Overview

URL www.totaldatasecurityservice.com/c/da2eb8f93cc672c9
IP52.19.101.114
ASNAMAZON-02
Location Ireland
Report completed2022-07-06 20:11:11 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-07-06 2 www.totaldatasecurityservice.com/c/da2eb8f93cc672c9 Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (18)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] assets.totalav.com (21) 379709 No data No data 35.244.242.197
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-07-06 12:49:14 UTC 93.184.220.29
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.35
[Mnemonic Passive DNS] r3.o.lencr.org (8) 344 2020-12-02 08:52:13 UTC 2022-07-06 04:41:34 UTC 23.36.76.226
[Mnemonic Passive DNS] www.webdefencesupport.com (2) 0 2022-06-01 17:42:35 UTC 2022-07-06 19:01:39 UTC 52.19.101.114 Unknown ranking
[Mnemonic Passive DNS] ocsp.sca1b.amazontrust.com (1) 1015 No data No data 54.230.245.100
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-07-06 04:47:23 UTC 35.166.180.72
[Mnemonic Passive DNS] ocsp.sectigo.com (2) 487 2018-12-17 11:31:55 UTC 2022-07-06 14:10:52 UTC 172.64.155.188
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-07-06 15:18:09 UTC 34.120.237.76
[Mnemonic Passive DNS] www.totaldatasecurityservice.com (1) 0 2022-06-02 19:10:34 UTC 2022-07-06 19:13:47 UTC 52.19.101.114 Unknown ranking
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] ocsp.pki.goog (11) 175 2017-06-14 07:23:31 UTC 2022-07-06 04:42:12 UTC 142.250.74.3
[Mnemonic Passive DNS] fonts.gstatic.com (3) 0 2017-01-30 04:59:51 UTC 2022-07-06 04:41:59 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS] widget.trustpilot.com (5) 6018 No data No data 54.230.111.50
[Mnemonic Passive DNS] static.totalav.com (2) 641868 No data No data 35.186.251.103
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-07-06 04:55:23 UTC 54.230.111.64
[Mnemonic Passive DNS] www.totalav.com (1) 425785 No data No data 34.117.198.220
[Mnemonic Passive DNS] lg-glo.adessentrak02.com (1) 0 2021-03-01 20:26:16 UTC 2022-07-06 11:40:57 UTC 52.28.92.81 Unknown ranking


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 52.19.101.114

Date UQ / IDS / BL URL IP
2022-08-16 01:01:35 +0000
0 - 0 - 1 www.local-sluts.com/c/43a3cf37fc8418a2 52.19.101.114
2022-08-15 21:50:23 +0000
3 - 0 - 3 www.saveprivatedata.com/c/4a1d7ae74d32377b 52.19.101.114
2022-08-15 21:39:09 +0000
0 - 0 - 1 rztev.ihreeinkaufejetzt.com/c/3ea208374f89fcf5 52.19.101.114
2022-08-15 20:17:27 +0000
0 - 0 - 2 vpl.trustedpcprotector.com/c/08b2a14ec4521d3b 52.19.101.114
2022-08-15 19:17:25 +0000
3 - 0 - 2 www.protectionsrequired.com/c/3462e1948a82d90b 52.19.101.114
2022-08-15 03:47:40 +0000
0 - 0 - 2 kvjko.deiicatedates.com/c/da57dc555e50572d?s1 (...) 52.19.101.114
2022-08-15 00:10:39 +0000
0 - 0 - 3 zodvg.satisfyingdate.com/c/da57dc555e50572d?s (...) 52.19.101.114
2022-08-14 21:01:50 +0000
0 - 0 - 3 tits.wemeettonight.com/c/9acec7c479478547 52.19.101.114
2022-08-14 20:51:33 +0000
3 - 0 - 2 www.yourdesktopguardian.com/c/b5a9da82ad891f3f 52.19.101.114
2022-08-14 20:49:57 +0000
0 - 0 - 2 kaajz.terrlficdates.com/c/da57dc555e50572d?s1 (...) 52.19.101.114

Last 10 reports on ASN: AMAZON-02

Date UQ / IDS / BL URL IP
2022-08-16 15:50:13 +0000
0 - 0 - 2 rb.gy/efgz64 13.248.219.100
2022-08-16 15:48:28 +0000
0 - 0 - 1 www1.rnhub.com/?tm=1&subid4=1660664881.025201 (...) 76.223.26.96
2022-08-16 15:47:12 +0000
0 - 0 - 1 3.138.189.103/habar/login.php 3.138.189.103
2022-08-16 15:45:05 +0000
0 - 0 - 1 www1.celebporn.com/?tm=1&subid4=1660531450.02 (...) 75.2.73.197
2022-08-16 15:39:18 +0000
0 - 0 - 0 zuul.privacydatasystems.net/thor-tinyurl/Y2E0 (...) 3.133.8.69
2022-08-16 15:31:34 +0000
0 - 0 - 0 ranchodelmartucson.com 50.112.96.208
2022-08-16 15:26:30 +0000
0 - 0 - 1 3.123.129.109/TohttpPacketGameGenerator/ec6f9 (...) 3.123.129.109
2022-08-16 15:25:21 +0000
0 - 0 - 1 www.beatplug.yourbrandhub.com/chase/ATASHIPOS (...) 34.240.160.162
2022-08-16 15:23:42 +0000
0 - 0 - 0 15.160.64.9 15.160.64.9
2022-08-16 15:20:42 +0000
0 - 0 - 1 hk7fyfz26.wjtcjj5xtuw.com/k0jpa03jR4 13.229.230.242

No other reports on domain: totaldatasecurityservice.com



JavaScript

Executed Scripts (14)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (70)


Request Response
                                        
                                            GET /c/da2eb8f93cc672c9 HTTP/1.1 
Host: www.totaldatasecurityservice.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         52.19.101.114
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Wed, 06 Jul 2022 20:10:58 GMT
Content-Length: 347
Connection: keep-alive
Location: https://www.webdefencesupport.com/redirect/index?type=script&to=aHR0cHM6Ly93d3cud2ViZGVmZW5jZXN1cHBvcnQuY29t&data=aHR0cHM6Ly9sZy1nbG8uYWRlc3NlbnRyYWswMi5jb20vdC9jbGs/YWZmX3N1Yj0mYWZmX3N1YjM9JmlkPVhRejFpRGdWdU1RRFpoMXBQUVU4JnMxPSZzMj1jb21qbzYyYzVlYzUyMDAwMzE3MDcmczM9JnM0PSZzNT0mczY9JnM3PSZ2YXI9&action=action_tmp
Set-Cookie: unique_id=62c5ec5200097fd8; Path=/; Expires=Sun, 04 Sep 2022 20:10:58 GMT unique_id2=62c5ec520009882d; Path=/; Expires=Tue, 04 Oct 2022 20:10:58 GMT impression=; Path=/; Expires=Wed, 06 Jul 2022 20:10:58 GMT tid=comjo62c5ec5200031707; Path=/; Expires=Thu, 10 Jun 2027 20:10:58 GMT


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (345)
Size:   347
Md5:    c19828dd8c299b0ab3f4400bc9fe0e50
Sha1:   2459dd0f905db7d6d43e5d33deeb7445f1be5407
Sha256: 35d04c1c96b2bfdced583ee19f473ddebbfbba0befa624931032515f6f4de204

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 06 Jul 2022 19:56:15 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gI1UuVLedsEP3lCNDe55KLYzGjzT39BhUtwptUF_k8NWxqdzU7fmOg==
Age: 883


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5CA12512DFBE8A007255191678A4ECD570026D865AE741C0D3025D8FE1A58659"
Last-Modified: Mon, 04 Jul 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5404
Expires: Wed, 06 Jul 2022 21:41:02 GMT
Date: Wed, 06 Jul 2022 20:10:58 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.64
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Tue, 21 Jun 2022 12:10:22 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 06 Jul 2022 03:26:46 GMT
etag: "581454acdd98f34fd3fbabd0977ade29"
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: C9rop0fEr0KLwy8nrCBvig-hHmLMT6R7xy5GwJVNVfEhxRK6Pv0FHA==
age: 60253
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    581454acdd98f34fd3fbabd0977ade29
Sha1:   d8d86c0b513137aeb85de01cea7b272c35eb6ab4
Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9161C7633725E2F5A997F40E24A138E6C5521665CE74E21D8DC5190E09149494"
Last-Modified: Mon, 04 Jul 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7040
Expires: Wed, 06 Jul 2022 22:08:18 GMT
Date: Wed, 06 Jul 2022 20:10:58 GMT
Connection: keep-alive

                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Wed, 06 Jul 2022 20:10:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /redirect/index?type=script&to=aHR0cHM6Ly93d3cud2ViZGVmZW5jZXN1cHBvcnQuY29t&data=aHR0cHM6Ly9sZy1nbG8uYWRlc3NlbnRyYWswMi5jb20vdC9jbGs/YWZmX3N1Yj0mYWZmX3N1YjM9JmlkPVhRejFpRGdWdU1RRFpoMXBQUVU4JnMxPSZzMj1jb21qbzYyYzVlYzUyMDAwMzE3MDcmczM9JnM0PSZzNT0mczY9JnM3PSZ2YXI9&action=action_tmp HTTP/1.1 
Host: www.webdefencesupport.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         52.19.101.114
HTTP/2 200 OK
                                        
server: nginx
date: Wed, 06 Jul 2022 20:10:58 GMT
content-type: text/html; charset=utf-8
content-length: 319
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (319), with no line terminators
Size:   319
Md5:    23af222e6f0f11415b6bc5e562320e32
Sha1:   fb57be7eac9978e31cb46b407afffe8e072d69bd
Sha256: 84a3e48280f0ad4a965089560351a65bcd1ec25f604de16e9a03319aa5396369
                                        
                                            GET /redirect/index?type=script&to=aHR0cHM6Ly93d3cud2ViZGVmZW5jZXN1cHBvcnQuY29t&data=aHR0cHM6Ly9sZy1nbG8uYWRlc3NlbnRyYWswMi5jb20vdC9jbGs/YWZmX3N1Yj0mYWZmX3N1YjM9JmlkPVhRejFpRGdWdU1RRFpoMXBQUVU4JnMxPSZzMj1jb21qbzYyYzVlYzUyMDAwMzE3MDcmczM9JnM0PSZzNT0mczY9JnM3PSZ2YXI9&action=action_final HTTP/1.1 
Host: www.webdefencesupport.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.webdefencesupport.com/redirect/index?type=script&to=aHR0cHM6Ly93d3cud2ViZGVmZW5jZXN1cHBvcnQuY29t&data=aHR0cHM6Ly9sZy1nbG8uYWRlc3NlbnRyYWswMi5jb20vdC9jbGs/YWZmX3N1Yj0mYWZmX3N1YjM9JmlkPVhRejFpRGdWdU1RRFpoMXBQUVU4JnMxPSZzMj1jb21qbzYyYzVlYzUyMDAwMzE3MDcmczM9JnM0PSZzNT0mczY9JnM3PSZ2YXI9&action=action_tmp
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         52.19.101.114
HTTP/2 200 OK
                                        
server: nginx
date: Wed, 06 Jul 2022 20:10:58 GMT
content-type: text/html; charset=utf-8
content-length: 173
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   173
Md5:    6d76875505f3bb0e116f0f8e096a662f
Sha1:   f663d89d161b7efe9a2096fc7134719fa0fbaaf3
Sha256: 314e988bf912bc8ad63b3ab8e782ab1aa694403fcebc5acbfb9fa17e0abbe08f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Wed, 06 Jul 2022 20:10:58 GMT
Etag: "62c2f29e-1d7"
Server: ECS (dcb/7EED)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IvY9JX9ks9aNr7HAmdJcEe8AYVzh4VvCh2iEerPEESeRc87gqG-nkQ==

                                        
                                            GET /t/clk?aff_sub=&aff_sub3=&id=XQz1iDgVuMQDZh1pPQU8&s1=&s2=comjo62c5ec5200031707&s3=&s4=&s5=&s6=&s7=&var= HTTP/1.1 
Host: lg-glo.adessentrak02.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.webdefencesupport.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         52.28.92.81
HTTP/2 302 Found
                                        
date: Wed, 06 Jul 2022 20:10:59 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://track.totalav.com/5f89aaccc4918/click/15076/fe1104e9-8ec4-4cfc-905c-0d22894a9111//
server: nginx/1.12.2
cache-control: no-transform
x-frame-options: SAMEORIGIN
vary: Cookie, Origin
set-cookie: uip="[\"NHMfqIeFXV\"\054 {\"dlREj\": \"NPvnv73\"}]:1o9BMR:UcBxONMIWGkVl82Sk2etAXmc_1E"; expires=Fri, 05 Aug 2022 20:10:59 GMT; Max-Age=2592000; Path=/ ydt_adc3c4b2f89d49aa87468740c2661042="[\"fe1104e9-8ec4-4cfc-905c-0d22894a9111\"]:1o9BMR:JPgMsoTUS3t2oMgaPvUuNcQfqb4"; expires=Fri, 05 Aug 2022 22:10:59 GMT; Max-Age=2599200; Path=/; SameSite=None; Secure
X-Firefox-Spdy: h2

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 06 Jul 2022 19:34:56 GMT
Expires: Wed, 06 Jul 2022 19:55:20 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tFZ8xw7UBybFl6BnCD-mET03kQTk5cvg6K3T8-zrGQGZ1kij9NbPfQ==
Age: 2163


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5878
Cache-Control: 'max-age=158059'
Date: Wed, 06 Jul 2022 20:10:59 GMT
Last-Modified: Wed, 06 Jul 2022 18:33:01 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A943BA113131BE0AFFA0B7D478AB0F3E6296813376B35549ECEB22C0D2AB8292"
Last-Modified: Wed, 06 Jul 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7302
Expires: Wed, 06 Jul 2022 22:12:41 GMT
Date: Wed, 06 Jul 2022 20:10:59 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: miMnCHYWrFvVxDyXjlS4xw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.166.180.72
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8sTflWavBsILgmKswsVIPYJE5m8=

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 20:11:00 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 05 Jul 2022 05:31:47 GMT
Expires: Tue, 12 Jul 2022 05:31:47 GMT
ETag: 9702DC0D6D78DA032CAB1DFDCE715DB72E330DE8
Cache-Control: max-age=465046,s-maxage=1800,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp3
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 726afcacbd1cb4f9-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 20:11:00 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 05 Jul 2022 05:31:47 GMT
Expires: Tue, 12 Jul 2022 05:31:47 GMT
ETag: 9702DC0D6D78DA032CAB1DFDCE715DB72E330DE8
Cache-Control: max-age=465046,s-maxage=1800,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp6
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 726afcae3f7cb4f9-OSL

                                        
                                            POST /s/gts1d4/iLn4iI5f3V0 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 20:11:00 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 20:11:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /packages/icomoon/www/style.css HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdvvFgQL9DZqFMLNssw3MKwOFIW-C4v8JXZYkUz-6b7elYpUH7ypwtN-h0JqlHMxsF3I5F9OpL7nq1ZLGpjVSY1x4A
x-goog-generation: 1580314147124457
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3656
x-goog-hash: crc32c=M/Vc1A==, md5=mL8UO8y3T6ZBKuouvHiE5g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3656
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Sat, 25 Jun 2022 20:30:46 GMT
expires: Sun, 25 Jun 2023 20:30:46 GMT
cache-control: public, max-age=31536000
age: 949214
last-modified: Wed, 29 Jan 2020 16:09:07 GMT
etag: "98bf143bccb74fa6412aea2ebc7884e6"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3656
Md5:    98bf143bccb74fa6412aea2ebc7884e6
Sha1:   2da2b6ec504ec41ce4e0d1109224061586af4165
Sha256: e20193ac78db9994c85ad976733276a68fe44633b777205de04cd616c461bd1d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 20:11:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/global/award-images/lander/avtest-top-product--1645625794.png HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdvXL-3CNNDzZi-YbVuMCfUV7ejwguyCLeQVCzN117dLjQeWpJStCP2mogkMbFQZnfWbu_vqLidthL71tagKqKfOzQ
x-goog-generation: 1645625794904180
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 14337
x-goog-hash: crc32c=YQcksA==, md5=fd30JpYMWVJBH3etipFXfQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 14337
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Thu, 09 Jun 2022 18:10:04 GMT
expires: Fri, 09 Jun 2023 18:10:04 GMT
cache-control: public,max-age=31536000
age: 2340056
last-modified: Wed, 23 Feb 2022 14:16:34 GMT
etag: "7dddf426960c5952411f77ad8a91577d"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 162 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size:   14337
Md5:    7dddf426960c5952411f77ad8a91577d
Sha1:   1a7427425f2eaf89cb064567ab0c9d53bef982b0
Sha256: de8ff9f2e369cbaf825d49ed8cdca7b5d48260f26527edbf9c4a2ba0e776e078
                                        
                                            GET /packages/icomoon/www/fonts/icomoon.woff2?dtv932 HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdsyLUFXgSsuS4MhROQ6kCujVZ4Jxba806b3JpfriFdWG6aHyACBb1jh-UQoaYlNUqgWH8wyuxYojgBfomYet_B-hpKKBC-n
x-goog-generation: 1580314132569558
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 15088
x-goog-hash: crc32c=AeYl0g==, md5=CqsbCulowjnjZRTP7Sk58Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 15088
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Mon, 27 Jun 2022 15:11:01 GMT
expires: Tue, 27 Jun 2023 15:11:01 GMT
cache-control: public, max-age=31536000
age: 795599
last-modified: Wed, 29 Jan 2020 16:08:52 GMT
etag: "0aab1b0ae968c239e36514cfed2939f1"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15088, version 1.0\012- data
Size:   15088
Md5:    0aab1b0ae968c239e36514cfed2939f1
Sha1:   e068d9ce64bd9b39c36098e33b09bacd47f22fd0
Sha256: 95c34b12647d187606c19c6aa1b1a0be32d85e41dd39bc5f8d48147d1363567d
                                        
                                            GET /img/global/award-images/lander/av-comparatives-award-sept-1645625600.png HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdtKbO7wNW5wbhZE6En_rbwGdbZWia5PBl-MJkXJElaCSdyry0Q8i_l6nyRFTTEvyCGlINl3o1DNxxzRpNErdY_q
x-goog-generation: 1645625601276985
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 12683
x-goog-hash: crc32c=m2oasw==, md5=gwmgQgq11R61LVSIw8mfig==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12683
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Thu, 23 Jun 2022 14:23:00 GMT
expires: Fri, 23 Jun 2023 14:23:00 GMT
cache-control: public,max-age=31536000
age: 1144080
last-modified: Wed, 23 Feb 2022 14:13:21 GMT
etag: "8309a0420ab5d51eb52d5488c3c99f8a"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 156 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size:   12683
Md5:    8309a0420ab5d51eb52d5488c3c99f8a
Sha1:   8a5bc404765793d8b6c8ee5e43d24d55f138f50d
Sha256: 897df4560f049c54b4508a6c9fab50596310ebae48361b5021ccde451242d09c
                                        
                                            GET /img/global/award-images/lander/virusbulletin-vb100-1645625825.jpg HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdvrzdpMnapB8snH157uyu64DdL6LsOGMylZ60hWqXcy7ZqJ1KFAXcMzWqsVteQswoE1Kond7ldgmgl9UXwOx31I
x-goog-generation: 1645625826567118
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 5496
x-goog-hash: crc32c=0LkbZQ==, md5=B6iWSHv8BfGDwjR9mkQ67Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 5496
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Sat, 25 Jun 2022 20:44:59 GMT
expires: Sun, 25 Jun 2023 20:44:59 GMT
cache-control: public,max-age=31536000
age: 948361
last-modified: Wed, 23 Feb 2022 14:17:06 GMT
etag: "07a896487bfc05f183c2347d9a443aed"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 54x80, components 3\012- data
Size:   5496
Md5:    07a896487bfc05f183c2347d9a443aed
Sha1:   59b9cdd3d39cb8fc5f65922a7e2ac8e0f2219dae
Sha256: 681e0f87a0788283a9016846579782e2b096f068037af53cf307bbcb9c16fbca
                                        
                                            GET /img/global/award-images/lander/av-comparatives-malware-award-1645625869.png HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdudKWm_m_d5P_V6o8bSLzp-TQVWjtUUnZ6oB6kjTlfkA0kUSdjEj2IWHjM4WZj9Y4aCVFxDrj6JYmnVZkFAtN-t6g
x-goog-generation: 1645625869702468
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 12828
x-goog-hash: crc32c=TGhR8Q==, md5=svSmHTBAcMoS2dw2HImTUw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12828
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Thu, 23 Jun 2022 14:29:42 GMT
expires: Fri, 23 Jun 2023 14:29:42 GMT
cache-control: public,max-age=31536000
age: 1143678
last-modified: Wed, 23 Feb 2022 14:17:49 GMT
etag: "b2f4a61d304070ca12d9dc361c899353"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 156 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size:   12828
Md5:    b2f4a61d304070ca12d9dc361c899353
Sha1:   34e57d09c1094f9f4f0b43b67d2bce6ec0539524
Sha256: e617b7de87d133dd96abafce72329876da5d7ca256b0d23907571c543bf218f6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 20:11:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/global/award-images/lander/av-comparatives-antivirus-perofrmance-1645625919.png HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdv5YG6OL_7bR5uTScapkj0hbFkV3QOWMmlaAbI7ic8erS2W5w9jMMOOTjEa3hfcI7wcHSyWOR75Thfa9V3y5_SnBgkospoO
x-goog-generation: 1645625919610976
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 12013
x-goog-hash: crc32c=sfSjBg==, md5=BCsv/U8vEdfNRIyVl9k++A==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12013
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Thu, 23 Jun 2022 14:29:42 GMT
expires: Fri, 23 Jun 2023 14:29:42 GMT
cache-control: public,max-age=31536000
age: 1143678
last-modified: Wed, 23 Feb 2022 14:18:39 GMT
etag: "042b2ffd4f2f11d7cd448c9597d93ef8"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 156 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size:   12013
Md5:    042b2ffd4f2f11d7cd448c9597d93ef8
Sha1:   3d9031110b35460a23b3ca54c898dcecf7636574
Sha256: 3f21c272925b5ecbcc0c0e4a34b7cecd04ca3d4c88b113f14bf791b38b00c8c0
                                        
                                            GET /img/global/award-images/lander/av-comparatives-award-1645625648.png HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycduLQIHI5-VH0UpmbldKW32RKTGc6VgX1J1AZ9qUO5IN2ADXRSmRS3yQ1dYFDTUea6dQpMcsdnRuYg4yRWztRdYd1Ya-Tc2r
x-goog-generation: 1645625648455513
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 12364
x-goog-hash: crc32c=Jeg+wg==, md5=qyv1xYwYT8jzEuESb+ag5g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12364
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Thu, 23 Jun 2022 14:23:00 GMT
expires: Fri, 23 Jun 2023 14:23:00 GMT
cache-control: public,max-age=31536000
age: 1144080
last-modified: Wed, 23 Feb 2022 14:14:08 GMT
etag: "ab2bf5c58c184fc8f312e1126fe6a0e6"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 156 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size:   12364
Md5:    ab2bf5c58c184fc8f312e1126fe6a0e6
Sha1:   ae55fac0ada8401a1f10d124370e3408b1f54f23
Sha256: 7d22938a255cccde8ae3999e5fe5c60b33ce8acaca37e31e012da71747371112
                                        
                                            GET /img/global/_totalav/content_image/en/windows-laptop-app-mid-scan.png HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdsbwu0QBOOHQ7tiljn9v3zRMRYup_RupblDggMGNNZ2aRO9bOyW8j1_Iw0iIKQqco_a0dgPB1TR_9r9xB3RvvVKFA
x-goog-generation: 1613475924459852
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 80623
x-goog-hash: crc32c=eiYBow==, md5=+UB52DDUp5vlVzv3xf/12g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 80623
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Wed, 06 Jul 2022 19:50:03 GMT
expires: Wed, 06 Jul 2022 20:50:03 GMT
cache-control: public, max-age=3600
age: 1257
last-modified: Tue, 16 Feb 2021 11:45:24 GMT
etag: "f94079d830d4a79be5573bf7c5fff5da"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 623 x 500, 8-bit/color RGB, non-interlaced\012- data
Size:   80623
Md5:    f94079d830d4a79be5573bf7c5fff5da
Sha1:   14684e50f99519c2694fc6027a2994bf1698f640
Sha256: fa0f63188275fb4ebca258cee7ca1a5e5aed28ec81b04bdd95027318d390fb67
                                        
                                            GET /s/lato/v16/S6u9w4BMUTPHh6UVSwiPGQ3q5d0.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14176
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 02 Jul 2022 01:55:03 GMT
expires: Sun, 02 Jul 2023 01:55:03 GMT
cache-control: public, max-age=31536000
age: 411357
last-modified: Tue, 23 Jul 2019 03:45:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 14176, version 1.0\012- data
Size:   14176
Md5:    c8dcbaf22349dba5061d93607ca9b37c
Sha1:   548040e31d6eef3d621157a3b3ae5b0be5618460
Sha256: 9baad10e85c5be8d5697086479983b6b477197103bf8f0f11817b1bdfb9a7451
                                        
                                            GET /img/global/logo/virus-bulleting-100-white.png HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdvMkiigB3jsYqxdnPkBcgr9VhCvcujDvkKAV39MM0BOJ8M3M9ur_Ve97OHWBzBnoiHg_1e6PVFpUzHnwTjnAWxsmQ
x-goog-generation: 1566549929749480
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3029
x-goog-hash: crc32c=sAKxxw==, md5=QoNCXzEEirYNQr08lJCDDQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3029
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Mon, 27 Jun 2022 14:47:20 GMT
expires: Tue, 27 Jun 2023 14:47:20 GMT
cache-control: public,max-age=31536000
age: 797020
last-modified: Fri, 23 Aug 2019 08:45:29 GMT
etag: "4283425f31048ab60d42bd3c9490830d"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 64 x 96, 8-bit colormap, non-interlaced\012- data
Size:   3029
Md5:    4283425f31048ab60d42bd3c9490830d
Sha1:   825376a9c566c38d5dde361ea056b26b3e6cbe42
Sha256: a3bd6517c6eb397c8b9531caf41aa98be5095651e651f7c2d980069821c6e2d8
                                        
                                            GET /img/global/_totalav/logo/logo_totalav_modal.png HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdtQ239F4NOA_b6iiBX4mH1npP8e12GqUQpLKXb6QCPiFsK-L49l42wpF82G3FvNLtLCNeCAYl2MR5Kz7BCuA-BKk-Si1xUF
x-goog-generation: 1565684149503375
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2878
x-goog-hash: crc32c=+gGdaA==, md5=+mCh7ki1/WV7Ym6PxRe9jQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2878
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Mon, 27 Jun 2022 16:42:15 GMT
expires: Tue, 27 Jun 2023 16:42:15 GMT
cache-control: public,max-age=31536000
age: 790125
last-modified: Tue, 13 Aug 2019 08:15:49 GMT
etag: "fa60a1ee48b5fd657b626e8fc517bd8d"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 229 x 48, 8-bit colormap, non-interlaced\012- data
Size:   2878
Md5:    fa60a1ee48b5fd657b626e8fc517bd8d
Sha1:   b81da12306e123f9243bb7d4cd6b013a8627ad25
Sha256: f2ed506e7531884684014a2d75381c82bd4bf399274be9595139607a9d85e07d
                                        
                                            GET /img/global/_totalav/logo/tav-logo-white.png HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdvv1R18_SmPQGSnvdiCr5bsN2dd0UVMIu7Mrb0bjHKhZ7G1XTjyfeYHChyhFIUjNqRwC9-VEodzcOxRNAYs2SwAIzvzZ9yI
x-goog-generation: 1565684158560914
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1801
x-goog-hash: crc32c=JFWGXw==, md5=X0FuEOLi4KldkXLtqe+Mfg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1801
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Fri, 10 Jun 2022 12:56:54 GMT
expires: Sat, 10 Jun 2023 12:56:54 GMT
cache-control: public,max-age=31536000
age: 2272446
last-modified: Tue, 13 Aug 2019 08:15:58 GMT
etag: "5f416e10e2e2e0a95d9172eda9ef8c7e"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 145 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size:   1801
Md5:    5f416e10e2e2e0a95d9172eda9ef8c7e
Sha1:   88aed48ecd7cae254e17dc6b9595ec2f1445fa23
Sha256: 2d4889a9379bd86f3b2daa82cd06be537e5f4bc89276fd33fe2faa7d94a201da
                                        
                                            GET /img/global/_totalav/icons/en/diagnostic_scan_rosette.png HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycds3b-nUCXOrW88VYYw5NLwCh0di9kkYvpPfD3cSVB4it6kTx3ZUEG7RxfYlqRjxVDOEK_DCLonfOaGSUjfEsX7dp2V9I2E3
x-goog-generation: 1565684109764714
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 6044
x-goog-hash: crc32c=zj+FDg==, md5=EEtHlpODrkdzuZaI4lk3zA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6044
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Thu, 30 Jun 2022 05:29:29 GMT
expires: Fri, 30 Jun 2023 05:29:29 GMT
cache-control: public,max-age=31536000
age: 571291
last-modified: Tue, 13 Aug 2019 08:15:09 GMT
etag: "104b47969383ae4773b99688e25937cc"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 176 x 176, 8-bit colormap, non-interlaced\012- data
Size:   6044
Md5:    104b47969383ae4773b99688e25937cc
Sha1:   de5ee5369729a1d50b8fe7635a9a5a73e44a97f1
Sha256: d76f7b4db2b42e35ce80e036cdc9ca78b16526a160cc1cd265684fa353823b35
                                        
                                            GET /img/global/_totalav/icons/en/money-back.png HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycduA2mtrSx9sar48pwiXO8YwU670u0TMDNIjhaSgFkhuoaIpr4eQdDg_rOlyrSXVs51rkJieBo1XGTHCZ5zKfdxGmw
x-goog-generation: 1565684110166236
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 5999
x-goog-hash: crc32c=Gzn7ZA==, md5=bW6jB2VksphNxKq9yeQqvw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 5999
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Tue, 14 Jun 2022 18:58:33 GMT
expires: Wed, 14 Jun 2023 18:58:33 GMT
cache-control: public,max-age=31536000
age: 1905147
last-modified: Tue, 13 Aug 2019 08:15:10 GMT
etag: "6d6ea3076564b2984dc4aabdc9e42abf"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 176 x 175, 8-bit colormap, non-interlaced\012- data
Size:   5999
Md5:    6d6ea3076564b2984dc4aabdc9e42abf
Sha1:   a03594bd8f7e27cc13c2c5e86acc9d331f7a8b81
Sha256: a0e072f9837ba4fbb22488b4a0e69e101ff48cb9972024dbdbc6521a6426d288
                                        
                                            GET /img/global/_totalav/logo/logo_alt.png HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdvB1telKGg1soloGM6l1IdHR8ycJX6etu5kuLBAuk3pz4Q7i_Ubqr2mGIogujJl5rXqfhhCjCaIipkne18-iANYgQ
x-goog-generation: 1565684147649748
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2661
x-goog-hash: crc32c=FbdGRw==, md5=fFzAz8+8zCr7OVV7OMYrAQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2661
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Tue, 05 Jul 2022 08:59:49 GMT
expires: Wed, 05 Jul 2023 08:59:49 GMT
cache-control: public,max-age=31536000
age: 126671
last-modified: Tue, 13 Aug 2019 08:15:47 GMT
etag: "7c5cc0cfcfbccc2afb39557b38c62b01"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 195 x 41, 8-bit colormap, non-interlaced\012- data
Size:   2661
Md5:    7c5cc0cfcfbccc2afb39557b38c62b01
Sha1:   e4d22f9f78678ec6ee15cca1f338bb93275d8403
Sha256: e746903c381d592a4956313d46d9ebe14bdb76a03de83b4406f68d83a9f50c98
                                        
                                            GET /img/global/_totalav/logo/logo_totalav.png HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdv2K-M4cl61HcbfYWNEgdKQPR_FtAfduD2TmYgC5NL4CHV0Rlgtu4WNXSZbYNAtHZV-Jo3l-v7Mpwzhl4vgkfVzWw
x-goog-generation: 1565684148016337
x-goog-metageneration: 8
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2878
x-goog-hash: crc32c=+gGdaA==, md5=+mCh7ki1/WV7Ym6PxRe9jQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2878
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Tue, 14 Jun 2022 06:26:04 GMT
expires: Wed, 14 Jun 2023 06:26:04 GMT
cache-control: public,max-age=31536000
age: 1950296
last-modified: Tue, 13 Aug 2019 08:15:48 GMT
etag: "fa60a1ee48b5fd657b626e8fc517bd8d"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 229 x 48, 8-bit colormap, non-interlaced\012- data
Size:   2878
Md5:    fa60a1ee48b5fd657b626e8fc517bd8d
Sha1:   b81da12306e123f9243bb7d4cd6b013a8627ad25
Sha256: f2ed506e7531884684014a2d75381c82bd4bf399274be9595139607a9d85e07d
                                        
                                            GET /build/prod/22.195.1/css/layout/www/_totalav/layout.min.css HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdtcjTMbokpB7T3KiQznrk8NlwsOs2NBwETxJ-ctmggBUWqR4tPFHgXiMQ90f3kJTJ_QKA2GqXGV04E-iUwW9m6P7rKVudN6
x-goog-generation: 1657029225996605
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10369
content-encoding: gzip
x-goog-hash: crc32c=2KlE+w==, md5=5wnyh6vBauERRMlHTUpY7A==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 10369
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Tue, 05 Jul 2022 14:19:41 GMT
expires: Wed, 05 Jul 2023 14:19:41 GMT
cache-control: public,max-age=31536000,no-transform
last-modified: Tue, 05 Jul 2022 13:53:46 GMT
etag: "e709f287abc16ae11144c9474d4a58ec"
content-type: text/css
age: 107479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   10369
Md5:    e709f287abc16ae11144c9474d4a58ec
Sha1:   1c90e1c8ee31d37360fb7f9b00982472dd789ecf
Sha256: 0b80067aedddee4d3b5d83d55ea6f247ea49b807ce27b70c1d65d048e35d7687
                                        
                                            GET /s/lato/v16/S6u9w4BMUTPHh7USSwiPGQ3q5d0.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13912
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Jul 2022 06:51:10 GMT
expires: Wed, 05 Jul 2023 06:51:10 GMT
cache-control: public, max-age=31536000
age: 134390
last-modified: Tue, 23 Jul 2019 03:45:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13912, version 1.0\012- data
Size:   13912
Md5:    789ad04dc3f39dc3314b12ad25a1c65e
Sha1:   cccbdfef8dde1a50f347fde7ecf5a3840add1b56
Sha256: 706494a230ae9c22ebbda2b9fce9af786bac0ea5f315c80e3fbe9f44e7883c38
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 20:11:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/036wWwmb7E0 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 20:11:00 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.50
HTTP/2 200 OK
                                        
content-type: application/x-javascript
content-length: 6124
last-modified: Mon, 30 May 2022 14:38:02 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Wed, 06 Jul 2022 06:27:31 GMT
cache-control: max-age=86400
etag: "5add60196e5f96a414fb4b9586764e5d"
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NOE05IgVlYaRuE7sxLuemUFMuwWVR4V_JAyqCBjGXyVYVkIDXVj61Q==
age: 49410
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (19239)
Size:   6124
Md5:    5add60196e5f96a414fb4b9586764e5d
Sha1:   633f471b3c2fcedeef9cad90cb5bf56f5fe55588
Sha256: 5370f4ba91dda790c7cae92817b812fcbd1ab367cbb4862f5669960ae4e2c9e0
                                        
                                            GET /free-antivirus HTTP/1.1 
Host: www.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.webdefencesupport.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         34.117.198.220
HTTP/2 302 Found
                                        
content-security-policy: frame-ancestors 'self'
content-type: text/html; charset=UTF-8
date: Wed, 06 Jul 2022 20:11:00 GMT
location: /en/free-antivirus
server: nginx
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: SAMEORIGIN
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, was "tmp9vjc_5wf", last modified: Tue Jul 5 13:54:00 2022, max compression\012- data
Size:   5404
Md5:    dd94ddbf816b7d7f69d73a851a51191a
Sha1:   1bfed8fc253de69dfd884b39ff77c7439d650a9c
Sha256: 8da95bd38d299665a06e1a685d5fb5dda3e5bdf7ada172755e7c008cfdbbb37b
                                        
                                            GET /build/prod/22.195.1/js/global/global.min.js HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdsJi3v2_6pthfEMD8BBSGnRLzysn_Z9JEFcB5yoJS-MQVgjG2jsRW1UEXGTabBk6ubJUyQioDtUIHJcGlX_EdJZMDhnW9e2
x-goog-generation: 1657029247351065
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 43079
content-encoding: gzip
x-goog-hash: crc32c=/68ILQ==, md5=veDI4Q/CvU0dSa1/VahVUQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 43079
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Tue, 05 Jul 2022 14:19:41 GMT
expires: Wed, 05 Jul 2023 14:19:41 GMT
cache-control: public,max-age=31536000,no-transform
last-modified: Tue, 05 Jul 2022 13:54:07 GMT
etag: "bde0c8e10fc2bd4d1d49ad7f55a85551"
content-type: application/javascript
age: 107479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (31984)
Size:   43079
Md5:    bde0c8e10fc2bd4d1d49ad7f55a85551
Sha1:   2d0ae61dccc420caf54920c36f050f030db7bc2d
Sha256: ff6f8ebf311e9d5c8bf690614dfd84a88cd25a9910203b197b9abdab7aa271f8
                                        
                                            GET /build/prod/22.195.1/js/download-overlay/download-overlay.min.js HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdu8bKAhta06HupS80x3V6CoKv4VKZYpKL10H8BbGME0zQ-bXzAsDzke2UrUQsvrNTyj8HvN8QGvBE52c3QBV6ur-psiVKzu
x-goog-generation: 1657029246357977
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1670
content-encoding: gzip
x-goog-hash: crc32c=aySbjw==, md5=Qn1s6xCyYAUjzefbePvjGQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1670
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Tue, 05 Jul 2022 14:19:41 GMT
expires: Wed, 05 Jul 2023 14:19:41 GMT
cache-control: public,max-age=31536000,no-transform
last-modified: Tue, 05 Jul 2022 13:54:06 GMT
etag: "427d6ceb10b2600523cde7db78fbe319"
content-type: application/javascript
age: 107479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (5185), with no line terminators
Size:   1670
Md5:    427d6ceb10b2600523cde7db78fbe319
Sha1:   b435e293282ae010ec1584e12cf3183a4f71ab32
Sha256: 11430af21ae0b0086e41d5b19d582ef701626041611b715af3bef02da0f19cd2
                                        
                                            POST /s/gts1d4/036wWwmb7E0 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 20:11:00 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/iLn4iI5f3V0 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 20:11:00 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /build/prod/22.195.1/css/layout/www/_totalav/layout.min-1-bless-section.css?z=527 HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets.totalav.com/build/prod/22.195.1/css/layout/www/_totalav/layout.min.css
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdv78sOAs7GVWVyrtVoPNYn_woHE-P-8UzBBp8J0uwG_2IuvfyEQKGZaknH77InbyY4aybk1jRNlAHX70_IZmw8_CAottOJD
x-goog-generation: 1657029225801730
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 39434
content-encoding: gzip
x-goog-hash: crc32c=Nlg6+w==, md5=aCXv8V89JUuByXj+Y/fF9Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 39434
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Tue, 05 Jul 2022 14:19:41 GMT
expires: Wed, 05 Jul 2023 14:19:41 GMT
cache-control: public,max-age=31536000,no-transform
last-modified: Tue, 05 Jul 2022 13:53:45 GMT
etag: "6825eff15f3d254b81c978fe63f7c5f5"
content-type: text/css
age: 107479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (65395)
Size:   39434
Md5:    6825eff15f3d254b81c978fe63f7c5f5
Sha1:   d7be852b17edae3736f63443e2b77dca4700254c
Sha256: b19896f036c20b347cff5b2e4fe463f2fa9b4b8590ba3443be2dcbfff4145760
                                        
                                            GET /build/prod/22.195.1/css/global/_totalav/global.min-1-bless-section.css?z=68 HTTP/1.1 
Host: assets.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets.totalav.com/build/prod/22.195.1/css/global/_totalav/global.min.css
Cookie: FRT:ADVTD=FID%3AAFF%3A1602857275%3AbC2XAE0VzIEAc%2F5f89aaccc4918%2F15076%2Ffe1104e9-8ec4-4cfc-905c-0d22894a9111%2F; FRT:VIS=VIS%3A22070691904215462c5ec53c7dad5.41719678; forceLang=en; toast-message-seen=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         35.244.242.197
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdtxkPNauNx9LBvvM6QVST9ZuA32Y1ke9alhmn1HJvurtUGoGgoOXL6FDYlwnoW8tdYnxzIQDRN35rWNPUyBfIFkEedxAM2T
x-goog-generation: 1657029240821781
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 25102
content-encoding: gzip
x-goog-hash: crc32c=7WXipw==, md5=5F/VqSw8I98UnidgsdCHGA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 25102
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Tue, 05 Jul 2022 14:19:41 GMT
expires: Wed, 05 Jul 2023 14:19:41 GMT
cache-control: public,max-age=31536000,no-transform
last-modified: Tue, 05 Jul 2022 13:54:00 GMT
etag: "e45fd5a92c3c23df149e2760b1d08718"
content-type: text/css
age: 107479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (65395)
Size:   25102
Md5:    e45fd5a92c3c23df149e2760b1d08718
Sha1:   150ec60974633903d40df38bd4bdaf12fd039f8e
Sha256: 9b9eef8a6cde1dedda7150f01d27eca96c3ac0b332f17ec7fadd35eadfbfb159
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 20:11:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /packages/fontawesome/webfonts/fa-brands-400.woff2?22.195.1 HTTP/1.1 
Host: static.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         35.186.251.103
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdte2gXqPaa1ZBif1K4vMcdDZEYbeWlxXbKXWHDnMXUlVttzMvKObAG-xAxMksVthYByAdGm2QQs3-F2wA3aplb4hYXo2fYu
x-goog-generation: 1566377984564371
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 69644
x-goog-hash: crc32c=3nh1GQ==, md5=CJZRbaqe8KQWlGWm+igdaA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 69644
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 14 Jun 2022 06:34:44 GMT
expires: Wed, 14 Jun 2023 06:34:44 GMT
cache-control: public, max-age=31536000
age: 1949776
last-modified: Wed, 21 Aug 2019 08:59:44 GMT
etag: "0896516daa9ef0a4169465a6fa281d68"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 69644, version 1.0\012- data
Size:   69644
Md5:    0896516daa9ef0a4169465a6fa281d68
Sha1:   d79042d11372b9c84aec373f49a291f99d4336c3
Sha256: e705082b8a630b4d0190bb13e20f4d127f75ad88c271c749ff0c4e10c6acacf9
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 20:11:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /packages/fontawesome/webfonts/fa-light-300.woff2?22.195.1 HTTP/1.1 
Host: static.totalav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://www.totalav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         35.186.251.103
HTTP/2 200 OK
                                        
x-guploader-uploadid: ADPycdubD-bxBV13hkhTP6qYH3jFu5OMQZY20-OdUkTg_6ulYJewK95uenDwm6THRRx1rWlw4bdneR8oV-KSwCdVn6rFYQ
x-goog-generation: 1566377986064902
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 145656
x-goog-hash: crc32c=JMV6oA==, md5=sHb3zNF07rbqVbmFfFDzfA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 145656
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 05 Jul 2022 08:53:30 GMT
expires: Wed, 05 Jul 2023 08:53:30 GMT
cache-control: public, max-age=31536000
age: 127050
last-modified: Wed, 21 Aug 2019 08:59:46 GMT
etag: "b076f7ccd174eeb6ea55b9857c50f37c"
content-type: application/octet-stream
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 145656, version 1.0\012- data
Size:   145656
Md5:    b076f7ccd174eeb6ea55b9857c50f37c
Sha1:   43ae8d7a5fee84c0947b97bd7a9217db19b5247d
Sha256: 448f45a0ba44410ee2f4a475d56719fd1531dcd274876d8e3ef96b4cf01125e1
                                        
                                            POST /s/gts1d4/036wWwmb7E0 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 20:11:00 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.totalav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Jul 2022 17:10:21 GMT
expires: Wed, 05 Jul 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 97239
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size:   23580
Md5:    e1b3b5908c9cf23dfb2b9c52b9a023ab
Sha1:   fcd4136085f2a03481d9958cc6793a5ed98e714c
Sha256: 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
                                        
                                            GET /trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140 HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.totalav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.50
HTTP/2 200 OK
                                        
content-type: text/html
content-length: 2626
last-modified: Tue, 14 Jun 2022 14:01:47 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Wed, 06 Jul 2022 01:43:34 GMT
cache-control: max-age=86400
etag: "5c4d16cf6c4476b9433878c31ba70b3f"
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: d9qjbj2Sqr7aFrbOeZYZrH-64Y_J9Mny7tqz6uPPHuUcv4g-ic-OOQ==
age: 66631
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9566)
Size:   2626
Md5:    5c4d16cf6c4476b9433878c31ba70b3f
Sha1:   b6947d2636185ce4fbb4374e465bbaaffc2f6e0d
Sha256: f0724daec3316374912ed55d19c9dedc98bedd98d0e7810b2ca2d49a108f1f63
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3668
Expires: Wed, 06 Jul 2022 21:12:08 GMT
Date: Wed, 06 Jul 2022 20:11:00 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3668
Expires: Wed, 06 Jul 2022 21:12:08 GMT
Date: Wed, 06 Jul 2022 20:11:00 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3668
Expires: Wed, 06 Jul 2022 21:12:08 GMT
Date: Wed, 06 Jul 2022 20:11:00 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3668
Expires: Wed, 06 Jul 2022 21:12:08 GMT
Date: Wed, 06 Jul 2022 20:11:00 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3668
Expires: Wed, 06 Jul 2022 21:12:08 GMT
Date: Wed, 06 Jul 2022 20:11:00 GMT
Connection: keep-alive

                                        
                                            GET /trustboxes/53aa8912dec7e10d38f59f36/main.js HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.50
HTTP/2 200 OK
                                        
content-type: application/x-javascript
content-length: 26143
last-modified: Tue, 14 Jun 2022 14:01:48 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Wed, 06 Jul 2022 04:53:03 GMT
cache-control: max-age=86400
etag: "b1bcdb665416d6eff3e9d9c180b4d063"
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4O8XDn3z9DMMOEL8Y6YQQ-dO0_GawJO_EWvTK53rbgPl-speXfRnnA==
age: 55077
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (64767), with no line terminators
Size:   26143
Md5:    b1bcdb665416d6eff3e9d9c180b4d063
Sha1:   37860936eee52f0920f8eea7e323bd148b3fd9ba
Sha256: 8dd2e582b6c653aa9bea45985c6f725cd4ef4523349628834dc63d5c3b8ec20d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde8f4008-69f3-4766-a957-006ebc39d2e4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9047
x-amzn-requestid: 8e0eccf9-7f3e-4333-a5d7-a35dd0e068eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BU0HNmoAMFaQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4af51-1d81f8e10200694125ede95f;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:25 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: p01XdrlrorzmgxXBsOJnDXZr2H4NK0kTKLw9EwA5gpq_BlyCwaub2A==
via: 1.1 1002c05e647d0804e83147cdd205d14a.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:50:18 GMT
age: 80443
etag: "7aa6cd994a565c8b6832d48c1e36b17f33621e90"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9047
Md5:    bb2f16af747cd633f71de1966771b532
Sha1:   7aa6cd994a565c8b6832d48c1e36b17f33621e90
Sha256: b61a354007e630a3be3ae0c2c2336d3dd71cec02eab7b4234ebb40f69561acf0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1720044-e013-44e2-84e3-3257a39ccd02.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 5911
x-amzn-requestid: fe59dc2c-e538-4a53-89cc-124a1ef18ae4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0B0QFbBoAMFrYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4b01b-52093f724a31401a2104b0ea;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:41:47 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5m4ltu42g95fcokh1RQ05zAj4rSzrTZqqZKzaG6LwUvFVc3DqXsIqw==
via: 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:50:40 GMT
age: 80421
etag: "207e445452ff97110a4c9edd38bc8933f70fd71e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5911
Md5:    3d1458480bd23c2411fa6de7ae666502
Sha1:   207e445452ff97110a4c9edd38bc8933f70fd71e
Sha256: c29b4c3afdf7843b5f26688ed8dee581ec08c767569f3f0a99c3b22f9825a966
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a269baa-7158-4db8-9b1d-e4e22ec22920.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6711
x-amzn-requestid: 5b99a31c-9224-4862-a43f-544d6fa3dbdd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BHsEkmIAMFg_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4aefd-571078525a01c4dc72c6ed22;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:37:01 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 8xhNMjh4EBZQrViDk4PaxV5Tk_sBuZ1BGRuVGtAVAGie72R16hmoAA==
via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:37:02 GMT
etag: "b06f33b2742c3c6de4a449f4227d85e6268bafce"
content-type: image/jpeg
age: 81239
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6711
Md5:    d82ae97bb9569fa288a23c3380a4f4ef
Sha1:   b06f33b2742c3c6de4a449f4227d85e6268bafce
Sha256: e99961f561aaa3ded5fd1c19ce10505a7d016d5d67bbbef5caebad09ba233b56
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc072e61d-3b9b-4f2d-acc8-d26a8adf968d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 12165
x-amzn-requestid: 796ca673-2ab5-4bd9-b4f1-d2c250c34e3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BWXH-HoAMFhkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4af5b-51c7abd54a523a1f479a7d5b;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:35 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: _-zkK-6DIfDVDzXmTOTigF2tM4pfh19MReGO_X26eRhLNFGL3Jc9Aw==
via: 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:50:29 GMT
age: 80432
etag: "604b4cc5d50ca494df1de2ab8baa486da20d1e4e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12165
Md5:    29949330f4dc3b69747d5534e745fde3
Sha1:   604b4cc5d50ca494df1de2ab8baa486da20d1e4e
Sha256: b98faa2080573124f84254a2f87df3631f257e9a040cf34ebe267a1784d4b954
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F431f287f-9907-47aa-be38-0ff4e6db75fc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8553
x-amzn-requestid: 2c1e16d1-357b-493e-bcf7-b4de1a34757f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Utd8tEKYIAMFbmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c21051-7382cb3050c6f13d70dd3706;Sampled=0
x-amzn-remapped-date: Sun, 03 Jul 2022 21:55:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9b-i6Ono7HZPLnQTZVWjd00ihgjD2qR-Meg1fdOa2d-SXIITlOM4yw==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 13:49:18 GMT
age: 22903
etag: "303f4efaa9b98e39a935fc6514d3731d40d2977c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8553
Md5:    e6f97e6b64100081e8bed56216564854
Sha1:   303f4efaa9b98e39a935fc6514d3731d40d2977c
Sha256: 92dd803f1633bd65a2b4ac3223d8aa93dd55ed64c74b338aff62323585a3623c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bb6c586-bb86-4a54-bd48-f2b5da763e74.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7117
x-amzn-requestid: 7cfe344b-f098-4260-bb50-6574786e6ee2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BW8HnbIAMFkrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4af5f-14a960ac060d2d120cb0ad7c;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0F6ZVkqKywgjh9Qa1DJw_-rdOLcc1tzEll0J58NeawksoIu9nY1a-g==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:52:41 GMT
age: 80300
etag: "01efbdf6b2ab79332bf6a22d36472e294732aa17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7117
Md5:    b4ead2bdcbc998a5685d65a26e40ce1a
Sha1:   01efbdf6b2ab79332bf6a22d36472e294732aa17
Sha256: 04399a91345db4f89bdbbb9ddb30db0f2a0c29654491b38bb1a30bd40c4f3e48
                                        
                                            GET /trustbox-data/53aa8912dec7e10d38f59f36?businessUnitId=594e8fb40000ff0005a54140&locale=en-US&reviewLanguages=en&reviewStars=5&includeReviews=true&reviewsPerPage=15 HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.50
HTTP/2 200 OK
                                        
content-type: application/json; charset=utf-8
content-length: 2144
cache-control: public,max-age=1800
content-encoding: gzip
date: Wed, 06 Jul 2022 20:02:10 GMT
etag: "49fdce99f9c86a9d323d113762a6d8dc"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-fallback-status: BYPASS
x-skip-cache-cookie: 0
x-xss-protection: 1; mode=block
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5v1nojqRRmftq1N0dRDTjBwk8O33zDTd7QRiPLlAqq6ft-WVa2WZPg==
age: 531
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (6147), with no line terminators
Size:   2144
Md5:    b866903589ae208f2b486c6ec79f4998
Sha1:   d15776179e4f49dea96c35d0aa83d467afb29f19
Sha256: ee2a069183e2d357241b5745f513bb1d18e613856638be2aedc49e23e24ff4f4
                                        
                                            GET /stats/TrustboxImpression?locale=en-US&styleHeight=155px&styleWidth=100%25&theme=light&stars=5&reviewLanguages=en&url=https%3A%2F%2Fwww.totalav.com%2Fen%2Ffree-antivirus&referrer=https%3A%2F%2Fwww.webdefencesupport.com%2F&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=594e8fb40000ff0005a54140&widgetId=53aa8912dec7e10d38f59f36 HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=594e8fb40000ff0005a54140
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.50
HTTP/2 204 No Content
                                        
cache-control: no-store,no-cache
date: Wed, 06 Jul 2022 20:11:00 GMT
pragma: no-cache
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Eaou_3fQyGBmbwrTKLeSq0vA9CLVm6wtXKZukZNtNXCsHC0XjOHU-A==
X-Firefox-Spdy: h2