cloudappsbackup.com/
54.85.77.149301 Moved Permanently 151 B IP 54.85.77.149:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash dd0cc475cfd7e15f5c62c077339d1376
3645ae1dd8826e5d30131c525569a074a0f39c4e
816dc6066e984ba77a65dc02225ec94209fa7ddb03716888fd28582403332101
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://cloudappsbackup.com/
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Tue, 13 Sep 2022 14:20:28 GMT
Content-Length: 151
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 13 Sep 2022 14:08:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TbMG9i97tIc-m8-5pLIyB2wWqZdZ6q0q-pRg3RRAAVnqkXGvm9yztQ==
Age: 700
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9579
Expires: Tue, 13 Sep 2022 17:00:05 GMT
Date: Tue, 13 Sep 2022 14:20:26 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 13 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1xLVulo9rRJ_XSXs71UJaD9FXzapgvZz8iJA019cBo2GW5PBT6jxMA==
age: 35112
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:20:26 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e18a121b35272eef6067780ec4f43b5
91528f9107fc3b8f49aa40de15550db2d1cd48c6
0ff429de934f8df7714047f399525c7c74cefa08a47ddc35dbbd674ce2e51aae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF429DE934F8DF7714047F399525C7C74CEFA08A47DDC35DBBD674CE2E51AAE"
Last-Modified: Tue, 13 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 13 Sep 2022 20:20:26 GMT
Date: Tue, 13 Sep 2022 14:20:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 13 Sep 2022 14:03:22 GMT
Cache-Control: max-age=3600
Expires: Tue, 13 Sep 2022 14:06:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mQ1AR4rUYe5LS2ghJTyaLe5oOT_cWIGpuTyJNvdi-fj1_H2z2QP36g==
Age: 1025
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e96dbe1b54932c8f447bbbfc9d31cfb0
b15d4a54fbdf95b0af8bd34b6f8ef03055eef0cd
427326963ac1ef6ddeeaf52ab07807c694b82effa6111671ada8270b1faecdae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5618
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:20:27 GMT
Last-Modified: Tue, 13 Sep 2022 12:46:49 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.242.32.27101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.242.32.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PL13GE5yaLgF0BIEc4BKKA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: t31mqj2tiQbOXZFT2idOL2MMJ7U=
cloudappsbackup.com/
54.85.77.149200 OK 10 kB IP 54.85.77.149:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash be950cde36fc8c9e651e7c214e6784db
aa912f1550c95cecfbcd5b5005e149582f3c6647
21972d632a205f6f349c4c5b5e4e361b783697949b4e52bbc94dff878b844ea8
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Link: <https://cloudappsbackup.com/wp-json/>; rel="https://api.w.org/", <https://cloudappsbackup.com/wp-json/wp/v2/pages/39>; rel="alternate"; type="application/json", <https://cloudappsbackup.com/>; rel=shortlink
X-Powered-By: PHP/7.4.9, ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:29 GMT
Content-Length: 9955
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7faa6a78f896de4528c8cc9ed35bfa11
199ad87495595163d7d16b1eddb9506c8ddb4918
7effc4afbb7417799d0ecbb32fce2a94cba732e488fd4ce81ba5a77f4d7c13ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:20:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cloudappsbackup.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
54.85.77.149200 OK 17 kB URL HTTP/1.1 cloudappsbackup.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 54.85.77.149:0
File type ASCII text, with very long lines (43771)
Hash 80e77ee88576bf29fce3627b7a68ba93
cad7a80e221262df968ef3cf18edbfc2c6a01388
7629ec786ee7f42bbd14715062a2e8fafe210484570acd4f06aef19191e160d6
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Fri, 15 Jul 2022 17:05:57 GMT
Accept-Ranges: bytes
ETag: "3960be266d98d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:29 GMT
Content-Length: 16612
www.google.com/recaptcha/api.js?render=6LeHeRQhAAAAAK00Us00Dy1BOTYtW9ybVADTRk4n&ver=3.0
142.250.74.164200 OK 589 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LeHeRQhAAAAAK00Us00Dy1BOTYtW9ybVADTRk4n&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 40674c68bb215e6143d67fd23ef90bc2
470b53d367a88f22b9090e43588127727ccc2304
3523c5b23154685a78eca57ba2a8e34dadfd38a4bcf2de0ca43eca50ccc048e3
GET /recaptcha/api.js?render=6LeHeRQhAAAAAK00Us00Dy1BOTYtW9ybVADTRk4n&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 13 Sep 2022 14:20:27 GMT
date: Tue, 13 Sep 2022 14:20:27 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 589
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ad439cab56126bcc402ee9f92365a209
a4b48a9a733c53cbc7020e190b8c787e1f80f55a
d0e2e52b66a8dec8c57092ec332f452a7348941d778d7b4686ca32696aabd065
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:20:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cloudappsbackup.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
54.85.77.149200 OK 5.0 kB URL HTTP/1.1 cloudappsbackup.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 54.85.77.149:0
File type ASCII text, with very long lines (11126)
Hash f9aa3aa9fd0743851fe52747dc98ab58
20efd968d25b0f720cc71f97b8522f95120085a1
a6a2336d4bbf7f10472afd72c043f7a3bc4628665efcf53af07f0dd24a7c8483
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Fri, 15 Jul 2022 17:05:59 GMT
Accept-Ranges: bytes
ETag: "c0eb10286d98d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:29 GMT
Content-Length: 4994
cloudappsbackup.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
54.85.77.149200 OK 3.0 kB URL HTTP/1.1 cloudappsbackup.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 54.85.77.149:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash aa0bacc537dc46dac7d582c8405b79ef
ac13a41e7392f4ee2730173c39b424d746dcd976
66ee4d35b41ff015933b533d4c230633febc0b6331e181a8ee357cf3113dbbd1
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Fri, 15 Jul 2022 17:05:59 GMT
Accept-Ranges: bytes
ETag: "5f89e286d98d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:29 GMT
Content-Length: 3001
cloudappsbackup.com/wp-content/plugins/wp-lightbox-2/styles/lightbox.min.css?ver=1.3.4
54.85.77.149200 OK 1.4 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/plugins/wp-lightbox-2/styles/lightbox.min.css?ver=1.3.4
IP 54.85.77.149:0
File type ASCII text, with CRLF line terminators
Hash 3d9b23b876023d17083edf472b758365
3631ea3e46dd21ac1813129db74d5820d82718f1
0d3becfc193a1b6e9bbef6a3db6b9cfdf408d7119e50969ab0fe50d36a5ebdeb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-lightbox-2/styles/lightbox.min.css?ver=1.3.4 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 21 Dec 2015 10:05:01 GMT
Accept-Ranges: bytes
ETag: "7f5f81ed73bd11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 1413
cloudappsbackup.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend.min.js?ver=7.12.2
54.85.77.149200 OK 3.3 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend.min.js?ver=7.12.2
IP 54.85.77.149:0
File type ASCII text, with very long lines (1022)
Hash 1a7f7e2dfaf870378b04c7cbfb760b3f
2274591e3ca1e512042554a6fa643c33d526b358
b4d5278a340c6a99beb0b0aa7b2c41d73a4ff495ff134871c7c8701bebc6873a
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend.min.js?ver=7.12.2 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 11:57:17 GMT
Accept-Ranges: bytes
ETag: "a3cf198e8d74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 3338
cloudappsbackup.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
54.85.77.149200 OK 8.8 kB URL HTTP/1.1 cloudappsbackup.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 54.85.77.149:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 48127590d647b94c77867c4fe0275567
c1d6a51517e67aca91f8f9162badbcf857ff2c03
18ab5dd112b5b690e3dddefdbdde358179a6fe48181b05c7e3afe9ff2bf38470
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Fri, 15 Jul 2022 17:05:59 GMT
Accept-Ranges: bytes
ETag: "5f89e286d98d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 8823
cloudappsbackup.com/wp-content/plugins/disqus-comment-system/public/js/comment_count.js?ver=3.0.17
54.85.77.149200 OK 574 B URL HTTP/1.1 cloudappsbackup.com/wp-content/plugins/disqus-comment-system/public/js/comment_count.js?ver=3.0.17
IP 54.85.77.149:0
Hash 309119fc47a5af97d104730ae73ffc47
ac440f5831e4531148a4806ac9b39d8d4434ddec
89ae3dfcae3bd066118cc313cec624c3151c13cbc09df986bc267479f5df8683
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/disqus-comment-system/public/js/comment_count.js?ver=3.0.17 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 08 Jul 2019 16:14:41 GMT
Accept-Ranges: bytes
ETag: "744803fa835d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 574
cloudappsbackup.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1
54.85.77.149200 OK 1.2 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1
IP 54.85.77.149:0
Hash cd55d0fc0c2acfc8ddf4177abba424f2
fd84a5bb34473e64fb981f1c7ca1f8099db144be
8289bf54cbdd3e5f05c63d3eb4a3bd33cf68d8ad37a9d52fb9d0e0858f5ccea1
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.1 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sat, 23 Jul 2022 10:06:21 GMT
Accept-Ranges: bytes
ETag: "2d3b1db7b9ed81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 1182
cloudappsbackup.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1
54.85.77.149200 OK 8.1 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1
IP 54.85.77.149:0
File type ASCII text, with very long lines (21904), with no line terminators
Hash e21de29b9a7278167d57b255383ee8b5
3861540139239f4bce9fcce340e26f7b0dbf218e
40a382dc01393eac39b933e86ec8ebb7fab6fdfa80a4c835719981a175019f94
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.1 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 23 Jul 2022 10:06:21 GMT
Accept-Ranges: bytes
ETag: "2d3b1db7b9ed81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 8118
cloudappsbackup.com/wp-content/plugins/disqus-comment-system/public/js/comment_embed.js?ver=3.0.17
54.85.77.149200 OK 644 B URL HTTP/1.1 cloudappsbackup.com/wp-content/plugins/disqus-comment-system/public/js/comment_embed.js?ver=3.0.17
IP 54.85.77.149:0
Hash 35ebac8d33276817d50bb1720e7d391e
6c1be29a53caffc87ea5e959e498530f2f358e58
add27dbba8abf7b38991ab22513b58dbc69e641fc99cdc3f975310f5141f97f3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/disqus-comment-system/public/js/comment_embed.js?ver=3.0.17 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 08 Jul 2019 16:14:41 GMT
Accept-Ranges: bytes
ETag: "1e6b803fa835d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 644
cloudappsbackup.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.1
54.85.77.149200 OK 672 B URL HTTP/1.1 cloudappsbackup.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.1
IP 54.85.77.149:0
File type ASCII text, with very long lines (999), with no line terminators
Hash a7da0e817485cd4fc25eaa598d5519c8
33e3a2e4695181889f0e60d1f1e2c6ee82dafed1
0a764454a1f4945d580b01b9ef9410ed0c1d59a0d7e8b0413417e552cf1c820b
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.1 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 23 Jul 2022 10:06:21 GMT
Accept-Ranges: bytes
ETag: "b697b6db7b9ed81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 672
cloudappsbackup.com/wp-content/plugins/wp-lightbox-2/wp-lightbox-2.min.js?ver=1.3.4.1
54.85.77.149200 OK 8.7 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/plugins/wp-lightbox-2/wp-lightbox-2.min.js?ver=1.3.4.1
IP 54.85.77.149:0
File type HTML document, ASCII text, with very long lines (446), with CRLF line terminators
Hash 4293647403c7df69b5436e37e77cb5d5
ed4fc2634d7a88217f3aaf0fca4bb1ad720ab27c
928619d699f25135c82ed87d73a5bc06409f42d4223c133a236d60e9c2e7797f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-lightbox-2/wp-lightbox-2.min.js?ver=1.3.4.1 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 21 Dec 2015 10:05:01 GMT
Accept-Ranges: bytes
ETag: "afd481ed73bd11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 8655
cloudappsbackup.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
54.85.77.149200 OK 6.6 kB URL HTTP/1.1 cloudappsbackup.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 54.85.77.149:0
File type ASCII text, with very long lines (15660)
Hash 5b49ac9423f60e2bc202fd0f262dcbca
8b8e9dc543c50fa37c93b4813e7b1df0b1e3c6ca
eece78511ada5a18c5969ad63f3458f1f1886adc05d198036c7dbf4f442299ab
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Fri, 15 Jul 2022 17:05:59 GMT
Accept-Ranges: bytes
ETag: "e06026286d98d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 6568
cloudappsbackup.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
54.85.77.149200 OK 40 kB URL HTTP/1.1 cloudappsbackup.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 54.85.77.149:0
File type ASCII text, with very long lines (65447)
Hash 59e233ae35f844463587a189f62aacef
92f46e8f1d1954040e9ff19d7702e5ac3cd1ecd6
3ba6995e7f9d8ad74faf6ca6a812ba743dc8d237ef570151fbd20ee8719e4f63
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Fri, 15 Jul 2022 17:05:59 GMT
Accept-Ranges: bytes
ETag: "c0eb10286d98d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 39763
cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/css/main.css
54.85.77.149200 OK 48 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/css/main.css
IP 54.85.77.149:0
File type ASCII text, with very long lines (723)
Hash bcc8f0a130c25fa7a6f34fd4431365db
bcd815b3c44c1adde0dc5e78490612fe8ca613fe
3993e68fa03f01bf5756243412ca7740551355a289cf2a7626eef097e6178cc8
GET /wp-content/themes/upsafe-dist/dist/css/main.css HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Wed, 14 Aug 2019 08:24:14 GMT
Accept-Ranges: bytes
ETag: "18f83fa87952d51:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 47492
cloudappsbackup.com/wp-content/uploads/2014/01/secured.png
54.85.77.149200 OK 3.0 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/uploads/2014/01/secured.png
IP 54.85.77.149:0
File type PNG image data, 125 x 121, 8-bit/color RGBA, non-interlaced\012- data
Hash b2e8c18a57572a8f91e7fed3a7744062
22386d68971214e14381c568be91de7866df758f
810302225f44b7cccad9b68b9d0a536c1b48cd715cbb6c258805de5c8c71445a
GET /wp-content/uploads/2014/01/secured.png HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Thu, 22 Sep 2016 07:11:53 GMT
Accept-Ranges: bytes
ETag: "e165498a014d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 2997
cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/images/logo.png
54.85.77.149200 OK 1.2 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/images/logo.png
IP 54.85.77.149:0
File type PNG image data, 177 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash b82ff356bb1acc0cc1815e2fc5c5a9fb
deba43a93d8d1e67503e7f7fae717a39119d018f
b17632b4a0b27d4479ae1ddb0df54e36577e697750adcc2c904efd30b435d026
GET /wp-content/themes/upsafe-dist/dist/images/logo.png HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Fri, 15 Jul 2022 19:13:17 GMT
Accept-Ranges: bytes
ETag: "80c429f07e98d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 1241
cloudappsbackup.com/wp-content/uploads/2014/01/esay-to-use.png
54.85.77.149200 OK 3.1 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/uploads/2014/01/esay-to-use.png
IP 54.85.77.149:0
File type PNG image data, 125 x 121, 8-bit/color RGBA, non-interlaced\012- data
Hash 02cdffaf3092177646547041dce2caee
5366f12ca9808fd65cf9c88f87b6585fba2fa698
2aff6e9c409cabc23dfea9f9977bb57f07433d3e74962af1ef7d40a29917fd72
GET /wp-content/uploads/2014/01/esay-to-use.png HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Thu, 22 Sep 2016 07:12:04 GMT
Accept-Ranges: bytes
ETag: "6af429fa014d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 3139
cloudappsbackup.com/wp-content/uploads/2014/01/efficient.png
54.85.77.149200 OK 3.8 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/uploads/2014/01/efficient.png
IP 54.85.77.149:0
File type PNG image data, 125 x 121, 8-bit/color RGBA, non-interlaced\012- data
Hash feffdec0b6e03466b0dc177c36aee985
6c45bf61011665ccb03446d762f385e60a538e51
12f7b796ee63cdf41b0582dba847d8421ff35a6ce9c2c391d926f981d98eddcb
GET /wp-content/uploads/2014/01/efficient.png HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Thu, 22 Sep 2016 07:11:34 GMT
Accept-Ranges: bytes
ETag: "7a6e168da014d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 3813
cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/images/amazon-partner-logo.png
54.85.77.149200 OK 9.9 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/images/amazon-partner-logo.png
IP 54.85.77.149:0
File type PNG image data, 200 x 97, 8-bit/color RGBA, non-interlaced\012- data
Hash d3c078a4c6d5dc214c4e495cbda71b52
e45ac4b63af950d30ead730f650ed039deca25ea
16ad2adb5ff84b8acda20cbf5b225361a2e5491c87878826f2f8efef66e37c89
GET /wp-content/themes/upsafe-dist/dist/images/amazon-partner-logo.png HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Thu, 02 Mar 2017 16:11:56 GMT
Accept-Ranges: bytes
ETag: "dbd0a8b66f93d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 9867
cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/fonts/fontawesome-webfont.woff2?v=4.6.3
54.85.77.149404 Not Found 1.2 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/fonts/fontawesome-webfont.woff2?v=4.6.3
IP 54.85.77.149:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
GET /wp-content/themes/upsafe-dist/dist/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 1245
cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Regular.woff2
54.85.77.149404 Not Found 1.2 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Regular.woff2
IP 54.85.77.149:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Regular.woff2 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 1245
cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Bold.woff2
54.85.77.149404 Not Found 1.2 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Bold.woff2
IP 54.85.77.149:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Bold.woff2 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 1245
cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Light.woff2
54.85.77.149404 Not Found 1.2 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Light.woff2
IP 54.85.77.149:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Light.woff2 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 1245
cloudappsbackup.com/wp-content/uploads/2014/01/cloud-to-cloud.png
54.85.77.149200 OK 3.8 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/uploads/2014/01/cloud-to-cloud.png
IP 54.85.77.149:0
File type PNG image data, 125 x 121, 8-bit/color RGBA, non-interlaced\012- data
Hash a51a46f0d15e5526e7e6493c29bf846d
cd0a94a2361350c288a1f50692d293909f9ce7bd
24432f7826384466ab8515812256c9460375eefcecfb241fb052545e8fdc6077
GET /wp-content/uploads/2014/01/cloud-to-cloud.png HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Thu, 22 Sep 2016 07:12:19 GMT
Accept-Ranges: bytes
ETag: "6f42eaa7a014d21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 3829
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9644
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 14:20:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9644
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 14:20:28 GMT
Connection: keep-alive
js.hs-scripts.com/5430360.js?integration=WordPress
104.17.210.204404 Not Found 594 B URL HTTP/2 js.hs-scripts.com/5430360.js?integration=WordPress
IP 104.17.210.204:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0725bd4f10cca96163ce4dcd861af415
ea329bb8f76a9f8570cfff7a031632e5262e5273
ab97ceb097940a7670e4344a8e62a79aedfa7f23c8788c7c24049495309488c8
GET /5430360.js?integration=WordPress HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Tue, 13 Sep 2022 14:20:28 GMT
content-type: application/json;charset=utf-8
x-trace: 2B54709CEB3332941753C978F52149ECD21A196695000000000000000000
x-hubspot-notfound: true
vary: Accept-Encoding
x-hubspot-correlation-id: 3d249b6c-3f0c-4d2f-88d5-ef7f5f594e8c
access-control-allow-credentials: true
access-control-max-age: 3600
cache-control: public, max-age=60
access-control-allow-origin: https://cloudappsbackup.com
cf-cache-status: MISS
expires: Tue, 13 Sep 2022 14:21:28 GMT
server: cloudflare
cf-ray: 74a186121d0cb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9644
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 14:20:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 838f709437b2dfbede4ee15307afe217
2ab2ee20e720b78be6deb55f967ac0d8b7dad048
a3b47ce595b475f2aab6f7378888d15ba3e98453d6c8a3d88946efc5d65eedba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10849
x-amzn-requestid: 722d8d75-0911-4b59-af65-2b408bc09d80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXbx6E9-oAMFT8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa672-74ea9343619d4a1865e34818;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:36:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4rpwcrZLDlgcwBtH7wpoHMOb8hhFbKbZSQpjWqUqbt_Sl4ud3dm9Vg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:42:18 GMT
age: 59890
etag: "2ab2ee20e720b78be6deb55f967ac0d8b7dad048"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4acf448-2a96-49a3-8257-7743a38525f5.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4acf448-2a96-49a3-8257-7743a38525f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae7d16fad4da4300a1953a916fb59688
488c58f73c81bb4d45e496c458fe3197a0884c26
4d4946932d53caad6e97bcc66527bd9cad658c0cf6f4215d01943b8a9e832959
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4acf448-2a96-49a3-8257-7743a38525f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7720
x-amzn-requestid: 7670a969-cb9c-4583-8455-10f7512ee9c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YT9YJG__oAMF4YA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e429a-674ef5a4727826ab0d60529e;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 20:18:34 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OOCryyfLht-3ebVn-5aWtQI_JnVkWxMGggv07cUoomDlgb5ogru7vg==
via: 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:01:55 GMT
age: 58713
etag: "488c58f73c81bb4d45e496c458fe3197a0884c26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9ab2ec10c79b91d15edb1d1e3dc763c
744fee4a0baa22ba3aa352d60620a916972b47dd
f7bb66f5bb572d73f936fc74823f51ede1f2c4e309a939b39d9529ff8f757fbe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9945
x-amzn-requestid: a347749f-a63a-4533-a274-7151b9f235ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXcX8HAKoAMF5EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa765-56cff18515b2a5b3397231df;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:40:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lZ3FmD1gM8YBgZNt97kuYSol1kj0GQqRjyLT_7715VtH9GR1WpMDxA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:42:20 GMT
age: 59888
etag: "744fee4a0baa22ba3aa352d60620a916972b47dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6174529fff57758e958da5432344962f
05ec2076b32398d60ee77fab8c14345bc7dfe647
65284a76355864efa944dff5033575013c6d74a019a7b731e0236603f2f656a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9466
x-amzn-requestid: ba3f7eac-61c9-4b5f-ae8a-b372906a25ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YOTeoHMKoAMFr5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bff90-1e70e2c444242a2d46387986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 03:08:00 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: -SwaUjMInlOaGpH6yK1W1a57QCQMgY-l43RdUfKVtZA1zJzMrLzC6g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 04:49:30 GMT
age: 34258
etag: "05ec2076b32398d60ee77fab8c14345bc7dfe647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e407da4d97d497925b1ab523fd416787
166741631fb93d109b18dde6d316b3fa3276aa8f
707460c02438da6114e35e0b6569d42c0f3fb747f8cb51002f4d52bedbcffa61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8485
x-amzn-requestid: a56c9282-2786-4ae7-9fc2-0468bcc820a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FM1oAMFZ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-753cc4f121c9b77d22bb82b5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2jR7F56GE_qqbRBWjNDiDBgWbCYv-Ac6kvC1LI0HciQkKGTeNDYlyw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:16:59 GMT
age: 57809
etag: "166741631fb93d109b18dde6d316b3fa3276aa8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bb76515-eb77-4f38-aae2-75a885833991.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bb76515-eb77-4f38-aae2-75a885833991.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 557695ec8ffeebb0272c099542a14ace
ad627b434e1c3b693d8636675bcea0f8794e0dc2
4d79c7830caa73b921d6abaa97771ab1f4dc8fd709597f01ba04c268c03b6157
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bb76515-eb77-4f38-aae2-75a885833991.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10407
x-amzn-requestid: 85df5ad9-f229-4d33-90b9-5dd28c77578a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YH396F2SIAMFnGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63196d25-3ee08f1e27cd37e96dba0f40;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 04:18:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Oep2UJdadBnTBuCy7CexUcezT0cCvm_9hroZnV-UrC9lQQxwUc4rkw==
via: 1.1 07c02ae6c53d85283eb15380264d9998.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 06:18:57 GMT
age: 28891
etag: "ad627b434e1c3b693d8636675bcea0f8794e0dc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Bold.woff
54.85.77.149200 OK 89 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Bold.woff
IP 54.85.77.149:0
File type Web Open Font Format, TrueType, length 89208, version 2.1150\012- data
Hash ad140ff02a7091257e2b31619106194e
274d0176d3b2e324111d0f836625960bdf24a29a
7abbd3f2f61323743887446db40214f9055676c8cee6768e36f24c3ba3915c61
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Bold.woff HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: font/x-woff
Last-Modified: Wed, 19 Oct 2016 15:51:33 GMT
Accept-Ranges: bytes
ETag: "cb89a7aa202ad21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 89208
js.hs-scripts.com/5430360.js?integration=WordPress
104.17.210.204404 Not Found 299 kB URL HTTP/2 js.hs-scripts.com/5430360.js?integration=WordPress
IP 104.17.210.204:0
File type JSON data\012- , ASCII text, with no line terminators
Size 299 kB (299028 bytes)
Hash 430689850b81dc43f6cf48480659a65d
e62d53a3c9fd2dd0b6894ce6da4bd5a92eb81eb1
91fa82844407e911df4e0e5a4beef418fb9d03ffa48b8514310c683b19883819
GET /5430360.js?integration=WordPress HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Tue, 13 Sep 2022 14:20:28 GMT
content-type: application/json;charset=utf-8
x-trace: 2B54709CEB3332941753C978F52149ECD21A196695000000000000000000
x-hubspot-notfound: true
vary: Accept-Encoding
x-hubspot-correlation-id: 3d249b6c-3f0c-4d2f-88d5-ef7f5f594e8c
access-control-allow-credentials: true
access-control-max-age: 3600
cache-control: public, max-age=60
access-control-allow-origin: https://cloudappsbackup.com
cf-cache-status: HIT
age: 0
expires: Tue, 13 Sep 2022 14:21:28 GMT
server: cloudflare
cf-ray: 74a18616cbd6b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Regular.woff
54.85.77.149200 OK 89 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Regular.woff
IP 54.85.77.149:0
File type Web Open Font Format, TrueType, length 89432, version 2.1101\012- data
Hash 081b11ebaca8ad30fd092e01451015dc
db6450746e5df1eb0636bc84f21aae94e1cafea4
62f8bf9bc3a64fac882bedecccd7e64b6520971b5864fd5a5a2177a4bcc8b735
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Regular.woff HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: font/x-woff
Last-Modified: Wed, 19 Oct 2016 15:51:34 GMT
Accept-Ranges: bytes
ETag: "d624e0aa202ad21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 89432
cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/fonts/fontawesome-webfont.woff?v=4.6.3
54.85.77.149200 OK 90 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/fonts/fontawesome-webfont.woff?v=4.6.3
IP 54.85.77.149:0
File type Web Open Font Format, TrueType, length 90412, version 1.0\012- data
Hash c8ddf1e5e5bf3682bc7bebf30f394148
6d7e6a5fc802b13694d8820fc0138037c0977d2e
adbc4f95eb6d7f2738959cf0ecbc374672fce47e856050a8e9791f457623ac2c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/upsafe-dist/dist/fonts/fontawesome-webfont.woff?v=4.6.3 HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: font/x-woff
Last-Modified: Wed, 19 Oct 2016 15:51:34 GMT
Accept-Ranges: bytes
ETag: "a78a33ab202ad21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:30 GMT
Content-Length: 90412
cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Light.woff
54.85.77.149200 OK 89 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Light.woff
IP 54.85.77.149:0
File type Web Open Font Format, TrueType, length 89220, version 2.1151\012- data
Hash 37fbbbad5577a95bdf058307c717c882
d6d654d36c6cf9053675860d00125d6c543560d8
a7f9ba2740e2dfbbe9afef85e04192347f27b8537b258acd30294791dd13f9de
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/upsafe-dist/dist/fonts/Roboto/Roboto-Light.woff HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: font/x-woff
Last-Modified: Wed, 19 Oct 2016 15:51:33 GMT
Accept-Ranges: bytes
ETag: "f350baaa202ad21:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:31 GMT
Content-Length: 89220
cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/js/main.js
54.85.77.149200 OK 414 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/js/main.js
IP 54.85.77.149:0
File type ASCII text, with very long lines (63124)
Size 414 kB (414460 bytes)
Hash 303f522f1c142b8be0b967c32fe6e86c
a3d028340f5b48e2db325bdbca9052812d179e36
4627d606b7052b48726314bbe2f47012cd7b8d0449167218415f480dc0e7e3a8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/upsafe-dist/dist/js/main.js HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Transfer-Encoding: chunked
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Wed, 19 Oct 2016 15:51:54 GMT
Accept-Ranges: bytes
ETag: "4e1bd9b6202ad21:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:31 GMT
upsafe.disqus.com/count.js
151.101.84.134200 OK 871 B URL HTTP/1.1 upsafe.disqus.com/count.js
IP 151.101.84.134:0
File type ASCII text, with very long lines (528)
Hash a487039f9b553cb4f6928743872234e9
b3d835075d1983a8c2fe716285d173fcc3708f9c
364f622ba24e063adcee84f132da53c6e6071745f04a00d10937663deb24b822
GET /count.js HTTP/1.1
Host: upsafe.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 871
Content-Type: application/javascript; charset=utf-8
Server: nginx
Last-Modified: Thu, 08 Sep 2022 14:04:36 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
ETag: "6319f674-367"
X-Amz-Cf-Pop: DFW56-P4
X-Amz-Cf-Id: nj4p440ZzL6idC1j5VuSJ7I4-5QjacYe9i7syxVzpLi5anNLYVmAtA==
Cache-Control: public, max-age=300
Date: Tue, 13 Sep 2022 14:20:30 GMT
Age: 173
Vary: Accept-Encoding
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ec7a5bb8e310f5c9c992cf85832d5445
e32b8e200a79da9008985e8e6c272f35b02581c5
6391e4c68631e272509ade559b8f568b03dd88be1956906332ae584f9faee00a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:20:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bd7b5eb635d48acf1428c326eaa892a1
ba9f6c0db831a88b7d6dbdd98f19e76b4b501258
557466a3b642e90e352898073ff23f6a034c3b233e8aee0f0f69cd6ca83d49f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:20:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 13 Sep 2022 12:41:12 GMT
expires: Tue, 13 Sep 2022 14:41:12 GMT
cache-control: public, max-age=7200
age: 5958
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/plugins/ua/linkid.js
142.250.74.174200 OK 859 B URL HTTP/2 www.google-analytics.com/plugins/ua/linkid.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1335)
Hash 904463ce35aee800847ab85ec948aaf6
904e4d2647466c7f7e0f7412019984e3b2ccfb24
057b4d29359dfe2536a2ec40243bdfa7b151222efcc1eb358608994a14c34237
GET /plugins/ua/linkid.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 859
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 14:17:47 GMT
expires: Tue, 13 Sep 2022 15:17:47 GMT
cache-control: public, max-age=3600
age: 163
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
142.250.74.163200 OK 157 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (539)
Size 157 kB (157166 bytes)
Hash 026df0dfed2314af108e700900288961
51c2a55bca7d65c549ef138d1294cac2aa98dd96
24eefc59f5d298ce40bdd33c8157ad14631984159fca8e5980037366c44c2b34
GET /recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloudappsbackup.com
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157166
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 17:23:20 GMT
expires: Wed, 06 Sep 2023 17:23:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Sep 2022 00:04:24 GMT
content-type: text/javascript
age: 593830
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ec7a5bb8e310f5c9c992cf85832d5445
e32b8e200a79da9008985e8e6c272f35b02581c5
6391e4c68631e272509ade559b8f568b03dd88be1956906332ae584f9faee00a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:20:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bd7b5eb635d48acf1428c326eaa892a1
ba9f6c0db831a88b7d6dbdd98f19e76b4b501258
557466a3b642e90e352898073ff23f6a034c3b233e8aee0f0f69cd6ca83d49f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:20:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7c85e22b75dd559a6c65736bae63c5bd
eb57470991666108a01b8ee0adf707e1c1dc8642
bd05cc5dfc5ddd554cc9ac5395035ce302b0b74343d199a64b2dbdcac0070944
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:20:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-54952412-2&cid=2020966316.1663078817&jid=1116958351&gjid=1386248491&_gid=145905400.1663078817&_u=aGBAgUAjCAAAAE~&z=1750239323
142.251.1.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-54952412-2&cid=2020966316.1663078817&jid=1116958351&gjid=1386248491&_gid=145905400.1663078817&_u=aGBAgUAjCAAAAE~&z=1750239323
IP 142.251.1.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-54952412-2&cid=2020966316.1663078817&jid=1116958351&gjid=1386248491&_gid=145905400.1663078817&_u=aGBAgUAjCAAAAE~&z=1750239323 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://cloudappsbackup.com
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://cloudappsbackup.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 13 Sep 2022 14:20:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7c85e22b75dd559a6c65736bae63c5bd
eb57470991666108a01b8ee0adf707e1c1dc8642
bd05cc5dfc5ddd554cc9ac5395035ce302b0b74343d199a64b2dbdcac0070944
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:20:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
upsafe.disqus.com/embed.js
151.101.84.134200 OK 25 kB URL HTTP/1.1 upsafe.disqus.com/embed.js
IP 151.101.84.134:0
File type ASCII text, with very long lines (32091)
Hash 243ee7dad5db7bb0569633ded00c07c5
aff533a54d19cbe8376c66b90b6a0af8f364ed24
eb5c79be4415dac261421350e99fbb3f0ddf8fe676ca6e1db31e2eff41dc4699
GET /embed.js HTTP/1.1
Host: upsafe.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 25379
Server: openresty
Content-Type: application/javascript; charset=utf-8
X-Service: router
Content-Encoding: gzip
Date: Tue, 13 Sep 2022 14:20:30 GMT
Age: 0
Vary: Accept-Encoding
Cache-Control: private, max-age=60
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 12:31:58 GMT
expires: Sun, 10 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 265712
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 00:48:31 GMT
expires: Sat, 09 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 394319
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/styles/lounge.9772024640e1cec8d973cd80fb62abd8.css
143.204.55.72200 OK 26 kB URL HTTP/2 c.disquscdn.com/next/embed/styles/lounge.9772024640e1cec8d973cd80fb62abd8.css
IP 143.204.55.72:0
File type ASCII text, with very long lines (65469)
Hash 4ce72b6a8aa2f41bee77d2e9368008a3
5bcae35b33d95af653f83d0435bfb8b590a06254
4fbb9394a919e5b087e3d63b77781758489f02be847eb899e977518576a906cb
GET /next/embed/styles/lounge.9772024640e1cec8d973cd80fb62abd8.css HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 26136
date: Mon, 12 Sep 2022 19:34:09 GMT
server: nginx
last-modified: Mon, 12 Sep 2022 19:13:42 GMT
etag: "631f84e6-6618"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 12 Sep 2023 19:34:09 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RA9qMjpEI0IZw6cP2nwniMwS4U24fRn5qLD2TTyHW9z1-UKVvG2M8g==
age: 67581
X-Firefox-Spdy: h2
cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/images/mainicon.ico
54.85.77.149404 Not Found 28 kB URL HTTP/1.1 cloudappsbackup.com/wp-content/themes/upsafe-dist/dist/images/mainicon.ico
IP 54.85.77.149:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash a88c2fcd6f7da25c60e228ee3d4ab656
aa2c8081d01c9bdfb3f7366269eeea25fca85813
a7125372ab76b1aca98328ba62e33278ad35f6da7e7b5752641671a5a560ec59
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/upsafe-dist/dist/images/mainicon.ico HTTP/1.1
Host: cloudappsbackup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Cache-Control: no-cache, must-revalidate, max-age=0
Content-Type: text/html; charset=UTF-8
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Server: Microsoft-IIS/8.5
Link: <https://cloudappsbackup.com/wp-json/>; rel="https://api.w.org/"
X-Powered-By: PHP/7.4.9, ASP.NET, ARR/3.0, ASP.NET
Date: Tue, 13 Sep 2022 14:20:32 GMT
Content-Length: 28161
c.disquscdn.com/next/embed/lounge.bundle.29e6af40821697bba1cb55aca8ebe0da.js
143.204.55.72200 OK 124 kB URL HTTP/2 c.disquscdn.com/next/embed/lounge.bundle.29e6af40821697bba1cb55aca8ebe0da.js
IP 143.204.55.72:0
File type ASCII text, with very long lines (32035)
Size 124 kB (124008 bytes)
Hash c2be67ea36262afa1d757cce4842b658
a18b815d368d6b9d16836aa3e51fcebf10e74f42
93d5b2c272e433fe2f9128218e4b55babd694f884fd4ab59f88aa15e754dd41f
GET /next/embed/lounge.bundle.29e6af40821697bba1cb55aca8ebe0da.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 124008
date: Mon, 12 Sep 2022 19:34:09 GMT
server: nginx
last-modified: Mon, 12 Sep 2022 19:13:42 GMT
etag: "631f84e6-1e468"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 12 Sep 2023 19:34:09 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: scGAJB2K1ZR8e8hl6yzRjFnikVXX7vVHJ9fQONhd9wIdX7S45bJ7gw==
age: 67581
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/common.bundle.33bc87b2c4f9324203cc85b7dd1d0492.js
143.204.55.72200 OK 95 kB URL HTTP/2 c.disquscdn.com/next/embed/common.bundle.33bc87b2c4f9324203cc85b7dd1d0492.js
IP 143.204.55.72:0
File type ASCII text, with very long lines (32023)
Hash 7b99df04cc3984222b4f02f738de9fa4
f3eefe01e2f39579ceaca4927de1177711e01544
c64b6a193db830888df222e8c3d1d0c964cb9700e2ed62796e02dbe49a39d8ec
GET /next/embed/common.bundle.33bc87b2c4f9324203cc85b7dd1d0492.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 94755
date: Mon, 25 Jul 2022 05:21:29 GMT
server: nginx
last-modified: Fri, 22 Jul 2022 12:02:54 GMT
etag: "62da91ee-17223"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 25 Jul 2023 05:21:29 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vhrdv-1cPwmMHv-JBREwtlqhPuFlgstUM7V9SD_l_xbedlubUv6puA==
age: 4352341
X-Firefox-Spdy: h2
disqus.com/next/config.js
151.101.192.134200 OK 16 kB URL HTTP/1.1 disqus.com/next/config.js
IP 151.101.192.134:0
File type ASCII text, with very long lines (16127), with no line terminators
Hash 78165d31560c2bf4064ae71dafff3993
69ce30957f04e499b2335677864aefbdd59f84da
75408f16c4d5d7fc6a5e2efa1968549638331d1eb0552dd6437b8999062f7f9e
GET /next/config.js HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://cloudappsbackup.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 16127
Server: nginx
Content-Type: application/javascript; charset=UTF-8
Cache-Control: public, stale-while-revalidate=300, s-stalewhilerevalidate=3600, max-age=60
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Tue, 13 Sep 2022 14:20:30 GMT
Age: 1
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains