r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8413
Expires: Wed, 08 Feb 2023 13:12:42 GMT
Date: Wed, 08 Feb 2023 10:52:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5121
Expires: Wed, 08 Feb 2023 12:17:50 GMT
Date: Wed, 08 Feb 2023 10:52:29 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 10:36:38 GMT
content-type: application/json
age: 951
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ef539276c3f1c65abb4d613e5d48246a
e8d8e3570d51868cc8183193532c99fa3c77631e
ac4403c10fc14586b43c01ef4f7fe592cfde2b4c66e2e293de5d3dbf44494de6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5079
Cache-Control: max-age=112526
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 10:52:29 GMT
Etag: "63e27fa4-117"
Expires: Thu, 09 Feb 2023 18:07:55 GMT
Last-Modified: Tue, 07 Feb 2023 16:43:16 GMT
Server: ECS (amb/6BC6)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7853
Expires: Wed, 08 Feb 2023 13:03:22 GMT
Date: Wed, 08 Feb 2023 10:52:29 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: KyEamW7rqgN8Dc82ybqE3e6qeQoFSIR/QxyKHaoerUtNVK21hVjOtDB+7hPScGjQfD03zHXCxI8=
x-amz-request-id: 2NXF24X32D96NQ2S
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 10:45:56 GMT
age: 393
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 10:52:30 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 4a2793786b1ce1206b70d285bea47b94
11747c77f2ef56d889b5148834faa184be7cfc07
af406b334b4df19c87a6911d78bbab5bc5628dc7ccac9d7d60050908c770fb52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1643
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 10:52:30 GMT
Last-Modified: Wed, 08 Feb 2023 10:25:07 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 280
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.14.0/css/all.min.css
104.17.24.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.14.0/css/all.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (58749)
Hash fd91519379203e4f5d95a93f2997019b
806d29dabc59c13f96d58a1b6b0412c227bbfedf
48fdb6e3181b07a35045c83b2ab1cd884bbadf0d6e7edade1259d56b7c79bacf
GET /ajax/libs/font-awesome/5.14.0/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:30 GMT
content-type: text/css; charset=utf-8
content-length: 10391
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f0f47d3-e637"
last-modified: Wed, 15 Jul 2020 18:15:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 18897377
expires: Mon, 29 Jan 2024 10:52:30 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XaFHssJoZ%2FHhR3A4u0eD3Vc4foTuB5XSNF1xo%2Bx2XLz8AC4EKXfoGmcAsxcmtNUktoNM26lkijmO%2Bn%2BKCVUkkERidjw76aAdKkijT2m3Ii8JjlFgj53AcYu%2FpS6IkK%2B%2Fjqbip7MA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7963d0f19b130b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 4a2793786b1ce1206b70d285bea47b94
11747c77f2ef56d889b5148834faa184be7cfc07
af406b334b4df19c87a6911d78bbab5bc5628dc7ccac9d7d60050908c770fb52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1643
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 10:52:30 GMT
Last-Modified: Wed, 08 Feb 2023 10:25:07 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 325a8a10ce2837a8c6820e30572d181c
195d6189f0f10fcb301fce3af4c27028bbcb9eaa
2f1a0e948582fa64266617acc77e9beb71c5031d9cffe1bed1393a554f259810
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 10:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 325a8a10ce2837a8c6820e30572d181c
195d6189f0f10fcb301fce3af4c27028bbcb9eaa
2f1a0e948582fa64266617acc77e9beb71c5031d9cffe1bed1393a554f259810
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 10:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 10:14:52 GMT
age: 2258
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.filescan.io/main.ccd195925fd0a689.esm.js
104.26.14.230200 OK 270 kB URL HTTP/2 www.filescan.io/main.ccd195925fd0a689.esm.js
IP 104.26.14.230:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 270 kB (270202 bytes)
Hash 46f961e2bb2b6a11c6af4a60c03a4d11
b9aaf1994853a226fd17832e23bc498f0e0026ee
c7007d810cc9329d4149e8f3c6e57ca5213b5301cfddde6aa1029db510b6ad91
GET /main.ccd195925fd0a689.esm.js HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:30 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=887936
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
etag: W/"63c51e66-41a73"
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
strict-transport-security: max-age=63072000; includeSubdomains;
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BPAuLyXuJ7LRoJYPQ6znstDPA5zSv2Jx5RfT8UWQZj38JohPbj9mDlidBHAa%2BvayIa4mWqRcXBkx2C%2BPg%2Feh9nY8S1e%2BIcU3JpqO8iltJurOdMgF%2FlXRQWhSuBGS%2FUEfiw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d0f16c3a0b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8d5417d247d259e3c0186136b83d9f75
49fbcf99a352669aee2559579ef73fa60f46d38d
3c013921158ec27e44d5e80a5108557de80a27f38089ac3a52c6c1cf5636f585
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 10:52:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash dc4d52e35e3de1277d3488cf82e2ded3
a14cabbd4db084159037f381c04803c37ab1714d
708930c707e3b3a6cb59fb0bd02e4bf021f8383fd99ffc10b2690edc42c01450
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4296
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 10:52:30 GMT
Last-Modified: Wed, 08 Feb 2023 09:40:54 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 280
www.filescan.io/api/system/config
104.26.14.230200 OK 80 kB URL HTTP/2 www.filescan.io/api/system/config
IP 104.26.14.230:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (2993), with no line terminators
Hash ce36d7b6dd2e25dc878124e0e17d2a58
badd1a7bb2f230c997791fc20fe20db601ade2cf
c99e7308d53f24506c7c0101f6652f01d2a7304f2f48711620cd55e259e3654f
GET /api/system/config HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:30 GMT
content-type: application/json
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubdomains;
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z34HwjOa6g%2FC22U0NM6jq6pTaHPpQTYQ72BUowuKBeIpDXlTuIY1lfiMJDM8hzXYGfzDFgTiRy5L4BUmYD%2FFcZ8nHi15EW9Xh1Ej3TGE89gY7vKS7RGW9c3pA8hoWKrJOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d0f43ec50b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash dc4d52e35e3de1277d3488cf82e2ded3
a14cabbd4db084159037f381c04803c37ab1714d
708930c707e3b3a6cb59fb0bd02e4bf021f8383fd99ffc10b2690edc42c01450
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4296
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 10:52:30 GMT
Last-Modified: Wed, 08 Feb 2023 09:40:54 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 280
www.filescan.io/api/system/logo?theme=light&type=top_menu&time=1671033841
104.26.14.230200 OK 106 kB URL HTTP/2 www.filescan.io/api/system/logo?theme=light&type=top_menu&time=1671033841
IP 104.26.14.230:0
File type PNG image data, 1000 x 1000, 8-bit/color RGBA, non-interlaced\012- data
Size 106 kB (105965 bytes)
Hash 10b0e82e74b4fdfa27ac09e9b82cd1e5
d9bfbd7134f6f1c38147cf25916963ef82092294
0a0fe2021298229ccc4e74bf9f5abf8230837720ff5fd584c096e95d1d3f43e8
GET /api/system/logo?theme=light&type=top_menu&time=1671033841 HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:30 GMT
content-type: image/png
content-length: 105965
content-disposition: attachment; filename="fsio-owl-blue-transparent.png"
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
etag: f7b4874a8e8e4a661d54abf40b9aa6b3
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubdomains;
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xjpUDyyXC1Ac%2BRgHgnt8GppXBWQ7p4zWBNzoZK2ASxcJIFWa02mT8SbiAbwjnrIODuYGUqN9xq%2FRCg8TOgriuEITUeFPJxX%2FzbqBpXIyrePefXwWNEA1FEnK%2FrR1v%2B8%2F8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d0f4cf5b0b41-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8d5417d247d259e3c0186136b83d9f75
49fbcf99a352669aee2559579ef73fa60f46d38d
3c013921158ec27e44d5e80a5108557de80a27f38089ac3a52c6c1cf5636f585
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 10:52:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.filescan.io/api/system/logo?theme=light&type=footer&time=1671034270
104.26.14.230200 OK 33 kB URL HTTP/2 www.filescan.io/api/system/logo?theme=light&type=footer&time=1671034270
IP 104.26.14.230:0
File type PNG image data, 632 x 765, 8-bit/color RGBA, non-interlaced\012- data
Hash 6589362453009bbd6520083bbd189f0e
e44a2119b68da184ebfdab294ae1556a8000c41d
e9444c76e69a226869cdeb4c0f5e3747f1547753be886a12071f883e3882afa8
GET /api/system/logo?theme=light&type=footer&time=1671034270 HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:31 GMT
content-type: image/png
content-length: 32841
content-disposition: attachment; filename="fsio-owl-white-transparent.png"
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
etag: 06de5c9bc8ccc229eb04926f41ff2711
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubdomains;
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kky9L%2BQlp641pHlyayCUXL88GnG0YTfsihLd4EVf5jar%2BPRw3IlpS1XVjAHMDNQA6%2BWhOrHkdgsaV2EyVpx1HAIcKx3Zar6x3Bfm89iJN3Jp0xxYXvvw7tDiL7P0RJA9Lw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d0f4ef740b41-OSL
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.38.186.64101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.186.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yt+B/GmkYaPlVZ8nYhrytw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kJteEQ6tH7USBpRNJTMUDeNum8Y=
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 08 Feb 2023 09:45:20 GMT
expires: Wed, 08 Feb 2023 11:45:20 GMT
cache-control: public, max-age=7200
age: 4031
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.filescan.io/assets/icons/favicon-16x16.png
104.26.14.230200 OK 1.2 kB URL HTTP/2 www.filescan.io/assets/icons/favicon-16x16.png
IP 104.26.14.230:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash a05c409ff64eb9112e51ad5951d16d59
4249f181db5dbfe0c759b4d6b71f3bace82546f6
9f1e071548fb6a6824294b7ce416a4a51e932999ce1b06765c6d48390fb8d130
GET /assets/icons/favicon-16x16.png HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Cookie: _ga_NKWFYZ6END=GS1.1.1675853605.1.0.1675853605.0.0.0; _ga=GA1.1.382801003.1675853605
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:31 GMT
content-type: image/png
content-length: 1204
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
etag: "63c51e66-4b4"
expires: Fri, 10 Mar 2023 10:52:31 GMT
cache-control: max-age=2592000, public
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UAwiZyoOMTNWqMpgA2JiWYiuTwYjJsrGEratjaXTuJuqFdHkok6YTOhfqxGMdVQ5jjnqPughQwuF%2BT8r8mBjFcUgNHaN1QELjRTJPLOe5LWNXD8WRpBCusONJIgMcUnZmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7963d0f75a290b41-OSL
X-Firefox-Spdy: h2
www.filescan.io/styles.eff1423b479252d4.css
104.26.14.230200 OK 62 kB URL HTTP/2 www.filescan.io/styles.eff1423b479252d4.css
IP 104.26.14.230:0
File type Unicode text, UTF-8 text, with very long lines (65323)
Hash 7c61f56388c4911fe7437d42ceee8ae0
9db65bd4badc05f7edea10277c61ec22a98ade60
27d009aeb3153e0c5364e890742dca35e129d32cd5ddca5b655f292edd906644
GET /styles.eff1423b479252d4.css HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:30 GMT
content-type: text/css
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
vary: Accept-Encoding
etag: W/"63c51e66-a7b4"
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubdomains;
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y%2FqtHw%2F%2F4S4VjCWmrWAW9BOx7WnMX%2FKNm1h8ihrtr0tA0OKUUo6DBtMHWy%2BVodbWmB6nDnh34JVSQt9ROO%2FqC80x4QVDiogFuzFMDTLRwgfWZtSAK%2FqBRWefv%2BWlWM9P%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d0f16c2f0b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
104.26.14.230200 OK 964 B URL HTTP/2 www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
IP 104.26.14.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (422)
Hash d9cf5f154fa61455279259df11fe79b2
a61b54d8c4716eb2b6aa5dfa66e18bb81794950d
714f8e87d25a5b27a4b2856d443810c480948f34a50f408f29a84652076c27d2
GET /reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:30 GMT
content-type: text/html
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
vary: Accept-Encoding
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubdomains;
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=raTwJFxLNWAnUinzcFFDozTEDNwTKuLJCxIp7jDFW65ip7nYQT1bO%2Bepo9k10m%2F8q8Qpcv9XI409cCR%2Bkj%2FX9B2gAWCgtxKiTQ7LN3hcMqlnneFd93wL2PTGT%2BlRcmflCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d0ef5a5d0b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 10:52:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 10:52:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-198485172-2&cid=382801003.1675853605&jid=377662043&gjid=867467&_gid=1353711226.1675853605&_u=IADAAEAAAAAAACAAI~&z=1000446190
64.233.164.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-198485172-2&cid=382801003.1675853605&jid=377662043&gjid=867467&_gid=1353711226.1675853605&_u=IADAAEAAAAAAACAAI~&z=1000446190
IP 64.233.164.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-198485172-2&cid=382801003.1675853605&jid=377662043&gjid=867467&_gid=1353711226.1675853605&_u=IADAAEAAAAAAACAAI~&z=1000446190 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.filescan.io
Connection: keep-alive
Referer: https://www.filescan.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.filescan.io
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 08 Feb 2023 10:52:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-198485172-2&cid=382801003.1675853605&jid=1243250665&gjid=1403306958&_gid=1353711226.1675853605&_u=YADAAUABAAAAACAAI~&z=1552624240
64.233.164.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-198485172-2&cid=382801003.1675853605&jid=1243250665&gjid=1403306958&_gid=1353711226.1675853605&_u=YADAAUABAAAAACAAI~&z=1552624240
IP 64.233.164.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-198485172-2&cid=382801003.1675853605&jid=1243250665&gjid=1403306958&_gid=1353711226.1675853605&_u=YADAAUABAAAAACAAI~&z=1552624240 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.filescan.io
Connection: keep-alive
Referer: https://www.filescan.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.filescan.io
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 08 Feb 2023 10:52:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.filescan.io/api/system/mitre
104.26.14.230200 OK 103 kB URL HTTP/2 www.filescan.io/api/system/mitre
IP 104.26.14.230:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65506), with no line terminators
Size 103 kB (102629 bytes)
Hash c854843068023290255e3649ebf4fae7
27d7f0e81812d3e3bea12568e90683202c82a166
3cd25cf723834588e9e957325ef0482201d758cdb55a0a9fa4f587c473acf017
GET /api/system/mitre HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
No-Cookies: 1
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:31 GMT
content-type: application/json
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubdomains;
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jJpurB2O1miGh6O3xfNMfKlAHfDi73YQGwqC%2FhO%2BOr5PrwycxCwPDBu4Yib8Ge%2F4ob%2Fn%2B50srw0xWLTdbRTm4j3gidxrFOeZby0DHDxUWjiDPkcpvDB7UQimauwsi46g6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d0f50f950b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 10:52:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-NKWFYZ6END>m=45je3260&_p=709880103&cid=382801003.1675853605&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675853605&sct=1&seg=0&dl=https%3A%2F%2Fwww.filescan.io%2Freports%2F81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803%2Fa7d72737-4c70-47aa-a533-cdbec6e6ee66%2Foverview&dt=FileScan.IO%20-%20Next-Gen%20Malware%20Analysis%20Platform&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-NKWFYZ6END>m=45je3260&_p=709880103&cid=382801003.1675853605&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675853605&sct=1&seg=0&dl=https%3A%2F%2Fwww.filescan.io%2Freports%2F81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803%2Fa7d72737-4c70-47aa-a533-cdbec6e6ee66%2Foverview&dt=FileScan.IO%20-%20Next-Gen%20Malware%20Analysis%20Platform&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-NKWFYZ6END>m=45je3260&_p=709880103&cid=382801003.1675853605&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675853605&sct=1&seg=0&dl=https%3A%2F%2Fwww.filescan.io%2Freports%2F81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803%2Fa7d72737-4c70-47aa-a533-cdbec6e6ee66%2Foverview&dt=FileScan.IO%20-%20Next-Gen%20Malware%20Analysis%20Platform&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.filescan.io
Connection: keep-alive
Referer: https://www.filescan.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.filescan.io
date: Wed, 08 Feb 2023 10:52:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7083
Expires: Wed, 08 Feb 2023 12:50:35 GMT
Date: Wed, 08 Feb 2023 10:52:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7083
Expires: Wed, 08 Feb 2023 12:50:35 GMT
Date: Wed, 08 Feb 2023 10:52:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7083
Expires: Wed, 08 Feb 2023 12:50:35 GMT
Date: Wed, 08 Feb 2023 10:52:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7083
Expires: Wed, 08 Feb 2023 12:50:35 GMT
Date: Wed, 08 Feb 2023 10:52:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7083
Expires: Wed, 08 Feb 2023 12:50:35 GMT
Date: Wed, 08 Feb 2023 10:52:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 726928e5de19ef978faebbe933c34008
bdaba3ed0c7efb65de88af96063d830683c8499b
c6d208fcee052da80de1bf2dcccbbc48853511b8888c4777799ee676abba51b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8644
x-amzn-requestid: d6d71f42-f887-4ad0-a2b7-9073d3857b03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OjRHBFoAMF4_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c47b-57490f255d8d30a561fdcd3a;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:36:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qfHMhMAdnYcOa0Xm23enTGXj4CQC-QFHV50Pq6QQdvM5YcIgUZVPRQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:54:36 GMT
etag: "bdaba3ed0c7efb65de88af96063d830683c8499b"
content-type: image/jpeg
age: 46676
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e47a0b9-4a27-4f39-8f25-f88789a2408f.jpeg
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e47a0b9-4a27-4f39-8f25-f88789a2408f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0594f78c4fdfed5dd2e0666312555f40
db903b9a3f387c1510170f8d16dd4d289f7df83f
8874083a529064657b18be58147ae7df5fe79c822c4bd2a023fdf3df7186a62e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e47a0b9-4a27-4f39-8f25-f88789a2408f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3712
x-amzn-requestid: 44c7e7bd-1a95-49b6-9b0a-f8aff3725ded
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ftbOtH-lIAMF0xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dba591-2fb19c33646c3d327681e9f9;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 11:59:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Z5r7rFH2nEro98p7U4_Lz8xIrX_bnU7ntAc46ytGzL8498buHzsCcg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 01:06:59 GMT
age: 35133
etag: "db903b9a3f387c1510170f8d16dd4d289f7df83f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5708e132-62b1-4b5b-aa88-fe22e522eb0e.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5708e132-62b1-4b5b-aa88-fe22e522eb0e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b327816bc2c6fd7291c75c693685d54
771070be61d0724b1c90ca86ea34c804bd7e501a
d45188239cacc7b228bc75ccc95afb48914aaa434c418cd5b786533e8b9cb983
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5708e132-62b1-4b5b-aa88-fe22e522eb0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6838
x-amzn-requestid: 54fc5ae9-d37a-46cf-97e0-d05de1417cfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7QEsCoAMFY1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-40de6212468fcd0e78a93708;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mgfr5wO7Bj5BVjKYY7O0c4ogLognfq09QrA9khZROr2CVyOWgKTz1g==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:52:35 GMT
age: 46797
etag: "771070be61d0724b1c90ca86ea34c804bd7e501a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe800d6af728cd622a6192ad5e7dda6a
3a301dd894fc428c7d1863c9d5eaf2652f5c2083
f4923c211ef24e933bbe73bd8d2033d6b6da4a9fa0c9d4699a1041a7bd8bf5a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12216
x-amzn-requestid: cc61a63b-35fe-4bfa-ad20-1db3f4165446
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7LFrCIAMFoYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-2b5e27c62218510b74ea0989;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Cf13Lp2SFHQ4SSF6_KpC4zx339tZRkMmnmF-OKM_2hbWbIoR3OLJ_g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:50:49 GMT
age: 46903
etag: "3a301dd894fc428c7d1863c9d5eaf2652f5c2083"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a8e532-be72-47cc-8389-e8f28ffc3c2a.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a8e532-be72-47cc-8389-e8f28ffc3c2a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 33b061f03be149fea0df63b42a8ec226
e5e491c6ef8b6234450a34ee5df28b9a58a8ad43
a5970bbb40be173878cd2e920bd1a6ed27775fbdc222bb66ccbc5969984882f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a8e532-be72-47cc-8389-e8f28ffc3c2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4269
x-amzn-requestid: df152b3a-fa15-4dac-96f9-41b9ea8e5136
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkQH5PoAMFl1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c481-63636a42419209fb0c17eceb;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0hu3nATq26ngjS5942rJgt7AcT4wjG0mFfNrtsajSN2PpdAOYhTjFg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:43:42 GMT
age: 47330
etag: "e5e491c6ef8b6234450a34ee5df28b9a58a8ad43"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8122ba3b-f49a-49fa-acfb-88990087de42.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8122ba3b-f49a-49fa-acfb-88990087de42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 25fb37d8b072e47aae74933481fb9418
b073d213a6a7939efed7ee5ef62a5548e00082bc
59a9c61013b3a4faab6f1c578f45bb87397d2f9e7975ae58e53e2c4e4a791da2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8122ba3b-f49a-49fa-acfb-88990087de42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6177
x-amzn-requestid: 729ae67c-5468-42a6-ba16-2a6a55db001d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f-tUbE7EoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e28f4f-7f1fa6e162899c495e44e643;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 17:50:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xTJKf69wk7qWWhBYf-qO61jOY2jXIC4FNdt4Mxt2dLDmLm5U9OocVQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 18:24:36 GMT
etag: "b073d213a6a7939efed7ee5ef62a5548e00082bc"
content-type: image/jpeg
age: 59276
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.filescan.io/9652.ef46db3751d8e999.css
104.26.14.230200 OK 0 B URL HTTP/2 www.filescan.io/9652.ef46db3751d8e999.css
IP 104.26.14.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /9652.ef46db3751d8e999.css HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Cookie: _ga_NKWFYZ6END=GS1.1.1675853605.1.0.1675853605.0.0.0; _ga=GA1.2.382801003.1675853605; _gid=GA1.2.1353711226.1675853605; _gat=1; _gat_gtag_UA_198485172_2=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:34 GMT
content-type: text/css
content-length: 0
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
etag: "63c51e66-0"
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubdomains;
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9fuf%2B8YB6mCF8s1VFJXFjwePNiL6q9XLUj8CapGj3%2B%2FG2wyatqY%2Ft2aYpDPsgqLQILONwY3ciKu8V%2Bxf1uCq6CZ%2FPGnKzAPxL9b7V5UjgmH3gzyfbPpbvShrVqHOjBaNJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7963d10a2d260b41-OSL
X-Firefox-Spdy: h2
www.filescan.io/7836.9836aed946eb1ee3.esm.js
104.26.14.230200 OK 33 kB URL HTTP/2 www.filescan.io/7836.9836aed946eb1ee3.esm.js
IP 104.26.14.230:0
File type ASCII text, with very long lines (58377), with no line terminators
Hash 84a9c7c188b12311c139f37cc08b28be
f369b6c37601e6694d451801e824e0f5ef580105
aec22f7c7cf2efa1a516c234b444058621f3dd0eb9b03b7045978080cdaefab5
GET /7836.9836aed946eb1ee3.esm.js HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Cookie: _ga_NKWFYZ6END=GS1.1.1675853605.1.0.1675853605.0.0.0; _ga=GA1.2.382801003.1675853605; _gid=GA1.2.1353711226.1675853605; _gat=1; _gat_gtag_UA_198485172_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:34 GMT
content-type: application/javascript
cf-bgj: minify
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
etag: W/"63c51e66-4bdf"
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
strict-transport-security: max-age=63072000; includeSubdomains;
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c8HEcLg5dq%2BUW1e4K%2B0qejhqyItlhSduNkEj6feVLbdNUGIowKVN6Y50dDvffDDb6ZpP32Wu4annFgiJhi5KxlPXW573cCYwSysCavO%2Bt7FKUj8d6yQ7NA3kCGNmmYEY9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d10a1d060b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto+Mono:wght@400;700&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto+Mono:wght@400;700&display=swap
IP 142.250.74.106:0
GET /css2?family=Roboto+Mono:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 10:52:30 GMT
date: Wed, 08 Feb 2023 10:52:30 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.filescan.io/polyfills.98598410aa61c073.esm.js
104.26.14.230200 OK 0 B URL HTTP/2 www.filescan.io/polyfills.98598410aa61c073.esm.js
IP 104.26.14.230:0
GET /polyfills.98598410aa61c073.esm.js HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:30 GMT
content-type: application/javascript
cf-bgj: minify
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
etag: W/"63c51e66-82fd"
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
strict-transport-security: max-age=63072000; includeSubdomains;
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5asA5hQSaVBTzZYn9BQUTNBP%2BPG%2Bo%2Fo3IIFpoVv7cLVvl6TcPJbuunpmql4YKGYH2VJkqhcEFt2a4KyqthA9SA%2FNPt%2F8Q%2BVHvEIkoL0NE30KCdmjRIn1e17v8SkrRl61oA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d0f16c380b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.filescan.io/main.53dc3bed0127782e.css
104.26.14.230200 OK 0 B URL HTTP/2 www.filescan.io/main.53dc3bed0127782e.css
IP 104.26.14.230:0
GET /main.53dc3bed0127782e.css HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:30 GMT
content-type: text/css
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
vary: Accept-Encoding
etag: W/"63c51e66-646"
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubdomains;
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ss11mtdxF1zb9VZAAJL8hpo7P9D9pDwVwtAtPTSwQwULJnnQKCHStpZYsDvuVelsQASeUt3zO9tQ93t%2B98QCmMc%2FSMp86gPEJ%2F4yt%2BrE9Q3BadRNnjn%2FaMuRwGw40%2FE5bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d0f16c350b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.filescan.io/7004.2dc57b25f05e55a3.esm.js
104.26.14.230200 OK 0 B URL HTTP/2 www.filescan.io/7004.2dc57b25f05e55a3.esm.js
IP 104.26.14.230:0
GET /7004.2dc57b25f05e55a3.esm.js HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Cookie: _ga_NKWFYZ6END=GS1.1.1675853605.1.0.1675853605.0.0.0; _ga=GA1.2.382801003.1675853605; _gid=GA1.2.1353711226.1675853605; _gat=1; _gat_gtag_UA_198485172_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:34 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
vary: Accept-Encoding
etag: W/"63c51e66-201d6"
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubdomains;
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oqy%2FPkcJApNXPsWWiLXZpNdzVcI6arTLuSsrBjQiNO2i%2ByQ0jT3ZHt5tv5mUpowCFb1JlG3k%2F3s%2BAHIDdSLTr5XgxLM%2B%2BRlAc1%2F65eIKWrcMDrjLBXhVoZtT31s2yqZPMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d10a2d3e0b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.filescan.io/5816.bf779be88ade2872.esm.js
104.26.14.230200 OK 0 B URL HTTP/2 www.filescan.io/5816.bf779be88ade2872.esm.js
IP 104.26.14.230:0
GET /5816.bf779be88ade2872.esm.js HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Cookie: _ga_NKWFYZ6END=GS1.1.1675853605.1.0.1675853605.0.0.0; _ga=GA1.2.382801003.1675853605; _gid=GA1.2.1353711226.1675853605; _gat=1; _gat_gtag_UA_198485172_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:34 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
vary: Accept-Encoding
etag: W/"63c51e66-1caf"
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubdomains;
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uQ5cBgWOo42LfKaJFt6xdLcez2kjUzOdJThIsO8%2BDGeWjaxRJjjNclYLbnePrjdqhn%2F7dLKzZdzFSdVllH0jBAe5cR8poQOPpZRQP0QIjwTIohkmkJVfdQYln84qx4qE7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d10a1cfc0b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
ipapi.co/json/
172.67.69.226200 OK 0 B IP 172.67.69.226:0
OPTIONS /json/ HTTP/1.1
Host: ipapi.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: no-cookies
Referer: https://www.filescan.io/
Origin: https://www.filescan.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:31 GMT
content-type: text/html; charset=utf-8
vary: Origin
access-control-allow-origin: https://www.filescan.io
access-control-allow-headers: accept, accept-encoding, authorization, content-type, dnt, origin, user-agent, x-csrftoken, x-requested-with
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
x-content-type-options: nosniff
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gjBR9Dfitgpmn2gtN48I89vxJ73OeASPlfjKayfu6OTnYm3UV3vfXISVTaXjhGGnwSnfIOk3dJ7G4U0iMuzDQCca%2Fdrm%2F7F6rtY0r6O90FcM%2BZ%2FKoW78HC0n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d0f5ea0f0b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.filescan.io/4688.b0587303536487ae.esm.js
104.26.14.230200 OK 0 B URL HTTP/2 www.filescan.io/4688.b0587303536487ae.esm.js
IP 104.26.14.230:0
GET /4688.b0587303536487ae.esm.js HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Cookie: _ga_NKWFYZ6END=GS1.1.1675853605.1.0.1675853605.0.0.0; _ga=GA1.2.382801003.1675853605; _gid=GA1.2.1353711226.1675853605; _gat=1; _gat_gtag_UA_198485172_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:34 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=684120
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
etag: W/"63c51e66-25eb0"
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
strict-transport-security: max-age=63072000; includeSubdomains;
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=klTJYN8yDCHKrFcLgSxLqugUyIto8YD1Vp2Ip%2BcxfRtaJK0IWasfzkVez%2BCSCQOLGd%2FRo7Ix5KF2a1vxyS%2Fg6rNrbNc1g%2FpHYbKasPQbh4pMVNGKl0uC7GJE5guypSdISQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d10a2d300b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.filescan.io/763.95c6ba52bc682672.esm.js
104.26.14.230200 OK 0 B URL HTTP/2 www.filescan.io/763.95c6ba52bc682672.esm.js
IP 104.26.14.230:0
GET /763.95c6ba52bc682672.esm.js HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Cookie: _ga_NKWFYZ6END=GS1.1.1675853605.1.0.1675853605.0.0.0; _ga=GA1.2.382801003.1675853605; _gid=GA1.2.1353711226.1675853605; _gat=1; _gat_gtag_UA_198485172_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:34 GMT
content-type: application/javascript
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
vary: Accept-Encoding
etag: W/"63c51e66-8d82"
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubdomains;
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SbWJvqhLHBwkNAo4WKYJEIHpRTn%2BVBdQ9iMaUDxAeyeqvvgwN7VNrtUpAd0yJJ2zjP3rBRSX3h4OBG1zNTk3gswpV4K%2BwtLbFRWm%2B4NVa%2FBuIyAeD3NiqJYZNiRPEwfXIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d10a2d390b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.filescan.io/api/reports/a7d72737-4c70-47aa-a533-cdbec6e6ee66/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803?filter=general&filter=allSignalGroups&filter=allTags&filter=overallState&filter=positionInQueue&filter=taskReference&filter=subtaskReferences&filter=interestingScore&filter=finalVerdict&filter=fd%3AfileDownloadResults&filter=fd%3AextractedUrls&filter=dr%3AdomainResolveResults&filter=v%3AvisualizedSample.compressedBase64&filter=v%3ArenderedImages&filter=wi%3AwhoisLookupResults&filter=ur%3ArenderResults&filter=f%3Aall&filter=o%3Aall&sorting=allSignalGroups(description%3Aasc%2CallMitreTechniques%3Adesc%2CaverageSignalStrength%3Adesc)&sorting=allOsintTags(tag.name%3Aasc)&sorting=f%3AdisassemblySections(levelOfInformation%3Adesc)&sorting=f%3AextendedData.importsEx(module.suspicious%3Adesc)
104.26.14.230200 OK 0 B URL HTTP/2 www.filescan.io/api/reports/a7d72737-4c70-47aa-a533-cdbec6e6ee66/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803?filter=general&filter=allSignalGroups&filter=allTags&filter=overallState&filter=positionInQueue&filter=taskReference&filter=subtaskReferences&filter=interestingScore&filter=finalVerdict&filter=fd%3AfileDownloadResults&filter=fd%3AextractedUrls&filter=dr%3AdomainResolveResults&filter=v%3AvisualizedSample.compressedBase64&filter=v%3ArenderedImages&filter=wi%3AwhoisLookupResults&filter=ur%3ArenderResults&filter=f%3Aall&filter=o%3Aall&sorting=allSignalGroups(description%3Aasc%2CallMitreTechniques%3Adesc%2CaverageSignalStrength%3Adesc)&sorting=allOsintTags(tag.name%3Aasc)&sorting=f%3AdisassemblySections(levelOfInformation%3Adesc)&sorting=f%3AextendedData.importsEx(module.suspicious%3Adesc)
IP 104.26.14.230:0
GET /api/reports/a7d72737-4c70-47aa-a533-cdbec6e6ee66/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803?filter=general&filter=allSignalGroups&filter=allTags&filter=overallState&filter=positionInQueue&filter=taskReference&filter=subtaskReferences&filter=interestingScore&filter=finalVerdict&filter=fd%3AfileDownloadResults&filter=fd%3AextractedUrls&filter=dr%3AdomainResolveResults&filter=v%3AvisualizedSample.compressedBase64&filter=v%3ArenderedImages&filter=wi%3AwhoisLookupResults&filter=ur%3ArenderResults&filter=f%3Aall&filter=o%3Aall&sorting=allSignalGroups(description%3Aasc%2CallMitreTechniques%3Adesc%2CaverageSignalStrength%3Adesc)&sorting=allOsintTags(tag.name%3Aasc)&sorting=f%3AdisassemblySections(levelOfInformation%3Adesc)&sorting=f%3AextendedData.importsEx(module.suspicious%3Adesc) HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
No-Cookies: 1
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Cookie: _ga_NKWFYZ6END=GS1.1.1675853605.1.0.1675853605.0.0.0; _ga=GA1.2.382801003.1675853605; _gid=GA1.2.1353711226.1675853605; _gat=1; _gat_gtag_UA_198485172_2=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:33 GMT
content-type: application/json
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=63072000; includeSubdomains;
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sdcegtSIQGq0tgGfqLKeQd1CJe4HqzDoxv3osrfb0SlzFnhLrEl0wbYtOdCZw7phPv4U4Cc3WwuDgBOKir%2BXM%2BP8TQdFqkJVF%2FkycIrm653YaI9FQOl5kXvkfpyeZzWf%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d1030d790b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.filescan.io/runtime.8153cb83c107133c.esm.js
104.26.14.230200 OK 0 B URL HTTP/2 www.filescan.io/runtime.8153cb83c107133c.esm.js
IP 104.26.14.230:0
GET /runtime.8153cb83c107133c.esm.js HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:30 GMT
content-type: application/javascript
cf-bgj: minify
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
etag: W/"63c51e66-1788"
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
strict-transport-security: max-age=63072000; includeSubdomains;
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BcUI3G8ElQdZiocbdBtjDzPWs1k5FjQIYngwJPcp7ysZph4IrGOxP45ZMF%2FbngrNL2SWY6yt0znrW0rAufRZLhp9G67ZMpRlAnc7ZZ1J%2FZk8O6H%2BeoUutOreg8Nq9Wz0ow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7963d0f16c360b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.filescan.io/9034.e3763ca0397b9c32.esm.js
104.26.14.230200 OK 0 B URL HTTP/2 www.filescan.io/9034.e3763ca0397b9c32.esm.js
IP 104.26.14.230:0
GET /9034.e3763ca0397b9c32.esm.js HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:31 GMT
content-type: application/javascript
cf-bgj: minify
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
etag: W/"63c51e66-58f"
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
strict-transport-security: max-age=63072000; includeSubdomains;
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CaWuW%2BykS1voYt2EJNvVVGXnrzTWFY5Ao9DN%2FOmap53D6DdDweK%2BgocyExCVrSxWKy6eWnkEIm2NOtxrQ5yaskxGDXitBXmSmKdKdrxxbuyYahV4uJdDHGUHm3IE5K49ug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7963d0f4df660b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.filescan.io/common.3c9ccf8489ae83db.css
104.26.14.230200 OK 0 B URL HTTP/2 www.filescan.io/common.3c9ccf8489ae83db.css
IP 104.26.14.230:0
GET /common.3c9ccf8489ae83db.css HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Cookie: _ga_NKWFYZ6END=GS1.1.1675853605.1.0.1675853605.0.0.0; _ga=GA1.2.382801003.1675853605; _gid=GA1.2.1353711226.1675853605; _gat=1; _gat_gtag_UA_198485172_2=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:34 GMT
content-type: text/css
cf-bgj: minify
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
etag: W/"63c51e66-307"
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
strict-transport-security: max-age=63072000; includeSubdomains;
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=APccIWIJ895CM7hc7cob1H0Qy%2B1kVVJS4cPLaJ6l%2BLheBA6pj6AV2lz2b4aM%2BTZc2ybAZCX3n910CJudw0x8NeN1cN5CKA8i6RluE%2BcmUwaBDqSZ2kLa%2F5WqcSjNX0%2FuFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7963d10a2d430b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.filescan.io/8959.180f76892a158641.esm.js
104.26.14.230200 OK 0 B URL HTTP/2 www.filescan.io/8959.180f76892a158641.esm.js
IP 104.26.14.230:0
GET /8959.180f76892a158641.esm.js HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Cookie: _ga_NKWFYZ6END=GS1.1.1675853605.1.0.1675853605.0.0.0; _ga=GA1.2.382801003.1675853605; _gid=GA1.2.1353711226.1675853605; _gat=1; _gat_gtag_UA_198485172_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:34 GMT
content-type: application/javascript
cf-bgj: minify
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
etag: W/"63c51e66-2354a"
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
strict-transport-security: max-age=63072000; includeSubdomains;
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N1WdE95sxjrit%2Fsm6Mi%2BofDNBYSOsKwnsZ1gpeR%2FZlb%2B%2FKU74Xep5E%2FUmo2C6HjMGu12Jde%2Fxe%2FT%2FPT0jgGGB9aqcAv7Av63WmV5kf5R3IigTeJqs9KuevvHhkYGpwFXag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d10a3d480b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.filescan.io/9449.8383c93362435fac.esm.js
104.26.14.230200 OK 0 B URL HTTP/2 www.filescan.io/9449.8383c93362435fac.esm.js
IP 104.26.14.230:0
GET /9449.8383c93362435fac.esm.js HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Cookie: _ga_NKWFYZ6END=GS1.1.1675853605.1.0.1675853605.0.0.0; _ga=GA1.2.382801003.1675853605; _gid=GA1.2.1353711226.1675853605; _gat=1; _gat_gtag_UA_198485172_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:34 GMT
content-type: application/javascript
cf-bgj: minify
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
etag: W/"63c51e66-fea"
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
strict-transport-security: max-age=63072000; includeSubdomains;
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uSrT698d8ViNH2byAGhF9EBe5iOVGquc6YzMKI27C%2BhPvwsRXciV3ZXwbKx2QcrB1F1y6TXqYBZbRocrS8CdPWrqLNrYECCGvWESjacfI48s6d9Dhg3AqRvpcuCKNzoW3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d10a2d420b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.filescan.io/8222.7464772ad7122b70.esm.js
104.26.14.230200 OK 0 B URL HTTP/2 www.filescan.io/8222.7464772ad7122b70.esm.js
IP 104.26.14.230:0
GET /8222.7464772ad7122b70.esm.js HTTP/1.1
Host: www.filescan.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.filescan.io/reports/81f41d482bf4095fdb19e769bd7284412258e89e9c5ed1fe9363ebe17dbcd803/a7d72737-4c70-47aa-a533-cdbec6e6ee66/overview
Cookie: _ga_NKWFYZ6END=GS1.1.1675853605.1.0.1675853605.0.0.0; _ga=GA1.2.382801003.1675853605; _gid=GA1.2.1353711226.1675853605; _gat=1; _gat_gtag_UA_198485172_2=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 10:52:34 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1896719
content-security-policy: default-src 'self'; connect-src 'self' https://*.google-analytics.com https://stats.g.doubleclick.net https://ipapi.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://cdn.amcharts.com; frame-src 'self' data: https://app.termly.io; img-src 'self' data: https://app.termly.io https://www.google-analytics.com https://www.googletagmanager.com https://fastapi.tiangolo.com https://cdn.amcharts.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.amcharts.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://cdn.amcharts.com; object-src 'none'
etag: W/"63c51e66-8ce3e"
last-modified: Mon, 16 Jan 2023 09:52:38 GMT
strict-transport-security: max-age=63072000; includeSubdomains;
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZDKSPUH2g1hIKwDz7zS%2F5mxdcQpV4p7TQGae8Fa58ccvuKTigryMOWFWCkjdbhSZqQmzeXrRkpONPHFkHLsjGEbGvBsV01AWapPr7Eo%2B%2FCkVtxOsuHYjztea%2BA0wyNbTSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7963d10a3d460b41-OSL
content-encoding: br
X-Firefox-Spdy: h2