Overview

URL erisinfo.com/404javascript.js
IP172.67.6.200
ASNCLOUDFLARENET
Location United States
Report completed2022-09-28 19:35:53 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-28 2 erisinfo.com/404javascript.js Malware
2022-09-28 2 erisinfo.com/404javascript.js Malware
2022-09-28 2 www.erisinfo.com/404javascript.js Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

URL fonts.gstatic.com/s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2
IP  142.250.74.163
Magic gzip compressed data, max compression\012- data
Size 13545
MD5 7493f2f4ea0cc2f09c5b4ca6cca5960a
SHA1 2656158ff637bab028a04fa7543b056c464de0fe
SHA256 f32b00e88dae1fd42b89df6cd82157e8f03ac552e6b30e8f912e3d5d3e0b5a21
Analyzer Analysed Verdict Comment
VirusTotal 0/0


Passive DNS (26)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2022-09-28 16:15:39 UTC 93.184.220.29
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-09-28 10:46:18 UTC 142.250.74.3
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-28 16:17:01 UTC 142.250.74.164
mnemonic passive DNS accounts.livechatinc.com (1) 7698 2017-07-31 05:50:56 UTC 2022-09-28 05:03:39 UTC 23.36.79.17
mnemonic passive DNS go.erisinfo.com (1) 0 2019-08-27 12:34:10 UTC 2022-09-28 15:40:22 UTC 18.208.125.13 Domain (erisinfo.com) ranked at: 482263
mnemonic passive DNS r3.o.lencr.org (8) 344 2020-12-02 08:52:13 UTC 2022-09-28 04:36:09 UTC 23.36.76.226
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-28 05:13:47 UTC 34.160.144.191
mnemonic passive DNS static.cloudflareinsights.com (1) 1294 2019-09-24 14:34:56 UTC 2022-09-28 08:14:31 UTC 104.18.47.230
mnemonic passive DNS img-getpocket.cdn.mozilla.net (5) 1631 2017-09-01 03:40:57 UTC 2022-09-28 08:06:38 UTC 34.120.237.76
mnemonic passive DNS fonts.gstatic.com (6) 0 2014-08-29 13:43:22 UTC 2022-09-28 04:36:33 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS cdn.livechatinc.com (4) 6288 2012-06-22 08:37:34 UTC 2022-09-28 05:11:05 UTC 23.36.79.17
mnemonic passive DNS pi.pardot.com (2) 4400 No data No data 3.92.120.28
mnemonic passive DNS api.livechatinc.com (4) 5353 2013-12-20 14:27:35 UTC 2022-09-28 05:11:06 UTC 23.36.79.16
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-28 04:36:06 UTC 34.117.237.239
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-28 05:02:28 UTC 34.218.159.206
mnemonic passive DNS erisinfo.com (2) 482263 2016-03-10 04:55:54 UTC 2022-09-28 15:50:28 UTC 104.22.10.11
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-28 04:42:17 UTC 142.250.74.72
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-28 12:06:36 UTC 143.204.55.36
mnemonic passive DNS ocsp.pki.goog (16) 175 2017-06-14 07:23:31 UTC 2022-09-28 04:36:20 UTC 142.250.74.3
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-28 14:54:21 UTC 142.250.74.174
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-28 04:39:06 UTC 64.233.165.155
mnemonic passive DNS api.livechatinc.com (4) 5353 2013-12-20 14:27:35 UTC 2022-09-28 05:11:06 UTC 23.36.79.17
mnemonic passive DNS secure.livechatinc.com (1) 6541 2012-08-20 19:27:12 UTC 2022-09-28 05:11:07 UTC 23.36.79.17
mnemonic passive DNS www.erisinfo.com (1) 0 2015-10-21 13:59:09 UTC 2022-09-28 16:46:00 UTC 104.22.10.11 Domain (erisinfo.com) ranked at: 482263
mnemonic passive DNS erisinfo.com (2) 482263 2016-03-10 04:55:54 UTC 2022-09-28 15:50:28 UTC 104.22.11.11
mnemonic passive DNS fonts.googleapis.com (4) 8877 2013-06-10 20:14:26 UTC 2022-09-28 11:46:46 UTC 142.250.74.10


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 172.67.6.200

Date UQ / IDS / BL URL IP
2022-09-28 19:35:53 +0000
0 - 0 - 3 erisinfo.com/404javascript.js 172.67.6.200

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-12-04 08:49:11 +0000
0 - 0 - 18 dateexotic.com/agEA?usid=23t3o6b14d8gn&email= (...) 104.21.34.109
2022-12-04 08:48:40 +0000
0 - 0 - 1 bondequipment.org/ 172.67.164.113
2022-12-04 08:48:31 +0000
0 - 0 - 2 jaynebakerart.com/ 23.227.38.65
2022-12-04 08:48:22 +0000
0 - 0 - 4 plonvencons.tk/ 188.114.96.1
2022-12-04 08:47:56 +0000
0 - 0 - 10 enspro.pl/ 104.21.61.249

Last 3 reports on domain: erisinfo.com

Date UQ / IDS / BL URL IP
2022-09-28 19:35:53 +0000
0 - 0 - 3 erisinfo.com/404javascript.js 172.67.6.200
2022-09-14 13:57:11 +0000
0 - 0 - 0 erisinfo.com 216.138.242.139
2022-09-13 18:04:52 +0000
0 - 0 - 0 erisinfo.com 216.138.242.139

No other reports with similar screenshot



JavaScript

Executed Scripts (44)


Executed Evals (1)

#1 JavaScript::Eval (size: 24123, repeated: 1) - SHA256: 9427b28bccd70e88ae216329d97b400e65432ac4f65058d19e7f713c9a5007d8

                                        var kc_front = (function($) {
    jQuery.extend(jQuery.easing, {
        easeInOutQuart: function(x, t, b, c, d) {
            if ((t /= d / 2) < 1) return c / 2 * t * t * t * t + b;
            return -c / 2 * ((t -= 2) * t * t * t - 2) + b
        },
    });
    var v = $(window);
    var w = v.height();
    v.resize(function() {
        w = v.height();
        kc_front.row_action(true)
    });
    $.fn.kc_parallax = function() {
        var c = $(this),
            el_top;
        c.each(function() {
            el_top = c.offset().top
        });

        function update() {
            var b = v.scrollTop();
            c.each(function() {
                var a = $(this),
                    top = a.offset().top,
                    height = a.outerHeight(true);
                if (top + height < b || top > b + w || c.data('kc-parallax') !== true) return;
                c.css('backgroundPosition', "50% " + Math.round((el_top - b) * 0.4) + "px")
            })
        }
        v.on('scroll resize', update).trigger('update')
    };
    $.fn.viewportChecker = function(d) {
        var f = {
            classToAdd: 'visible',
            offset: 100,
            callbackFunction: function(a) {}
        };
        $.extend(f, d);
        var g = this,
            w = $(window).height();
        this.checkElements = function() {
            var c = ((navigator.userAgent.toLowerCase().indexOf('webkit') != -1) ? window : 'html'),
                viewportTop = $(c).scrollTop(),
                viewportBottom = (viewportTop + w);
            g.each(function() {
                var a = $(this);
                if (a.hasClass(f.classToAdd) && f.classToAdd != '') {
                    return
                }
                var b = Math.round(a.offset().top) + f.offset,
                    elemBottom = b + (a.height());
                if ((b < viewportBottom) && (elemBottom > viewportTop) && this.done != true) {
                    a.addClass(f.classToAdd);
                    f.callbackFunction(a)
                }
            })
        };
        $(window).scroll(this.checkElements);
        this.checkElements();
        $(window).resize(function(e) {
            w = e.currentTarget.innerHeight
        })
    };
    $(document).ready(function($) {
        kc_front.init($)
    });
    return {
        win_height: 0,
        win_width: 0,
        body: $('body'),
        init: function() {
            $('section[data-kc-parallax="true"]').each(function() {
                $(this).kc_parallax()
            });
            this.accordion();
            this.tabs();
            this.youtube_row_background.init();
            if (window.location.href.indexOf('#') > -1) {
                $('a[href="#' + window.location.href.split('#')[1] + '"]').trigger('click')
            }
            $('.kc_button').add('.kc_tooltip').kcTooltip();
            $('.kc-close-but').on('click', function() {
                $(this).parent().parent().hide('slow', function() {
                    $(this).remove()
                })
            });
            this.google_maps();
            this.blog.masonry();
            this.image_gallery.masonry();
            this.carousel_images();
            this.carousel_post();
            this.countdown_timer();
            this.piechar.init();
            this.progress_bar.run();
            this.ajax_action();
            this.pretty_photo();
            this.tooltips();
            this.image_fade();
            this.smooth_scroll();
            this.animate();
            this.row_action(true)
        },
        refresh: function(b) {
            setTimeout(function(a) {
                kc_front.piechar.update(a);
                kc_front.progress_bar.update(a);
                kc_front.image_gallery.masonry(a);
                if ($('.kc_video_play').length > 0) {
                    kc_video_play.refresh(a)
                }
            }, 100, b)
        },
        viewport: function(a) {
            var d = document;
            if (d.compatMode === 'BackCompat') {
                if (a == 'height') return d.body.clientHeight;
                else return d.body.clientWidth
            } else {
                if (a == 'height') return d.documentElement.clientHeight;
                else return d.documentElement.clientWidth
            }
        },
        row_action: function(c) {
            var d = document;
            [].forEach.call(d.querySelectorAll('section[data-kc-fullwidth]'), function(a) {
                var b = d.querySelectorAll('.kc_clfw')[0],
                    rect;
                if (typeof b === 'undefined') return;
                rect = b.getBoundingClientRect();
                a.style.left = (-rect.left) + 'px';
                if (a.getAttribute('data-kc-fullwidth') == 'row') {
                    a.style.paddingLeft = rect.left + 'px';
                    a.style.paddingRight = (kc_front.viewport('width') - rect.width - rect.left) + 'px';
                    a.style.width = rect.width + 'px'
                } else {
                    a.style.paddingLeft = '0px';
                    a.style.width = kc_front.viewport('width') + 'px'
                }
                if (a.nextElementSibling !== null && a.nextElementSibling.tagName == 'SCRIPT') {
                    if (a.nextElementSibling.innerHTML == 'kc_front.row_action(true);') {
                        a.parentNode.removeChild(a.nextElementSibling)
                    }
                }
            })
        },
        google_maps: function(b) {
            $('.kc_google_maps').each(function() {
                if ($(this).data('loaded') === true) return;
                else $(this).data({
                    'loaded': true
                });
                var a = $(this);
                if (a.data('wheel') == 'disable') {
                    a.click(function() {
                        a.find('iframe').css("pointer-events", "auto")
                    });
                    a.mouseleave(function() {
                        a.find('iframe').css("pointer-events", "none")
                    })
                }
                a.find('.close').on('click', function() {
                    a.find('.map_popup_contact_form').toggleClass("hidden");
                    a.find('.show_contact_form').fadeIn('slow')
                });
                a.find('.show_contact_form').on('click', function() {
                    a.find('.map_popup_contact_form').toggleClass("hidden");
                    a.find('.show_contact_form').fadeOut('slow')
                })
            })
        },
        accordion: function(d) {
            $('.kc_accordion_wrapper').each(function() {
                if ($(this).data('loaded') === true) return;
                else $(this).data({
                    'loaded': true
                });
                var c = $(this).data('tab-active') !== undefined ? ($(this).data('tab-active') - 1) : 0;
                if ($(this).data('closeall') == true) c = '100000';
                $(this).find('>div.kc_accordion_section>h3.kc_accordion_header>a, >div.kc_accordion_section>h3.kc_accordion_header>.ui-accordion-header-icon').off('click').on('click', function(e) {
                    var a = $(this).closest('.kc_accordion_wrapper'),
                        section = $(this).closest('.kc_accordion_section'),
                        allowopenall = (true === a.data('allowopenall')) ? true : false,
                        closeall = (true === a.data('closeall')) ? true : false,
                        changed = section.find('>h3.kc_accordion_header').hasClass('ui-state-active'),
                        clickitself = false;
                    if (allowopenall === false) {
                        if (!section.find('>h3.kc_accordion_header').hasClass('ui-state-active')) {
                            a.find('>.kc_accordion_section>.kc_accordion_content').slideUp();
                            a.find('>.kc_accordion_section>h3.kc_accordion_header').removeClass('ui-state-active');
                            a.find('>.kc_accordion_section.kc-section-active').removeClass('kc-section-active');
                            section.find('>.kc_accordion_content').stop().slideDown('normal', function() {
                                $(this).css({
                                    height: ''
                                })
                            });
                            section.find('>h3.kc_accordion_header').addClass('ui-state-active');
                            section.addClass('kc-section-active')
                        } else {
                            a.find('>.kc_accordion_section>.kc_accordion_content').slideUp();
                            a.find('>.kc_accordion_section>h3.kc_accordion_header').removeClass('ui-state-active');
                            a.find('>.kc_accordion_section>.kc-section-active').removeClass('kc-section-active');
                            section.removeClass('kc-section-active')
                        }
                    } else {
                        if (section.find('>h3.kc_accordion_header').hasClass('ui-state-active')) {
                            section.find('>.kc_accordion_content').stop().slideUp();
                            section.find('>h3.kc_accordion_header').removeClass('ui-state-active');
                            section.removeClass('kc-section-active')
                        } else {
                            section.find('>.kc_accordion_content').stop().slideDown('normal', function() {
                                $(this).css({
                                    height: ''
                                })
                            });
                            section.find('>h3.kc_accordion_header').addClass('ui-state-active');
                            section.addClass('kc-section-active')
                        }
                    }
                    if (changed != section.find('>h3.kc_accordion_header').hasClass('ui-state-active')) kc_front.refresh(section.find('>.kc_accordion_content'));
                    e.preventDefault();
                    var b = $(this).closest('.kc_accordion_section');
                    b = b.parent().find('>.kc_accordion_section').index(b.get(0));
                    $(this).closest('.kc_accordion_wrapper').data({
                        'tab-active': (b + 1)
                    })
                }).eq(c).trigger('click')
            })
        },
        tabs: function(d) {
            $('.kc_tabs > .kc_wrapper').each(function(b) {
                if ($(this).data('loaded') === true) return;
                else $(this).data({
                    'loaded': true
                });
                var c = $(this),
                    tab_group = c.parent('.kc_tabs.group'),
                    tab_event = ('yes' === tab_group.data('open-on-mouseover')) ? 'mouseover' : 'click',
                    effect_option = ('yes' === tab_group.data('effect-option')) ? true : false,
                    active_section = parseInt(tab_group.data('tab-active')) - 1;
                $(this).find('>.ui-tabs-nav>li').off('click').on('click', function(e) {
                    e.preventDefault()
                }).off(tab_event).on(tab_event, function(e) {
                    if ($(this).hasClass('ui-tabs-active')) {
                        e.preventDefault();
                        return
                    }
                    var a = $(this).closest('.kc_tabs_nav,.ui-tabs-nav').find('>li'),
                        b = a.index(this),
                        tab_list = $(this).closest('.kc_wrapper').find('>.kc_tab'),
                        new_panel = tab_list.eq(b);
                    a.removeClass('ui-tabs-active');
                    $(this).addClass('ui-tabs-active');
                    tab_list.removeClass('ui-tabs-body-active').removeClass('kc-section-active');
                    new_panel.addClass('ui-tabs-body-active').addClass('kc-section-active');
                    if (effect_option === true) new_panel.css({
                        'opacity': 0
                    }).animate({
                        opacity: 1
                    });
                    e.preventDefault();
                    $(this).closest('.kc_tabs').data({
                        'tab-active': (b + 1)
                    })
                }).eq(active_section).trigger(tab_event)
            });
            $('.kc_tabs.kc-tabs-slider').each(function() {
                if ($(this).data('loaded') === true) return;
                else $(this).data({
                    'loaded': true
                });
                $(this).find('.kc-tabs-slider-nav li').each(function(a) {
                    if ($(this).data('loaded') === true) return;
                    else $(this).data({
                        'loaded': true
                    });
                    $(this).on('click', a, function(e) {
                        $(this).parent().find('.kc-title-active').removeClass('kc-title-active');
                        $(this).addClass('kc-title-active');
                        console.log(e.data);
                        $(this).closest('.kc-tabs-slider').find('.owl-carousel').trigger('owl.goTo', e.data);
                        e.preventDefault();
                        $(this).closest('.kc_tabs').data({
                            'active': e.data
                        })
                    });
                    if (a === 0) $(this).addClass('kc-title-active')
                })
            });
            kc_front.owl_slider()
        },
        counterup: function() {
            $('.counterup').each(function(a) {
                if ($(this).data('loaded') === true) return;
                else $(this).data({
                    'loaded': true
                });
                $(this).counterUp({
                    delay: 100,
                    time: 2000
                })
            })
        },
        youtube_row_background: {
            init: function() {
                $('.kc_row, .kc_column').each(function() {
                    var a = $(this),
                        youtubeUrl, youtubeId;
                    if (a.data('kc-video-bg')) {
                        youtubeUrl = a.data('kc-video-bg');
                        youtubeId = kc_front.youtube_row_background.getID(youtubeUrl);
                        if (youtubeId) {
                            a.find('.kc_wrap-video-bg').remove();
                            kc_front.youtube_row_background.add(a, youtubeId)
                        }
                    } else {
                        a.find('.kc_wrap-video-bg').remove()
                    }
                })
            },
            getID: function(a) {
                if ('undefined' === typeof(a)) {
                    return false
                }
                var b = a.match(/(?:https?:\/{2})?(?:w{3}\.)?youtu(?:be)?\.(?:com|be)(?:\/watch\?v=|\/)([^\s&]+)/);
                if (null !== b) {
                    return b[1]
                }
                return false
            },
            add: function(c, d, f) {
                if (YT === undefined) return;
                if ('undefined' === typeof(YT.Player)) {
                    f = 'undefined' === typeof(f) ? 0 : f;
                    if (f > 100) {
                        console.warn('Too many attempts to load YouTube api');
                        return
                    }
                    setTimeout(function() {
                        kc_front.youtube_row_background.add(c, d, f++)
                    }, 100);
                    return
                }
                var g, $container = c.prepend('<div class="kc_wrap-video-bg"><div class="ifr_inner"></div></div>').find('.ifr_inner'),
                    options = c.data('kc-video-options'),
                    playerVars = {
                        playlist: d,
                        iv_load_policy: 3,
                        enablejsapi: 1,
                        disablekb: 1,
                        autoplay: 1,
                        controls: 0,
                        showinfo: 0,
                        rel: 0,
                        loop: 1
                    };
                options = options ? JSON.parse('{"' + options.replace(/&/g, '","').replace(/=/g, '":"') + '"}', function(a, b) {
                    return a === "" ? b : decodeURIComponent(b)
                }) : {};
                if (typeof options == 'object') playerVars = $.extend(playerVars, options);
                g = new YT.Player($container[0], {
                    width: '100%',
                    height: '100%',
                    videoId: d,
                    playerVars: playerVars,
                    events: {
                        onReady: function(e) {
                            if (c.data('kc-video-mute') == 'yes') e.target.mute().setLoop(true);
                            e.target.playVideo()
                        }
                    }
                });
                kc_front.youtube_row_background.resize(c);
                $(window).on('resize', function() {
                    kc_front.youtube_row_background.resize(c)
                })
            },
            resize: function(a) {
                var b = 1.77,
                    ifr_w, ifr_h, marginLeft, marginTop, inner_width = a.innerWidth(),
                    inner_height = a.innerHeight();
                if ((inner_width / inner_height) < b) {
                    ifr_w = inner_height * b;
                    ifr_h = inner_height
                } else {
                    ifr_w = inner_width;
                    ifr_h = inner_width * (1 / b)
                }
                marginLeft = -Math.round((ifr_w - inner_width) / 2) + 'px';
                marginTop = -Math.round((ifr_h - inner_height) / 2) + 'px';
                ifr_w += 'px';
                ifr_h += 'px';
                a.find('.kc_wrap-video-bg iframe').css({
                    maxWidth: '1000%',
                    marginLeft: marginLeft,
                    marginTop: marginTop,
                    width: ifr_w,
                    height: ifr_h
                })
            }
        },
        single_img: {
            refresh: function(a) {
                kc_front.pretty_photo()
            }
        },
        blog: {
            masonry: function() {
                $('.kc_blog_masonry').each(function() {
                    if ($(this).data('loaded') === true) return;
                    else $(this).data({
                        'loaded': true
                    });
                    var c = $(this),
                        imgs = c.find('img'),
                        total = imgs.length,
                        ready = 0;
                    if (total > 0) {
                        imgs.each(function(a) {
                            var b = new Image();
                            b.onload = function() {
                                ready++;
                                if (ready == total) {
                                    new Masonry(c.get(0), {
                                        itemSelector: '.post-grid',
                                        columnWidth: '.post-grid',
                                    })
                                }
                            };
                            b.src = $(this).attr('src')
                        })
                    } else {
                        new Masonry(c.get(0), {
                            itemSelector: '.post-grid',
                            columnWidth: '.post-grid',
                        })
                    }
                })
            },
        },
        image_gallery: {
            masonry: function() {
                $('.kc_image_gallery').each(function() {
                    if ($(this).data('loaded') === true) return;
                    else $(this).data({
                        'loaded': true
                    });
                    if (('yes' === $(this).data('image_masonry'))) {
                        var c = $(this).find('img'),
                            total = c.length,
                            ready = 0,
                            el = $(this);
                        $(this).data({
                            'total': total
                        });
                        c.each(function(a) {
                            var b = new Image();
                            b.onload = function() {
                                ready++;
                                if (ready == total) {
                                    new Masonry(el.get(0), {
                                        itemSelector: '.item-grid',
                                        columnWidth: '.item-grid',
                                    })
                                }
                            };
                            b.src = $(this).attr('src')
                        })
                    }
                });
                kc_front.pretty_photo()
            },
        },
        image_fade: function() {
            $('.image_fadein_slider .image_fadein').each(function() {
                if ($(this).data('loaded') !== true) $(this).data({
                    'loaded': true
                });
                else return;
                var a = $(this).data('delay') ? $(this).data('delay') : '3000';
                window.kc_front.image_fade_delay(a, $(this).find('img').first())
            })
        },
        image_fade_delay: function(a, b) {
            if (b === undefined) return;
            b.parent().find('.active').removeClass('active');
            b.addClass('active');
            if (b.next().length > 0) b = b.next();
            else b = b.parent().find('img').first();
            var c = setTimeout(window.kc_front.image_fade_delay, a, a, b)
        },
        carousel_images: function(u) {
            $('.kc-carousel-images').each(function(f) {
                if ($(this).data('loaded') === true) return;
                else $(this).data({
                    'loaded': true
                });
                var g = $(this).data('owl-i-options'),
                    _auto_play = ('yes' === g.autoplay) ? true : false,
                    _delay = (g.delay !== undefined) ? g.delay : 8,
                    _navigation = ('yes' === g.navigation) ? true : false,
                    _pagination = ('yes' === g.pagination) ? true : false,
                    _speed = g.speed,
                    _items = g.items,
                    _auto_height = ('yes' === g.autoheight) ? true : false,
                    _num_thumb = (g.num_thumb !== undefined) ? g.num_thumb : 5,
                    _show_thumb = ('yes' === g.showthumb) ? true : false,
                    _progress_bar = ('yes' === g.progressbar) ? true : false,
                    _singleItem = false,
                    _tablet = false,
                    _mobile = false;
                if (g.tablet > 0) {
                    _tablet = [999, g.tablet]
                }
                if (g.mobile > 0) {
                    _mobile = [479, g.mobile]
                }
                var h = function() {};
                var j = function() {};
                var k = function() {};
                if (true === _auto_height || true === _progress_bar || true === _show_thumb) _singleItem = true;
                if (_auto_play) _auto_play = parseInt(_delay) * 1000;
                if (true === _progress_bar) {
                    var l = _delay;
                    var m, $bar, $elem, isPause, tick, percentTime;
                    h = function(a) {
                        $elem = a;
                        n();
                        o()
                    };
                    var n = function() {
                        m = $("<div>", {
                            class: "progressBar"
                        });
                        $bar = $("<div>", {
                            class: "bar"
                        });
                        m.append($bar).prependTo($elem)
                    };
                    var o = function() {
                        percentTime = 0;
                        isPause = false;
                        tick = setInterval(p, 10)
                    };
                    var p = function() {
                        if (isPause === false) {
                            percentTime += 1 / l;
                            $bar.css({
                                width: percentTime + "%"
                            });
                            if (percentTime >= 100) {
                                $elem.trigger('owl.next')
                            }
                        }
                    };
                    k = function() {
                        isPause = true
                    };
                    j = function() {
                        clearTimeout(tick);
                        o()
                    }
                }
                if (true !== _show_thumb) {
                    $(this).owlCarousel({
                        autoPlay: _auto_play,
                        navigation: _navigation,
                        pagination: _pagination,
                        slideSpeed: _speed,
                        paginationSpeed: _speed,
                        singleItem: _singleItem,
                        autoHeight: _auto_height,
                        items: _items,
                        itemsDesktop: false,
                        itemsDesktopSmall: false,
                        itemsTablet: _tablet,
                        itemsTabletSmall: _tablet,
                        itemsMobile: _mobile,
                        afterInit: h,
                        afterMove: j,
                        startDragging: k
                    })
                } else {
                    var q = $(this);
                    var r = q.next('.kc-sync2');
                    var s = function(a) {
                        var b = this.currentItem;
                        $(r).find(".owl-item").removeClass("synced").eq(b).addClass("synced");
                        if ($(r).data("owlCarousel") !== undefined) {
                            t(b)
                        }
                    };
                    r.on("click", ".owl-item", function(e) {
                        e.preventDefault();
                        var a = $(this).data("owlItem");
                        q.trigger("owl.goTo", a)
                    });
                    var t = function(a) {
                        var b = r.data("owlCarousel").owl.visibleItems;
                        var c = a;
                        var d = false;
                        for (var i in b) {
                            if (c === b[i]) {
                                d = true
                            }
                        }
                        if (d === false) {
                            if (c > b[b.length - 1]) {
                                r.trigger("owl.goTo", c - b.length + 2)
                            } else {
                                if (c - 1 === -1) {
                                    c = 0
                                }
                                r.trigger("owl.goTo", c)
                            }
                        } else if (c === b[b.length - 1]) {
                            r.trigger("owl.goTo", b[1])
                        } else if (c === b[0]) {
                            r.trigger("owl.goTo", c - 1)
                        }
                    };
                    q.owlCarousel({
                        autoPlay: _auto_play,
                        singleItem: _singleItem,
                        slideSpeed: _speed,
                        paginationSpeed: _speed,
                        navigation: _navigation,
                        pagination: _pagination,
                        afterAction: s,
                        responsiveRefreshRate: 200,
                        autoHeight: _auto_height,
                        afterInit: h,
                        afterMove: j,
                        startDragging: k
                    });
                    r.owlCarousel({
                        items: _num_thumb,
                        itemsDesktop: [1199, 15],
                        itemsDesktopSmall: [979, 12],
                        itemsTablet: [768, 6],
                        itemsMobile: [479, 5],
                        pagination: _pagination,
                        responsiveRefreshRate: 100,
                        afterInit: function(a) {
                            a.find(".owl-item").eq(0).addClass("synced")
                        }
                    })
                }
            });
            kc_front.pretty_photo()
        },
        update_option: function(b) {
            $.post(top.kc_ajax_url, {
                'security': top.kc_ajax_nonce,
                'action': 'kc_update_option',
                'options': top.kc.tools.base64.encode(JSON.stringify(b))
            }, function(a) {})
        },
        carousel_post: function(a) {
            kc_front.owl_slider('.kc-owl-post-carousel')
        },
        tooltips: function() {
            $('.kc_tooltip').each(function() {
                if ($(this).data('kc-loaded') !== true) $(this).data({
                    'kc-loaded': true
                });
                else return;
                $(this).kcTooltip()
            })
        },
        countdown_timer: function() {
            $('.kc-countdown-timer').each(function(b) {
                var c = $(this).data('countdown');
                $(this).countdown(c.date, function(a) {
                    $(this).html(a.strftime(c.template))
                })
            })
        },
        piechar: {
            init: function() {
                $('.kc_piechart').each(function(b) {
                    $(this).viewportChecker({
                        callbackFunction: function(a) {
                            kc_front.piechar.load(a)
                        },
                        classToAdd: 'kc-pc-loaded'
                    })
                })
            },
            load: function(d) {
                if (d.parent('div').width() < 10) return 0;
                var e = d.data('size'),
                    _linecap = ('yes' === d.data('linecap')) ? 'round' : 'square',
                    _barColor = d.data('barcolor'),
                    _trackColor = d.data('trackcolor'),
                    _autowidth = d.data('autowidth'),
                    _linewidth = d.data('linewidth');
                if ('yes' === _autowidth) {
                    e = d.parent('div').width();
                    d.data('size', e)
                }
                var f = d.find('.percent').width() + d.find('.percent:after').width();
                var g = d.find('.percent').height();
                d.easyPieChart({
                    barColor: _barColor,
                    trackColor: _trackColor,
                    lineCap: _linecap,
                    easing: 'easeOutBounce',
                    onStep: function(a, b, c) {
                        $(this.el).find('.percent').text(Math.round(c));
                        $(this.el).find('.percent').show();
                        $(this.el).css({
                            'width': e,
                            'height': e
                        })
                    },
                    scaleLength: 0,
                    lineWidth: _linewidth,
                    size: e,
                })
            },
            update: function(a) {
                a.find('.kc_piechart').each(function() {
                    if ($(this).data('loaded') === true) return;
                    else $(this).data({
                        'loaded': true
                    });
                    kc_front.piechar.load($(this))
                })
            }
        },
        progress_bar: {
            run: function() {
                $('.kc_progress_bars').each(function() {
                    $(this).viewportChecker({
                        callbackFunction: function(a) {
                            kc_front.progress_bar.update(a)
                        },
                        classToAdd: 'kc-pb-loaded'
                    })
                })
            },
            update: function(c) {
                $('.kc-progress-bar .kc-ui-progress').each(function() {
                    if ($(this).data('loaded') === true) return;
                    else $(this).data({
                        'loaded': true
                    });
                    $(this).css({
                        width: '5%'
                    }).stop().animate({
                        width: this.getAttribute('data-value') + '%'
                    }, {
                        duration: parseInt(this.getAttribute('data-speed')),
                        easing: 'easeInOutQuart',
                        step: function(a, b) {
                            if (b.now / b.end > 0.3) this.getElementsByClassName('ui-label')[0].style.opacity = b.now / b.end
                        }
                    }).find('.ui-label').css({
                        opacity: 0
                    })
                })
            }
        },
        ajax_action: function() {
            $('.kc_facebook_recent_post').each(function() {
                if (this.getAttribute('data-cfg') === null || this.getAttribute('data-cfg') === undefined || this.getAttribute('data-cfg') === '') return;
                var b = $(this),
                    data_send = {
                        action: 'kc_facebook_recent_post',
                        cfg: $(this).data('cfg')
                    };
                this.removeAttribute('data-cfg');
                $.ajax({
                    url: kc_script_data.ajax_url,
                    method: 'POST',
                    dataType: 'json',
                    data: data_send,
                    success: function(a) {
                        b.find('ul').html(a.html).before(a.header_html)
                    }
                })
            });
            $('.kc_wrap_instagram').each(function(b) {
                if (this.getAttribute('data-cfg') === null || this.getAttribute('data-cfg') === undefined || this.getAttribute('data-cfg') === '') return;
                var c = $(this),
                    data_send = {
                        action: 'kc_instagrams_feed',
                        cfg: $(this).data('cfg')
                    };
                this.removeAttribute('data-cfg');
                $.ajax({
                    url: kc_script_data.ajax_url,
                    method: 'POST',
                    dataType: 'json',
                    data: data_send,
                    success: function(a) {
                        c.find('ul').html(a.html)
                    }
                })
            });
            $('.kc_twitter_feed').each(function(d) {
                if (this.getAttribute('data-cfg') === null || this.getAttribute('data-cfg') === undefined || this.getAttribute('data-cfg') === '') return;
                var e = $(this),
                    atts_data = {
                        action: 'kc_twitter_timeline',
                        cfg: $(this).data('cfg')
                    };
                this.removeAttribute('data-cfg');
                var f = $(this).data('owl_option');
                $.ajax({
                    url: kc_script_data.ajax_url,
                    method: 'POST',
                    dataType: 'json',
                    data: atts_data,
                    success: function(a) {
                        var b = e.data('display_style');
                        e.find('.result_twitter_feed').html(a.html);
                        e.find('.result_twitter_feed').before('<div class="button_follow_wrap">' + a.header_data + '</div>');
                        var c = ('yes' === f.show_navigation) ? true : false,
                            _pagination = ('yes' === f.show_pagination) ? true : false,
                            _autoHeight = ('yes' === f.auto_height) ? true : false;
                        if (2 === b) {
                            e.find('.kc-tweet-owl').owlCarousel({
                                navigation: c,
                                pagination: _pagination,
                                slideSpeed: 300,
                                paginationSpeed: 400,
                                singleItem: true,
                                items: 1,
                                autoHeight: _autoHeight
                            })
                        }
                    }
                })
            })
        },
        owl_slider: function() {
            if (typeof $().owlCarousel != 'function') return;
            $('[data-owl-options]').each(function(a) {
                var b = $(this).data('owl-options');
                if (typeof b !== 'object') return;
                if ($(this).data('loaded') === true) return;
                else $(this).data({
                    'loaded': true
                });
                $(this).attr({
                    'data-owl-options': null
                });
                var c = ('yes' === b.autoplay) ? true : false,
                    _navigation = ('yes' === b.navigation) ? true : false,
                    _pagination = ('yes' === b.pagination) ? true : false,
                    _speed = (b.speed !== undefined) ? b.speed : 450,
                    _items = (b.items !== undefined) ? b.items : 1,
                    _tablet = (b.tablet !== undefined) ? b.tablet : 1,
                    _mobile = (b.mobile !== undefined) ? b.mobile : 1,
                    _autoheight = ('yes' === b.autoheight) ? true : false,
                    _showthumb = ('yes' === b.showthumb) ? true : false,
                    _singleItem = false;
                if (_autoheight === true) {
                    _singleItem = true;
                    _items = 1
                }
                $(this).owlCarousel({
                    autoPlay: c,
                    navigation: _navigation,
                    pagination: _pagination,
                    showthumb: _showthumb,
                    slideSpeed: _speed,
                    paginationSpeed: _speed,
                    singleItem: _singleItem,
                    autoHeight: _autoheight,
                    items: _items,
                    itemsCustom: false,
                    itemsDesktop: [1199, _items],
                    itemsDesktopSmall: [980, _tablet],
                    itemsTablet: [640, _mobile],
                    itemsTabletSmall: false,
                    itemsMobile: [480, _mobile],
                })
            });
            kc_front.pretty_photo()
        },
        pretty_photo: function() {
            if (typeof($.prettyPhoto) == 'object') {
                $("a.kc-pretty-photo:not(.kc-pt-loaded)").addClass('kc-pt-loaded').off('click').prettyPhoto({
                    theme: 'dark_rounded',
                    allow_resize: true,
                    allow_expand: true,
                    opacity: 0.85,
                    animation_speed: 'fast',
                    deeplinking: false,
                    counter_separator_label: ' / ',
                    show_title: true,
                    autoplay: true,
                    horizontal_padding: 0,
                    overlay_gallery: false,
                    markup: '<div class="pp_pic_holder"> 		                <div class="pp_content_container"> 		                  <div class="pp_left"> 		                  <div class="pp_right"> 		                    <div class="pp_content"> 		                      <div class="pp_loaderIcon kc-spinner"></div> 		                      <div class="pp_fade"> 		                        <div class="pp_hoverContainer"> 		                          <a class="pp_next" href="#"><i class="sl-arrow-right"></i></a> 		                          <a class="pp_previous" href="#"><i class="sl-arrow-left"></i></a> 		                        </div> 		                        <div id="pp_full_res"></div> 		                        <div class="pp_details"> 		                         <div class="ppt">&nbsp;</div> 		                          <div class="pp_nav"> 		                            <p class="currentTextHolder">0 / 0</p> 		                          </div> 		                          <p class="pp_description"></p> 		                          <a class="pp_close" href="#"><i class="sl-close"></i></a> 		                        </div> 		                      </div> 		                    </div> 		                  </div> 		                  </div> 		                </div> 		              </div> 		              <div class="pp_overlay"></div>'
                })
            }
        },
        smooth_scroll: function() {
            $('a[href^="#"]').on('click', function(e) {
                if (location.pathname.replace(/^\//, '') == this.pathname.replace(/^\//, '') && location.hostname == this.hostname && this.hash.indexOf('#!') === 0) {
                    var a = $(this.hash.replace('!', ''));
                    if (a.length) {
                        $('html,body').stop().animate({
                            scrollTop: a.offset().top - 80
                        }, 500)
                    }
                }
            })
        },
        animate: function() {
            $('.kc-animated').each(function(f) {
                $(this).viewportChecker({
                    callbackFunction: function(c) {
                        var d = c.get(0).className,
                            delay = 0,
                            speed = '2s',
                            timeout = 0;
                        if (d.indexOf('kc-animate-delay-') > -1) {
                            delay = d.split('kc-animate-delay-')[1].split(' ')[0];
                            c.css({
                                'animation-delay': delay + 'ms'
                            });
                            c.removeClass('kc-animate-delay-' + delay);
                            timeout += parseInt(delay)
                        }
                        if (d.indexOf('kc-animate-speed-') > -1) {
                            speed = d.split('kc-animate-speed-')[1].split(' ')[0];
                            c.css({
                                'animation-duration': speed
                            });
                            c.removeClass('kc-animate-speed-' + speed)
                        }
                        if (d.indexOf('kc-animate-eff-') > -1) {
                            var e = d.split('kc-animate-eff-')[1].split(' ')[0];
                            timeout += parseFloat(speed) * 1000;
                            c.removeClass('kc-animated').addClass('animated ' + e);
                            setTimeout(function(a, b) {
                                a.removeClass('animated kc-animated kc-animate-eff-' + b + ' ' + b);
                                a.css({
                                    'animation-delay': '',
                                    'animation-duration': ''
                                })
                            }, timeout, c, e)
                        }
                    },
                    classToAdd: 'kc-pc-loaded'
                })
            })
        }
    }
}(jQuery));
(function($) {
    $.fn.kcTooltip = function() {
        return this.each(function() {
            var a = this.getBoundingClientRect();
            var b = $(this).data('tooltip'),
                span_w = $(this).find('span').outerWidth(),
                span_h = $(this).find('span').outerHeight(),
                this_w = $(this).outerWidth(),
                this_h = $(this).outerHeight();
            if (typeof(b) == 'undefined') {
                $(this).find('span').css('margin-left', -span_w / 2);
                $(this).hover().find('span').css('bottom', this_h + 10)
            } else {
                var c = $(this).data('position');
                var d = -10;
                if (typeof c == 'undefined') c = 'top';
                $(this).addClass(c);
                $(this).find('span').attr({
                    'style': ''
                });
                switch (c) {
                    case 'right':
                        {
                            var e;
                            e = this_h / 2 - span_h / 2;
                            $(this).find('span').css('left', this_w + 10);
                            $(this).find('span').css('bottom', e);
                            $(this).hover().find('span').css('left', this_w - d);
                            break
                        }
                    case 'bottom':
                        {
                            $(this).find('span').css('margin-left', -span_w / 2);
                            $(this).hover().find('span').css('bottom', -span_h + d);
                            break
                        }
                    case 'left':
                        {
                            var e, ext_left = 5;
                            e = this_h / 2 - span_h / 2;
                            $(this).find('span').css('left', -span_w - ext_left);
                            $(this).find('span').css('bottom', e);
                            break
                        }
                    default:
                        {
                            $(this).find('span').css('margin-left', -span_w / 2);
                            $(this).hover().find('span').css('bottom', this_h - d)
                        }
                }
            }
        })
    }
}(jQuery));
                                    

Executed Writes (1)

#1 JavaScript::Write (size: 6418, repeated: 1) - SHA256: 02dcaa813ebee0b417fc2ee2001b3d4badc18979e236d4277b86cd695236b815

                                        < !DOCTYPE html >
    < html >
    < head >
    < link rel = "stylesheet"
href = "https://fonts.googleapis.com/css?family=Noto+Sans:400,700&subset=latin-ext&display=swap" > < /link> < style >
    * {
        font - family: 'Noto Sans', sans - serif;
        box - sizing: border - box; - webkit - font - smoothing: antialiased; - moz - osx - font - smoothing: grayscale; - webkit - tap - highlight - color: transparent;
    }
body {
    margin: 0;
} < /style> < style data - emotion = "css-global qw898r" > .css - qw898r {
    max - width: 100 % ;
    position: absolute;
    bottom: 0;
    z - index: 2;
    display: -webkit - box;
    display: -webkit - flex;
    display: -ms - flexbox;
    display: flex; - webkit - align - items: flex - end; - webkit - box - align: flex - end; - ms - flex - align: flex - end;
    align - items: flex - end;
    will - change: width, height, transform, opacity; - webkit - backface - visibility: hidden;
    backface - visibility: hidden;
    padding: 0.8e m 0.8e m 0 0.8e m;
    right: 0; - webkit - box - pack: end; - ms - flex - pack: end; - webkit - justify - content: flex - end;
    justify - content: flex - end;
    --primary - color: #427fe1;--secondary-color:# fbfbfb;
    --tertiary - color: # fff;
} < /style><style data-emotion="css-global adbqwp">.css-adbqwp{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-flex-direction:column;-ms-flex-direction:column;flex-direction:column;min-width:0;--primary-color:#427fe1;--secondary-color:#fbfbfb;--tertiary-color:#fff;}</style > < style data - emotion = "css-global 1lrwoq5" > .css - 1 lrwoq5 {
    display: -webkit - box;display: -webkit - flex;display: -ms - flexbox;display: flex;min - width: 0;--primary - color: #427fe1;--secondary-color:# fbfbfb;--tertiary - color: # fff;
} < /style><style data-emotion="css-global 1h38xh5">.css-1h38xh5{position:relative;width:255px;height:50px;box-shadow:0 4px 12px rgba(0,0,0,0.3);background:#FFFFFF;border-radius:8px 8px 0px 0px;display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;padding:0 0.9em;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;--primary-color:#427fe1;--secondary-color:#fbfbfb;--tertiary-color:#fff;border-radius:4px 4px 0px 0px;height:40px;color:#FFFFFF;background-color:#000000;}.css-1h38xh5:hover{cursor:pointer;}.css-1h38xh5:focus{outline-style:auto;}</style > < style data - emotion = "css-global 1t5h7yy" > .css - 1 t5h7yy {
    margin: 1e m 0;--primary - color: #427fe1;--secondary-color:# fbfbfb;--tertiary - color: # fff;white - space: nowrap;overflow: hidden;text - overflow: ellipsis; - webkit - box - flex: 1; - webkit - flex - grow: 1; - ms - flex - positive: 1;flex - grow: 1;font - weight: 700;font - size: 0.9e m;margin - right: 4 px;--primary - color: #427fe1;--secondary-color:# fbfbfb;--tertiary - color: # fff;white - space: nowrap;overflow: hidden;text - overflow: ellipsis;
} < /style><style data-emotion="css-global 6ww1sf">.css-6ww1sf{-webkit-appearance:none;-moz-appearance:none;-ms-appearance:none;appearance:none;background:transparent;border:0;display:inline-block;margin:0;padding:0.5em;color:inherit;cursor:pointer;--primary-color:#427fe1;--secondary-color:#fbfbfb;--tertiary-color:#fff;padding:0 .5em;padding:0;display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-box-pack:center;-ms-flex-pack:center;-webkit-justify-content:center;justify-content:center;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;border-radius:4px;--primary-color:#427fe1;--secondary-color:#fbfbfb;--tertiary-color:#fff;}.css-6ww1sf:disabled{cursor:not-allowed;}.css-6ww1sf:focus{outline-style:auto;}</style > < style data - emotion = "css-global kvf2v3" > .css - kvf2v3 {
    position: relative;display: -webkit - box;display: -webkit - flex;display: -ms - flexbox;display: flex;width: 24 px;height: 24 px; - webkit - align - items: center; - webkit - box - align: center; - ms - flex - align: center;align - items: center; - webkit - box - pack: center; - ms - flex - pack: center; - webkit - justify - content: center;justify - content: center;--primary - color: #427fe1;--secondary-color:# fbfbfb;--tertiary - color: # fff;
} < /style><style data-emotion="css-global 1usdo54">.css-1usdo54{display:inline-block;-webkit-flex-shrink:0;-ms-flex-negative:0;flex-shrink:0;width:1em;height:1em;font-size:1.5rem;-webkit-user-select:none;-moz-user-select:none;-ms-user-select:none;user-select:none;fill:currentColor;}</style > < style data - emotion = "css-global 1arh9bj" > .css - 1 arh9bj {
    opacity: 1; - webkit - transform: scale(1); - moz - transform: scale(1); - ms - transform: scale(1);transform: scale(1);transform - origin: 50 % 50 % ; - webkit - transition: 200 ms cubic - bezier(0.18, 0.89, 0.32, 1.28) 50 ms;transition: 200 ms cubic - bezier(0.18, 0.89, 0.32, 1.28) 50 ms;--primary - color: #427fe1;--secondary-color:# fbfbfb;--tertiary - color: # fff;
} < /style><style data-emotion="css-global 1va8xpi">.css-1va8xpi{position:absolute;z-index:1;left:0;right:0;bottom:1px;-webkit-transition:opacity 150ms cubic-bezier(0.33, 0, 0.67, 1) 50ms;transition:opacity 150ms cubic-bezier(0.33, 0, 0.67, 1) 50ms;display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;width:24px;height:24px;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;-webkit-box-pack:center;-ms-flex-pack:center;-webkit-justify-content:center;justify-content:center;opacity:0;--primary-color:#427fe1;--secondary-color:#fbfbfb;--tertiary-color:#fff;}</style > < style data - emotion = "css " > < /style> < /head> < body > < div dir = "ltr"
role = "main"
data - lc - id = "0"
data - lc - event = "mouseover:dmtvxcgsjn6;focus:3w6ltsw0y1p;blur:fjlctq3bp9v"
class = "css-qw898r eqd5v0k0" > < div class = "css-adbqwp ek650k30" > < div class = "css-1lrwoq5 e108e6fy0" > < /div><div class="css-1lrwoq5 e108e6fy0"><div data-lc-id="1" data-lc-event="click:w30b3jq7c2r;mouseleave:7gpzg5htl3f;mouseenter:948ljbgtcsl;focus:al9eludk2i6;blur:so75lb26uli" class="css-1h38xh5 e16i86ec1"><p class="css-1t5h7yy e16i86ec0">WANT TO CHAT?</p > < button aria - label = "Open LiveChat chat widget"
class = "e1mwfyk10 css-6ww1sf e1m5b1js0"
type = "button" > < div class = "css-kvf2v3 e1dmt1bi1" > < svg color = "inherit"
viewBox = "0 0 32 32"
class = "css-1usdo54" > < path fill = "#FFFFFF"
d = "M12.63,26.46H8.83a6.61,6.61,0,0,1-6.65-6.07,89.05,89.05,0,0,1,0-11.2A6.5,6.5,0,0,1,8.23,3.25a121.62,121.62,0,0,1,15.51,0A6.51,6.51,0,0,1,29.8,9.19a77.53,77.53,0,0,1,0,11.2,6.61,6.61,0,0,1-6.66,6.07H19.48L12.63,31V26.46" > < /path><path fill="#000000" d="M19.57,21.68h3.67a2.08,2.08,0,0,0,2.11-1.81,89.86,89.86,0,0,0,0-10.38,1.9,1.9,0,0,0-1.84-1.74,113.15,113.15,0,0,0-15,0A1.9,1.9,0,0,0,6.71,9.49a74.92,74.92,0,0,0-.06,10.38,2,2,0,0,0,2.1,1.81h3.81V26.5Z" class="css-1arh9bj e1nep2br0"></path > < /svg><div class="css-1va8xpi e1dmt1bi0"></div > < /div></button > < /div></div > < /div></div > < /body> < /html>
                                    


HTTP Transactions (70)


Request Response
                                        
                                            GET /404javascript.js HTTP/1.1 
Host: erisinfo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         104.22.11.11
HTTP/1.1 301 Moved Permanently
                                        
Date: Wed, 28 Sep 2022 19:35:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 28 Sep 2022 20:35:42 GMT
Location: https://erisinfo.com/404javascript.js
Vary: Accept-Encoding
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Server: cloudflare
CF-RAY: 751eec7d6f2f0af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 18:54:51 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pJBXFbHprMXGaapKKOEtlwcHaGDLr0MUt6oXzWFcbFXZyc9Fc0NvcA==
Age: 2452


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9FE6BEB1CB3851018168765A243B6DE69EC71D30770F8C2DCC57CAE7D9978CC1"
Last-Modified: Wed, 28 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2437
Expires: Wed, 28 Sep 2022 20:16:20 GMT
Date: Wed, 28 Sep 2022 19:35:43 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E16E8B782B441ECB9A57C3FC3DB9884B5A3034967B846CCA67B2F53644FCABDF"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3203
Expires: Wed, 28 Sep 2022 20:29:06 GMT
Date: Wed, 28 Sep 2022 19:35:43 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: Dkv0clZ9bewm3WhG40cnmyxFg6VK+LJ2tEZO/bVh54AAMDoTWmYZ9pkTLXo1heMKAUpJJDfE5WA=
x-amz-request-id: MSX68583PX0FR7QD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 28 Sep 2022 18:50:10 GMT
age: 2733
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 28 Sep 2022 19:35:43 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 19:35:43 GMT
Server: ECS (amb/6BBF)
Content-Length: 279

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Wed, 28 Sep 2022 19:29:33 GMT
Expires: Wed, 28 Sep 2022 20:26:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KeGjRU6Lnke_pNLnI8Vajsr7J02zYVF7rhuUJtqxZ2aYLARtKGXKTg==
Age: 370


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 423
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 19:35:44 GMT
Last-Modified: Wed, 28 Sep 2022 19:28:41 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 19:35:44 GMT
Last-Modified: Wed, 28 Sep 2022 19:35:43 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0GCc6r3y968pgSJhApLefg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.218.159.206
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9WJTXcFqyFZv7JdETCCsdAx5WUk=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 19:35:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 19:35:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 19:35:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 19:35:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css?family=Roboto%3A100%2C100italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C700%2C700italic%2C900%2C900italic&subset=latin-ext%2Cgreek%2Ccyrillic%2Clatin%2Cgreek-ext%2Cvietnamese%2Ccyrillic-ext&ver=2.9.6 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 19:35:45 GMT
date: Wed, 28 Sep 2022 19:35:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1605
Md5:    35834a973adc507f47ec72785bbdd856
Sha1:   cb9f98d3a32bb73da92e83513bedab9d518ea06b
Sha256: 9ea41bee9d3395213f50cb4d4b3115f2c029d9153c5239bf5820fcd3514e265e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16813
Expires: Thu, 29 Sep 2022 00:15:58 GMT
Date: Wed, 28 Sep 2022 19:35:45 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16813
Expires: Thu, 29 Sep 2022 00:15:58 GMT
Date: Wed, 28 Sep 2022 19:35:45 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16813
Expires: Thu, 29 Sep 2022 00:15:58 GMT
Date: Wed, 28 Sep 2022 19:35:45 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16813
Expires: Thu, 29 Sep 2022 00:15:58 GMT
Date: Wed, 28 Sep 2022 19:35:45 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16813
Expires: Thu, 29 Sep 2022 00:15:58 GMT
Date: Wed, 28 Sep 2022 19:35:45 GMT
Connection: keep-alive

                                        
                                            GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1 
Host: static.cloudflareinsights.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.erisinfo.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.47.230
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
                                        
date: Wed, 28 Sep 2022 19:35:45 GMT
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 751eec8c18481bfe-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   19610
Md5:    cab3e9f0e2e7d1dc054f4b60cc3040c8
Sha1:   c08c06df35ac6e4584e9c986bf7098fe30e0f115
Sha256: c2af10f694595056173aebe42af3faf55d28029250f9639c9e815593a2ec7c96
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7455
x-amzn-requestid: e99c9f33-b72a-4070-80cf-06fb4a87d1df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZG4S6EcAoAMFX1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6332a0df-04122b4a345dbc3f3918af98;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 07:06:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Di1kDUlYEc1rv31fHM-OquU_W_LggEzDCTVME5iFJ5KffZcQyN6i2A==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 07:31:39 GMT
age: 43446
etag: "b383135e2ebc23fe80eb0d594b198cb8c89327a5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7455
Md5:    ea3890e460356d6ecc3ba4e405ac2e9e
Sha1:   b383135e2ebc23fe80eb0d594b198cb8c89327a5
Sha256: 8fcff053ce6e5750136bf876bad5b2916935f13ea039912d977928b086f0a48b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y3DefdcXJyoDHpJXwz460gfWcv2JUboOFExNQmTFgy30B4mn54Xvuw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:30 GMT
age: 78675
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12016
Md5:    4b794c6812cb546de0295e087ebe66a7
Sha1:   a54803cca7d3c509c195f65961e1110c8ec56f55
Sha256: 6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13213
x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATEp8oAMFd9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rV80hKsopWPf_A8hKw0kwTOjVN4Bq-5f8oXDP2wluyGwof5yXFe2Bw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:42:47 GMT
age: 78778
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13213
Md5:    62e68c3cd08dd94d910507512a67e85f
Sha1:   3d4fa8701f17e8818c25584ef5f04bfbee8440cd
Sha256: 058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KmVkKXoPqZmnwFtpKhuox1kJNDoSxMEmYE39_zVPyaeoU4sPqq-_wA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:23 GMT
age: 78682
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13299
Md5:    ad84ed0c5b2090df7996007514cf1984
Sha1:   651600f2ef18cecc2e38370069bbb5e1d86f68e0
Sha256: a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8500
x-amzn-requestid: af82c8d6-950c-4933-87e3-7bbb15cb1ac8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3HOaoAMFoPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-77e0ecc522de575e40f429b3;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rD5LsVDLQkaomG1nCGZGihbdlWKMCjUYNC2kRyAjJesJEOEBSj8Q3A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 78522
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8500
Md5:    6139c878a7d2bd32c61fc8287996eb5b
Sha1:   9c4692ea64832895fbd107d91f879728b6a440c7
Sha256: 3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
                                        
                                            GET /css?family=Open+Sans%3A300italic%2C400italic%2C600italic%2C300%2C400%2C600&subset=latin%2Clatin-ext&display=fallback&ver=6.0.2 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 19:35:45 GMT
date: Wed, 28 Sep 2022 19:35:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   2264
Md5:    5a8068d6b0af50513a498471489a0733
Sha1:   c720e4ce27c5d473ce835ab282861a9155cffa0f
Sha256: 0c9989ce76e84cb4cfdea901d3b6aa552e80463748da27f8fd8391d3175194a6
                                        
                                            GET /css?family=Open+Sans%3A300%2C300italic%2C400%2C400italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%7CRaleway%3A400%2C100%2C200%2C300%2C500%2C600%2C700%2C800%2C900%7CRoboto%3A400%2C100%2C100italic%2C300%2C300italic%2C400italic%2C500%2C500italic%2C700%2C700italic%2C900%2C900italic%7CDancing+Script%3A400%2C700%7CDroid+Serif%3A400%2C400italic%2C700%2C700italic%7CLobster%7COswald%3A400%2C100%2C200%2C300%2C500%2C600%2C700%2C800%2C900%7CJosefin+Sans%3A400%2C100%2C100italic%2C300%2C300italic%2C400italic%2C600%2C600italic%2C700%2C700italic%7CRighteous%3A400%2C100%2C200%2C300%2C500%2C600%2C700%2C800%2C900%7CRighteous%3A400%2C100%2C200%2C300%2C500%2C600%2C700%2C800%2C900%7Cfredoka+one%3A400%2C100%2C200%2C300%2C500%2C600%2C700%2C800%2C900&ver=6.0.2 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 19:35:45 GMT
date: Wed, 28 Sep 2022 19:35:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3490
Md5:    4168f018ac390330bdd268283eda9a04
Sha1:   f1fa034468a813b42b59a71ffef921c040d2943a
Sha256: 97f9f44913023452e765aff68f777efdce6611936e69f428aa980e87ccf4d707
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 19:35:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 19:35:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 19:35:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.erisinfo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 18:01:25 GMT
expires: Sun, 24 Sep 2023 18:01:25 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
age: 351261
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.erisinfo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 21:14:36 GMT
expires: Tue, 26 Sep 2023 21:14:36 GMT
cache-control: public, max-age=31536000
age: 166870
last-modified: Mon, 18 Jul 2022 19:24:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   31270
Md5:    03e165a4d7dfea92f38854bb1de8a56d
Sha1:   0a1a95ce9729292b9c5ea62b9eda71112e24a169
Sha256: d9be1c5cd6900b39bced31ab2171ad19954fb08fb06a11929cef685442f3ee55
                                        
                                            GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.erisinfo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 18:59:14 GMT
expires: Tue, 26 Sep 2023 18:59:14 GMT
cache-control: public, max-age=31536000
age: 174992
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Size:   47952
Md5:    17b406b7b8caa297435fa358e194f5a1
Sha1:   e2132f0e97781af56fa966c0fabb49132f2af203
Sha256: 84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
                                        
                                            GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.erisinfo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 21:13:12 GMT
expires: Tue, 26 Sep 2023 21:13:12 GMT
cache-control: public, max-age=31536000
age: 166954
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Size:   46524
Md5:    c1fd378f54921c75e4ae1821e7b8fff6
Sha1:   2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
Sha256: 405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 19:35:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 19:35:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtag/js?id=UA-65756200-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 19:35:46 GMT
expires: Wed, 28 Sep 2022 19:35:46 GMT
cache-control: private, max-age=900
last-modified: Wed, 28 Sep 2022 18:36:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42363
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2039)
Size:   42363
Md5:    792ab243364a8e8d039ad3da89a193fa
Sha1:   f7c42d1668d51249e3928d6b40bf4a82de169881
Sha256: a571ee7dfd1ce9e6fc411fa18e716778f946f9d49ff86dfe407a4b03be2f08af
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 19:35:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /tracking.js HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.79.17
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Wed, 28 Sep 2022 06:33:11 GMT
x-amz-version-id: dYe0ZS61cfHdYQRI1u01XUYfXQgphf_K
server: AmazonS3
content-encoding: br
etag: W/"4f92e3c476f71264c20b4591ebe4ef00"
vary: Accept-Encoding
x-amz-cf-pop: AMS1-P1
x-amz-cf-id: OiCTLlqfONHhXUCZ-8v4YdnyOVhK_DnPdxfVOpqFA3DQKOvxMcdvJQ==
content-length: 25724
cache-control: max-age=28800
expires: Thu, 29 Sep 2022 03:35:47 GMT
date: Wed, 28 Sep 2022 19:35:47 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   25724
Md5:    f5ce47565fbdf9fa6e7d95daac81cc20
Sha1:   7bf19818f7c6996e274ee3cd0f85e2a9ee3588e4
Sha256: 7e2dc8ee39fe1498ae1bde76eeb52bea3985d080a1f7cae7f2ba0bd7638a2c96
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4906
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 19:35:48 GMT
Last-Modified: Wed, 28 Sep 2022 18:14:02 GMT
Server: ECS (amb/6B82)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Wed, 28 Sep 2022 18:41:09 GMT
expires: Wed, 28 Sep 2022 20:41:09 GMT
cache-control: public, max-age=7200
age: 3279
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19846
Md5:    bb0a42cb08eb27bb66846c4af022b277
Sha1:   a0da74d84dafe029c5fdc82e65f300bcd2e2b627
Sha256: bdbef12e3ca1bd0d06a7bb43750a7682468bb53d05c667ade33bd4f47b3c6928
                                        
                                            GET /pd.js HTTP/1.1 
Host: pi.pardot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.92.120.28
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 28 Sep 2022 19:35:48 GMT
Content-Length: 1946
Connection: keep-alive
last-modified: Wed, 28 Sep 2022 05:21:08 GMT
etag: "1547-gzip"
accept-ranges: bytes
cache-control: max-age=63072000
expires: Fri, 27 Sep 2024 19:35:48 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
Server: PardotServer
X-Pardot-Route: 16b0ab393667a33fe86adedc3141e88c


--- Additional Info ---
Magic:  ASCII text, with very long lines (5297)
Size:   1946
Md5:    c9f60ff021727eaffcf6d7bcce44cbc7
Sha1:   a62104686e86bf51494fa530bfaec55500e60a37
Sha256: bd11307ac746bd34bac63885be9e4600e72c7711b370414b206533ebd076ce1b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 19:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-65756200-1&cid=66997044.1664393746&jid=1776572054&gjid=66608787&_gid=1939168791.1664393746&_u=YEBAAUAAAAAAAC~&z=1210953642 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.erisinfo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         64.233.165.155
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.erisinfo.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 28 Sep 2022 19:35:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 19:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v3.3/customer/action/get_dynamic_configuration?license_id=7454721&url=https%3A%2F%2Fwww.erisinfo.com%2F404javascript.js&channel_type=code&jsonp=__oydd34zxh HTTP/1.1 
Host: api.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.17
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
content-security-policy: frame-ancestors ;
legacy: 2023-06-30
vary: Accept-Encoding
x-frame-options: allow-from
content-length: 270
date: Wed, 28 Sep 2022 19:35:48 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   270
Md5:    d561034de0de5a720e84ce992db307f2
Sha1:   c4ac71ab36316046f00c6ec1835fb2a542ead701
Sha256: 9e64d71638ac985a969cc462ad35cdc8aa86e76463d5daaf6f44e1be3610bdf0
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 19:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 19:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-65756200-1&cid=66997044.1664393746&jid=1776572054&_u=YEBAAUAAAAAAAC~&z=1797850982 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 19:35:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-65756200-1&cid=66997044.1664393746&jid=1776572054&_u=YEBAAUAAAAAAAC~&z=1797850982 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 19:35:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 19:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 19:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v3.3/customer/action/get_configuration?license_id=7454721&version=2612.9.9.1796.179.213.107.11.4.4.4.9&group_id=0&jsonp=__lc_static_config HTTP/1.1 
Host: api.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.17
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
content-encoding: gzip
legacy: 2023-06-30
vary: Accept-Encoding
content-length: 1561
cache-control: public, max-age=600
expires: Wed, 28 Sep 2022 19:45:48 GMT
date: Wed, 28 Sep 2022 19:35:48 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4682), with no line terminators
Size:   1561
Md5:    0b33d87cbe8325e4fa4f20321315dbb6
Sha1:   a12803187d6b816c320d5490b7b00875f4c04b1e
Sha256: 46eca4607a3d5103a8a0e5a638f9f56d06230be3b08c2df7206972423b8f2dac
                                        
                                            GET /v3.3/customer/action/get_localization?license_id=7454721&version=ff93808ef52c6dd040640c4853b854bd_d3713c33ecfd77d07a71375dd24c02ba&language=en&group_id=0&jsonp=__lc_localization HTTP/1.1 
Host: api.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.17
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
content-encoding: gzip
legacy: 2023-06-30
vary: Accept-Encoding
content-length: 3792
cache-control: public, max-age=600
expires: Wed, 28 Sep 2022 19:45:49 GMT
date: Wed, 28 Sep 2022 19:35:49 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   12270
Md5:    fe9f7b51e84661df15c31901506c4f03
Sha1:   a0186b2722e5721bd0c6a9760b5a85a7c88b3f69
Sha256: 1266d79c74f7e8e8c4ac18eb000ba31ba20fe39da0eb590ed153f49f6eb1f615
                                        
                                            GET /customer/action/open_chat?license_id=7454721&group=0&embedded=1&widget_version=3&unique_groups=0 HTTP/1.1 
Host: secure.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.17
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
content-encoding: gzip
vary: Accept-Encoding
content-length: 1966
date: Wed, 28 Sep 2022 19:35:49 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4424), with no line terminators
Size:   1966
Md5:    a3ddf944d50afa40eb6af3ddf313b422
Sha1:   4450949b19f521649745d49f4bf44024f72391e9
Sha256: ae516b46222147c2f3d4e618f331a5b90a4f387cb6ddae135ea4f5bd821c0f0a
                                        
                                            GET /widget/static/js/0.96a16c18.chunk.js HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.36.79.17
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Wed, 07 Sep 2022 12:23:44 GMT
etag: W/"6a835528d087d08b1f0fe0642cb6d223"
x-amz-version-id: D3auGCHl.1EBD8fIsGg0TVEJ4vGgzVLu
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: 2Z3Jj0ChNSBBVMOnJi6CzXCHxdv4j89b_Ig-RZcY8UGtT5nFkSAmPg==
content-length: 69542
cache-control: max-age=31536000
expires: Thu, 28 Sep 2023 19:35:49 GMT
date: Wed, 28 Sep 2022 19:35:49 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   69904
Md5:    e6952d4bbae628131e9e6c56ec2e847c
Sha1:   b3a36853326c490a54dcfdc65d10e7310d7c58a4
Sha256: 811eb4fa24d44f90a63cb234e2d350174ecfbb33b51555343a524168b3f6a56f
                                        
                                            GET /widget/static/js/2.451b6ee6.chunk.js HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.36.79.17
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Wed, 28 Sep 2022 06:33:12 GMT
x-amz-version-id: icZ42FXNT.nKV2NN6tMRwWvO3acCIwkD
server: AmazonS3
content-encoding: br
etag: W/"f5f0b06c1f0f00b3ce606ac2b75c644f"
vary: Accept-Encoding
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: DeU4AsufPgj9_IvOY0QFA92agrnkEtpVYtLXzTZrjwYniHnlyRvp5Q==
content-length: 94402
cache-control: max-age=31536000
expires: Thu, 28 Sep 2023 19:35:49 GMT
date: Wed, 28 Sep 2022 19:35:49 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65462)
Size:   94402
Md5:    e8bddc3566de9460c87c9661f36dd9f0
Sha1:   283f4b4116e5979d9aebaa1c9fed9710eb0e3278
Sha256: dd050ee09d559f63f20b6effea53d24f306ab0a9943c9d6959344482ed33007d
                                        
                                            GET /s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://secure.livechatinc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 21:03:13 GMT
expires: Tue, 26 Sep 2023 21:03:13 GMT
cache-control: public, max-age=31536000
age: 167556
last-modified: Mon, 09 May 2022 18:27:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, max compression\012- data
Size:   13545
Md5:    7493f2f4ea0cc2f09c5b4ca6cca5960a
Sha1:   2656158ff637bab028a04fa7543b056c464de0fe
Sha256: f32b00e88dae1fd42b89df6cd82157e8f03ac552e6b30e8f912e3d5d3e0b5a21

Alerts:
  File Analyzers:
    - virustotal: 0/0
                                        
                                            GET /s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://secure.livechatinc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12684
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 21:03:15 GMT
expires: Tue, 26 Sep 2023 21:03:15 GMT
cache-control: public, max-age=31536000
age: 167554
last-modified: Mon, 09 May 2022 18:28:04 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12684, version 1.0\012- data
Size:   12684
Md5:    0c235386bcf6af06f67e6c89fd19e434
Sha1:   10720574d4609322023984a761f32f9518c07bc4
Sha256: c1c30918a861cb6a985ab55d54ad7e861682354197f164cb3b7194f20eed67ac
                                        
                                            GET /analytics?ver=3&visitor_id=&visitor_id_sign=&pi_opt_in=&campaign_id=29504&account_id=507521&title=Page%20not%20found%20%7C%20ERIS%20Environmental%20Risk%20Information%20Services&url=https%3A%2F%2Fwww.erisinfo.com%2F404javascript.js&referrer= HTTP/1.1 
Host: pi.pardot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.92.120.28
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Wed, 28 Sep 2022 19:35:49 GMT
Content-Length: 548
Connection: keep-alive
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-pardot-rsp: 0/0/1
strict-transport-security: max-age=31536000; includeSubDomains
p3p: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT", policyref="/w3c/p3p.xml", CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT", policyref="/w3c/p3p.xml"
set-cookie: pardot=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0 visitor_id506521=701736040; expires=Sat, 18-Nov-2023 20:35:48 GMT; Max-Age=35945999; path=/; domain=.pardot.com; secure; SameSite=None visitor_id506521-hash=858fca0d86e264d918b4e5958b89f3d82dee6802449bbfe298e704266afe765aa0e9631a42dcb6d932dc5b0265524e2431354de4; expires=Sat, 18-Nov-2023 20:35:48 GMT; Max-Age=35945999; path=/; domain=.pardot.com; secure; SameSite=None lpv506521=aHR0cHM6Ly93d3cuZXJpc2luZm8uY29tLzQwNGphdmFzY3JpcHQuanM%3D; expires=Wed, 28-Sep-2022 20:05:49 GMT; Max-Age=1800; path=/; secure; SameSite=None
vary: Accept-Encoding,User-Agent
content-encoding: gzip
Server: PardotServer
X-Pardot-Route: 9b06e8e2308c32c7bf9ba8adfb7be2e1


--- Additional Info ---
Magic:  data
Size:   4636
Md5:    51eae1e12c6249ec340cc7c2aeb142ea
Sha1:   30f573a225ac1481964d5460f61733a482408986
Sha256: d0b53322148a4ea7956cb4e675cfdea029c4ed0727eba2c4f6ab75f72e2c83d4
                                        
                                            GET /v3.3/customer/rtm/ws?license_id=7454721 HTTP/1.1 
Host: api.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://secure.livechatinc.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GP4CG4WEomd9gMuzE9Nvfw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         23.36.79.16
HTTP/1.1 101 Switching Protocols
                                        
sec-websocket-accept: KoZLdUMVJFrwfT7cZU1VUgftuoM=
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://secure.livechatinc.com
legacy: 2023-06-30
Date: Wed, 28 Sep 2022 19:35:49 GMT
Upgrade: websocket
Connection: Upgrade

                                        
                                            POST /customer/token HTTP/1.1 
Host: accounts.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 189
Origin: https://secure.livechatinc.com
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.36.79.17
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://secure.livechatinc.com
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 138
date: Wed, 28 Sep 2022 19:35:49 GMT
set-cookie: __lc_cid=3f003c18-a4e0-4c19-618b-5197192c53bb; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Sat, 28 Sep 2024 19:35:49 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None __lc_cst=20bcf9637ac06d4b27e4675af25776cbac29f3680dd743cacd298f9e3313c1562d8f5836e9307a0699b653610b4fce3a39717a6d5df8f4889185b9b8351c; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Sat, 28 Sep 2024 19:35:49 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None __lc_cid=3f003c18-a4e0-4c19-618b-5197192c53bb; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Sat, 28 Sep 2024 19:35:49 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None __lc_cst=20bcf9637ac06d4b27e4675af25776cbac29f3680dd743cacd298f9e3313c1562d8f5836e9307a0699b653610b4fce3a39717a6d5df8f4889185b9b8351c; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Sat, 28 Sep 2024 19:35:49 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None __oauth_redirect_detector=counter=1&t=1664393779&tag=b82cbbcb03f6d5ddc4b9776fdff9eb7783374eab; Path=/; Expires=Wed, 28 Sep 2022 19:36:19 GMT; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   138
Md5:    9fbe6e83382e6077c3116267807744e8
Sha1:   30fb62b06608201586dd09a9ff7faf47c6ba50a8
Sha256: bffbe9ff67c569cf983d7b32f67d6b0ffceac3f6e88fa109c9900e0f98bc1d00
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D98C8BADC8E137408F9A56ED1A7ED19C2C6F63E606193DF64230C352C9099F1E"
Last-Modified: Tue, 27 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 29 Sep 2022 01:35:49 GMT
Date: Wed, 28 Sep 2022 19:35:49 GMT
Connection: keep-alive

                                        
                                            GET /analytics?conly=true&visitor_id=701736040&visitor_id_sign=858fca0d86e264d918b4e5958b89f3d82dee6802449bbfe298e704266afe765aa0e9631a42dcb6d932dc5b0265524e2431354de4&pi_opt_in=&campaign_id=29504&account_id=507521&title=Page%20not%20found%20%7C%20ERIS%20Environmental%20Risk%20Information%20Services&url=https%3A%2F%2Fwww.erisinfo.com%2F404javascript.js&referrer= HTTP/1.1 
Host: go.erisinfo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga=GA1.2.66997044.1664393746; _gid=GA1.2.1939168791.1664393746; _gat_gtag_UA_65756200_1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         18.208.125.13
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Wed, 28 Sep 2022 19:35:49 GMT
Content-Length: 50
Connection: keep-alive
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-pardot-rsp: 0/0/1
p3p: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT", policyref="/w3c/p3p.xml", CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT", policyref="/w3c/p3p.xml"
set-cookie: pardot=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0 visitor_id506521=701736040; expires=Sat, 18-Nov-2023 20:35:49 GMT; Max-Age=35946000; path=/; secure; SameSite=None visitor_id506521-hash=858fca0d86e264d918b4e5958b89f3d82dee6802449bbfe298e704266afe765aa0e9631a42dcb6d932dc5b0265524e2431354de4; expires=Sat, 18-Nov-2023 20:35:49 GMT; Max-Age=35946000; path=/; secure; SameSite=None
vary: User-Agent
Server: PardotServer
X-Pardot-Route: 9b06e8e2308c32c7bf9ba8adfb7be2e1


--- Additional Info ---
Magic:  ASCII text
Size:   50
Md5:    6b8e0bfbea5feca6911b8e14e1921e9d
Sha1:   ea3e8e6051154a2a83278000909577c7c6e013fa
Sha256: dcf430710cdd1359115293f45d5023b2a560aef8a2c1e59d578b8b1e10a216d3
                                        
                                            GET /404javascript.js HTTP/1.1 
Host: erisinfo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         104.22.10.11
HTTP/2 301 Moved Permanently
content-type: text/html; charset=iso-8859-1
                                        
date: Wed, 28 Sep 2022 19:35:44 GMT
location: https://www.erisinfo.com/404javascript.js
permissions-policy: accelerometer 'none'; camera 'none'; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone 'none'; payment 'none'; usb 'none'
strict-transport-security: max-age=0
cache-control: max-age=14400
cf-cache-status: MISS
vary: Accept-Encoding
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 751eec80ae2ab4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /404javascript.js HTTP/1.1 
Host: www.erisinfo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

                                         
                                         104.22.10.11
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 19:35:44 GMT
pragma: no-cache
cf-edge-cache: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.erisinfo.com/wp-json/>; rel="https://api.w.org/"
permissions-policy: accelerometer 'none'; camera 'none'; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone 'none'; payment 'none'; usb 'none'
strict-transport-security: max-age=0
myheader: D=134561 t=1664393744693074
cf-cache-status: BYPASS
set-cookie: PHPSESSID=t0sauacsfbfbf6ejlr0ivmrr7j; path=/
vary: Accept-Encoding
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 751eec84bcd3b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /css?family=Raleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin-ext%2Clatin&ver=2.9.6 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 19:35:45 GMT
date: Wed, 28 Sep 2022 19:35:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /widget/static/js/iframe.cedbaaf5.chunk.js HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.36.79.17
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Wed, 28 Sep 2022 06:33:13 GMT
x-amz-version-id: tZyvn1.EWbeU3PR7c0SatSc3noDCdO_y
server: AmazonS3
content-encoding: br
etag: W/"f5698a1b8c03f5492432874c3260e2fd"
vary: Accept-Encoding
x-amz-cf-pop: AMS1-C1
x-amz-cf-id: e8YpGTfnlTIwXTLckQn2i_NfLaaQM-WXUo4wq64FlLpOK6TidpCjJQ==
content-length: 121398
cache-control: max-age=31536000
expires: Thu, 28 Sep 2023 19:35:49 GMT
date: Wed, 28 Sep 2022 19:35:49 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---