSOV1mn1A==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:04 GMT
cache-control: max-age=604800
age: 500
last-modified: Tue, 13 Aug 2019 08:21:54 GMT
etag: "44b57491a2f0b1ecfacce48e5759a7d4"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/download-overlay/arrows/arrow.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/download-overlay/brand-icons/icons.png

82.102.27.18

200 OK

6.2 kB

URL HTTP/2
resources.totalav.com/img/global/download-overlay/brand-icons/icons.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 36 x 216, 8-bit/color RGBA, non-interlaced\012- data
Size
6.2 kB (6223 bytes)
Hash
b365b404916d4cc08f676458a94921a8
22a216d372f4dbfa7c3725ae01fa5d19d0fad98f
a1e7c1aa84e4706f6c057d940505b6ba655ba3843204cd4c1f851120c106bd6b

HTTP Headers

GET /img/global/download-overlay/brand-icons/icons.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.291.1/css/global/_totalav/global.min.css
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:04 GMT
content-type: image/png
content-length: 6223
x-guploader-uploadid: ADPycdua_Mx53BeRfYp8XjhLb6D693wOeB9nx7N0N2rL9H26HcisZh2npK7iI-8gMFVCaZkjlgFRTbX6ohi_RFpU9Ey0JJO1cITl
x-goog-generation: 1565684514584875
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 6223
x-goog-hash: crc32c=2LZ4Gw==, md5=s2W0BJFtTMCPZ2RYqUkhqA==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:04 GMT
cache-control: max-age=604800
age: 311
last-modified: Tue, 13 Aug 2019 08:21:54 GMT
etag: "b365b404916d4cc08f676458a94921a8"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/download-overlay/brand-icons/icons.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/download-overlay/main-overlays/totalav/win-10/en/overlay.png

82.102.27.18

200 OK

560 kB

URL HTTP/2
resources.totalav.com/img/global/download-overlay/main-overlays/totalav/win-10/en/overlay.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 899 x 2274, 8-bit/color RGBA, non-interlaced\012- data
Size
560 kB (560224 bytes)
Hash
3694e3381849027289ffa5557b46e991
926cb1892677e88f990771196d575be25eeb87fd
aa7d5ca64e61cef66c47587ef4e5e38eb1d9eaee62378eb5f4f9010cbadef7d4

HTTP Headers

GET /img/global/download-overlay/main-overlays/totalav/win-10/en/overlay.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.291.1/css/global/_totalav/global.min.css
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:04 GMT
content-type: image/png
content-length: 560224
x-guploader-uploadid: ADPycdtlnDlTMMxFC3R5sLHFjVTGkldUTIkjCog6ETdU2H3qFd8a0OcZ2vC09UD7mRg1H620rskg36lrQfpI1IsT4KBbniMRKS5G
x-goog-generation: 1619089605640762
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 560224
x-goog-hash: crc32c=Z3s3GA==, md5=NpTjOBhJAnKJ/6VVe0bpkQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:04 GMT
cache-control: max-age=604800
age: 805
last-modified: Thu, 22 Apr 2021 11:06:45 GMT
etag: "3694e3381849027289ffa5557b46e991"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/download-overlay/main-overlays/totalav/win-10/en/overlay.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/icon/close-cross.png

82.102.27.18

200 OK

552 B

URL HTTP/2
resources.totalav.com/img/global/icon/close-cross.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 30 x 30, 8-bit colormap, non-interlaced\012- data
Size
552 B (552 bytes)
Hash
e87c7a9c544a64d715fd0d305dc8972d
7d867419e849c0a28c5b6bd655a6b9b8180ce68b
c13eabea58fca86b259c4e67ff9c7977a1062e4638b05675b9dc07c08f934f28

HTTP Headers

GET /img/global/icon/close-cross.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://resources.totalav.com/build/prod/22.291.1/css/layout/www/_totalav/layout.min-1-bless-section.css?z=374
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:04 GMT
content-type: image/png
content-length: 552
x-guploader-uploadid: ADPycduhXW2jlzyhRursY3XOrTYLfSX9iZN7BcIud9GhGWevLI-Z2f17y0_y3ZrvTuO6pQOCgp4o-JlV6HTD92aXI6xTBg
x-goog-generation: 1565684680543383
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 552
x-goog-hash: crc32c=D9mhSw==, md5=6Hx6nFRKZNcV/Q0wXciXLQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:04 GMT
cache-control: max-age=604800
age: 143
last-modified: Tue, 13 Aug 2019 08:24:40 GMT
etag: "e87c7a9c544a64d715fd0d305dc8972d"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/icon/close-cross.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/packages/fontawesome/webfonts/fa-light-300.woff2

82.102.27.18

200 OK

146 kB

URL HTTP/2
resources.totalav.com/packages/fontawesome/webfonts/fa-light-300.woff2
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 145656, version 1.0\012- data
Size
146 kB (145656 bytes)
Hash
b076f7ccd174eeb6ea55b9857c50f37c
43ae8d7a5fee84c0947b97bd7a9217db19b5247d
448f45a0ba44410ee2f4a475d56719fd1531dcd274876d8e3ef96b4cf01125e1

HTTP Headers

GET /packages/fontawesome/webfonts/fa-light-300.woff2 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://resources.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:04 GMT
content-type: application/octet-stream
content-length: 145656
x-guploader-uploadid: ADPycdveX7nYZ9DQNw6kJPq0Mqjyy-E5SnscbuLVrgpbu0dwPcy626euCIq2jfQkq7umBelgY5hvW-fVLYmvYs3IVOwDyw
x-goog-generation: 1566377986064902
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 145656
x-goog-hash: crc32c=JMV6oA==, md5=sHb3zNF07rbqVbmFfFDzfA==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 10 Dec 2022 07:02:04 GMT
cache-control: max-age=604800
age: 231
last-modified: Wed, 21 Aug 2019 08:59:46 GMT
etag: "b076f7ccd174eeb6ea55b9857c50f37c"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/packages/fontawesome/webfonts/fa-light-300.woff2>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

widget.trustpilot.com/trustbox-data/53aa8912dec7e10d38f59f36?businessUnitId=594e8fb40000ff0005a54140&locale=en-US&reviewLanguages=en&reviewStars=5&includeReviews=true&reviewsPerPage=15

143.204.55.80

200 OK

2.4 kB

URL HTTP/2
widget.trustpilot.com/trustbox-data/53aa8912dec7e10d38f59f36?businessUnitId=594e8fb40000ff0005a54140&locale=en-US&reviewLanguages=en&reviewStars=5&includeReviews=true&reviewsPerPage=15
IP
143.204.55.80:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (8520), with no line terminators
Size
2.4 kB (2434 bytes)
Hash
34b600d88dd5b7acabc84b611e8fe451
c1555074b8077b1f7cf06e7ba11d872961c6ccc7
77a3e4b7ab4028e8c2cb9115061208e752c601fcd54540a8e976d4047a756656

HTTP Headers

GET /trustbox-data/53aa8912dec7e10d38f59f36?businessUnitId=594e8fb40000ff0005a54140&locale=en-US&reviewLanguages=en&reviewStars=5&includeReviews=true&reviewsPerPage=15 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 2434
content-encoding: gzip
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
date: Sat, 03 Dec 2022 06:56:42 GMT
cache-control: public,max-age=1800
etag: "b47f720cc513ba49da3e9066a54c11c1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2Kvs_StOmCsEaxcI_amwG5jVw9n6fhi16XQKzzW4g6C7P80tfB0vFA==
age: 520
X-Firefox-Spdy: h2

widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=155px&styleWidth=100%25&theme=light&stars=5&reviewLanguages=en&url=https%3A%2F%2Fwww.totalav.com%2Ffree-download&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=594e8fb40000ff0005a54140&widgetId=53aa8912dec7e10d38f59f36

143.204.55.80

204 No Content

0 B

URL HTTP/2
widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=155px&styleWidth=100%25&theme=light&stars=5&reviewLanguages=en&url=https%3A%2F%2Fwww.totalav.com%2Ffree-download&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=594e8fb40000ff0005a54140&widgetId=53aa8912dec7e10d38f59f36
IP
143.204.55.80:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /stats/TrustboxImpression?locale=en-US&styleHeight=155px&styleWidth=100%25&theme=light&stars=5&reviewLanguages=en&url=https%3A%2F%2Fwww.totalav.com%2Ffree-download&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=594e8fb40000ff0005a54140&widgetId=53aa8912dec7e10d38f59f36 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Sat, 03 Dec 2022 07:02:03 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: e2VOGEq6fZP3SHzD_jg8n4gXdmTxov7MIcxe_wgd5bANrWQjSoLzkg==
X-Firefox-Spdy: h2

widget.trustpilot.com/stats/TrustboxView?locale=en-US&styleHeight=155px&styleWidth=100%25&theme=light&stars=5&reviewLanguages=en&url=https%3A%2F%2Fwww.totalav.com%2Ffree-download&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=594e8fb40000ff0005a54140&widgetId=53aa8912dec7e10d38f59f36

143.204.55.80

204 No Content

0 B

URL HTTP/2
widget.trustpilot.com/stats/TrustboxView?locale=en-US&styleHeight=155px&styleWidth=100%25&theme=light&stars=5&reviewLanguages=en&url=https%3A%2F%2Fwww.totalav.com%2Ffree-download&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=594e8fb40000ff0005a54140&widgetId=53aa8912dec7e10d38f59f36
IP
143.204.55.80:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /stats/TrustboxView?locale=en-US&styleHeight=155px&styleWidth=100%25&theme=light&stars=5&reviewLanguages=en&url=https%3A%2F%2Fwww.totalav.com%2Ffree-download&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=594e8fb40000ff0005a54140&widgetId=53aa8912dec7e10d38f59f36 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Sat, 03 Dec 2022 07:02:03 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: M_BQDEFPoTRyviEdJkapVcqVO6zMo5rZOi5LbMGMmoRnV78PAKzd-w==
X-Firefox-Spdy: h2

resources.totalav.com/packages/fontawesome/webfonts/fa-regular-400.woff2

82.102.27.18

200 OK

136 kB

URL HTTP/2
resources.totalav.com/packages/fontawesome/webfonts/fa-regular-400.woff2
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
Web Open Font Format (Version 2), TrueType, length 135488, version 1.0\012- data
Size
136 kB (135488 bytes)
Hash
8b13141deffa0a1d715d14a470aea6de
21fb38519daa38707e7564e558f133e779c59007
ee41bc0e3059351bcca7313fe1d7f9053a164ba2f2e1df3df39260217298a03b

HTTP Headers

GET /packages/fontawesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://resources.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:04 GMT
content-type: application/octet-stream
content-length: 135488
x-guploader-uploadid: ADPycdvAasdC1qCD2hlwCu1SjgOtzCsC4ulZh_96AnZvenWscypuXlmDtZrWQxQTcKQbQDfDBqepk0UfcfSxGn58zlXErg
x-goog-generation: 1566377985865825
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 135488
x-goog-hash: crc32c=2K3sWg==, md5=ixMUHe/6Ch1xXRSkcK6m3g==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 10 Dec 2022 07:02:04 GMT
cache-control: max-age=604800
age: 597
last-modified: Wed, 21 Aug 2019 08:59:45 GMT
etag: "8b13141deffa0a1d715d14a470aea6de"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/packages/fontawesome/webfonts/fa-regular-400.woff2>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/favicons/favicon-16x16.png

82.102.27.18

200 OK

673 B

URL HTTP/2
resources.totalav.com/img/global/_totalav/favicons/favicon-16x16.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
673 B (673 bytes)
Hash
9df1557ead386902196ca7cfd44e22a9
a8edf72156e4a99dcb7b3faf9c777320d274adab
a2f0809bbe20db682f7cb3d3f8aba0a0675f2a852b78d99b5743f67ed94e5ca4

HTTP Headers

GET /img/global/_totalav/favicons/favicon-16x16.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:04 GMT
content-type: image/png
content-length: 673
x-guploader-uploadid: ADPycduBEjn8n2SEX_rlow0lfkBegyui38iZEws9c8l9pL3Nz2wfPGwK867TloyEdHt-V_pTPBXUuDm5OmlPymxkmj1k
x-goog-generation: 1565684079441538
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 673
x-goog-hash: crc32c=+n3gkQ==, md5=nfFVfq04aQIZbKfP1E4iqQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:04 GMT
cache-control: max-age=604800
last-modified: Tue, 13 Aug 2019 08:14:39 GMT
etag: "9df1557ead386902196ca7cfd44e22a9"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/favicons/favicon-16x16.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

resources.totalav.com/img/global/_totalav/favicons/apple-touch-icon-180x180.png

82.102.27.18

200 OK

3.0 kB

URL HTTP/2
resources.totalav.com/img/global/_totalav/favicons/apple-touch-icon-180x180.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Size
3.0 kB (2981 bytes)
Hash
fbdf2f4c943ffef889eb6b7c0595819b
0d61d94b2bf64fc0bc5f56584ed6246ed8cb7e67
0aba5a4e4969c15465fa7eed5748a4989e007f2519e9164ccc59996642199d74

HTTP Headers

GET /img/global/_totalav/favicons/apple-touch-icon-180x180.png HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:04 GMT
content-type: image/png
content-length: 2981
x-guploader-uploadid: ADPycdsZ73py9WqXD_2kni5epLcosKgthh1DsQyJKWDSmhF_cfN7m5Qk8NchY-0gclLHp24afGlMoQ5UV2Uq1TErKyODPA
x-goog-generation: 1565684076522942
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2981
x-goog-hash: crc32c=hPTJ9Q==, md5=+98vTJQ//viJ62t8BZWBmw==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:04 GMT
cache-control: max-age=604800
age: 3575
last-modified: Tue, 13 Aug 2019 08:14:36 GMT
etag: "fbdf2f4c943ffef889eb6b7c0595819b"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/img/global/_totalav/favicons/apple-touch-icon-180x180.png>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

url.totalav.com/fp/common/9f1ecd79.js

35.224.74.90

200 OK

28 kB

URL HTTP/2
url.totalav.com/fp/common/9f1ecd79.js
IP
35.224.74.90:0
ASN
#15169 GOOGLE

File type
data
Size
28 kB (27559 bytes)
Hash
1208eef4882bbe937a91a8fcf8eff0d4
e78cf88996323c3716bef117767458e66bfc581c
f1ce7ad8e37f29b341b58cc34817882e2b54880e6c3d126a61f4e464da5e005e

HTTP Headers

GET /fp/common/9f1ecd79.js HTTP/1.1
Host: url.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.13.12
date: Sat, 03 Dec 2022 07:02:04 GMT
content-type: text/javascript;charset=UTF-8
cache-control: max-age=2592000, public, s-maxage=2592000
x-content-type-options: nosniff
vary: Accept-Encoding, Accept-Encoding
etag: W/"a9862a989af816992a8f31065dd40433"
expires: Mon, 02 Jan 2023 07:02:04 GMT
last-modified: Sat, 03 Dec 2022 07:02:04 GMT
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

url.totalav.com/fp/init/fortifi.js

35.224.74.90

200 OK

0 B

URL HTTP/2
url.totalav.com/fp/init/fortifi.js
IP
35.224.74.90:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /fp/init/fortifi.js HTTP/1.1
Host: url.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.13.12
date: Sat, 03 Dec 2022 07:02:04 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, private
x-content-type-options: nosniff
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

ajax.totalav.com/free-download

35.190.24.19

200 OK

0 B

URL HTTP/2
ajax.totalav.com/free-download
IP
35.190.24.19:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /free-download HTTP/1.1
Host: ajax.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 07:02:04 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
access-control-allow-origin: https://www.totalav.com
access-control-allow-credentials: true
set-cookie: PHPSESSID=628051b88705da6f5ae60990ccc86074; path=/; domain=totalav.com
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Lato:300,400,700&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Lato:300,400,700&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Lato:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Dec 2022 07:02:03 GMT
date: Sat, 03 Dec 2022 07:02:03 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

resources.totalav.com/packages/icomoon/www/style.css

82.102.27.18

200 OK

0 B

URL HTTP/2
resources.totalav.com/packages/icomoon/www/style.css
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /packages/icomoon/www/style.css HTTP/1.1
Host: resources.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 03 Dec 2022 07:02:03 GMT
content-type: text/css
x-guploader-uploadid: ADPycdtjpjfKIbytrKNTxIN7MRgD4bvuifSnM5xLcHRmpbvrgX3wJ8hMeUTQbRiVr3xFQrBh3WcyeZL71orR9D478_3oPg
x-goog-generation: 1580314147124457
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3656
x-goog-hash: crc32c=M/Vc1A==, md5=mL8UO8y3T6ZBKuouvHiE5g==
x-goog-storage-class: MULTI_REGIONAL
access-control-expose-headers: Content-Type
expires: Sat, 10 Dec 2022 07:02:03 GMT
cache-control: max-age=604800
last-modified: Wed, 29 Jan 2020 16:09:07 GMT
etag: W/"98bf143bccb74fa6412aea2ebc7884e6"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
link: <https://storage.googleapis.com/protected-static/packages/icomoon/www/style.css>; rel="canonical"
x-cache: HIT
x-edge-location: noos
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

track.totalav.com/5f15d31c0f80e/click/58094/6GQBQmr26WcfsxUfMpLUmeI-qZ689f90

35.224.74.90

301 Moved Permanently

0 B

URL HTTP/2
track.totalav.com/5f15d31c0f80e/click/58094/6GQBQmr26WcfsxUfMpLUmeI-qZ689f90
IP
35.224.74.90:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /5f15d31c0f80e/click/58094/6GQBQmr26WcfsxUfMpLUmeI-qZ689f90 HTTP/1.1
Host: track.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
server: nginx/1.13.12
date: Sat, 03 Dec 2022 07:02:02 GMT
content-type: text/html; charset=UTF-8
location: https://www.totalav.com/free-download?exit
set-cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; expires=Fri, 03-Mar-2023 07:02:02 GMT; Max-Age=7776000; path=/; domain=.totalav.com
FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; expires=Fri, 03-Mar-2023 07:02:02 GMT; Max-Age=7776000; path=/; domain=.totalav.com
FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; expires=Fri, 03-Mar-2023 07:02:02 GMT; Max-Age=7776000; path=/; domain=.totalav.com
FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; expires=Fri, 03-Mar-2023 07:02:02 GMT; Max-Age=7776000; path=/; domain=.totalav.com
x-content-type-options: nosniff
access-control-allow-origin: *
x-execution-time: 35.038 ms
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

www.totalav.com/cross-domain/respond.src.js

35.190.24.19

200 OK

0 B

URL HTTP/2
www.totalav.com/cross-domain/respond.src.js
IP
35.190.24.19:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /cross-domain/respond.src.js HTTP/1.1
Host: www.totalav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/free-download?exit
Cookie: FRT:ADVTD=FID%3AAFF%3A1595265231%3AjLHrxvBmZCbMc%2F5f15d31c0f80e%2F58094%2F6GQBQmr26WcfsxUfMpLUmeI-qZ689f90%2F; FRT:VIS=VIS%3A221203919042154638af46adcece0.92151527; PHPSESSID=76e78bac392eb6f3cbfa739afdf6d00b; toast-message-seen=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
content-security-policy: frame-ancestors 'self'
content-type: text/javascript;charset=UTF-8
date: Sat, 03 Dec 2022 07:02:03 GMT
server: nginx
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP