Report - www.proficientcredentials.com/header/header.component

Report Overview

Submitted URL
www.proficientcredentials.com/header/header.component
IP
35.228.52.210
ASN
#396982 GOOGLE-CLOUD-PLATFORM
Submitted
2022-09-06 15:01:48
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
50

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	442 B	1.2 kB	142.250.74.164
api.hubspot.com	5214	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.3 kB	104.19.154.83
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.9 kB	104.18.32.68
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	6.3 kB	142.250.74.3
fast.b-cdn.net	95259	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	438 B	49 kB	194.242.11.186
script.hotjar.com	887	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	386 B	66 kB	143.204.55.68
api.at.getsocial.io	72151	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	818 B	46.101.118.55
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	880 B	78 kB	142.250.74.72
apis.google.com	105	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	367 B	21 kB	142.250.74.174
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	56 kB	34.120.237.76
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	54.187.71.185
sessions.bugsnag.com	793	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	1.0 kB	35.190.88.7
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	21 kB	142.250.74.174
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	826 B	1.5 kB	142.250.74.10
static.hotjar.com	641	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	379 B	661 B	54.230.111.39
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
px.ads.linkedin.com	522	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.3 kB	13.107.42.14
api.accredible.com	264146	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	510 B	1.6 kB	54.226.161.85
bat.bing.com	387	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.9 kB	14 kB	13.107.21.200
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	980 B	33 kB	142.250.74.163
www.linkedin.com	608	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	616 B	2.8 kB	13.107.42.14
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.25
www.proficientcredentials.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	13 kB	371 kB	34.88.224.67
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
ocsp.usertrust.com	899	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	330 B	1.0 kB	104.18.32.68
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.8 kB	54.230.245.110
js.hs-scripts.com	2571	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	365 B	22 kB	104.17.210.204
vars.hotjar.com	1014	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	507 B	1.8 kB	143.204.55.118
js.hs-analytics.net	2411	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	391 B	615 B	104.17.70.176
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.115
js.hs-banner.com	2426	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	364 B	1.7 kB	104.18.33.171

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-06	medium	www.proficientcredentials.com/header/header.component	Malware
2022-09-06	medium	www.proficientcredentials.com/polyfills.f364fc388fd7d751.js	Malware
2022-09-06	medium	www.proficientcredentials.com/7732.28342b698929b81b.js	Malware
2022-09-06	medium	www.proficientcredentials.com/3116.cef324ce02fa2239.js	Malware
2022-09-06	medium	www.proficientcredentials.com/5008.62b73b6375454eff.js	Malware
2022-09-06	medium	www.proficientcredentials.com/9388.4ae7953d766271c5.js	Malware
2022-09-06	medium	www.proficientcredentials.com/7368.47466c30f00d453a.js	Malware
2022-09-06	medium	www.proficientcredentials.com/3150.c5de462fada75243.js	Malware
2022-09-06	medium	www.proficientcredentials.com/6209.fa111e1897099518.js	Malware
2022-09-06	medium	www.proficientcredentials.com/1399.28f848bf80556810.js	Malware
2022-09-06	medium	www.proficientcredentials.com/8766.02c9a48404e2dec8.js	Malware
2022-09-06	medium	www.proficientcredentials.com/5691.8d98c11054ae7caa.js	Malware
2022-09-06	medium	www.proficientcredentials.com/assets/i18n/en.json	Malware
2022-09-06	medium	www.proficientcredentials.com/5405.f86012048c506042.js	Malware
2022-09-06	medium	www.proficientcredentials.com/header/header.component	Malware
2022-09-06	medium	www.proficientcredentials.com/7065.10e2054e3695c0ea.js	Malware
2022-09-06	medium	www.proficientcredentials.com/1772.98cbb36a9bef8aaa.js	Malware
2022-09-06	medium	www.proficientcredentials.com/3374.c9e4abfe3385dba6.js	Malware
2022-09-06	medium	www.proficientcredentials.com/9493.bc154830b9f0ea42.js	Malware
2022-09-06	medium	www.proficientcredentials.com/969.2f6894787c60677b.js	Malware
2022-09-06	medium	www.proficientcredentials.com/9075.02fea79ef4bde7c1.js	Malware
2022-09-06	medium	www.proficientcredentials.com/main.948e30c8fe8cb4ce.js	Malware
2022-09-06	medium	www.proficientcredentials.com/common.5c7c4b461f41ba2a.js	Malware
2022-09-06	medium	www.proficientcredentials.com/runtime.2ecdb93fcd34daa9.js	Malware
2022-09-06	medium	www.proficientcredentials.com/1182.236982c877eed04b.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (46)

	URL	Size	First Seen	Last Seen
	www.proficientcredentials.com/common.5c7c4b461f41ba2a.js	23 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/common.5c7c4b461f41ba2a.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:36 Last Seen2023-03-07 13:12:36 Times Seen1 Hash 61f6264419c510f8499ff22cffead78b 71113ac9229dd183e9dad895de8d5ef89cbfcfbc 7d210e3f59db568761f79fe97343b89c47dfcaf721338acf4d350135f470bf05 Loading...

	www.proficientcredentials.com/6209.fa111e1897099518.js	78 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/6209.fa111e1897099518.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:36 Last Seen2023-03-07 13:12:36 Times Seen1 Hash 22142ff25be94590c53cdf085fa71b24 a05eb3a04023ffc069aaf8ce19c4e894b7f9cd06 84eed0fc939a6d52c5ec800d9e81afbee1642b00841d682c29d39307a125de31 Loading...

	www.proficientcredentials.com/9075.02fea79ef4bde7c1.js	48 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/9075.02fea79ef4bde7c1.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:36 Last Seen2023-03-07 13:12:36 Times Seen1 Hash 7e1cf25b900c77e0683336e39f5834e6 01725f819b4ccc459ba4346699fa90ab07245a13 ecb0d054dfc301261e0008fc76e3f0ee9f7dea4c81f6133473dd29d80bd5a79c Loading...

	www.proficientcredentials.com/7732.28342b698929b81b.js	374 B	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/7732.28342b698929b81b.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:36 Last Seen2023-03-07 13:12:36 Times Seen1 Hash 46a7962db4583a6957145050a4d98773 6817b4f600f481171edff0f05a5445fdaaa5ccf1 ae46a6d03a880d29e76c36f7e52aab2c90ca50216157494e08e36ca5861b53e7 Loading...

	www.proficientcredentials.com/9388.4ae7953d766271c5.js	4.1 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/9388.4ae7953d766271c5.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:36 Last Seen2023-03-07 13:12:36 Times Seen1 Hash cdba02c990af087ae0f5426f1366ebbc d912de216f8b411fb67fdf6e50da1bbf87e6387a 4f4af70b014d44d28c4d066d76651accc29d38ba289cd99f037ccd8f14747a4d Loading...

	www.proficientcredentials.com/8255.f6b54adc497a24d1.js	20 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/8255.f6b54adc497a24d1.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:36 Last Seen2023-03-07 13:12:36 Times Seen1 Hash 62a816b6c6a5c092f53f2ba6d69060c8 704adf84b4311add361eadc0a855393f2da64697 6af92db67ee544a95f06aebcd5e9978e0c1d5465e535bc2e96664dc7c050601b Loading...

	www.proficientcredentials.com/969.2f6894787c60677b.js	3.7 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/969.2f6894787c60677b.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:36 Last Seen2023-03-07 13:12:36 Times Seen1 Hash 7c50323319dddf5ae5164044bd32823f 129882f4ed384fb83a57eabb5ca44306b56bf3ab 3ad21329e181719466a80916985ef898b6690ebe10366c7dae1a90d9ca33e32c Loading...

	snap.licdn.com/li.lms-analytics/insight.min.js	7.8 kB	2023-03-07	2024-01-14
Pretty URL snap.licdn.com/li.lms-analytics/insight.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2024-01-14 12:48:17 Times Seen22 Hash 93e8a332e6a6de807c6ef9fdac9689ae 68a0ccb463d6abb247149a50e0a90ff32dd98ad0 b57839788686bf37d29f47bbe45ad8258085e3aebf54650ab389c0b515b977e1 Loading...

	www.proficientcredentials.com/9523.081417db352db94e.js	7.9 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/9523.081417db352db94e.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:36 Last Seen2023-03-07 13:12:36 Times Seen1 Hash 08f10ca180d585d4f235f494ef16e498 05037635545f32e499bcceaff8fa80929e98b815 38c4cc688d597f49252e60f1ac458364d9a4a2adbb5711e65aed4b916e882c64 Loading...

	vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html	2.3 kB	2023-03-07	2023-03-17
Pretty URL vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html IP 143.204.55.118 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:30 Last Seen2023-03-17 10:41:48 Times Seen1 Hash 5865f399c24cc57cb46de74ac4a640ff 8381437171dd8dcc5fb411fa75059fb059eb6e0b 82ab863e1e4c6fe101da9839cd7977627f2fd9da5123a21d1cda32a15c9348aa Loading...

	www.proficientcredentials.com/4110.9a5d049efa5ae590.js	389 B	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/4110.9a5d049efa5ae590.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:36 Last Seen2023-03-07 13:12:36 Times Seen1 Hash 64858af795e9ada61de658a09d3d9989 eeb6ef40fa2c9e462ec138356c6bcd486a3e6089 33dd5d2e188cc71ddaf08d38a9be129578abb0d42a2bd667c16c1c25a0fa748f Loading...

	bat.bing.com/bat.js	39 kB	2023-03-07	2023-08-25
Pretty URL bat.bing.com/bat.js IP 13.107.21.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2023-08-25 07:33:07 Times Seen42 Hash 16911c194f6e9313655f07c4eb9d8737 d39ccfa8c6d785af331afafe9e36336031f41b64 30153b15b4cb898c421e657f6de21dc27435cb990e7888367bdee12e06398da7 Loading...

	www.proficientcredentials.com/polyfills.f364fc388fd7d751.js	46 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/polyfills.f364fc388fd7d751.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:36 Last Seen2023-03-07 13:12:36 Times Seen1 Hash 58ec1a6bd70aa4ba45ebea023834aaa4 ed448ce0310b5d82d45afa1c3fbec425539a5a3d eefae79d0f9125e2a573cdf435f486bed50326690c596cbf7c863bb57337531f Loading...

	fast.b-cdn.net/client/2208/28190557/ac226551/v1_gs_lib.js	148 kB	2023-03-07	2023-03-07
Pretty URL fast.b-cdn.net/client/2208/28190557/ac226551/v1_gs_lib.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:36 Last Seen2023-03-07 13:12:36 Times Seen1 Hash 634fce8a275195d1a8b09f3741643081 452f8f2533c7b9847adde788e2c172b1c7d561ce 9700c24556ecbe94f8ae09b398531196633a7c7159d48429d05a8ae9add7ec90 Loading...

	www.proficientcredentials.com/3116.cef324ce02fa2239.js	27 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/3116.cef324ce02fa2239.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:36 Last Seen2023-03-07 13:12:36 Times Seen1 Hash 4290329ec34f4f402f94e95601a649fb c5011a54f2830fef2284f64f43c5b9da665380a1 0364e0de868682e51bd90083094719907070850bca8b336f381d3cecfdd7879d Loading...

	www.proficientcredentials.com/3150.c5de462fada75243.js	26 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/3150.c5de462fada75243.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:36 Last Seen2023-03-07 13:12:36 Times Seen1 Hash 2327456a50aaf57bb20955fc897e73f5 e785b24c117ec310a464f6c9b9810d00ce144936 d40b57968ebc21a8dfde9e71044fd62262031c61fabe7eb79658550f5fca8444 Loading...

	www.proficientcredentials.com/5691.8d98c11054ae7caa.js	230 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/5691.8d98c11054ae7caa.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:36 Last Seen2023-03-07 13:12:36 Times Seen1 Hash 2393698e0129b48402d2a3e16c6bd803 0087b769787730cbdeffc9e4d592144cb990fe72 c447db96b5c114e240a83a5cdeb91092c867f49dd83e3c1453b86247869d0583 Loading...

	www.proficientcredentials.com/8766.02c9a48404e2dec8.js	16 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/8766.02c9a48404e2dec8.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 5cb6780c4f94599f18179402975b60ee 7b52f702b977a321fc86fa856d9bbef28d1d83d2 bd37ec0c43ea1e62273c0af9c9c73cd721b8ccc164c836ba21af653cc6aa2af0 Loading...

	www.proficientcredentials.com/5008.62b73b6375454eff.js	54 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/5008.62b73b6375454eff.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 223d83dd9ed7ff458cb1b712117adb44 b650eefc6bee24b88b7c25c862a3091569d769fe 983730e08498e1e448f9d28ee87b4c287692dc135053408226c73012ee60d9ca Loading...

	www.proficientcredentials.com/7368.47466c30f00d453a.js	22 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/7368.47466c30f00d453a.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash db0d1c4ac3013dbcd22182a1ac729c44 807e9a4c816788795cdd00fcbae2d85cf9704c74 c9f5f2dc87eda228b63147bf29e6959b6487818f3f494001fd8091f8dacbdf0e Loading...

	www.proficientcredentials.com/main.948e30c8fe8cb4ce.js	1.2 MB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/main.948e30c8fe8cb4ce.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 9187185bfd483ddf8f452763c9392cee 809c427c7c3ed363349785814c37726775e7ff1e 8fa0ce63106b0015a2f81f4932c85295d729b21f978b6b49be09b565ad9cad89 Loading...

	www.proficientcredentials.com/header/header.component	197 B	2023-03-07	2024-04-18
Pretty URL www.proficientcredentials.com/header/header.component IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:52 Last Seen2024-04-18 22:04:50 Times Seen1770 Hash 33da6fbd440964f02ed4bfe1d0919874 7b2a563fe1eabd7c1b7caafd938e23c622105075 e27c41c2f1adae8906364a83d8ec4eb7c634ecfedc6891e4d34b06c233581792 Loading...

	www.proficientcredentials.com/7065.10e2054e3695c0ea.js	14 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/7065.10e2054e3695c0ea.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 27557fe1a9ccd062c91c8e00caade391 52751345da6ff09c5d301fb77b84f81767ba0a82 f9fb1ce0b2430b5b9738c00df35cb322444d593aa360fb7553d4551556c26f17 Loading...

	www.proficientcredentials.com/5405.f86012048c506042.js	45 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/5405.f86012048c506042.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 7df1ae21ab26c922dfa66fcc07ded8bf 49e72e746fb99fe3456b6bf8d91682ecad242506 aa4bc8a223782353aca50e4c1cbe7329f28ef4251863ead7ff318ad84f07cc61 Loading...

	www.proficientcredentials.com/1772.98cbb36a9bef8aaa.js	45 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/1772.98cbb36a9bef8aaa.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 9491f1b174bb402e44da3a82fa6139da 3b82fe6190def1a53d2ca0ea316688691f736f6b 9b17f8de77fb993013b0c25b752d274018986b10e2050ec3f38f1597992c44a3 Loading...

	www.proficientcredentials.com/1399.28f848bf80556810.js	8.1 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/1399.28f848bf80556810.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 82549096bcc9bff96575d57ce58d81c5 885841d868de0a0330129a8ceade7a4514204766 7b740105c61817b05fe4b6f461e83eaa750627b6f2650567febdf8a6ff02feda Loading...

	apis.google.com/js/platform.js	53 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/js/platform.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:05 Last Seen2023-03-17 17:17:05 Times Seen1 Hash 15765e8758982081f08a222a54783683 6282653ca157f529d587b92c552f2f9db446ad96 0da425eaadbec3853cae0b85493ea7ad6934972097b4f59d2a05dbb130585444 Loading...

	www.proficientcredentials.com/9493.bc154830b9f0ea42.js	12 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/9493.bc154830b9f0ea42.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 063c8171ed30ccd6a879be579acb4c97 566c0d6abeba18c536c8756707a9f88af359a410 c71bac85bb66a48630097d9ab7a81f09fd599294e2b6d88b584c7d1e0af1ec78 Loading...

	js.hs-banner.com/2977146.js	62 kB	2023-03-07	2023-03-07
Pretty URL js.hs-banner.com/2977146.js IP 104.18.33.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash ba3a5f3778f1ae83b01b3b57d2f7a096 5b659ceaeeaf0b6898c3d9997b930117492197b2 c6400f5bc5193efe98433e1aa4e2cf1556797eae7c674811be7d5b10b5c3b74b Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LeLojsaAAAAAB8OV2zHmQvFW66cq79i-xJqdu8j&co=aHR0cHM6Ly93d3cucHJvZmljaWVudGNyZWRlbnRpYWxzLmNvbTo0NDM.&hl=en&v=duyHVVR9Brf6N2GewjkPRfsA&size=invisible&cb=9l56vy4tveaj	315 B	2023-03-07	2023-04-05
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LeLojsaAAAAAB8OV2zHmQvFW66cq79i-xJqdu8j&co=aHR0cHM6Ly93d3cucHJvZmljaWVudGNyZWRlbnRpYWxzLmNvbTo0NDM.&hl=en&v=duyHVVR9Brf6N2GewjkPRfsA&size=invisible&cb=9l56vy4tveaj IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:35 Last Seen2023-04-05 02:11:13 Times Seen249 Hash 312a2a397ac7ddf5a927eebe419d7df2 2a35fbcb23a052f9ec3f0621c2e8f69959a16fff 014d324c605331878f1b40bfccc4d6c5fa9af407ef5331491a34fdd68e768273 Loading...

	js.hs-scripts.com/2977146.js	1.5 kB	2023-03-07	2023-03-07
Pretty URL js.hs-scripts.com/2977146.js IP 104.17.210.204 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 2e1a863dbda6b82aa1179241b0d27c41 0c76e0fd184cfd78a0e5b1428ef5eec084545149 f7dc9a55c8326df1aaf04a783694a28a3a29139316847e6e7a0d104899dea111 Loading...

	www.proficientcredentials.com/8146.4db6a77be1eeb5bf.js	13 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/8146.4db6a77be1eeb5bf.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 78738ffa028ea8a3bb68270dc9be93b5 aab4716a9c275a5c567bac5ef0f553601c6dc6f6 d3a3c01685b5a4872213ae64a0cf1ab96980174551295822c8713afe8c98c7e6 Loading...

	www.proficientcredentials.com/1182.236982c877eed04b.js	293 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/1182.236982c877eed04b.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 7017fbce05f4e07c7a02039be13c2654 312c3bb1d92c0934e512715cc4b06cffbacbe25c 2bafc6a77d9b169929811e88f987ed40ae450c061496c5327697ff6bd516a0bc Loading...

	www.proficientcredentials.com/header/header.component	145 B	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/header/header.component IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash c328df4bebaa458ce92e1d85224baeab 7690f22cf4add3a1ea88f29d3078faeb05a49fe5 ca20740238f607539ab63f3c0c40a33a7a408932c085384a4852a7dc38901682 Loading...

	www.proficientcredentials.com/runtime.2ecdb93fcd34daa9.js	8.5 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/runtime.2ecdb93fcd34daa9.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 834c8e47f1cce985d43341cef3fb1b1c 1642412d653c8459de5b215454687fc9112ca2b4 f58fe0f5ba8ff2bca19d47a4257f9747f90b5afa13640b0c59080609089b77c7 Loading...

	www.proficientcredentials.com/header/header.component	401 B	2023-03-07	2023-11-24
Pretty URL www.proficientcredentials.com/header/header.component IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-11-24 14:39:55 Times Seen3 Hash cf7cd90f8b5d8909a5d31edbcc2fe535 afc9f8d95efc434dbe786bb5cf62d1884fda4d17 0572236d6b43c0ca6c34d0ac92c8d78dbb9d05cb2efc78c2f776c63ac9a05b67 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 08:27:03 Times Seen36954878 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	api.at.getsocial.io/get/v1/ac226551/gs_async.js	1.8 kB	2023-03-07	2023-03-07
Pretty URL api.at.getsocial.io/get/v1/ac226551/gs_async.js IP 46.101.118.55 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash d3fd8f683e24f2d343525ba976ee5e51 c737c8cb45c6a81ced1aff37656abe775304a414 8544e4c9451d066fb4bf4c9f57840c261439969d7e57a5e4acd698f7ae8096c9 Loading...

	www.proficientcredentials.com/3374.c9e4abfe3385dba6.js	35 kB	2023-03-07	2023-03-07
Pretty URL www.proficientcredentials.com/3374.c9e4abfe3385dba6.js IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 3ca4480ff4c77d012728f50e03ab7b12 f0f969ef09d6e1a161f6bacaf5ff74f0eeb29b35 3bf0c4f66bab987018f1e62cddb7975aa2bc8d560fb95c226568dbfd7932c497 Loading...

	static.hotjar.com/c/hotjar-2753128.js?sv=6	4.6 kB	2023-03-07	2023-03-07
Pretty URL static.hotjar.com/c/hotjar-2753128.js?sv=6 IP 54.230.111.39 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 97d02be15001a43fbc94d5c2fa170702 67540bdb7f91f4cb9ec0afae766c045c3da0a69c ab08b26543cf7ed4a166f7d01405725dc7c11d01715017e844d74b1d9b11e3f9 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-04-18
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-18 21:14:10 Times Seen840 Hash d40531c5e99a6f84e42535859476fe35 a901817d77b2fe5259c298c91bc65c54d7f8a1a9 a1925038db769477ab74b4df34350c35688a795bb718727b0f4292a4a78a6210 Loading...

	www.proficientcredentials.com/header/header.component	407 B	2023-03-07	2023-07-06
Pretty URL www.proficientcredentials.com/header/header.component IP 34.88.224.67 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-07-06 16:35:36 Times Seen2 Hash 63118f180a4206ef2bbaa2a881aff4c2 48dee42695fc1a2070abbbd038d878e4a109d812 d0d3175abecc3793ec79553145ffed6ed7e5fb996ace4e273712b561a7b7bc99 Loading...

	www.google.com/recaptcha/api.js?render=6LeLojsaAAAAAB8OV2zHmQvFW66cq79i-xJqdu8j&onload=ng2recaptchaloaded	945 B	2023-03-07	2023-03-07
Pretty URL www.google.com/recaptcha/api.js?render=6LeLojsaAAAAAB8OV2zHmQvFW66cq79i-xJqdu8j&onload=ng2recaptchaloaded IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 163f5fc6ab9dae67c3cd707c7be5c9a2 52245e9f0262d45f752ca7e01c173c79eedfc42e e546c5dba02d50c2e6188b54040b47eeaf946e261b237a2f43d12c0d742d7819 Loading...

	www.googletagmanager.com/gtag/js?id=G-FSDJZHHBH0&l=dataLayer&cx=c	212 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=G-FSDJZHHBH0&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 7105aa982a0f1d1bb944bb71854f832f 95f9ef074e3ff68e416f9682b3af61acc6ef8b4a 9a0b2b65899aee4bb13ec9db82bb05788a0f0759d1154a7c1b68be1edd62b545 Loading...

	www.gstatic.com/recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js	398 kB	2023-03-07	2023-03-17
Pretty URL www.gstatic.com/recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:20:45 Last Seen2023-03-17 11:40:02 Times Seen1 Hash 4ba43a63c7e907af7ec62d08348f3b9b 5cf61ea391f9788c24e9e6eb8b715bcea22ecdf6 51d9c9160f4c0e20b5a69fa1b09a8947bf74235330d522fae8217ad19c17b93b Loading...

	js.hs-analytics.net/analytics/1662476400000/2977146.js	65 kB	2023-03-07	2023-03-07
Pretty URL js.hs-analytics.net/analytics/1662476400000/2977146.js IP 104.17.70.176 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:37 Last Seen2023-03-07 13:12:37 Times Seen1 Hash 896055de00db99a50e133ef84d3ab6fc 2cc58656491b1383fe1d1d26ed2d65a897daa9f7 d0952554d9ca89e30b5efd93d36541b05a5712f6a961fae78235e025febff3f4 Loading...

HTTP Transactions (94)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 14:04:18 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -Yk8X80yn5qnlx_UKDZfuUaarQ086brqWJMLiEeugLf7s1l90-4Xqg==
Age: 3439

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7754
Expires: Tue, 06 Sep 2022 17:10:51 GMT
Date: Tue, 06 Sep 2022 15:01:37 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.25

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.25:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qxWxYO7uiqDBR9GFrBSmKommaKmPt9rPhMue52PiIDOFhqcdrjZcdQ==
age: 49580
X-Firefox-Spdy: h2

www.proficientcredentials.com/header/header.component

34.88.224.67

301 Moved Permanently

76 B

URL HTTP/1.1
www.proficientcredentials.com/header/header.component
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with no line terminators
Size
76 B (76 bytes)
Hash
bd5979a646b49e3802b7fc574c194586
eb15ea7e4cf8ba865b58b0377c96b4b2865221eb
d698757e073180e2e79b33ac3d971c6401d30de0f0cd82cf9b5b056001598b45

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /header/header.component HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 76
Content-Type: text/plain
Date: Tue, 06 Sep 2022 15:01:37 GMT
Location: https://www.proficientcredentials.com/header/header.component
Server: Netlify
X-Nf-Request-Id: 01GC9N4CHFRX5TH2GP516QM75Z

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 15:01:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8a1370b11f9da7ec66c4e17b0bb00d30
65fe1f7370396543542fa036720fbf57aa71f47e
6fb08bd7ccbfd0bf66ec5b984d4b35598dc79296e018fd5b83ef4a01bff7be57

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6FB08BD7CCBFD0BF66EC5B984D4B35598DC79296E018FD5B83EF4A01BFF7BE57"
Last-Modified: Mon, 05 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2791
Expires: Tue, 06 Sep 2022 15:48:08 GMT
Date: Tue, 06 Sep 2022 15:01:37 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 06 Sep 2022 14:38:18 GMT
Cache-Control: max-age=3600
Expires: Tue, 06 Sep 2022 15:34:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5IQN2epq5TrCRLb4EBC5vp0PRAStrf5xB8KTPRXus3dw0DsRrWR9Cg==
Age: 1400

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e8952752ad4a452a575522a7eb737217
c5554fa2af05d7a7117032b0f99352de08988346
8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3900
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:38 GMT
Last-Modified: Tue, 06 Sep 2022 13:56:38 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
eaa518a8f6a1210c2196cd431743fec9
53f277bcdb5e789edbbd946df64ec57ccd87b310
f6ea8d26e3fcc91b660702d33b8b661e42164f00a01196e08d402e053bdba2d5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 15:01:38 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 09:46:52 GMT
Expires: Sat, 10 Sep 2022 09:46:51 GMT
Etag: "53f277bcdb5e789edbbd946df64ec57ccd87b310"
Cache-Control: max-age=326112,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 746814c46900b4ff-OSL

push.services.mozilla.com/

54.187.71.185

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.187.71.185:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1YtzIAiZufoa8qRLdIUiRw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EqSu2KMLKaAwSLEG8KqLkMCNpuI=

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
3df811ac19fde08f49ef246c29cef161
e1c8d54b357adaf32e80427028cc884fa35959e0
e2749178e0bf0c4045a96388a58029ddd92d13a866021737864cd68e11317292

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
bcbb9bf29f1e0acaa7ac6d6566381370
dec1bea642dffbc11ebd6d65c94f87d6db95703a
b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/recaptcha/api.js?render=6LeLojsaAAAAAB8OV2zHmQvFW66cq79i-xJqdu8j&onload=ng2recaptchaloaded

142.250.74.164

200 OK

606 B

URL HTTP/2
www.google.com/recaptcha/api.js?render=6LeLojsaAAAAAB8OV2zHmQvFW66cq79i-xJqdu8j&onload=ng2recaptchaloaded
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (945), with no line terminators
Size
606 B (606 bytes)
Hash
26ee8ee0c1674d346440158f29975e06
3b536658252b3d29ad4960afc29612aba5a4609f
d4d48803203dbd500e248442bbb4394d384710bba5ec4dbdcb985e6fa12601dd

HTTP Headers

GET /recaptcha/api.js?render=6LeLojsaAAAAAB8OV2zHmQvFW66cq79i-xJqdu8j&onload=ng2recaptchaloaded HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Tue, 06 Sep 2022 15:01:38 GMT
date: Tue, 06 Sep 2022 15:01:38 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 606
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/ns.html?id=GTM-MQ86D29

142.250.74.72

200 OK

207 B

URL HTTP/2
www.googletagmanager.com/ns.html?id=GTM-MQ86D29
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
207 B (207 bytes)
Hash
c3ce507f846a5225349295f614a0c85f
6dc66541e7173c384ac09e0d04b8c327afe9047d
2bc52ac9610cec59d0f370fd8da6bad5150166c561725f58043f2a81d63e2062

HTTP Headers

GET /ns.html?id=GTM-MQ86D29 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-encoding: br
vary: *
date: Tue, 06 Sep 2022 15:01:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 207
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-MQ86D29

142.250.74.72

200 OK

76 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-MQ86D29
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (19104)
Size
76 kB (76021 bytes)
Hash
871417ee88c538893c7ec01afd6255ca
a60f31c4c6f136f4bedd11a6176823d029562013
7606a378c127f395961352792aa4a853e07b6ebd7b18db37ffc2f1a64d7783c0

HTTP Headers

GET /gtm.js?id=GTM-MQ86D29 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 15:01:38 GMT
expires: Tue, 06 Sep 2022 15:01:38 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76021
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
80f29cbbe260408ee1418a6fbce5a537
96cfe52bcf90cfdba5cba7907d49a91f44adc032
de264b42b7c59bdadf606387adaca04af680705a947096d048f288c3e5be8517

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.proficientcredentials.com/styles.6b7fcbddb4a123c9.css

34.88.224.67

200 OK

7.7 kB

URL HTTP/2
www.proficientcredentials.com/styles.6b7fcbddb4a123c9.css
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (46936)
Size
7.7 kB (7724 bytes)
Hash
72b4ba1ff25313829002bb064afcaea1
a07fa4d012c9613121b043c919cd37f3e6254e4c
08ed948b44e128ba706e0861165ed04e44012a5ff6e9fe99192ddb19019faedd

HTTP Headers

GET /styles.6b7fcbddb4a123c9.css HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/css; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:38 GMT
etag: "64ea634493884e3804c7fd4822ba76a0-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4D6C4K311YDDZ08FJXM8
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
eaa518a8f6a1210c2196cd431743fec9
53f277bcdb5e789edbbd946df64ec57ccd87b310
f6ea8d26e3fcc91b660702d33b8b661e42164f00a01196e08d402e053bdba2d5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 15:01:38 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 09:46:52 GMT
Expires: Sat, 10 Sep 2022 09:46:51 GMT
Etag: "53f277bcdb5e789edbbd946df64ec57ccd87b310"
Cache-Control: max-age=326112,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 746814c46e440b51-OSL

ocsp.usertrust.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.usertrust.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
e8def03f4669444299a4d1c78de8b73d
92476185f681e5abf9cb0c627cc0029b8cf14714
9c7917a73ac4ed764e3d5bfcc0eba899f6b0240f046c39cf45720075a1e0d683

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 15:01:38 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 05 Sep 2022 09:07:11 GMT
Expires: Mon, 12 Sep 2022 09:07:10 GMT
Etag: "92476185f681e5abf9cb0c627cc0029b8cf14714"
Cache-Control: max-age=602894,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1079
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 746814c5cfb3b523-OSL

bat.bing.com/action/0?ti=134625931&Ver=2

13.107.21.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/action/0?ti=134625931&Ver=2
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?ti=134625931&Ver=2 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.googletagmanager.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=10A1616B819E67821988737C806B6655; domain=.bing.com; expires=Sun, 01-Oct-2023 15:01:38 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 26A723D43C914872A0548588CD88C22F Ref B: OSL30EDGE0208 Ref C: 2022-09-06T15:01:38Z
date: Tue, 06 Sep 2022 15:01:38 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f41565238dc856269109dcc30c34c535
28517f51eb3b6cd08981afbf878446d635430741
9e314961a8fca836481ea022db365cc463bcef3b5003c63ccece611b8ff77fe6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f41565238dc856269109dcc30c34c535
28517f51eb3b6cd08981afbf878446d635430741
9e314961a8fca836481ea022db365cc463bcef3b5003c63ccece611b8ff77fe6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f41565238dc856269109dcc30c34c535
28517f51eb3b6cd08981afbf878446d635430741
9e314961a8fca836481ea022db365cc463bcef3b5003c63ccece611b8ff77fe6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.proficientcredentials.com/polyfills.f364fc388fd7d751.js

34.88.224.67

200 OK

15 kB

URL HTTP/2
www.proficientcredentials.com/polyfills.f364fc388fd7d751.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (45659), with no line terminators
Size
15 kB (15246 bytes)
Hash
81adc60cba299712b49ac82638225d2d
8074fb3962be0d1378a212675e57fdf704b84ca6
b9c9453b87c8f8d696aea0692ca5152f126cfc1704e1da349ace28e8e3ae3bfc

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /polyfills.f364fc388fd7d751.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:38 GMT
etag: "7e474a0e8be838a630769c44aa970611-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4D6B93EFS0C0XHQQCN3R
X-Firefox-Spdy: h2

sessions.bugsnag.com/

35.190.88.7

200 OK

0 B

URL HTTP/2
sessions.bugsnag.com/
IP
35.190.88.7:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type
Referer: https://www.proficientcredentials.com/
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At
access-control-allow-methods: POST
access-control-allow-origin: *
date: Tue, 06 Sep 2022 15:01:38 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
a4009b2dcb8d3bf3c098ca01b4136c1c
b42d5684359952be0f98d4baa7d982e09aaa3535
d824e89572ef345364e5b9f3359e74c19b7f95be39d3e2710528010571ab015b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 15:01:38 GMT
Last-Modified: Tue, 06 Sep 2022 14:12:07 GMT
Server: ECS (nyb/1D31)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4Fue2omO7Wzi8D5thtDBskmUm8ZoLLx-7QLYVUfo3Q6zbaSfnPCqcg==
Age: 2971

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
5ebaebced2770eae7b8a83696137597f
5fc87a3e6f888c100d5118d0c941b306c6f6ac94
3323c0f78927132fcfd7d030288ad9d9ab6f4a083251f3673eb7f053c418dd98

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 15:01:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 17:01:58 GMT
Expires: Sat, 10 Sep 2022 17:01:57 GMT
Etag: "5fc87a3e6f888c100d5118d0c941b306c6f6ac94"
Cache-Control: max-age=352217,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 746814c6ac21b4ff-OSL

fast.b-cdn.net/client/2208/28190557/ac226551/v1_gs_lib.js

194.242.11.186

200 OK

48 kB

URL HTTP/2
fast.b-cdn.net/client/2208/28190557/ac226551/v1_gs_lib.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type
ASCII text, with very long lines (32768)
Size
48 kB (48167 bytes)
Hash
2046d96e29ade9f393b4fdac105c7319
0de924a2e0ccb68571143bac3c91dee68e142dfd
04088d12d7794a89285919fdaec5309325977bb89554c13448071e0dba8ec6cd

HTTP Headers

GET /client/2208/28190557/ac226551/v1_gs_lib.js HTTP/1.1
Host: fast.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:01:39 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 44702
cdn-uid: 7b3318fd-7b74-4ed0-bcec-abed109512ea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
etag: W/"630bbdfa-2436e"
last-modified: Sun, 28 Aug 2022 19:11:54 GMT
cdn-storageserver: DE-199
cdn-fileserver: 440
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/03/2022 23:01:43
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 04df06be5b04e3b18662baab03539d2f
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 502051
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

sessions.bugsnag.com/

35.190.88.7

202 Accepted

21 B

URL HTTP/2
sessions.bugsnag.com/
IP
35.190.88.7:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
21 B (21 bytes)
Hash
1807ffa1d44e667592a0f91c668ba65b
4d48849fa0f6917c9c57ed958680e9a1e722382b
0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a

HTTP Headers

POST / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: adace47c81aa5f59b4eba08303fd5ae6
Bugsnag-Payload-Version: 1
Bugsnag-Sent-At: 2022-09-06T15:01:32.982Z
Content-Length: 464
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 202 Accepted
access-control-allow-origin: *
bugsnag-session-uuid: 2bd48d79-b7a9-414f-8bfc-f021364e93ab
content-type: application/json
date: Tue, 06 Sep 2022 15:01:39 GMT
content-length: 21
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
eaa518a8f6a1210c2196cd431743fec9
53f277bcdb5e789edbbd946df64ec57ccd87b310
f6ea8d26e3fcc91b660702d33b8b661e42164f00a01196e08d402e053bdba2d5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 15:01:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 09:46:52 GMT
Expires: Sat, 10 Sep 2022 09:46:51 GMT
Etag: "53f277bcdb5e789edbbd946df64ec57ccd87b310"
Cache-Control: max-age=326111,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 746814c6f9640b51-OSL

www.proficientcredentials.com/7732.28342b698929b81b.js

34.88.224.67

200 OK

374 B

URL HTTP/2
www.proficientcredentials.com/7732.28342b698929b81b.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (374), with no line terminators
Size
374 B (374 bytes)
Hash
46a7962db4583a6957145050a4d98773
6817b4f600f481171edff0f05a5445fdaaa5ccf1
ae46a6d03a880d29e76c36f7e52aab2c90ca50216157494e08e36ca5861b53e7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /7732.28342b698929b81b.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Cookie: _ga_FSDJZHHBH0=GS1.1.1662476493.1.0.1662476493.0.0.0; _ga=GA1.1.1594927013.1662476493
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "239de7e38e2b044285de4a3dfe49b780-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GC9N4E6Y3SF6QS3WD1R548CC
content-length: 374
X-Firefox-Spdy: h2

api.hubspot.com/livechat-public/v1/message/public?portalId=2977146&conversations-embed=static-1.10632&mobile=false&messagesUtk=6cd7ab98157746f08188eb0aaed13905&traceId=6cd7ab98157746f08188eb0aaed13905

104.19.154.83

200 OK

18 B

URL HTTP/2
api.hubspot.com/livechat-public/v1/message/public?portalId=2977146&conversations-embed=static-1.10632&mobile=false&messagesUtk=6cd7ab98157746f08188eb0aaed13905&traceId=6cd7ab98157746f08188eb0aaed13905
IP
104.19.154.83:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
18 B (18 bytes)
Hash
cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879

HTTP Headers

OPTIONS /livechat-public/v1/message/public?portalId=2977146&conversations-embed=static-1.10632&mobile=false&messagesUtk=6cd7ab98157746f08188eb0aaed13905&traceId=6cd7ab98157746f08188eb0aaed13905 HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-hubspot-messages-uri
Referer: https://www.proficientcredentials.com/
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:01:39 GMT
content-type: text/plain; charset=utf-8
content-length: 18
cf-ray: 746814c7ecbbb51b-OSL
access-control-allow-origin: https://www.proficientcredentials.com
allow: HEAD,GET,OPTIONS
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: cad389f0-0790-4576-99d2-b623891cd303
x-trace: 2B4F8B5806AB8FF23532E032E689723A91A930976C000000000000000000
set-cookie: __cf_bm=wHSheluAwufDVjSgW1MDeCRaOQiQ9TkUv6G3r6dN5hY-1662476499-0-AcGBn102W1Ng5gL2R6Z5ITwntehYdT8SFhMBLJJTeB2r8vGmZDW+iC6wXeU1gZ6PfwXWqhHYX3741ZKR7DRSWfE=; path=/; expires=Tue, 06-Sep-22 15:31:39 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2fiIdjqQFTKl1ogCwKtCn3vDzUSbSxf97515nKCWpANUk7izu%2BZ7DC1kGmQMCQVWH1ikjLjczh80D%2FfD7eeYrQbpo19Cc6GNJmlna0fIs%2FI1lz%2BZkJ1KWWOfe%2FYqfyedXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.proficientcredentials.com/3116.cef324ce02fa2239.js

34.88.224.67

200 OK

11 kB

URL HTTP/2
www.proficientcredentials.com/3116.cef324ce02fa2239.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (27124), with no line terminators
Size
11 kB (10577 bytes)
Hash
dd28b6bbd45476d61d4d10127eae930e
2584de1e8189e81845d9b6b1f98598f5e1899353
b64d8d83a20f95e17231bd80d5f2032d65cd30f949342a2c1e12d8ca114a77bd

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /3116.cef324ce02fa2239.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "90ec0ee6001b662b3f4d025555cc517f-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E1YCGJ97TRGYQBAEYDT
X-Firefox-Spdy: h2

104.19.154.83

200 OK

226 B

URL HTTP/2
api.hubspot.com/livechat-public/v1/message/public?portalId=2977146&conversations-embed=static-1.10632&mobile=false&messagesUtk=6cd7ab98157746f08188eb0aaed13905&traceId=6cd7ab98157746f08188eb0aaed13905
IP
104.19.154.83:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with no line terminators
Size
226 B (226 bytes)
Hash
6c53e7565bed55de60c9a8227c4c4091
37bd029986b687776ab2f2fa6b96f83466989203
38dc79fe1d330f18df14d969dae5e11309845502fa6f1de65023305a884d9610

HTTP Headers

GET /livechat-public/v1/message/public?portalId=2977146&conversations-embed=static-1.10632&mobile=false&messagesUtk=6cd7ab98157746f08188eb0aaed13905&traceId=6cd7ab98157746f08188eb0aaed13905 HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-HubSpot-Messages-Uri: https://www.proficientcredentials.com/header/header.component
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:01:39 GMT
content-type: application/json;charset=utf-8
content-length: 226
cf-ray: 746814c8bdddb51b-OSL
access-control-allow-origin: https://www.proficientcredentials.com
cache-control: no-cache, no-store, no-transform, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: bcd658f1-185e-440b-86d9-da859364e715
x-trace: 2B89F8CCC8B4624AE4C831D67EAAC502969E272735000000000000000000
set-cookie: __cf_bm=7YynKrref.O_TYpXKZ04txaLuPWe422HMQ3A2PU7zpA-1662476499-0-AWC58N0oJvecktYMmp62rPIG4vAjnvRZP7sOVisAAGNyA7BK1L6z4d9V7bbFlXsi1I5dqrzsCpYXhyfPDRGBlZA=; path=/; expires=Tue, 06-Sep-22 15:31:39 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A25AInwdqF1%2FNTWcA2MSdgjbcbTeo0xPXHRdPcv23vCKx%2FHB71%2Bt%2FMwTqOHg7qcQsF5gD6Qj0LsVJ3hscoIORPnwhZi3aWERqorWCevCHvHvQceGnFaCv5W7srCj0fCrIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Size
16 kB (15752 bytes)
Hash
b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:40:23 GMT
expires: Thu, 31 Aug 2023 19:40:23 GMT
cache-control: public, max-age=31536000
age: 501676
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.proficientcredentials.com/5008.62b73b6375454eff.js

34.88.224.67

200 OK

142 kB

URL HTTP/2
www.proficientcredentials.com/5008.62b73b6375454eff.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (53567), with no line terminators
Size
142 kB (142492 bytes)
Hash
158f6c92df32119593fea520bd3040f6
760d04eb643749e2edd5736cf00c3931e132fa9e
89ab4cbb5cb355bfa68fa74503987f51e56ed9d84fac4b60d5f352fecd1317f7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /5008.62b73b6375454eff.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "245ac5cc46d6a675d1f812308174355d-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E28BNRRFZ1C6PHCWKZ7
X-Firefox-Spdy: h2

www.proficientcredentials.com/9388.4ae7953d766271c5.js

34.88.224.67

200 OK

17 kB

URL HTTP/2
www.proficientcredentials.com/9388.4ae7953d766271c5.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (4094), with no line terminators
Size
17 kB (17158 bytes)
Hash
ac1ec913dabbfd807d15350bf6aa649b
6a54ed5b0b0dc1da3a0ed720c1f7647077244b83
fb69b9ec8f89f785b4b13365fee3585c4ac8b6badeba6a8a035c905ae0c81c2d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /9388.4ae7953d766271c5.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Cookie: _ga_FSDJZHHBH0=GS1.1.1662476493.1.0.1662476493.0.0.0; _ga=GA1.1.1594927013.1662476493
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "d9f659d112d94aebfac191cf49ebdcfe-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4EDW9C8XZW8XWJRX1066
X-Firefox-Spdy: h2

www.proficientcredentials.com/assets/themes/www.proficientcredentials.com/images/proficient_logo.png

34.88.224.67

200 OK

7.0 kB

URL HTTP/2
www.proficientcredentials.com/assets/themes/www.proficientcredentials.com/images/proficient_logo.png
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 441 x 79, 8-bit/color RGBA, non-interlaced\012- data
Size
7.0 kB (6962 bytes)
Hash
56c20959ff4472f5bb5d5e5506beaa38
fc40483597414d8cfc94fddaa00cba0643520152
ccc0e67a1ae472f26497de37df820d7c04a9daafe1f20c6c7790b08f45c74ccb

HTTP Headers

GET /assets/themes/www.proficientcredentials.com/images/proficient_logo.png HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Cookie: _ga_FSDJZHHBH0=GS1.1.1662476493.1.0.1662476493.0.0.0; _ga=GA1.1.1594927013.1662476493
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "fc9cb46d8ecdb5e45a0a729ab6498a70-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GC9N4EGE5Y769QBNZQTFNZ10
content-length: 6962
X-Firefox-Spdy: h2

www.proficientcredentials.com/7368.47466c30f00d453a.js

34.88.224.67

200 OK

6.3 kB

URL HTTP/2
www.proficientcredentials.com/7368.47466c30f00d453a.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (22161), with no line terminators
Size
6.3 kB (6283 bytes)
Hash
0fd534543eaef9b65cbaafeaf73df086
19699b8b638d2104093cad6925250615d9584cb4
4cd86863c7f8930678277375f4222c4814686d0bb9f9eca5f31f13cc79b7a736

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /7368.47466c30f00d453a.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "b8916402a5a158af57160c79ecf1626b-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E28VMC46AFV22XA365B
X-Firefox-Spdy: h2

www.proficientcredentials.com/3150.c5de462fada75243.js

34.88.224.67

200 OK

31 kB

URL HTTP/2
www.proficientcredentials.com/3150.c5de462fada75243.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (25688), with no line terminators
Size
31 kB (30915 bytes)
Hash
dc870e9204aa622b44976cc55f46e7df
fc1290d441aa18eadf4a1522b3a4b72b22bb7e81
a01e23e3d1e4b2a766c569bcf3a3bcc24849c3b11a8dd9f2af58b1d896287f19

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /3150.c5de462fada75243.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "e1dbcf027bb25af2d97eb080279bde14-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E28D9CWYZQRV3SA65BZ
X-Firefox-Spdy: h2

js.hs-scripts.com/2977146.js

104.17.210.204

200 OK

21 kB

URL HTTP/2
js.hs-scripts.com/2977146.js
IP
104.17.210.204:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (492)
Size
21 kB (20954 bytes)
Hash
2fc5a591640a87afaf8c6f9f5505e9c8
0c5e0a3f49927d60a41dfe87c5a26c0c2fbdbb05
7762dfa8df02c53046f825d4c22d51e91e551472c46385364a0f1ce70559fb2b

HTTP Headers

GET /2977146.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:01:39 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2BB97AA8C28B3C60148CEB2EB27EB4E1DE997B609C000000000000000000
cache-control: public, max-age=60
vary: Accept-Encoding
x-hubspot-correlation-id: bdc3ef4e-9989-44c7-bb74-e6d8e4370e4f
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.proficientcredentials.com
last-modified: Tue, 06 Sep 2022 15:00:01 GMT
cf-cache-status: EXPIRED
expires: Tue, 06 Sep 2022 15:02:39 GMT
server: cloudflare
cf-ray: 746814c6399fb518-OSL
content-encoding: br
X-Firefox-Spdy: h2

sessions.bugsnag.com/

35.190.88.7

202 Accepted

21 B

URL HTTP/2
sessions.bugsnag.com/
IP
35.190.88.7:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
21 B (21 bytes)
Hash
1807ffa1d44e667592a0f91c668ba65b
4d48849fa0f6917c9c57ed958680e9a1e722382b
0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a

HTTP Headers

POST / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: adace47c81aa5f59b4eba08303fd5ae6
Bugsnag-Payload-Version: 1
Bugsnag-Sent-At: 2022-09-06T15:01:33.988Z
Content-Length: 464
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 202 Accepted
access-control-allow-origin: *
bugsnag-session-uuid: 1d09a885-3733-4139-bdd7-4383168f5571
content-type: application/json
date: Tue, 06 Sep 2022 15:01:39 GMT
content-length: 21
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.proficientcredentials.com/6209.fa111e1897099518.js

34.88.224.67

200 OK

99 kB

URL HTTP/2
www.proficientcredentials.com/6209.fa111e1897099518.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (65536), with no line terminators
Size
99 kB (98636 bytes)
Hash
a49b9f624089a4923aa7d2524f9e5678
1cdc3e1cb76e8aaa4f1810fdeed33d0e8eedae17
979ab22885d49493e4a340517f7cc08bcbb5fd29b02db9f0c63fd3a1272b0922

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /6209.fa111e1897099518.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "77bd1227cf3efe35c54e69ab58dcf23d-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E28003CGDV1ZHY70RE1
X-Firefox-Spdy: h2

bat.bing.com/bat.js

13.107.21.200

200 OK

11 kB

URL HTTP/2
bat.bing.com/bat.js
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Size
11 kB (11367 bytes)
Hash
293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab

HTTP Headers

GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=03FE30DE4155696B11A322C940A06863; domain=.bing.com; expires=Sun, 01-Oct-2023 15:01:39 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 494AB702E6894165B153FE139A5E9A36 Ref B: OSL30EDGE0208 Ref C: 2022-09-06T15:01:39Z
date: Tue, 06 Sep 2022 15:01:39 GMT
X-Firefox-Spdy: h2

www.proficientcredentials.com/1399.28f848bf80556810.js

34.88.224.67

200 OK

7.8 kB

URL HTTP/2
www.proficientcredentials.com/1399.28f848bf80556810.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (7857), with no line terminators
Size
7.8 kB (7817 bytes)
Hash
edc2e758d85330846db472db5130878e
8222a7e742e558cbe55e4bb27cbecea60a5cec41
866a84e5f82c25e682d5746632e2be7d5854b784d04faca66dcaddc654085b99

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /1399.28f848bf80556810.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Cookie: _ga_FSDJZHHBH0=GS1.1.1662476493.1.0.1662476493.0.0.0; _ga=GA1.1.1594927013.1662476493
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "29044cb514190785a2ae7ffa9441c1f9-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E7J0XMWJ1MYWS77AZND
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20006 bytes)
Hash
56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 06 Sep 2022 14:41:12 GMT
expires: Tue, 06 Sep 2022 16:41:12 GMT
cache-control: public, max-age=7200
age: 1227
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d58a944719f9692215e6f86ace3d928d
83ee40574b487a0ac1c5843e5407fba8291829eb
77e637caf991b55eb7ba8dc31de4c988dc529f10ee824c27562e05775eefec10

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:01:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bat.bing.com/p/action/134625931.js

13.107.21.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/p/action/134625931.js
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/action/134625931.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=3189E750785A6A7B2C26F54779AF6BEF; domain=.bing.com; expires=Sun, 01-Oct-2023 15:01:39 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: B73A7AC870A1437C8780B630D4FEB9F3 Ref B: OSL30EDGE0208 Ref C: 2022-09-06T15:01:39Z
date: Tue, 06 Sep 2022 15:01:39 GMT
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17059
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 15:01:39 GMT
Connection: keep-alive

bat.bing.com/action/0?ti=134625931&tm=gtm002&Ver=2&mid=ceb28805-f5b6-446f-ad56-244d434d46ec&sid=cc62e9202df411ed802b259c2d4ca575&vid=cc633c502df411ed906cefa0bae34722&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Proficient%20Credentials%20-%20CareerNet&p=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&r=&lt=1288&evt=pageLoad&sv=1&rn=711726

13.107.21.200

204 No Content

0 B

URL HTTP/2
bat.bing.com/action/0?ti=134625931&tm=gtm002&Ver=2&mid=ceb28805-f5b6-446f-ad56-244d434d46ec&sid=cc62e9202df411ed802b259c2d4ca575&vid=cc633c502df411ed906cefa0bae34722&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Proficient%20Credentials%20-%20CareerNet&p=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&r=&lt=1288&evt=pageLoad&sv=1&rn=711726
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?ti=134625931&tm=gtm002&Ver=2&mid=ceb28805-f5b6-446f-ad56-244d434d46ec&sid=cc62e9202df411ed802b259c2d4ca575&vid=cc633c502df411ed906cefa0bae34722&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Proficient%20Credentials%20-%20CareerNet&p=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&r=&lt=1288&evt=pageLoad&sv=1&rn=711726 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0451FFF5259760382BB7EDE2246261EA; domain=.bing.com; expires=Sun, 01-Oct-2023 15:01:39 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 58972C3BDC5649AA98D7F166CEC2C34C Ref B: OSL30EDGE0208 Ref C: 2022-09-06T15:01:39Z
date: Tue, 06 Sep 2022 15:01:39 GMT
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17059
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 15:01:39 GMT
Connection: keep-alive

apis.google.com/js/platform.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
apis.google.com/js/platform.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1277)
Size
20 kB (20361 bytes)
Hash
b5a31516be83fe4f962609045d824f88
939a49a9858bf23561279f9ca2d1941d3256c66f
edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328

HTTP Headers

GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Tue, 06 Sep 2022 15:01:39 GMT
expires: Tue, 06 Sep 2022 15:01:39 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7923b5b5f786e6f6"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg

34.120.237.76

200 OK

7.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.2 kB (7152 bytes)
Hash
8ce50dfa23e7f34ff68cc6426c2823f7
b1685694999272feb4d9fc39296418cd95480678
4df89827b1b34bb577f28f281ed85067a2e34dd48923b9bae1561e81f67be49b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7152
x-amzn-requestid: 2571ff54-e2f8-4072-8a26-3d0dd4cd3523
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAWsfHz_IAMFaXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166b1c-6a598849314cdc433f9f82f7;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XjbO8y9D7PhQcN0XaBkmhcjzWCMRczO80wxAJa4gUFQZPrS6eb3Z3A==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:48:59 GMT
age: 61960
etag: "b1685694999272feb4d9fc39296418cd95480678"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17059
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 15:01:39 GMT
Connection: keep-alive

www.google-analytics.com/j/collect?v=1&_v=j96&a=768140886&t=pageview&_s=1&dl=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&dp=%2Fheader%2Fheader.component&ul=en-us&de=UTF-8&dt=Proficient%20Credentials%20-%20CareerNet&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YCDACEABBAAAAC~&jid=1706845707&gjid=1778785720&cid=1594927013.1662476493&tid=UA-38255894-8&_gid=1359450717.1662476494&_r=1&gtm=2wg8v0MQ86D29&z=995862973

142.250.74.174

200 OK

1 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j96&a=768140886&t=pageview&_s=1&dl=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&dp=%2Fheader%2Fheader.component&ul=en-us&de=UTF-8&dt=Proficient%20Credentials%20-%20CareerNet&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YCDACEABBAAAAC~&jid=1706845707&gjid=1778785720&cid=1594927013.1662476493&tid=UA-38255894-8&_gid=1359450717.1662476494&_r=1&gtm=2wg8v0MQ86D29&z=995862973
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

POST /j/collect?v=1&_v=j96&a=768140886&t=pageview&_s=1&dl=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&dp=%2Fheader%2Fheader.component&ul=en-us&de=UTF-8&dt=Proficient%20Credentials%20-%20CareerNet&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YCDACEABBAAAAC~&jid=1706845707&gjid=1778785720&cid=1594927013.1662476493&tid=UA-38255894-8&_gid=1359450717.1662476494&_r=1&gtm=2wg8v0MQ86D29&z=995862973 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.proficientcredentials.com
date: Tue, 06 Sep 2022 15:01:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.7 kB (6656 bytes)
Hash
983e705542fa78b4d5c876e0c1eada7e
5fc951e5236edd282d4975853ca35dab2e55fb17
fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6656
x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-3F2ZIAMFpLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:45:42 GMT
age: 62157
etag: "5fc951e5236edd282d4975853ca35dab2e55fb17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6482 bytes)
Hash
0efc32eccbf76ac0d89f324d09a7fd1f
f8589eb3907582137d8b9373af745d80eddbf1bb
ee0f5e56c97e50e1c20801ad0a5379982feef16a11137f784f404d14e9c65824

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6482
x-amzn-requestid: 5e5b342b-0224-4916-8656-237b4c90ae66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-5FaYIAMFzjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-412f897b451130af70026eab;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8UExY-3ojiqMEfyXXKG6kJcB5CRiNnfgG5JQS3gWnd4t4bbKNzbsYA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:45:43 GMT
age: 62156
etag: "f8589eb3907582137d8b9373af745d80eddbf1bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17059
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 15:01:39 GMT
Connection: keep-alive

script.hotjar.com/modules.d5eb3c97b67a0b8958ff.js

143.204.55.68

200 OK

66 kB

URL HTTP/2
script.hotjar.com/modules.d5eb3c97b67a0b8958ff.js
IP
143.204.55.68:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (48715)
Size
66 kB (65509 bytes)
Hash
5a03435fb2b1019b1b00d7bc5c267f72
6d9116f703cb7fced1cfb7eba229302f4950e4b0
555555e6799149ac64f285eb30f78583dfa52fc0d23dbb75c357897873b8cb97

HTTP Headers

GET /modules.d5eb3c97b67a0b8958ff.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 65509
date: Fri, 02 Sep 2022 09:50:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "5a03435fb2b1019b1b00d7bc5c267f72"
last-modified: Fri, 02 Sep 2022 09:49:47 GMT
strict-transport-security: max-age=86400; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: PVf0HDdT-0LXI1pbzu7VsOU1J36AnB5aTludPTNKSeKdMky0ISfW3A==
age: 364293
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12573 bytes)
Hash
3fe4a321dcd6a94a637a528d74f9321a
3f3aad2cc71226b39549db1a9baa6837d4f1d897
a19b6749429e8ecaeac8fc0849abc4d891bfc628489762b1619a3ee3064536e3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12573
x-amzn-requestid: 92e03b26-883b-41e2-9033-379a6d02210c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYCdGy8oAMFQZw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d42-1c4ea2f74b796623574bde87;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: u1hKGB5UKEuuIVqcQ_Lx5wfBjy_hB32Jnp7_mDnF2BrsN4a6Mj_WJQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:16 GMT
etag: "3f3aad2cc71226b39549db1a9baa6837d4f1d897"
content-type: image/jpeg
age: 62123
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12683 bytes)
Hash
ec466c0d472e43c11d36bf6fce068205
720d3624a76d060b8e2699e9aa7a320e3efd4878
5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12683
x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8XmEe0IAMFQDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 04:36:52 GMT
age: 37488
etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.4 kB (4426 bytes)
Hash
c81f3df885bdee8cac46ea9495e6b63b
fc766bca874a352a4acb569577d4cf6527f4f074
e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4426
x-amzn-requestid: b5b68557-e46d-41cd-9b11-d996aabc0de7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzfYTHHFIAMFjFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631145ce-1d3504367cf6ef724a345564;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 23:52:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bSBSzzRMdrVdoV3Ld8hYWq2AwO7Mswcwa8Tk_AKa44j1SlrFugNqpg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:48:06 GMT
age: 62014
etag: "fc766bca874a352a4acb569577d4cf6527f4f074"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
8806f7ce565af1530efafb651b2e8a35
608bccc6a3939255a804bfc115b455c38f649df7
50f63773b0f936c5105b7c01cee4b064c771a6d454adb61dcdb5f85d8a185e58

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 15:01:39 GMT
Last-Modified: Tue, 06 Sep 2022 13:26:09 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kLWJfWvc9J7in0qPf-EGixs0PowVKel8Sw6vs55UcJhMVBwE_Jwy5Q==
Age: 5730

www.proficientcredentials.com/assets/themes/www.proficientcredentials.com/images/favicon.ico

34.88.224.67

200 OK

15 kB

URL HTTP/2
www.proficientcredentials.com/assets/themes/www.proficientcredentials.com/images/favicon.ico
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
15 kB (15406 bytes)
Hash
f02e6a48a55e0e8a84d7b88b6c23c44e
885f5cbcada1fbfc8fc81832ea1199b60d2f4214
ca0ed98510f05b8bbf90383d6bb7e3fc711486cb7eecf2fc2218d6d2f27a8e60

HTTP Headers

GET /assets/themes/www.proficientcredentials.com/images/favicon.ico HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Cookie: _ga_FSDJZHHBH0=GS1.1.1662476493.1.0.1662476493.0.0.0; _ga=GA1.1.1594927013.1662476493
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 2
cache-control: public, max-age=0, must-revalidate
content-type: image/vnd.microsoft.icon
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "b38ca59ed7a561f2e81071d2fcc124f2-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GC9N4ETZJEJCXV4P7FKWG6H7
content-length: 15406
X-Firefox-Spdy: h2

vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html

143.204.55.118

200 OK

1.0 kB

URL HTTP/2
vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html
IP
143.204.55.118:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Size
1.0 kB (1044 bytes)
Hash
0b3d3f4206ab84d8861a8cc4b2ddbe66
4561b7c0419b65db5c1314be2143bd1734e88d89
ec42652b198c82469afbe5e6e69312a25425c1fd38d379cf3761b328ecd48e4a

HTTP Headers

GET /box-1ada912494ba7fc7aca15fcef1c2a7ae.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html
content-length: 1044
date: Wed, 13 Jul 2022 08:33:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "0b3d3f4206ab84d8861a8cc4b2ddbe66"
last-modified: Wed, 13 Jul 2022 08:32:20 GMT
strict-transport-security: max-age=86400; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 3OYZZXn3rZERFEp2WsqeI4YswHK-gNNHRDGolMYzoJVGX4MeZP6utA==
age: 4775314
X-Firefox-Spdy: h2

px.ads.linkedin.com/collect?v=2&fmt=js&pid=3237457&time=1662476494277&url=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component

13.107.42.14

302 Found

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3237457&time=1662476494277&url=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=3237457&time=1662476494277&url=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3237457%26time%3D1662476494277%26url%3Dhttps%253A%252F%252Fwww.proficientcredentials.com%252Fheader%252Fheader.component%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQKh5Voo3QfriwAAAYMTUjwwnR51rWqX4HZ5zoF_DpHf6RG0ESKS9zD2znJlB9ccoJzhW7CiEdjvHA; Max-Age=2592000; Expires=Thu, 06 Oct 2022 15:01:40 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQIt8_Hq4zMfWgAAAYMTUjwwdpuAZVf3O24Dlvq60tZr2489lG6Fbz32bVHStvSAvMYm4UaQCizJn69mNgGSwg; Max-Age=2592000; Expires=Thu, 06 Oct 2022 15:01:40 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&f8bdb526-683f-473c-85ca-5da83a4d2d49"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 06-Sep-2023 15:01:40 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2377:u=1:x=1:i=1662476500:t=1662562900:v=2:sig=AQG6XCvey-nnWUIfEQymJt--CmBslP2a"; Expires=Wed, 07 Sep 2022 15:01:40 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXoA3k6/SXUETq9K1DEbw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 55DBC2A64DB54EA0A89EBF46DACF0F32 Ref B: OSL30EDGE0318 Ref C: 2022-09-06T15:01:39Z
date: Tue, 06 Sep 2022 15:01:39 GMT
content-length: 0
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
8806f7ce565af1530efafb651b2e8a35
608bccc6a3939255a804bfc115b455c38f649df7
50f63773b0f936c5105b7c01cee4b064c771a6d454adb61dcdb5f85d8a185e58

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 15:01:40 GMT
Last-Modified: Tue, 06 Sep 2022 13:27:19 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: WZtdMXes0VmVPIBRIMsK3lFhJJcPuv4BBEqRi9Idm2OP3X8rQelZDA==
Age: 5661

www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3237457%26time%3D1662476494277%26url%3Dhttps%253A%252F%252Fwww.proficientcredentials.com%252Fheader%252Fheader.component%26liSync%3Dtrue

13.107.42.14

302 Found

0 B

URL HTTP/2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3237457%26time%3D1662476494277%26url%3Dhttps%253A%252F%252Fwww.proficientcredentials.com%252Fheader%252Fheader.component%26liSync%3Dtrue
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3237457%26time%3D1662476494277%26url%3Dhttps%253A%252F%252Fwww.proficientcredentials.com%252Fheader%252Fheader.component%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.proficientcredentials.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=3237457&time=1662476494277&url=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&a475c98b-85c1-4d47-8995-6fb9fad78be1"; Domain=.linkedin.com; Expires=Wed, 06-Sep-2023 15:01:40 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20220906150140bc4cbbc1-da66-4c47-86b4-fd10a48445b0AQGoBViZ3qpTZK-CmITbCiqcNH0l__XT"; Domain=.www.linkedin.com; Expires=Wed, 06-Sep-2023 15:01:40 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjI0NzY1MDA7MjswMjFRytQid4H8YIwtwXrnWqKKTSnVGi3zqUtrVE81mCz8rg==; Domain=.linkedin.com; Expires=Sun, 05 Mar 2023 15:01:40 GMT; Path=/; Secure; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2338:u=1:x=1:i=1662476500:t=1662562900:v=2:sig=AQEPKP-kBfgtBROAyx9zC5q6-bRvySVy"; Expires=Wed, 07 Sep 2022 15:01:40 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self'
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXoA3k+NS4eBX+4lwPZ9g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 2640584344994982B1D16B9A3B912ABA Ref B: OSL30EDGE0318 Ref C: 2022-09-06T15:01:40Z
date: Tue, 06 Sep 2022 15:01:39 GMT
content-length: 0
X-Firefox-Spdy: h2

px.ads.linkedin.com/collect?v=2&fmt=js&pid=3237457&time=1662476494277&url=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&liSync=true

13.107.42.14

200 OK

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3237457&time=1662476494277&url=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&liSync=true
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=3237457&time=1662476494277&url=https%3A%2F%2Fwww.proficientcredentials.com%2Fheader%2Fheader.component&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.proficientcredentials.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&8cf1a76e-b132-4ac9-8dab-106e6d944218"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 06-Sep-2023 15:01:40 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2338:u=1:x=1:i=1662476500:t=1662562900:v=2:sig=AQEPKP-kBfgtBROAyx9zC5q6-bRvySVy"; Expires=Wed, 07 Sep 2022 15:01:40 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXoA3lBQUv2WhxiBbGqaA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 430726AD6E29455886A5F5AEF7B413AE Ref B: OSL30EDGE0318 Ref C: 2022-09-06T15:01:40Z
date: Tue, 06 Sep 2022 15:01:40 GMT
content-length: 0
X-Firefox-Spdy: h2

api.accredible.com/v1/credential-net/organizations/www.proficientcredentials.com/whitelabel_settings

54.226.161.85

200 OK

0 B

URL HTTP/2
api.accredible.com/v1/credential-net/organizations/www.proficientcredentials.com/whitelabel_settings
IP
54.226.161.85:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v1/credential-net/organizations/www.proficientcredentials.com/whitelabel_settings HTTP/1.1
Host: api.accredible.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.proficientcredentials.com
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:01:39 GMT
content-type: application/json; charset=utf-8
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, PUT, DELETE, GET, OPTIONS
access-control-expose-headers: Authorization
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
access-control-request-method: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-Frame-Options
strict-transport-security: max-age=31536000; includeSubDomains
set-cookie: _session_id=2J06tgbNvXKLtOTBlWxfTHBVYEDMiu7u%2BekATyGZe65bAsR7%2B0wZWhkC6J%2FmDSjrqKtR%2FJazBjtiG2YzTXWCb6op45U0HsQle2AULBeeJj4N%2B5zHTwZYbGHmmEdRZ8O0HzZnD8XArP0HrA7hqp7cXmaQgeftCsLGeuJf%2B994rfdVPdh03xVjxzccftf7J6jqgyf2--w%2FqknakpgfFGWbnv--FUY13QIcrKEzeCbDkKJTiA%3D%3D; path=/; secure; HttpOnly; SameSite=Strict
_session_id=sPawmqGIBqWJrvcybkqirTFwsYxfTNognyOFLo2HYwQQ6Vi76DUcG78X4f1V%2BKPd%2BCVrTCA2aXBdeOic20ooLCeGBql9u4b%2Bnb2%2FN1CbYxtf0Ip2AgklPAOyEYrJD%2BTONHSdkHYeHGm3bqyDqnfk0u%2BOGFJYAEDyG3eg2%2FxNW2oEuxkDE28KftTl%2BURBVG8W1ubI--FsyNNTh%2BHmtJzskV--CviXNttIePplDGRhGe0X%2Bg%3D%3D; path=/; secure; HttpOnly; SameSite=Strict
vary: Accept-Encoding, Origin
content-encoding: gzip
etag: W/"7cb277c193acdb228d7ef381e5aa53d3"
cache-control: max-age=0, private, must-revalidate
x-request-id: 8bf3f0ab-e3da-41a8-b916-ff33b8f108ee
X-Firefox-Spdy: h2

www.proficientcredentials.com/8766.02c9a48404e2dec8.js

34.88.224.67

200 OK

0 B

URL HTTP/2
www.proficientcredentials.com/8766.02c9a48404e2dec8.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /8766.02c9a48404e2dec8.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "1ec2f7606d8e761ac5136d5c03b51381-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E2GT91T2H6GF9P26TEZ
X-Firefox-Spdy: h2

www.proficientcredentials.com/5691.8d98c11054ae7caa.js

34.88.224.67

200 OK

0 B

URL HTTP/2
www.proficientcredentials.com/5691.8d98c11054ae7caa.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /5691.8d98c11054ae7caa.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "cc245db9423c1694913db34eb3ba45cd-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E2JFM30FNS4HSSG4WQ0
X-Firefox-Spdy: h2

www.proficientcredentials.com/assets/i18n/en.json

34.88.224.67

200 OK

0 B

URL HTTP/2
www.proficientcredentials.com/assets/i18n/en.json
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /assets/i18n/en.json HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/json
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "af8869ab00a562c822ddf330df053d29-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E02YCRVXQ41YKG63J45
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,500,900

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,500,900
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto:300,400,500,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 15:01:38 GMT
date: Tue, 06 Sep 2022 15:01:38 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

js.hs-banner.com/2977146.js

104.18.33.171

200 OK

0 B

URL HTTP/2
js.hs-banner.com/2977146.js
IP
104.18.33.171:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /2977146.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:01:39 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: 1I9cvWyIZbRljs97str29XoFP4o8vtLe111MVIID4gOcViVbYQEqEt5G+Q8ZGRAdutFvMmZJvtE=
x-amz-request-id: WAT820Y3GW7TC6EH
last-modified: Tue, 30 Aug 2022 20:43:21 GMT
etag: W/"ba3a5f3778f1ae83b01b3b57d2f7a096"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: eCJVCYwRPIol6.HaYXEMP32Sd2iZ_IrI
access-control-allow-origin: https://www.credential.net
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
expires: Tue, 06 Sep 2022 15:00:46 GMT
cf-cache-status: HIT
age: 244
vary: Accept-Encoding
server: cloudflare
cf-ray: 746814c77e62b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.proficientcredentials.com/5405.f86012048c506042.js

34.88.224.67

200 OK

0 B

URL HTTP/2
www.proficientcredentials.com/5405.f86012048c506042.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /5405.f86012048c506042.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "7756595d4329fdc4044e2829497fa96b-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E20V0BAZZQ5F45Q5JTT
X-Firefox-Spdy: h2

www.proficientcredentials.com/header/header.component

34.88.224.67

200 OK

0 B

URL HTTP/2
www.proficientcredentials.com/header/header.component
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /header/header.component HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
age: 2
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:37 GMT
etag: "0ef233c34866fc4bc5a359534777132e-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4CYBKK3KG9K73D5GR660
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Material+Icons|Material+Icons+Outlined

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Material+Icons|Material+Icons+Outlined
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Material+Icons|Material+Icons+Outlined HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 15:01:38 GMT
date: Tue, 06 Sep 2022 15:01:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.proficientcredentials.com/7065.10e2054e3695c0ea.js

34.88.224.67

200 OK

0 B

URL HTTP/2
www.proficientcredentials.com/7065.10e2054e3695c0ea.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /7065.10e2054e3695c0ea.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "569df2d1fd94c1f08e1e43fdc40348c4-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E1JAR159A9VFGZ518HP
X-Firefox-Spdy: h2

www.proficientcredentials.com/1772.98cbb36a9bef8aaa.js

34.88.224.67

200 OK

0 B

URL HTTP/2
www.proficientcredentials.com/1772.98cbb36a9bef8aaa.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /1772.98cbb36a9bef8aaa.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "9fab77c3cff79386628de7334d1e01c7-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E24YPH42079J9A414XD
X-Firefox-Spdy: h2

www.proficientcredentials.com/3374.c9e4abfe3385dba6.js

34.88.224.67

200 OK

0 B

URL HTTP/2
www.proficientcredentials.com/3374.c9e4abfe3385dba6.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /3374.c9e4abfe3385dba6.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "d1809d25d0f3b6c50806345568a993c8-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E2G38N7VNQVRJJ518WM
X-Firefox-Spdy: h2

api.at.getsocial.io/get/v1/ac226551/gs_async.js

46.101.118.55

200 OK

0 B

URL HTTP/2
api.at.getsocial.io/get/v1/ac226551/gs_async.js
IP
46.101.118.55:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /get/v1/ac226551/gs_async.js HTTP/1.1
Host: api.at.getsocial.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
status: 200 OK
cache-control: max-age=300, public, must-revalidate
access-control-allow-origin: https://credential.net
date: Tue, 06 Sep 2022 15:01:38 GMT
vary: Accept-Encoding
content-encoding: gzip
x-request-id: 7a38ae7c-b73a-4b96-9030-7fa880ad83ca
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: GET, POST
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
etag: W/"d3fd8f683e24f2d343525ba976ee5e51"
x-frame-options: ALLOWALL
x-runtime: 0.007850
access-control-request-method: *
server: nginx + Phusion Passenger 5.3.7
x-powered-by: Phusion Passenger 5.3.7, cloud66
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.proficientcredentials.com/9493.bc154830b9f0ea42.js

34.88.224.67

200 OK

0 B

URL HTTP/2
www.proficientcredentials.com/9493.bc154830b9f0ea42.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /9493.bc154830b9f0ea42.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "b9ecbeaeaffdc067e0ce790490647afa-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E1KD5007AVV74J1DY1R
X-Firefox-Spdy: h2

www.proficientcredentials.com/969.2f6894787c60677b.js

34.88.224.67

200 OK

0 B

URL HTTP/2
www.proficientcredentials.com/969.2f6894787c60677b.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /969.2f6894787c60677b.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "1b3a7018955f60a04821570383034e36-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E1P3B1V139W6AGY9R9X
X-Firefox-Spdy: h2

www.proficientcredentials.com/9075.02fea79ef4bde7c1.js

34.88.224.67

200 OK

0 B

URL HTTP/2
www.proficientcredentials.com/9075.02fea79ef4bde7c1.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /9075.02fea79ef4bde7c1.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "b05355eb2db24f0d67d099a04f2504b2-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E2GXRX0XNNX68E1128Z
X-Firefox-Spdy: h2

js.hs-analytics.net/analytics/1662476400000/2977146.js

104.17.70.176

200 OK

0 B

URL HTTP/2
js.hs-analytics.net/analytics/1662476400000/2977146.js
IP
104.17.70.176:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /analytics/1662476400000/2977146.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 06 Sep 2022 15:01:39 GMT
content-type: text/javascript
x-amz-id-2: n0hGU0gXN5DU3vyaiUXhgCLpJHoFx1EQ07uBB2DVQTTYawZQDjiLOC2hNjcMFszJ7jcNoffIFZg=
x-amz-request-id: F17MX0GMVX9Q411N
last-modified: Wed, 31 Aug 2022 11:50:22 GMT
etag: W/"896055de00db99a50e133ef84d3ab6fc"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
expires: Tue, 06 Sep 2022 15:05:01 GMT
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 746814cc2f81b521-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.proficientcredentials.com/main.948e30c8fe8cb4ce.js

34.88.224.67

200 OK

0 B

URL HTTP/2
www.proficientcredentials.com/main.948e30c8fe8cb4ce.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /main.948e30c8fe8cb4ce.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:38 GMT
etag: "f4007f5752f111a1a02e6fb5247ac07f-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4D6CB5ZJVDPD0MX8T4Y7
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-2753128.js?sv=6

54.230.111.39

200 OK

0 B

URL HTTP/2
static.hotjar.com/c/hotjar-2753128.js?sv=6
IP
54.230.111.39:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/hotjar-2753128.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:00:54 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/97d02be15001a43fbc94d5c2fa170702
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: WQphOgs8YYf4BEQoKZGXobYQGml8XpKX0uqZuETffR5WMA2xtJ5lEQ==
age: 45
X-Firefox-Spdy: h2

www.proficientcredentials.com/common.5c7c4b461f41ba2a.js

34.88.224.67

200 OK

0 B

URL HTTP/2
www.proficientcredentials.com/common.5c7c4b461f41ba2a.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /common.5c7c4b461f41ba2a.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 1
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "618512d68b9c13d8e767798b2fe33acd-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E1PD49YBPSBC1Q33DZW
X-Firefox-Spdy: h2

www.proficientcredentials.com/runtime.2ecdb93fcd34daa9.js

34.88.224.67

200 OK

0 B

URL HTTP/2
www.proficientcredentials.com/runtime.2ecdb93fcd34daa9.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /runtime.2ecdb93fcd34daa9.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:38 GMT
etag: "08240ff932cb05edaca5baa3a34d5bb0-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4D6B0GPV9Y0T4C6X0EFF
X-Firefox-Spdy: h2

www.proficientcredentials.com/1182.236982c877eed04b.js

34.88.224.67

200 OK

0 B

URL HTTP/2
www.proficientcredentials.com/1182.236982c877eed04b.js
IP
34.88.224.67:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /1182.236982c877eed04b.js HTTP/1.1
Host: www.proficientcredentials.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.proficientcredentials.com/header/header.component
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Tue, 06 Sep 2022 15:01:39 GMT
etag: "49289f5f05c7ec30eba902e4edf0b85a-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GC9N4E2AW1RD8DASP1WMKDCB
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (46)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations