firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 14:04:18 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -Yk8X80yn5qnlx_UKDZfuUaarQ086brqWJMLiEeugLf7s1l90-4Xqg==
Age: 3439
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7754
Expires: Tue, 06 Sep 2022 17:10:51 GMT
Date: Tue, 06 Sep 2022 15:01:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qxWxYO7uiqDBR9GFrBSmKommaKmPt9rPhMue52PiIDOFhqcdrjZcdQ==
age: 49580
X-Firefox-Spdy: h2
www.proficientcredentials.com/header/header.component
34.88.224.67301 Moved Permanently 76 B URL HTTP/1.1 www.proficientcredentials.com/header/header.component
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with no line terminators
Hash bd5979a646b49e3802b7fc574c194586
eb15ea7e4cf8ba865b58b0377c96b4b2865221eb
d698757e073180e2e79b33ac3d971c6401d30de0f0cd82cf9b5b056001598b45
Analyzer Verdict Alert fortinet Malware
GET /header/header.component HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 76
Content-Type: text/plain
Date: Tue, 06 Sep 2022 15:01:37 GMT
Location: https://www.proficientcredentials.com/header/header.component
Server: Netlify
X-Nf-Request-Id: 01GC9N4CHFRX5TH2GP516QM75Z
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 15:01:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8a1370b11f9da7ec66c4e17b0bb00d30
65fe1f7370396543542fa036720fbf57aa71f47e
6fb08bd7ccbfd0bf66ec5b984d4b35598dc79296e018fd5b83ef4a01bff7be57
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6FB08BD7CCBFD0BF66EC5B984D4B35598DC79296E018FD5B83EF4A01BFF7BE57"
Last-Modified: Mon, 05 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2791
Expires: Tue, 06 Sep 2022 15:48:08 GMT
Date: Tue, 06 Sep 2022 15:01:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 06 Sep 2022 14:38:18 GMT
Cache-Control: max-age=3600
Expires: Tue, 06 Sep 2022 15:34:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5IQN2epq5TrCRLb4EBC5vp0PRAStrf5xB8KTPRXus3dw0DsRrWR9Cg==
Age: 1400
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e8952752ad4a452a575522a7eb737217
c5554fa2af05d7a7117032b0f99352de08988346
8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3900
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:38 GMT
Last-Modified: Tue, 06 Sep 2022 13:56:38 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash eaa518a8f6a1210c2196cd431743fec9
53f277bcdb5e789edbbd946df64ec57ccd87b310
f6ea8d26e3fcc91b660702d33b8b661e42164f00a01196e08d402e053bdba2d5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 15:01:38 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 09:46:52 GMT
Expires: Sat, 10 Sep 2022 09:46:51 GMT
Etag: "53f277bcdb5e789edbbd946df64ec57ccd87b310"
Cache-Control: max-age=326112,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 746814c46900b4ff-OSL
push.services.mozilla.com/
54.187.71.185101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.71.185:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1YtzIAiZufoa8qRLdIUiRw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EqSu2KMLKaAwSLEG8KqLkMCNpuI=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3df811ac19fde08f49ef246c29cef161
e1c8d54b357adaf32e80427028cc884fa35959e0
e2749178e0bf0c4045a96388a58029ddd92d13a866021737864cd68e11317292
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb9bf29f1e0acaa7ac6d6566381370
dec1bea642dffbc11ebd6d65c94f87d6db95703a
b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6LeLojsaAAAAAB8OV2zHmQvFW66cq79i-xJqdu8j&onload=ng2recaptchaloaded
142.250.74.164200 OK 606 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LeLojsaAAAAAB8OV2zHmQvFW66cq79i-xJqdu8j&onload=ng2recaptchaloaded
IP 142.250.74.164:0
File type ASCII text, with very long lines (945), with no line terminators
Hash 26ee8ee0c1674d346440158f29975e06
3b536658252b3d29ad4960afc29612aba5a4609f
d4d48803203dbd500e248442bbb4394d384710bba5ec4dbdcb985e6fa12601dd
GET /recaptcha/api.js?render=6LeLojsaAAAAAB8OV2zHmQvFW66cq79i-xJqdu8j&onload=ng2recaptchaloaded HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 06 Sep 2022 15:01:38 GMT
date: Tue, 06 Sep 2022 15:01:38 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 606
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/ns.html?id=GTM-MQ86D29
142.250.74.72200 OK 207 B URL HTTP/2 www.googletagmanager.com/ns.html?id=GTM-MQ86D29
IP 142.250.74.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c3ce507f846a5225349295f614a0c85f
6dc66541e7173c384ac09e0d04b8c327afe9047d
2bc52ac9610cec59d0f370fd8da6bad5150166c561725f58043f2a81d63e2062
GET /ns.html?id=GTM-MQ86D29 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-encoding: br
vary: *
date: Tue, 06 Sep 2022 15:01:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 207
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-MQ86D29
142.250.74.72200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MQ86D29
IP 142.250.74.72:0
File type ASCII text, with very long lines (19104)
Hash 871417ee88c538893c7ec01afd6255ca
a60f31c4c6f136f4bedd11a6176823d029562013
7606a378c127f395961352792aa4a853e07b6ebd7b18db37ffc2f1a64d7783c0
GET /gtm.js?id=GTM-MQ86D29 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 15:01:38 GMT
expires: Tue, 06 Sep 2022 15:01:38 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76021
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 80f29cbbe260408ee1418a6fbce5a537
96cfe52bcf90cfdba5cba7907d49a91f44adc032
de264b42b7c59bdadf606387adaca04af680705a947096d048f288c3e5be8517
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.proficientcredentials.com/styles.6b7fcbddb4a123c9.css
34.88.224.67200 OK 7.7 kB URL HTTP/2 www.proficientcredentials.com/styles.6b7fcbddb4a123c9.css
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (46936)
Hash 72b4ba1ff25313829002bb064afcaea1
a07fa4d012c9613121b043c919cd37f3e6254e4c
08ed948b44e128ba706e0861165ed04e44012a5ff6e9fe99192ddb19019faedd
GET /styles.6b7fcbddb4a123c9.css HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/css; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:38 GMT
etag: "64ea634493884e3804c7fd4822ba76a0-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4D6C4K311YDDZ08FJXM8
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash eaa518a8f6a1210c2196cd431743fec9
53f277bcdb5e789edbbd946df64ec57ccd87b310
f6ea8d26e3fcc91b660702d33b8b661e42164f00a01196e08d402e053bdba2d5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 15:01:38 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 09:46:52 GMT
Expires: Sat, 10 Sep 2022 09:46:51 GMT
Etag: "53f277bcdb5e789edbbd946df64ec57ccd87b310"
Cache-Control: max-age=326112,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 746814c46e440b51-OSL
ocsp.usertrust.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash e8def03f4669444299a4d1c78de8b73d
92476185f681e5abf9cb0c627cc0029b8cf14714
9c7917a73ac4ed764e3d5bfcc0eba899f6b0240f046c39cf45720075a1e0d683
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 15:01:38 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 05 Sep 2022 09:07:11 GMT
Expires: Mon, 12 Sep 2022 09:07:10 GMT
Etag: "92476185f681e5abf9cb0c627cc0029b8cf14714"
Cache-Control: max-age=602894,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1079
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 746814c5cfb3b523-OSL
bat.bing.com/action/0?ti=134625931&Ver=2
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=134625931&Ver=2
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=134625931&Ver=2 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.googletagmanager.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=10A1616B819E67821988737C806B6655; domain=.bing.com; expires=Sun, 01-Oct-2023 15:01:38 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 26A723D43C914872A0548588CD88C22F Ref B: OSL30EDGE0208 Ref C: 2022-09-06T15:01:38Z
date: Tue, 06 Sep 2022 15:01:38 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f41565238dc856269109dcc30c34c535
28517f51eb3b6cd08981afbf878446d635430741
9e314961a8fca836481ea022db365cc463bcef3b5003c63ccece611b8ff77fe6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f41565238dc856269109dcc30c34c535
28517f51eb3b6cd08981afbf878446d635430741
9e314961a8fca836481ea022db365cc463bcef3b5003c63ccece611b8ff77fe6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f41565238dc856269109dcc30c34c535
28517f51eb3b6cd08981afbf878446d635430741
9e314961a8fca836481ea022db365cc463bcef3b5003c63ccece611b8ff77fe6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.proficientcredentials.com/polyfills.f364fc388fd7d751.js
34.88.224.67200 OK 15 kB URL HTTP/2 www.proficientcredentials.com/polyfills.f364fc388fd7d751.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (45659), with no line terminators
Hash 81adc60cba299712b49ac82638225d2d
8074fb3962be0d1378a212675e57fdf704b84ca6
b9c9453b87c8f8d696aea0692ca5152f126cfc1704e1da349ace28e8e3ae3bfc
Analyzer Verdict Alert fortinet Malware
GET /polyfills.f364fc388fd7d751.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:38 GMT
etag: "7e474a0e8be838a630769c44aa970611-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4D6B93EFS0C0XHQQCN3R
X-Firefox-Spdy: h2
sessions.bugsnag.com/
35.190.88.7200 OK 0 B IP 35.190.88.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type
Referer: https://www.proficientcredentials.com/
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At
access-control-allow-methods: POST
access-control-allow-origin: *
date: Tue, 06 Sep 2022 15:01:38 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash a4009b2dcb8d3bf3c098ca01b4136c1c
b42d5684359952be0f98d4baa7d982e09aaa3535
d824e89572ef345364e5b9f3359e74c19b7f95be39d3e2710528010571ab015b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 15:01:38 GMT
Last-Modified: Tue, 06 Sep 2022 14:12:07 GMT
Server: ECS (nyb/1D31)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4Fue2omO7Wzi8D5thtDBskmUm8ZoLLx-7QLYVUfo3Q6zbaSfnPCqcg==
Age: 2971
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 5ebaebced2770eae7b8a83696137597f
5fc87a3e6f888c100d5118d0c941b306c6f6ac94
3323c0f78927132fcfd7d030288ad9d9ab6f4a083251f3673eb7f053c418dd98
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 15:01:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 17:01:58 GMT
Expires: Sat, 10 Sep 2022 17:01:57 GMT
Etag: "5fc87a3e6f888c100d5118d0c941b306c6f6ac94"
Cache-Control: max-age=352217,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 746814c6ac21b4ff-OSL
fast.b-cdn.net/client/2208/28190557/ac226551/v1_gs_lib.js
194.242.11.186200 OK 48 kB URL HTTP/2 fast.b-cdn.net/client/2208/28190557/ac226551/v1_gs_lib.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (32768)
Hash 2046d96e29ade9f393b4fdac105c7319
0de924a2e0ccb68571143bac3c91dee68e142dfd
04088d12d7794a89285919fdaec5309325977bb89554c13448071e0dba8ec6cd
GET /client/2208/28190557/ac226551/v1_gs_lib.js HTTP/1.1
Host: fast.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:01:39 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 44702
cdn-uid: 7b3318fd-7b74-4ed0-bcec-abed109512ea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
etag: W/"630bbdfa-2436e"
last-modified: Sun, 28 Aug 2022 19:11:54 GMT
cdn-storageserver: DE-199
cdn-fileserver: 440
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/03/2022 23:01:43
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 04df06be5b04e3b18662baab03539d2f
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 502051
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sessions.bugsnag.com/
35.190.88.7202 Accepted 21 B IP 35.190.88.7:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1807ffa1d44e667592a0f91c668ba65b
4d48849fa0f6917c9c57ed958680e9a1e722382b
0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a
POST / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: adace47c81aa5f59b4eba08303fd5ae6
Bugsnag-Payload-Version: 1
Bugsnag-Sent-At: 2022-09-06T15:01:32.982Z
Content-Length: 464
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: *
bugsnag-session-uuid: 2bd48d79-b7a9-414f-8bfc-f021364e93ab
content-type: application/json
date: Tue, 06 Sep 2022 15:01:39 GMT
content-length: 21
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash eaa518a8f6a1210c2196cd431743fec9
53f277bcdb5e789edbbd946df64ec57ccd87b310
f6ea8d26e3fcc91b660702d33b8b661e42164f00a01196e08d402e053bdba2d5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 15:01:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 09:46:52 GMT
Expires: Sat, 10 Sep 2022 09:46:51 GMT
Etag: "53f277bcdb5e789edbbd946df64ec57ccd87b310"
Cache-Control: max-age=326111,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 746814c6f9640b51-OSL
www.proficientcredentials.com/7732.28342b698929b81b.js
34.88.224.67200 OK 374 B URL HTTP/2 www.proficientcredentials.com/7732.28342b698929b81b.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (374), with no line terminators
Hash 46a7962db4583a6957145050a4d98773
6817b4f600f481171edff0f05a5445fdaaa5ccf1
ae46a6d03a880d29e76c36f7e52aab2c90ca50216157494e08e36ca5861b53e7
Analyzer Verdict Alert fortinet Malware
GET /7732.28342b698929b81b.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Cookie: _ga_FSDJZHHBH0=GS1.1.1662476493.1.0.1662476493.0.0.0; _ga=GA1.1.1594927013.1662476493
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "239de7e38e2b044285de4a3dfe49b780-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GC9N4E6Y3SF6QS3WD1R548CC
content-length: 374
X-Firefox-Spdy: h2
api.hubspot.com/livechat-public/v1/message/public?portalId=2977146&conversations-embed=static-1.10632&mobile=false&messagesUtk=6cd7ab98157746f08188eb0aaed13905&traceId=6cd7ab98157746f08188eb0aaed13905
104.19.154.83200 OK 18 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=2977146&conversations-embed=static-1.10632&mobile=false&messagesUtk=6cd7ab98157746f08188eb0aaed13905&traceId=6cd7ab98157746f08188eb0aaed13905
IP 104.19.154.83:0
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /livechat-public/v1/message/public?portalId=2977146&conversations-embed=static-1.10632&mobile=false&messagesUtk=6cd7ab98157746f08188eb0aaed13905&traceId=6cd7ab98157746f08188eb0aaed13905 HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-hubspot-messages-uri
Referer: https://www.proficientcredentials.com/
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:01:39 GMT
content-type: text/plain; charset=utf-8
content-length: 18
cf-ray: 746814c7ecbbb51b-OSL
access-control-allow-origin: https://www.proficientcredentials.com
allow: HEAD,GET,OPTIONS
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: cad389f0-0790-4576-99d2-b623891cd303
x-trace: 2B4F8B5806AB8FF23532E032E689723A91A930976C000000000000000000
set-cookie: __cf_bm=wHSheluAwufDVjSgW1MDeCRaOQiQ9TkUv6G3r6dN5hY-1662476499-0-AcGBn102W1Ng5gL2R6Z5ITwntehYdT8SFhMBLJJTeB2r8vGmZDW+iC6wXeU1gZ6PfwXWqhHYX3741ZKR7DRSWfE=; path=/; expires=Tue, 06-Sep-22 15:31:39 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2fiIdjqQFTKl1ogCwKtCn3vDzUSbSxf97515nKCWpANUk7izu%2BZ7DC1kGmQMCQVWH1ikjLjczh80D%2FfD7eeYrQbpo19Cc6GNJmlna0fIs%2FI1lz%2BZkJ1KWWOfe%2FYqfyedXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.proficientcredentials.com/3116.cef324ce02fa2239.js
34.88.224.67200 OK 11 kB URL HTTP/2 www.proficientcredentials.com/3116.cef324ce02fa2239.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (27124), with no line terminators
Hash dd28b6bbd45476d61d4d10127eae930e
2584de1e8189e81845d9b6b1f98598f5e1899353
b64d8d83a20f95e17231bd80d5f2032d65cd30f949342a2c1e12d8ca114a77bd
Analyzer Verdict Alert fortinet Malware
GET /3116.cef324ce02fa2239.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "90ec0ee6001b662b3f4d025555cc517f-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E1YCGJ97TRGYQBAEYDT
X-Firefox-Spdy: h2
api.hubspot.com/livechat-public/v1/message/public?portalId=2977146&conversations-embed=static-1.10632&mobile=false&messagesUtk=6cd7ab98157746f08188eb0aaed13905&traceId=6cd7ab98157746f08188eb0aaed13905
104.19.154.83200 OK 226 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=2977146&conversations-embed=static-1.10632&mobile=false&messagesUtk=6cd7ab98157746f08188eb0aaed13905&traceId=6cd7ab98157746f08188eb0aaed13905
IP 104.19.154.83:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6c53e7565bed55de60c9a8227c4c4091
37bd029986b687776ab2f2fa6b96f83466989203
38dc79fe1d330f18df14d969dae5e11309845502fa6f1de65023305a884d9610
GET /livechat-public/v1/message/public?portalId=2977146&conversations-embed=static-1.10632&mobile=false&messagesUtk=6cd7ab98157746f08188eb0aaed13905&traceId=6cd7ab98157746f08188eb0aaed13905 HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-HubSpot-Messages-Uri: https://www.proficientcredentials.com/header/header.component
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:01:39 GMT
content-type: application/json;charset=utf-8
content-length: 226
cf-ray: 746814c8bdddb51b-OSL
access-control-allow-origin: https://www.proficientcredentials.com
cache-control: no-cache, no-store, no-transform, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: bcd658f1-185e-440b-86d9-da859364e715
x-trace: 2B89F8CCC8B4624AE4C831D67EAAC502969E272735000000000000000000
set-cookie: __cf_bm=7YynKrref.O_TYpXKZ04txaLuPWe422HMQ3A2PU7zpA-1662476499-0-AWC58N0oJvecktYMmp62rPIG4vAjnvRZP7sOVisAAGNyA7BK1L6z4d9V7bbFlXsi1I5dqrzsCpYXhyfPDRGBlZA=; path=/; expires=Tue, 06-Sep-22 15:31:39 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A25AInwdqF1%2FNTWcA2MSdgjbcbTeo0xPXHRdPcv23vCKx%2FHB71%2Bt%2FMwTqOHg7qcQsF5gD6Qj0LsVJ3hscoIORPnwhZi3aWERqorWCevCHvHvQceGnFaCv5W7srCj0fCrIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:40:23 GMT
expires: Thu, 31 Aug 2023 19:40:23 GMT
cache-control: public, max-age=31536000
age: 501676
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.proficientcredentials.com/5008.62b73b6375454eff.js
34.88.224.67200 OK 142 kB URL HTTP/2 www.proficientcredentials.com/5008.62b73b6375454eff.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (53567), with no line terminators
Size 142 kB (142492 bytes)
Hash 158f6c92df32119593fea520bd3040f6
760d04eb643749e2edd5736cf00c3931e132fa9e
89ab4cbb5cb355bfa68fa74503987f51e56ed9d84fac4b60d5f352fecd1317f7
Analyzer Verdict Alert fortinet Malware
GET /5008.62b73b6375454eff.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "245ac5cc46d6a675d1f812308174355d-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E28BNRRFZ1C6PHCWKZ7
X-Firefox-Spdy: h2
www.proficientcredentials.com/9388.4ae7953d766271c5.js
34.88.224.67200 OK 17 kB URL HTTP/2 www.proficientcredentials.com/9388.4ae7953d766271c5.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (4094), with no line terminators
Hash ac1ec913dabbfd807d15350bf6aa649b
6a54ed5b0b0dc1da3a0ed720c1f7647077244b83
fb69b9ec8f89f785b4b13365fee3585c4ac8b6badeba6a8a035c905ae0c81c2d
Analyzer Verdict Alert fortinet Malware
GET /9388.4ae7953d766271c5.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Cookie: _ga_FSDJZHHBH0=GS1.1.1662476493.1.0.1662476493.0.0.0; _ga=GA1.1.1594927013.1662476493
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "d9f659d112d94aebfac191cf49ebdcfe-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4EDW9C8XZW8XWJRX1066
X-Firefox-Spdy: h2
www.proficientcredentials.com/assets/themes/www.proficientcredentials.com/images/proficient_logo.png
34.88.224.67200 OK 7.0 kB URL HTTP/2 www.proficientcredentials.com/assets/themes/www.proficientcredentials.com/images/proficient_logo.png
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 441 x 79, 8-bit/color RGBA, non-interlaced\012- data
Hash 56c20959ff4472f5bb5d5e5506beaa38
fc40483597414d8cfc94fddaa00cba0643520152
ccc0e67a1ae472f26497de37df820d7c04a9daafe1f20c6c7790b08f45c74ccb
GET /assets/themes/www.proficientcredentials.com/images/proficient_logo.png HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Cookie: _ga_FSDJZHHBH0=GS1.1.1662476493.1.0.1662476493.0.0.0; _ga=GA1.1.1594927013.1662476493
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "fc9cb46d8ecdb5e45a0a729ab6498a70-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GC9N4EGE5Y769QBNZQTFNZ10
content-length: 6962
X-Firefox-Spdy: h2
www.proficientcredentials.com/7368.47466c30f00d453a.js
34.88.224.67200 OK 6.3 kB URL HTTP/2 www.proficientcredentials.com/7368.47466c30f00d453a.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (22161), with no line terminators
Hash 0fd534543eaef9b65cbaafeaf73df086
19699b8b638d2104093cad6925250615d9584cb4
4cd86863c7f8930678277375f4222c4814686d0bb9f9eca5f31f13cc79b7a736
Analyzer Verdict Alert fortinet Malware
GET /7368.47466c30f00d453a.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "b8916402a5a158af57160c79ecf1626b-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E28VMC46AFV22XA365B
X-Firefox-Spdy: h2
www.proficientcredentials.com/3150.c5de462fada75243.js
34.88.224.67200 OK 31 kB URL HTTP/2 www.proficientcredentials.com/3150.c5de462fada75243.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (25688), with no line terminators
Hash dc870e9204aa622b44976cc55f46e7df
fc1290d441aa18eadf4a1522b3a4b72b22bb7e81
a01e23e3d1e4b2a766c569bcf3a3bcc24849c3b11a8dd9f2af58b1d896287f19
Analyzer Verdict Alert fortinet Malware
GET /3150.c5de462fada75243.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "e1dbcf027bb25af2d97eb080279bde14-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E28D9CWYZQRV3SA65BZ
X-Firefox-Spdy: h2
js.hs-scripts.com/2977146.js
104.17.210.204200 OK 21 kB URL HTTP/2 js.hs-scripts.com/2977146.js
IP 104.17.210.204:0
File type ASCII text, with very long lines (492)
Hash 2fc5a591640a87afaf8c6f9f5505e9c8
0c5e0a3f49927d60a41dfe87c5a26c0c2fbdbb05
7762dfa8df02c53046f825d4c22d51e91e551472c46385364a0f1ce70559fb2b
GET /2977146.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:01:39 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2BB97AA8C28B3C60148CEB2EB27EB4E1DE997B609C000000000000000000
cache-control: public, max-age=60
vary: Accept-Encoding
x-hubspot-correlation-id: bdc3ef4e-9989-44c7-bb74-e6d8e4370e4f
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.proficientcredentials.com
last-modified: Tue, 06 Sep 2022 15:00:01 GMT
cf-cache-status: EXPIRED
expires: Tue, 06 Sep 2022 15:02:39 GMT
server: cloudflare
cf-ray: 746814c6399fb518-OSL
content-encoding: br
X-Firefox-Spdy: h2
sessions.bugsnag.com/
35.190.88.7202 Accepted 21 B IP 35.190.88.7:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1807ffa1d44e667592a0f91c668ba65b
4d48849fa0f6917c9c57ed958680e9a1e722382b
0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a
POST / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: adace47c81aa5f59b4eba08303fd5ae6
Bugsnag-Payload-Version: 1
Bugsnag-Sent-At: 2022-09-06T15:01:33.988Z
Content-Length: 464
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: *
bugsnag-session-uuid: 1d09a885-3733-4139-bdd7-4383168f5571
content-type: application/json
date: Tue, 06 Sep 2022 15:01:39 GMT
content-length: 21
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.proficientcredentials.com/6209.fa111e1897099518.js
34.88.224.67200 OK 99 kB URL HTTP/2 www.proficientcredentials.com/6209.fa111e1897099518.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Hash a49b9f624089a4923aa7d2524f9e5678
1cdc3e1cb76e8aaa4f1810fdeed33d0e8eedae17
979ab22885d49493e4a340517f7cc08bcbb5fd29b02db9f0c63fd3a1272b0922
Analyzer Verdict Alert fortinet Malware
GET /6209.fa111e1897099518.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "77bd1227cf3efe35c54e69ab58dcf23d-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E28003CGDV1ZHY70RE1
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=03FE30DE4155696B11A322C940A06863; domain=.bing.com; expires=Sun, 01-Oct-2023 15:01:39 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 494AB702E6894165B153FE139A5E9A36 Ref B: OSL30EDGE0208 Ref C: 2022-09-06T15:01:39Z
date: Tue, 06 Sep 2022 15:01:39 GMT
X-Firefox-Spdy: h2
www.proficientcredentials.com/1399.28f848bf80556810.js
34.88.224.67200 OK 7.8 kB URL HTTP/2 www.proficientcredentials.com/1399.28f848bf80556810.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (7857), with no line terminators
Hash edc2e758d85330846db472db5130878e
8222a7e742e558cbe55e4bb27cbecea60a5cec41
866a84e5f82c25e682d5746632e2be7d5854b784d04faca66dcaddc654085b99
Analyzer Verdict Alert fortinet Malware
GET /1399.28f848bf80556810.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Cookie: _ga_FSDJZHHBH0=GS1.1.1662476493.1.0.1662476493.0.0.0; _ga=GA1.1.1594927013.1662476493
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "29044cb514190785a2ae7ffa9441c1f9-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E7J0XMWJ1MYWS77AZND
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 06 Sep 2022 14:41:12 GMT
expires: Tue, 06 Sep 2022 16:41:12 GMT
cache-control: public, max-age=7200
age: 1227
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d58a944719f9692215e6f86ace3d928d
83ee40574b487a0ac1c5843e5407fba8291829eb
77e637caf991b55eb7ba8dc31de4c988dc529f10ee824c27562e05775eefec10
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/p/action/134625931.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/134625931.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/134625931.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=3189E750785A6A7B2C26F54779AF6BEF; domain=.bing.com; expires=Sun, 01-Oct-2023 15:01:39 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: B73A7AC870A1437C8780B630D4FEB9F3 Ref B: OSL30EDGE0208 Ref C: 2022-09-06T15:01:39Z
date: Tue, 06 Sep 2022 15:01:39 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17059
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 15:01:39 GMT
Connection: keep-alive
bat.bing.com/action/0?ti=134625931&tm=gtm002&Ver=2&mid=ceb28805-f5b6-446f-ad56-244d434d46ec&sid=cc62e9202df411ed802b259c2d4ca575&vid=cc633c502df411ed906cefa0bae34722&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Proficient%20Credentials%20-%20CareerNet&p=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&r=<=1288&evt=pageLoad&sv=1&rn=711726
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=134625931&tm=gtm002&Ver=2&mid=ceb28805-f5b6-446f-ad56-244d434d46ec&sid=cc62e9202df411ed802b259c2d4ca575&vid=cc633c502df411ed906cefa0bae34722&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Proficient%20Credentials%20-%20CareerNet&p=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&r=<=1288&evt=pageLoad&sv=1&rn=711726
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=134625931&tm=gtm002&Ver=2&mid=ceb28805-f5b6-446f-ad56-244d434d46ec&sid=cc62e9202df411ed802b259c2d4ca575&vid=cc633c502df411ed906cefa0bae34722&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Proficient%20Credentials%20-%20CareerNet&p=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&r=<=1288&evt=pageLoad&sv=1&rn=711726 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0451FFF5259760382BB7EDE2246261EA; domain=.bing.com; expires=Sun, 01-Oct-2023 15:01:39 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 58972C3BDC5649AA98D7F166CEC2C34C Ref B: OSL30EDGE0208 Ref C: 2022-09-06T15:01:39Z
date: Tue, 06 Sep 2022 15:01:39 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17059
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 15:01:39 GMT
Connection: keep-alive
apis.google.com/js/platform.js
142.250.74.174200 OK 20 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1277)
Hash b5a31516be83fe4f962609045d824f88
939a49a9858bf23561279f9ca2d1941d3256c66f
edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Tue, 06 Sep 2022 15:01:39 GMT
expires: Tue, 06 Sep 2022 15:01:39 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7923b5b5f786e6f6"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ce50dfa23e7f34ff68cc6426c2823f7
b1685694999272feb4d9fc39296418cd95480678
4df89827b1b34bb577f28f281ed85067a2e34dd48923b9bae1561e81f67be49b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7152
x-amzn-requestid: 2571ff54-e2f8-4072-8a26-3d0dd4cd3523
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAWsfHz_IAMFaXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166b1c-6a598849314cdc433f9f82f7;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XjbO8y9D7PhQcN0XaBkmhcjzWCMRczO80wxAJa4gUFQZPrS6eb3Z3A==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:48:59 GMT
age: 61960
etag: "b1685694999272feb4d9fc39296418cd95480678"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17059
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 15:01:39 GMT
Connection: keep-alive
www.google-analytics.com/j/collect?v=1&_v=j96&a=768140886&t=pageview&_s=1&dl=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&dp=%2Fheader%2Fheader.component&ul=en-us&de=UTF-8&dt=Proficient%20Credentials%20-%20CareerNet&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YCDACEABBAAAAC~&jid=1706845707&gjid=1778785720&cid=1594927013.1662476493&tid=UA-38255894-8&_gid=1359450717.1662476494&_r=1>m=2wg8v0MQ86D29&z=995862973
142.250.74.174200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j96&a=768140886&t=pageview&_s=1&dl=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&dp=%2Fheader%2Fheader.component&ul=en-us&de=UTF-8&dt=Proficient%20Credentials%20-%20CareerNet&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YCDACEABBAAAAC~&jid=1706845707&gjid=1778785720&cid=1594927013.1662476493&tid=UA-38255894-8&_gid=1359450717.1662476494&_r=1>m=2wg8v0MQ86D29&z=995862973
IP 142.250.74.174:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j96&a=768140886&t=pageview&_s=1&dl=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&dp=%2Fheader%2Fheader.component&ul=en-us&de=UTF-8&dt=Proficient%20Credentials%20-%20CareerNet&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YCDACEABBAAAAC~&jid=1706845707&gjid=1778785720&cid=1594927013.1662476493&tid=UA-38255894-8&_gid=1359450717.1662476494&_r=1>m=2wg8v0MQ86D29&z=995862973 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.proficientcredentials.com
date: Tue, 06 Sep 2022 15:01:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 983e705542fa78b4d5c876e0c1eada7e
5fc951e5236edd282d4975853ca35dab2e55fb17
fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6656
x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-3F2ZIAMFpLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:45:42 GMT
age: 62157
etag: "5fc951e5236edd282d4975853ca35dab2e55fb17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0efc32eccbf76ac0d89f324d09a7fd1f
f8589eb3907582137d8b9373af745d80eddbf1bb
ee0f5e56c97e50e1c20801ad0a5379982feef16a11137f784f404d14e9c65824
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6482
x-amzn-requestid: 5e5b342b-0224-4916-8656-237b4c90ae66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-5FaYIAMFzjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-412f897b451130af70026eab;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8UExY-3ojiqMEfyXXKG6kJcB5CRiNnfgG5JQS3gWnd4t4bbKNzbsYA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:45:43 GMT
age: 62156
etag: "f8589eb3907582137d8b9373af745d80eddbf1bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17059
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 15:01:39 GMT
Connection: keep-alive
script.hotjar.com/modules.d5eb3c97b67a0b8958ff.js
143.204.55.68200 OK 66 kB URL HTTP/2 script.hotjar.com/modules.d5eb3c97b67a0b8958ff.js
IP 143.204.55.68:0
File type Unicode text, UTF-8 text, with very long lines (48715)
Hash 5a03435fb2b1019b1b00d7bc5c267f72
6d9116f703cb7fced1cfb7eba229302f4950e4b0
555555e6799149ac64f285eb30f78583dfa52fc0d23dbb75c357897873b8cb97
GET /modules.d5eb3c97b67a0b8958ff.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 65509
date: Fri, 02 Sep 2022 09:50:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "5a03435fb2b1019b1b00d7bc5c267f72"
last-modified: Fri, 02 Sep 2022 09:49:47 GMT
strict-transport-security: max-age=86400; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: PVf0HDdT-0LXI1pbzu7VsOU1J36AnB5aTludPTNKSeKdMky0ISfW3A==
age: 364293
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3fe4a321dcd6a94a637a528d74f9321a
3f3aad2cc71226b39549db1a9baa6837d4f1d897
a19b6749429e8ecaeac8fc0849abc4d891bfc628489762b1619a3ee3064536e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12573
x-amzn-requestid: 92e03b26-883b-41e2-9033-379a6d02210c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYCdGy8oAMFQZw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d42-1c4ea2f74b796623574bde87;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: u1hKGB5UKEuuIVqcQ_Lx5wfBjy_hB32Jnp7_mDnF2BrsN4a6Mj_WJQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:16 GMT
etag: "3f3aad2cc71226b39549db1a9baa6837d4f1d897"
content-type: image/jpeg
age: 62123
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec466c0d472e43c11d36bf6fce068205
720d3624a76d060b8e2699e9aa7a320e3efd4878
5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12683
x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8XmEe0IAMFQDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 04:36:52 GMT
age: 37488
etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c81f3df885bdee8cac46ea9495e6b63b
fc766bca874a352a4acb569577d4cf6527f4f074
e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4426
x-amzn-requestid: b5b68557-e46d-41cd-9b11-d996aabc0de7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzfYTHHFIAMFjFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631145ce-1d3504367cf6ef724a345564;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 23:52:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bSBSzzRMdrVdoV3Ld8hYWq2AwO7Mswcwa8Tk_AKa44j1SlrFugNqpg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:48:06 GMT
age: 62014
etag: "fc766bca874a352a4acb569577d4cf6527f4f074"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 8806f7ce565af1530efafb651b2e8a35
608bccc6a3939255a804bfc115b455c38f649df7
50f63773b0f936c5105b7c01cee4b064c771a6d454adb61dcdb5f85d8a185e58
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 15:01:39 GMT
Last-Modified: Tue, 06 Sep 2022 13:26:09 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kLWJfWvc9J7in0qPf-EGixs0PowVKel8Sw6vs55UcJhMVBwE_Jwy5Q==
Age: 5730
www.proficientcredentials.com/assets/themes/www.proficientcredentials.com/images/favicon.ico
34.88.224.67200 OK 15 kB URL HTTP/2 www.proficientcredentials.com/assets/themes/www.proficientcredentials.com/images/favicon.ico
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash f02e6a48a55e0e8a84d7b88b6c23c44e
885f5cbcada1fbfc8fc81832ea1199b60d2f4214
ca0ed98510f05b8bbf90383d6bb7e3fc711486cb7eecf2fc2218d6d2f27a8e60
GET /assets/themes/www.proficientcredentials.com/images/favicon.ico HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Cookie: _ga_FSDJZHHBH0=GS1.1.1662476493.1.0.1662476493.0.0.0; _ga=GA1.1.1594927013.1662476493
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 2
cache-control: public, max-age=0, must-revalidate
content-type: image/vnd.microsoft.icon
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "b38ca59ed7a561f2e81071d2fcc124f2-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GC9N4ETZJEJCXV4P7FKWG6H7
content-length: 15406
X-Firefox-Spdy: h2
vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html
143.204.55.118200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html
IP 143.204.55.118:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Hash 0b3d3f4206ab84d8861a8cc4b2ddbe66
4561b7c0419b65db5c1314be2143bd1734e88d89
ec42652b198c82469afbe5e6e69312a25425c1fd38d379cf3761b328ecd48e4a
GET /box-1ada912494ba7fc7aca15fcef1c2a7ae.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1044
date: Wed, 13 Jul 2022 08:33:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "0b3d3f4206ab84d8861a8cc4b2ddbe66"
last-modified: Wed, 13 Jul 2022 08:32:20 GMT
strict-transport-security: max-age=86400; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 3OYZZXn3rZERFEp2WsqeI4YswHK-gNNHRDGolMYzoJVGX4MeZP6utA==
age: 4775314
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3237457&time=1662476494277&url=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=3237457&time=1662476494277&url=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=3237457&time=1662476494277&url=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3237457%26time%3D1662476494277%26url%3Dhttps%253A%252F%252Fwww.proficientcredentials.com%252Fheader%252Fheader.component%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQKh5Voo3QfriwAAAYMTUjwwnR51rWqX4HZ5zoF_DpHf6RG0ESKS9zD2znJlB9ccoJzhW7CiEdjvHA; Max-Age=2592000; Expires=Thu, 06 Oct 2022 15:01:40 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQIt8_Hq4zMfWgAAAYMTUjwwdpuAZVf3O24Dlvq60tZr2489lG6Fbz32bVHStvSAvMYm4UaQCizJn69mNgGSwg; Max-Age=2592000; Expires=Thu, 06 Oct 2022 15:01:40 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&f8bdb526-683f-473c-85ca-5da83a4d2d49"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 06-Sep-2023 15:01:40 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2377:u=1:x=1:i=1662476500:t=1662562900:v=2:sig=AQG6XCvey-nnWUIfEQymJt--CmBslP2a"; Expires=Wed, 07 Sep 2022 15:01:40 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXoA3k6/SXUETq9K1DEbw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 55DBC2A64DB54EA0A89EBF46DACF0F32 Ref B: OSL30EDGE0318 Ref C: 2022-09-06T15:01:39Z
date: Tue, 06 Sep 2022 15:01:39 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 8806f7ce565af1530efafb651b2e8a35
608bccc6a3939255a804bfc115b455c38f649df7
50f63773b0f936c5105b7c01cee4b064c771a6d454adb61dcdb5f85d8a185e58
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 15:01:40 GMT
Last-Modified: Tue, 06 Sep 2022 13:27:19 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: WZtdMXes0VmVPIBRIMsK3lFhJJcPuv4BBEqRi9Idm2OP3X8rQelZDA==
Age: 5661
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3237457%26time%3D1662476494277%26url%3Dhttps%253A%252F%252Fwww.proficientcredentials.com%252Fheader%252Fheader.component%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3237457%26time%3D1662476494277%26url%3Dhttps%253A%252F%252Fwww.proficientcredentials.com%252Fheader%252Fheader.component%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3237457%26time%3D1662476494277%26url%3Dhttps%253A%252F%252Fwww.proficientcredentials.com%252Fheader%252Fheader.component%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.proficientcredentials.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=3237457&time=1662476494277&url=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&a475c98b-85c1-4d47-8995-6fb9fad78be1"; Domain=.linkedin.com; Expires=Wed, 06-Sep-2023 15:01:40 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20220906150140bc4cbbc1-da66-4c47-86b4-fd10a48445b0AQGoBViZ3qpTZK-CmITbCiqcNH0l__XT"; Domain=.www.linkedin.com; Expires=Wed, 06-Sep-2023 15:01:40 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjI0NzY1MDA7MjswMjFRytQid4H8YIwtwXrnWqKKTSnVGi3zqUtrVE81mCz8rg==; Domain=.linkedin.com; Expires=Sun, 05 Mar 2023 15:01:40 GMT; Path=/; Secure; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2338:u=1:x=1:i=1662476500:t=1662562900:v=2:sig=AQEPKP-kBfgtBROAyx9zC5q6-bRvySVy"; Expires=Wed, 07 Sep 2022 15:01:40 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self'
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXoA3k+NS4eBX+4lwPZ9g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 2640584344994982B1D16B9A3B912ABA Ref B: OSL30EDGE0318 Ref C: 2022-09-06T15:01:40Z
date: Tue, 06 Sep 2022 15:01:39 GMT
content-length: 0
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3237457&time=1662476494277&url=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=3237457&time=1662476494277&url=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=3237457&time=1662476494277&url=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.proficientcredentials.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&8cf1a76e-b132-4ac9-8dab-106e6d944218"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 06-Sep-2023 15:01:40 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2338:u=1:x=1:i=1662476500:t=1662562900:v=2:sig=AQEPKP-kBfgtBROAyx9zC5q6-bRvySVy"; Expires=Wed, 07 Sep 2022 15:01:40 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXoA3lBQUv2WhxiBbGqaA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 430726AD6E29455886A5F5AEF7B413AE Ref B: OSL30EDGE0318 Ref C: 2022-09-06T15:01:40Z
date: Tue, 06 Sep 2022 15:01:40 GMT
content-length: 0
X-Firefox-Spdy: h2
api.accredible.com/v1/credential-net/organizations/www.proficientcredentials.com/whitelabel_settings
54.226.161.85200 OK 0 B URL HTTP/2 api.accredible.com/v1/credential-net/organizations/www.proficientcredentials.com/whitelabel_settings
IP 54.226.161.85:0
GET /v1/credential-net/organizations/www.proficientcredentials.com/whitelabel_settings HTTP/1.1
Host: api.accredible.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:01:39 GMT
content-type: application/json; charset=utf-8
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, PUT, DELETE, GET, OPTIONS
access-control-expose-headers: Authorization
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
access-control-request-method: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-Frame-Options
strict-transport-security: max-age=31536000; includeSubDomains
set-cookie: _session_id=2J06tgbNvXKLtOTBlWxfTHBVYEDMiu7u%2BekATyGZe65bAsR7%2B0wZWhkC6J%2FmDSjrqKtR%2FJazBjtiG2YzTXWCb6op45U0HsQle2AULBeeJj4N%2B5zHTwZYbGHmmEdRZ8O0HzZnD8XArP0HrA7hqp7cXmaQgeftCsLGeuJf%2B994rfdVPdh03xVjxzccftf7J6jqgyf2--w%2FqknakpgfFGWbnv--FUY13QIcrKEzeCbDkKJTiA%3D%3D; path=/; secure; HttpOnly; SameSite=Strict
_session_id=sPawmqGIBqWJrvcybkqirTFwsYxfTNognyOFLo2HYwQQ6Vi76DUcG78X4f1V%2BKPd%2BCVrTCA2aXBdeOic20ooLCeGBql9u4b%2Bnb2%2FN1CbYxtf0Ip2AgklPAOyEYrJD%2BTONHSdkHYeHGm3bqyDqnfk0u%2BOGFJYAEDyG3eg2%2FxNW2oEuxkDE28KftTl%2BURBVG8W1ubI--FsyNNTh%2BHmtJzskV--CviXNttIePplDGRhGe0X%2Bg%3D%3D; path=/; secure; HttpOnly; SameSite=Strict
vary: Accept-Encoding, Origin
content-encoding: gzip
etag: W/"7cb277c193acdb228d7ef381e5aa53d3"
cache-control: max-age=0, private, must-revalidate
x-request-id: 8bf3f0ab-e3da-41a8-b916-ff33b8f108ee
X-Firefox-Spdy: h2
www.proficientcredentials.com/8766.02c9a48404e2dec8.js
34.88.224.67200 OK 0 B URL HTTP/2 www.proficientcredentials.com/8766.02c9a48404e2dec8.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET /8766.02c9a48404e2dec8.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "1ec2f7606d8e761ac5136d5c03b51381-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E2GT91T2H6GF9P26TEZ
X-Firefox-Spdy: h2
www.proficientcredentials.com/5691.8d98c11054ae7caa.js
34.88.224.67200 OK 0 B URL HTTP/2 www.proficientcredentials.com/5691.8d98c11054ae7caa.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET /5691.8d98c11054ae7caa.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "cc245db9423c1694913db34eb3ba45cd-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E2JFM30FNS4HSSG4WQ0
X-Firefox-Spdy: h2
www.proficientcredentials.com/assets/i18n/en.json
34.88.224.67200 OK 0 B URL HTTP/2 www.proficientcredentials.com/assets/i18n/en.json
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET /assets/i18n/en.json HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/json
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "af8869ab00a562c822ddf330df053d29-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E02YCRVXQ41YKG63J45
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,500,900
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,900
IP 142.250.74.10:0
GET /css?family=Roboto:300,400,500,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 15:01:38 GMT
date: Tue, 06 Sep 2022 15:01:38 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.hs-banner.com/2977146.js
104.18.33.171200 OK 0 B URL HTTP/2 js.hs-banner.com/2977146.js
IP 104.18.33.171:0
GET /2977146.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:01:39 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: 1I9cvWyIZbRljs97str29XoFP4o8vtLe111MVIID4gOcViVbYQEqEt5G+Q8ZGRAdutFvMmZJvtE=
x-amz-request-id: WAT820Y3GW7TC6EH
last-modified: Tue, 30 Aug 2022 20:43:21 GMT
etag: W/"ba3a5f3778f1ae83b01b3b57d2f7a096"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: eCJVCYwRPIol6.HaYXEMP32Sd2iZ_IrI
access-control-allow-origin: https://www.credential.net
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
expires: Tue, 06 Sep 2022 15:00:46 GMT
cf-cache-status: HIT
age: 244
vary: Accept-Encoding
server: cloudflare
cf-ray: 746814c77e62b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.proficientcredentials.com/5405.f86012048c506042.js
34.88.224.67200 OK 0 B URL HTTP/2 www.proficientcredentials.com/5405.f86012048c506042.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET /5405.f86012048c506042.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "7756595d4329fdc4044e2829497fa96b-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E20V0BAZZQ5F45Q5JTT
X-Firefox-Spdy: h2
www.proficientcredentials.com/header/header.component
34.88.224.67200 OK 0 B URL HTTP/2 www.proficientcredentials.com/header/header.component
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET /header/header.component HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
age: 2
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:37 GMT
etag: "0ef233c34866fc4bc5a359534777132e-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4CYBKK3KG9K73D5GR660
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Material+Icons|Material+Icons+Outlined
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Material+Icons|Material+Icons+Outlined
IP 142.250.74.10:0
GET /css?family=Material+Icons|Material+Icons+Outlined HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 15:01:38 GMT
date: Tue, 06 Sep 2022 15:01:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.proficientcredentials.com/7065.10e2054e3695c0ea.js
34.88.224.67200 OK 0 B URL HTTP/2 www.proficientcredentials.com/7065.10e2054e3695c0ea.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET /7065.10e2054e3695c0ea.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "569df2d1fd94c1f08e1e43fdc40348c4-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E1JAR159A9VFGZ518HP
X-Firefox-Spdy: h2
www.proficientcredentials.com/1772.98cbb36a9bef8aaa.js
34.88.224.67200 OK 0 B URL HTTP/2 www.proficientcredentials.com/1772.98cbb36a9bef8aaa.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET /1772.98cbb36a9bef8aaa.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "9fab77c3cff79386628de7334d1e01c7-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E24YPH42079J9A414XD
X-Firefox-Spdy: h2
www.proficientcredentials.com/3374.c9e4abfe3385dba6.js
34.88.224.67200 OK 0 B URL HTTP/2 www.proficientcredentials.com/3374.c9e4abfe3385dba6.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET /3374.c9e4abfe3385dba6.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "d1809d25d0f3b6c50806345568a993c8-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E2G38N7VNQVRJJ518WM
X-Firefox-Spdy: h2
api.at.getsocial.io/get/v1/ac226551/gs_async.js
46.101.118.55200 OK 0 B URL HTTP/2 api.at.getsocial.io/get/v1/ac226551/gs_async.js
IP 46.101.118.55:0
ASN #14061 DIGITALOCEAN-ASN
GET /get/v1/ac226551/gs_async.js HTTP/1.1
Host: api.at.getsocial.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
status: 200 OK
cache-control: max-age=300, public, must-revalidate
access-control-allow-origin: https://credential.net
date: Tue, 06 Sep 2022 15:01:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-request-id: 7a38ae7c-b73a-4b96-9030-7fa880ad83ca
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
etag: W/"d3fd8f683e24f2d343525ba976ee5e51"
x-frame-options: ALLOWALL
x-runtime: 0.007850
access-control-request-method: *
server: nginx + Phusion Passenger 5.3.7
x-powered-by: Phusion Passenger 5.3.7, cloud66
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.proficientcredentials.com/9493.bc154830b9f0ea42.js
34.88.224.67200 OK 0 B URL HTTP/2 www.proficientcredentials.com/9493.bc154830b9f0ea42.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET /9493.bc154830b9f0ea42.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "b9ecbeaeaffdc067e0ce790490647afa-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E1KD5007AVV74J1DY1R
X-Firefox-Spdy: h2
www.proficientcredentials.com/969.2f6894787c60677b.js
34.88.224.67200 OK 0 B URL HTTP/2 www.proficientcredentials.com/969.2f6894787c60677b.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET /969.2f6894787c60677b.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "1b3a7018955f60a04821570383034e36-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E1P3B1V139W6AGY9R9X
X-Firefox-Spdy: h2
www.proficientcredentials.com/9075.02fea79ef4bde7c1.js
34.88.224.67200 OK 0 B URL HTTP/2 www.proficientcredentials.com/9075.02fea79ef4bde7c1.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET /9075.02fea79ef4bde7c1.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "b05355eb2db24f0d67d099a04f2504b2-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E2GXRX0XNNX68E1128Z
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1662476400000/2977146.js
104.17.70.176200 OK 0 B URL HTTP/2 js.hs-analytics.net/analytics/1662476400000/2977146.js
IP 104.17.70.176:0
GET /analytics/1662476400000/2977146.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:01:39 GMT
content-type: text/javascript
x-amz-id-2: n0hGU0gXN5DU3vyaiUXhgCLpJHoFx1EQ07uBB2DVQTTYawZQDjiLOC2hNjcMFszJ7jcNoffIFZg=
x-amz-request-id: F17MX0GMVX9Q411N
last-modified: Wed, 31 Aug 2022 11:50:22 GMT
etag: W/"896055de00db99a50e133ef84d3ab6fc"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
expires: Tue, 06 Sep 2022 15:05:01 GMT
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 746814cc2f81b521-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.proficientcredentials.com/main.948e30c8fe8cb4ce.js
34.88.224.67200 OK 0 B URL HTTP/2 www.proficientcredentials.com/main.948e30c8fe8cb4ce.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET /main.948e30c8fe8cb4ce.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:38 GMT
etag: "f4007f5752f111a1a02e6fb5247ac07f-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4D6CB5ZJVDPD0MX8T4Y7
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2753128.js?sv=6
54.230.111.39200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2753128.js?sv=6
IP 54.230.111.39:0
GET /c/hotjar-2753128.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:00:54 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/97d02be15001a43fbc94d5c2fa170702
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: WQphOgs8YYf4BEQoKZGXobYQGml8XpKX0uqZuETffR5WMA2xtJ5lEQ==
age: 45
X-Firefox-Spdy: h2
www.proficientcredentials.com/common.5c7c4b461f41ba2a.js
34.88.224.67200 OK 0 B URL HTTP/2 www.proficientcredentials.com/common.5c7c4b461f41ba2a.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET /common.5c7c4b461f41ba2a.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "618512d68b9c13d8e767798b2fe33acd-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E1PD49YBPSBC1Q33DZW
X-Firefox-Spdy: h2
www.proficientcredentials.com/runtime.2ecdb93fcd34daa9.js
34.88.224.67200 OK 0 B URL HTTP/2 www.proficientcredentials.com/runtime.2ecdb93fcd34daa9.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET /runtime.2ecdb93fcd34daa9.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:38 GMT
etag: "08240ff932cb05edaca5baa3a34d5bb0-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4D6B0GPV9Y0T4C6X0EFF
X-Firefox-Spdy: h2
www.proficientcredentials.com/1182.236982c877eed04b.js
34.88.224.67200 OK 0 B URL HTTP/2 www.proficientcredentials.com/1182.236982c877eed04b.js
IP 34.88.224.67:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert fortinet Malware
GET /1182.236982c877eed04b.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "49289f5f05c7ec30eba902e4edf0b85a-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E2AW1RD8DASP1WMKDCB
X-Firefox-Spdy: h2