url5879.nanosoftconsulting.com/ls/click?upn=CslSuVhwSwBgMrmerft8JLsnN7renNihSKfxzjgIFMh6tZcUNuOvbTz0iY7KNQRLABkI_nenbBkpW0gHgi3p4rgiqYJ8-2FR4FVsnphBGwGI7OcnP4fd68xNvwhZVrfsdfytViO95QMFxzG3F3Yi5qan8lnnEVvJLzQwQKgAkuP3csj1nIZL6jcEbrDeHG55Mr5j4-2F7qyUBo6ieUciwqTlDUQc8m61IP5TuczwrhXyX9Or92xVmXFmK2qqSNKx2RzAoGAgLpjlv7poaE-2BRQ7npwciDEKY8TYiAVcfid3C2MHogpW-2BxECOzFofIBesxFV0bZxIYiC1KFUt-2FpypxjP-2BMqs7I8vEllyUY1zxE0WE5Vu5kmSH1MHElcRkytZViI-2FGgkTCK-2BQfoe23nt1SZ07PwDX-2Bv1Aw0VPFVEnUPIqhIYjI0-2BQHB7NV7qg8RIndHBM8oClDb5lB0knhVYSWBEt0RVJnFmVltk6ShNtokSdK71QzZW49y005uJUa57HphOxnVqsZ7l
167.89.115.120302 Found 56 B URL HTTP/1.1 url5879.nanosoftconsulting.com/ls/click?upn=CslSuVhwSwBgMrmerft8JLsnN7renNihSKfxzjgIFMh6tZcUNuOvbTz0iY7KNQRLABkI_nenbBkpW0gHgi3p4rgiqYJ8-2FR4FVsnphBGwGI7OcnP4fd68xNvwhZVrfsdfytViO95QMFxzG3F3Yi5qan8lnnEVvJLzQwQKgAkuP3csj1nIZL6jcEbrDeHG55Mr5j4-2F7qyUBo6ieUciwqTlDUQc8m61IP5TuczwrhXyX9Or92xVmXFmK2qqSNKx2RzAoGAgLpjlv7poaE-2BRQ7npwciDEKY8TYiAVcfid3C2MHogpW-2BxECOzFofIBesxFV0bZxIYiC1KFUt-2FpypxjP-2BMqs7I8vEllyUY1zxE0WE5Vu5kmSH1MHElcRkytZViI-2FGgkTCK-2BQfoe23nt1SZ07PwDX-2Bv1Aw0VPFVEnUPIqhIYjI0-2BQHB7NV7qg8RIndHBM8oClDb5lB0knhVYSWBEt0RVJnFmVltk6ShNtokSdK71QzZW49y005uJUa57HphOxnVqsZ7l
IP 167.89.115.120:0
File type HTML document, ASCII text
Hash 810d371c659029391b8943ba4eab55f5
7dfd4a323ed43a5ab72f5613ba8afac52e0c6ae3
0e6d2bcd1023493705c45b8088ab4fe6384fec5cfe57ada36994a6efb91c118a
Analyzer Verdict Alert fortinet Phishing
GET /ls/click?upn=CslSuVhwSwBgMrmerft8JLsnN7renNihSKfxzjgIFMh6tZcUNuOvbTz0iY7KNQRLABkI_nenbBkpW0gHgi3p4rgiqYJ8-2FR4FVsnphBGwGI7OcnP4fd68xNvwhZVrfsdfytViO95QMFxzG3F3Yi5qan8lnnEVvJLzQwQKgAkuP3csj1nIZL6jcEbrDeHG55Mr5j4-2F7qyUBo6ieUciwqTlDUQc8m61IP5TuczwrhXyX9Or92xVmXFmK2qqSNKx2RzAoGAgLpjlv7poaE-2BRQ7npwciDEKY8TYiAVcfid3C2MHogpW-2BxECOzFofIBesxFV0bZxIYiC1KFUt-2FpypxjP-2BMqs7I8vEllyUY1zxE0WE5Vu5kmSH1MHElcRkytZViI-2FGgkTCK-2BQfoe23nt1SZ07PwDX-2Bv1Aw0VPFVEnUPIqhIYjI0-2BQHB7NV7qg8RIndHBM8oClDb5lB0knhVYSWBEt0RVJnFmVltk6ShNtokSdK71QzZW49y005uJUa57HphOxnVqsZ7l HTTP/1.1
Host: url5879.nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 01 Dec 2022 05:25:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 56
Connection: keep-alive
Location: http://www.nanosoftconsulting.com
X-Robots-Tag: noindex, nofollow
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11949
Expires: Thu, 01 Dec 2022 08:44:11 GMT
Date: Thu, 01 Dec 2022 05:25:02 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4398
Cache-Control: max-age=109175
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:25:02 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:44:37 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5137
Expires: Thu, 01 Dec 2022 06:50:39 GMT
Date: Thu, 01 Dec 2022 05:25:02 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 05:19:45 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 317
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cqv1P0MEK4mFUBqHPIRl7BoMNE7f9mUHiXPT4MVRofZwUCuj0HGxCtBWEBY8TXXZKGTul4WkpSE=
x-amz-request-id: 8NEHAV6RGXGZRPXB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 04:45:31 GMT
age: 2371
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 05:25:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.nanosoftconsulting.com/
198.54.116.47301 Moved Permanently 707 B URL HTTP/1.1 www.nanosoftconsulting.com/
IP 198.54.116.47:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Thu, 01 Dec 2022 05:25:02 GMT
server: LiteSpeed
location: https://www.nanosoftconsulting.com/
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 05:11:15 GMT
cache-control: public,max-age=3600
age: 827
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfdd00e67ee6ca21712b867eb5288ab6
b61d5d6ec3b7ad71619e13e32c87f2d01871b88a
f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4398
Cache-Control: max-age=104106
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:25:03 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 10:20:09 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.43.58.150101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.58.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Nf2fwCLM9JkzB9z4kGvyYw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: I+nxgeFDrIHxjb0hzmLZoi7Rgw8=
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 6bcf3cd12abfa1a40c99554ae9f1ebbe
ef1e518cf7242fbcdef2fec3ad620e476a741b6a
0bcb0075d8c97b27298d74aa98fc7ea9b085e9b5bc9a6125e347817454f91018
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 05:25:03 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 11:54:15 GMT
Expires: Tue, 06 Dec 2022 11:54:14 GMT
Etag: "ef1e518cf7242fbcdef2fec3ad620e476a741b6a"
Cache-Control: max-age=454750,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 772966684b6ab4fa-OSL
www.nanosoftconsulting.com/
198.54.116.47301 Moved Permanently 0 B URL HTTP/2 www.nanosoftconsulting.com/
IP 198.54.116.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://nanosoftconsulting.com/
content-length: 0
date: Thu, 01 Dec 2022 05:25:03 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2185
Expires: Thu, 01 Dec 2022 06:01:29 GMT
Date: Thu, 01 Dec 2022 05:25:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2185
Expires: Thu, 01 Dec 2022 06:01:29 GMT
Date: Thu, 01 Dec 2022 05:25:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2185
Expires: Thu, 01 Dec 2022 06:01:29 GMT
Date: Thu, 01 Dec 2022 05:25:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f07f254d44ff2fb86ee22cee39ef3eb0
0660a548a491d4a58ca2246f094f0553437c3f61
859b2416d638b1dc91ff563800517124b38d45b4c5db99e21539c1700829dbe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10985
x-amzn-requestid: ef9e5eb9-b7b3-41e9-9837-a5979ab35d94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91OFzsoAMFcew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-53b152c0027d26e52383e27e;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: F_ZBWwAOPbEjvMD1ChrgN9QYUyyFYdtRT6CcX6gviowmeinPRgVtnA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 04:19:21 GMT
age: 3943
etag: "0660a548a491d4a58ca2246f094f0553437c3f61"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2bbca075-74f3-4647-8b00-66430fff5397.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2bbca075-74f3-4647-8b00-66430fff5397.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 70afa08b7d0b64772b90ae190689e6c1
527cf32104041423176fadd3cfc2120fe63f6bfc
31ebf9decb53b8180922c4b10d0427aba95a802246a5ced8ec368d814a33b843
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2bbca075-74f3-4647-8b00-66430fff5397.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9993
x-amzn-requestid: 7d7febbc-2bdf-44e9-9727-9c56b5bcb138
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1VNFZiIAMFV-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cf54-1f89231026a9b5c467324134;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:47:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Zc0QAEb9prX_ZBUYuD-407TwT2ATljy_OTmUNq31I9udG16Dx3JWtw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 22:00:48 GMT
age: 26656
etag: "527cf32104041423176fadd3cfc2120fe63f6bfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2dd5a4bcfd47db8f38544bf39ce3031
fa2217bae05b7beca2e12597eaad835298276b82
3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4762
x-amzn-requestid: 52b09ca3-705b-4c86-9f56-172637553f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7TVG58oAMFQTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c15-4577a47243ad190672f8ac89;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Y0-NAp2LMMG5TjQQ9ENHwDyKXLObKTYqzPPOWvZhs7Y9WJIC6LoblQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 08:50:17 GMT
age: 74087
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b8802d5080eb35e4052ef31cf7658650
1e78566f2e69268c5f753fb49112ab07aae3eccf
9c96906ee1dea353198c9069fa7e42b100e4fa766e5be8e4d8db036033961086
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4409
x-amzn-requestid: cb422842-e955-4749-8b2a-3c028a09c20f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz7XEE2IAMFY3A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd15-3c4d1a6d4d542e81179ea8ba;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: zYLCQ4DUQtMklG-T-ATot22PDIUMjnN1wpVkoHBh4Oa3TAyNzTv86g==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:45 GMT
age: 27319
etag: "1e78566f2e69268c5f753fb49112ab07aae3eccf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1df312f-7c86-4a62-be1e-1a72c9b2d228.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1df312f-7c86-4a62-be1e-1a72c9b2d228.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 72735620afafb0d8d91b6d83cf292298
9de2fd7c375e92fd60444dc677cf09428393eff3
9dd40d4adf9e3dacb962cc6e1bd00d38473125567eb2b57eef643be972dfe69f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1df312f-7c86-4a62-be1e-1a72c9b2d228.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8660
x-amzn-requestid: 9474178d-c342-498a-996d-1ef3b804f1a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cWh0hEx_oAMFjmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6385b01c-33e27513010fdec8627942be;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 07:09:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4R5jPnETZnbrWCUXoWvq3FTs_NOJMQWCaHbK321P4qqRgv05JtR1kA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 07:18:56 GMT
age: 79568
etag: "9de2fd7c375e92fd60444dc677cf09428393eff3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38aeadfb-098c-4e6a-8abc-40288efe2526.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38aeadfb-098c-4e6a-8abc-40288efe2526.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 609419f1a2c58ae67febde5e2cb91c9f
bfb37735a2500848338a8fa12f28516a1ad9b5ba
32a4a65c8bd4da715b5331537bd606bab2767ad8c07af3b8aebbe5cad5591812
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38aeadfb-098c-4e6a-8abc-40288efe2526.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3751
x-amzn-requestid: 80396218-5515-4f77-9d57-95b323e1f1c0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzNHHGGoAMF8mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbed-09f83d1a5b7f65175fb137ab;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _mQdH9J5CaTiYNIQf5xVn-HGUP5tKhW_1foVDdpsVIoG_NKb9wZOJg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:45 GMT
age: 27319
etag: "bfb37735a2500848338a8fa12f28516a1ad9b5ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:25:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:25:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:25:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nanosoftconsulting.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
198.54.116.47200 OK 12 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (47826)
Hash c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Tue, 15 Nov 2022 22:39:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11616
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/css/classic-themes.min.css?ver=1
198.54.116.47200 OK 217 B URL HTTP/2 nanosoftconsulting.com/wp-includes/css/classic-themes.min.css?ver=1
IP 198.54.116.47:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-length: 217
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
198.54.116.47200 OK 259 B URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
IP 198.54.116.47:0
Hash 49736e2d926fb2846e2df8fc0a1b69f8
0c415addd3603df8843209de4fc448ef5c443761
be091ce2d9948f24a59c9d1578557cd92e8180e2318dc0a21308ca180071f8d0
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Thu, 27 Oct 2022 05:03:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 259
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
198.54.116.47200 OK 3.6 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 198.54.116.47:0
File type ASCII text, with very long lines (19233)
Hash af3bdf44d09914e8adb51fec560d8816
84bb225e096bab405868dd504e62133ba75cf1c1
4325dab21d3eb9efb8e285a0926be743f27e46446ccf5f9be65bb4b60c024152
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Mon, 01 Aug 2022 04:11:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3629
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/
198.54.116.47200 OK 42 kB IP 198.54.116.47:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381)
Hash d406b7a17d1b4e1a1054ba9fc8e533c7
1aff2fa447a8bcb4a6233b9fe3cd65dac0b2fa84
9f9ddc6bc9e1d7226b52e1ee5a60c29dcd64368e0f102d159897bc4b1b2cb6f3
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://nanosoftconsulting.com/wp-json/>; rel="https://api.w.org/", <https://nanosoftconsulting.com/wp-json/wp/v2/pages/2588>; rel="alternate"; type="application/json", <https://nanosoftconsulting.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Thu, 01 Dec 2022 05:25:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/elementor/css/global.css?ver=1668360216
198.54.116.47200 OK 1.3 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/elementor/css/global.css?ver=1668360216
IP 198.54.116.47:0
File type ASCII text, with very long lines (6697)
Hash fc6edda31e164cee7091e25022bf94dd
689541cb538ad30d128ed13bfdded51fad82d3e8
704545d1d0d5ef3cc50b0cb5301da68ff6669f1cf1a734b05be20f8198a24530
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/global.css?ver=1668360216 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 17:23:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1274
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-6.css?ver=1668360216
198.54.116.47200 OK 305 B URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/elementor/css/post-6.css?ver=1668360216
IP 198.54.116.47:0
File type ASCII text, with very long lines (1099), with no line terminators
Hash f9f4a316c381f91875e80b91786dc36d
fee0e5117a4be1c06c3415ea188ea061975d7bb4
9f68a480f0cf3e2c02142e5d8d0c0417f9a191db0676a80ac8963514f24586a7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-6.css?ver=1668360216 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 17:23:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 305
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2588.css?ver=1669415892
198.54.116.47200 OK 3.5 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2588.css?ver=1669415892
IP 198.54.116.47:0
File type ASCII text, with very long lines (48195), with no line terminators
Hash ca176df35c48c5a45635bb7bf91a6568
3bf2d7a6cbdc6b65c5e050fad0396ccb22ca9466
02509b5b14bbc4ee11193b58202fa60ac4b7121c862c3dd63b2e30d9996b7923
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-2588.css?ver=1669415892 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Fri, 25 Nov 2022 22:38:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3488
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
198.54.116.47200 OK 7.4 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
IP 198.54.116.47:0
File type Unicode text, UTF-8 text, with very long lines (1646)
Hash 806afc62d640eb03fccbd5fe46ed8666
31259bb9e403fbe379125ea0c562ac11d76dc4d7
f7ceb3661377e98e71ccebe4d91336ac77e4e62a84bff79a1e6f865f3d00c26f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Thu, 27 Oct 2022 05:03:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7374
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 1b6ed7424043055f5dc644164a720909
bb270929e84564ffd8e500bdb094d2858d8fc56b
7843c0e977433e1c8e1a781b0b292bbd221de07176c900eff670b47ef126be3e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121089
Date: Thu, 01 Dec 2022 05:25:05 GMT
Etag: "63875f50-1d7"
Expires: Fri, 02 Dec 2022 15:03:14 GMT
Last-Modified: Wed, 30 Nov 2022 13:49:04 GMT
Server: ECS (bsa/EB1C)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: u9ZTKqFSUUtMh7O2TlmlXnSh35bwEkDgkJBB4jXNUbrdbyYMg9tM_Q==
Age: 4450
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 1b6ed7424043055f5dc644164a720909
bb270929e84564ffd8e500bdb094d2858d8fc56b
7843c0e977433e1c8e1a781b0b292bbd221de07176c900eff670b47ef126be3e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121088
Date: Thu, 01 Dec 2022 05:25:05 GMT
Etag: "63875f50-1d7"
Expires: Fri, 02 Dec 2022 15:03:13 GMT
Last-Modified: Wed, 30 Nov 2022 13:49:04 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1LCRRkZP82S8EFLOFoMtt2pikUKYm5MyQmN_334sMdsw14LcwWNd_A==
Age: 4449
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 1b6ed7424043055f5dc644164a720909
bb270929e84564ffd8e500bdb094d2858d8fc56b
7843c0e977433e1c8e1a781b0b292bbd221de07176c900eff670b47ef126be3e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121087
Date: Thu, 01 Dec 2022 05:25:05 GMT
Etag: "63875f50-1d7"
Expires: Fri, 02 Dec 2022 15:03:12 GMT
Last-Modified: Wed, 30 Nov 2022 13:49:04 GMT
Server: ECS (nyb/1D15)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AC-A46KgX_Tkusp7IRRCJwOs9ao_qk7CeS_E1tVM8TPTcxTuGH1F-A==
Age: 4448
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 1b6ed7424043055f5dc644164a720909
bb270929e84564ffd8e500bdb094d2858d8fc56b
7843c0e977433e1c8e1a781b0b292bbd221de07176c900eff670b47ef126be3e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121089
Date: Thu, 01 Dec 2022 05:25:05 GMT
Etag: "63875f50-1d7"
Expires: Fri, 02 Dec 2022 15:03:14 GMT
Last-Modified: Wed, 30 Nov 2022 13:49:04 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AAKzbpHCAVv-mIbZ03BUBh2vsujnisQq-7q95RuM-JiAGMZ6J9AkEg==
Age: 4450
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 1b6ed7424043055f5dc644164a720909
bb270929e84564ffd8e500bdb094d2858d8fc56b
7843c0e977433e1c8e1a781b0b292bbd221de07176c900eff670b47ef126be3e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 01 Dec 2022 05:25:05 GMT
Last-Modified: Thu, 01 Dec 2022 04:04:38 GMT
Server: ECS (bsa/EB11)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: g-EkUTk9NOi4lzv4Jrt33HkZnW_5-1UAkCqSh9s8jF6sj8tA65Ddkg==
Age: 4827
nanosoftconsulting.com/wp-content/themes/engitech/css/bootstrap.css?ver=4.0
198.54.116.47200 OK 2.3 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/css/bootstrap.css?ver=4.0
IP 198.54.116.47:0
File type ASCII text, with very long lines (11782), with CRLF line terminators
Hash 774666a507611c0b3aec63c5de5dd8e6
36e2c0b9f0720e51a54797e2d5a9cb76ad8ca526
01f1a8cbd031caab2da2ec38198802ff987dfb473be3d780ef68d3156c6f7947
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/css/bootstrap.css?ver=4.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2342
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/css/font-awesome.min.css?ver=6.1.1
198.54.116.47200 OK 12 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/css/font-awesome.min.css?ver=6.1.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (56940), with CRLF line terminators
Hash b660bad0c3c7a990749c93395510d1b4
94710965e4c818e81722a509047751628acb6163
8d5912663b9529d89fd688547bd6f270aa96516820cc94daaa989d0889614f64
GET /wp-content/themes/engitech/css/font-awesome.min.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11926
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/css/flaticon.css?ver=6.1.1
198.54.116.47200 OK 771 B URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/css/flaticon.css?ver=6.1.1
IP 198.54.116.47:0
File type ASCII text, with CRLF line terminators
Hash 256e996acf577e3a9b3dcba53946e971
57df24c0da737d5315eb8feb67b770ddd2895b30
171481a144a3b9afe5f51a68f28760cbbcdbf4736f311147bb57a2eb4d96eecb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/css/flaticon.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 771
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/css/slick.css?ver=6.1.1
198.54.116.47200 OK 486 B URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/css/slick.css?ver=6.1.1
IP 198.54.116.47:0
Hash 1184e5bfb40a6652367a2a0b1f1899b8
384804cae94a946573797cfd3f474b0d5328942d
70fb8a0b25ca9cd46d835506291b19e68273efc2447b08a108c4a86996b1a086
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/css/slick.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 486
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/css/slick-theme.css?ver=6.1.1
198.54.116.47200 OK 590 B URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/css/slick-theme.css?ver=6.1.1
IP 198.54.116.47:0
Hash ea3f6d80696f37a1a5d2b27a80ff2d93
49e3f6996d030ec8e05fb44325e1cc98a0ab9d31
95c9e7a00c9bd14c4c9107ffe7e7a7cdb7a2a77a3d833de154b94fcbca9dbde6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/css/slick-theme.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 590
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
engitech.s3.amazonaws.com/images/testi1.png
52.217.91.209200 OK 4.4 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/testi1.png
IP 52.217.91.209:0
File type PNG image data, 90 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 4fc0a2074bc73e79eb4e8486191218e4
32d6529e9cf08a17fc2c468c71238f748ad537a1
3bac53891f3fd23db4c5a2b78fdf4d7f7e6c76a20d07202f65a61775b94cffbb
GET /images/testi1.png HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: fbBXRBe2aER/rNYseUdwnWU1GqLsdIyr8mSCL4L9LFV9mbRA5t/euRHky/DH0SMm9Ya9dvw2Ufw=
x-amz-request-id: Y0JCGPPPSR8ZTA5G
Date: Thu, 01 Dec 2022 05:25:06 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:23 GMT
ETag: "4fc0a2074bc73e79eb4e8486191218e4"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4379
nanosoftconsulting.com/wp-content/themes/engitech/css/magnific-popup.css?ver=6.1.1
198.54.116.47200 OK 1.7 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/css/magnific-popup.css?ver=6.1.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (5877), with CRLF line terminators
Hash e19ccff794c9acca6467b0f40661d9e5
860c2e23493ef3759827ca21c018782a023ae6bf
af58270d085d0897babc9acb4e26b76daee0d29ee4356cf76b7220e76843168c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/css/magnific-popup.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1659
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
engitech.s3.amazonaws.com/images/testi2.png
52.217.91.209200 OK 3.8 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/testi2.png
IP 52.217.91.209:0
File type PNG image data, 90 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 657ce8a6977b5bb4c216c699ede43c8a
72b7ec8555df950ec4c9bb1ef79432c23baaecf3
1c443889380cbb3fac213c72475db86a5267e764d305a2a6c85a535e981d3896
GET /images/testi2.png HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: mot5AwLoKQMWbvHHj6UpqX1Z6v4WB0PieAFOBlWquFuzRdULvqFehsG6WONbAqWWA5N6u1HVysI=
x-amz-request-id: Y0JCTCGKTNBWV6V1
Date: Thu, 01 Dec 2022 05:25:06 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:23 GMT
ETag: "657ce8a6977b5bb4c216c699ede43c8a"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3831
engitech.s3.amazonaws.com/images/image-box4.jpg
52.217.91.209200 OK 56 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/image-box4.jpg
IP 52.217.91.209:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 730x730, components 3\012- data
Hash b3fadc056c43ea9977e09f0b597e49b0
ee954392739b8be50dc211d8a7c50eed95902f3f
1a178d8f9d18d083e57a430e7e8441237ae3ed480e10b4c61b1c8bec1848c985
GET /images/image-box4.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: HX1OqFbQYY8yxBJ7N1Jik285aPt3dUgZBzd5l8o1M9RN0Z7Cblr5difeLdkQTrDXf/R9bDE3DzU=
x-amz-request-id: Y0J7MC6C0WGPEFPE
Date: Thu, 01 Dec 2022 05:25:06 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:21 GMT
ETag: "b3fadc056c43ea9977e09f0b597e49b0"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 55591
nanosoftconsulting.com/wp-content/themes/engitech/style.css?ver=6.1.1
198.54.116.47200 OK 29 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/style.css?ver=6.1.1
IP 198.54.116.47:0
File type Unicode text, UTF-8 text, with very long lines (389)
Hash 99586b4f1f89c4bfd11813e57498975b
1816847ed4015cc508189f46531a17a824072568
b8e321354de7459386f8a0158755a3f9afde629b553d2ed555e808bf7770d699
GET /wp-content/themes/engitech/style.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 29123
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/inc/backend/css/simple-likes-public.css?ver=6.1.1
198.54.116.47200 OK 686 B URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/inc/backend/css/simple-likes-public.css?ver=6.1.1
IP 198.54.116.47:0
File type ASCII text, with CRLF line terminators
Hash f19795d0456614cdb8e8a82a25660486
84d1c9119c3a8dec3f81b474ede03efe08f7e7b0
4e02542032b67ec0924ff1f83debab5c1e72e7215a0cb6fd0e9115e43c38a025
GET /wp-content/themes/engitech/inc/backend/css/simple-likes-public.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 686
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/css/royal-preload.css?ver=6.1.1
198.54.116.47200 OK 1.3 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/css/royal-preload.css?ver=6.1.1
IP 198.54.116.47:0
File type ASCII text, with CRLF line terminators
Hash 4fe32fb6f692d047bfe2569c1effbf3a
16dfeaa691e654f0519a41292d5dc09a19ae5801
79026c71d386fa7e0f6298d90155aec42d53905d84c3a396d87c65173656377a
GET /wp-content/themes/engitech/css/royal-preload.css?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1261
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
198.54.116.47200 OK 12 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 198.54.116.47:0
File type ASCII text, with very long lines (57726)
Hash f463afd8661ddc733305df1f0cbdaff2
77262f0209e75e340eb7014aba9cd8d69966032f
c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 12133
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
198.54.116.47200 OK 284 B URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 198.54.116.47:0
File type ASCII text, with very long lines (489)
Hash dc279c928e2924b07a4a7575f8070ee8
0196756cacdb61ef40483af7ea982b699b0933de
80b6d9e3f0304f4199350c6015fd96084646c2a0121332bcb5a46d3956b7df5c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 284
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
198.54.116.47200 OK 5.3 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 198.54.116.47:0
File type ASCII text, with very long lines (11126)
Hash 99dc41dda77a312912d6365d01ed9098
463bdd63c43c8bf38d2b326bf5ee57066445a635
6a387c23afa1ec9371e6b524db32fa92319edb9ce4d934d45413f09002b0e789
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5308
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
engitech.s3.amazonaws.com/images/image-box3.jpg
52.217.91.209200 OK 64 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/image-box3.jpg
IP 52.217.91.209:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 730x730, components 3\012- data
Hash b9f69435dbf3640b12e3416f48979686
5618ac0a78133ae0733c727e0efca4f47fd601b4
05845561cbde31f8207f635a25d0121be630c7b8f7891d6ff64122d8fc89d526
GET /images/image-box3.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: ZRyjYV9ZFprjqcUELbQJhjWuDYgq9eKpIx1bg11B+HBruv2JMVN/DDaQMFepwib4BkrvY5MqSr4=
x-amz-request-id: Y0J2QQKP4EVZ9YVH
Date: Thu, 01 Dec 2022 05:25:06 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:20 GMT
ETag: "b9f69435dbf3640b12e3416f48979686"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 64104
engitech.s3.amazonaws.com/images/image-box1.jpg
52.217.91.209200 OK 69 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/image-box1.jpg
IP 52.217.91.209:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 730x730, components 3\012- data
Hash a54c3e56e64cf35831311094108c9126
8e42782564b11407c2fc1ec2ba02d7d6f394dda2
3a7b210fd49c5dd360dfb140c8568031a8fbbee5d92316bce525f2e4066f3797
GET /images/image-box1.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: SKzLHIwsM14my8zSdVC9zWlucw2eU9hbeVwnQD4mP8VPhGkmTke3a6mAF3g3FBbGE8ZKfLQduM8=
x-amz-request-id: Y0JFP2FFVGMP5N4Y
Date: Thu, 01 Dec 2022 05:25:06 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:20 GMT
ETag: "a54c3e56e64cf35831311094108c9126"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 69358
engitech.s3.amazonaws.com/images/image-box2.jpg
52.217.91.209200 OK 63 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/image-box2.jpg
IP 52.217.91.209:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 730x730, components 3\012- data
Hash 865d6b66b5ce163b233cf4f3abfb736c
2c8d5a1c07392bb84bf6cbad2a06e0abadca5cd9
43883abd419f4fb6bf7fff4c0519e62c393663c08ef291400f6d500e30fe8b8c
GET /images/image-box2.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: GdbuDwbycIqaMrIfGBLNzJ9g/JMN33MVjaO+njBACW/3QH/EBwtQlRW/8EFy2X2nEqioMfzUEwA=
x-amz-request-id: Y0J4X3J4AEXJS74E
Date: Thu, 01 Dec 2022 05:25:06 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:20 GMT
ETag: "865d6b66b5ce163b233cf4f3abfb736c"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 62567
nanosoftconsulting.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
198.54.116.47200 OK 32 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (65447)
Hash db4a056e3dd5df5511d3f59a2fe5cde1
18d818d2ccdf2ddefc3152adbc17d9c5c253f987
a430e0a3eefbe93df864bee1b025968e839a82949f31ba9315278e5ab1221a1d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 31651
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/inc/backend/js/simple-likes-public.js?ver=0.5
198.54.116.47200 OK 1.8 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/inc/backend/js/simple-likes-public.js?ver=0.5
IP 198.54.116.47:0
File type ASCII text, with CRLF, LF line terminators
Hash 6d6bbbfe5602f6ddcc3c96260dc97534
4dcb5333a6e78ae51bae0338832991239c3f123b
c9f4d056a710d6868e82b3eebe2951151c7bd5089acbcc935b81e759efdd4af9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/inc/backend/js/simple-likes-public.js?ver=0.5 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1768
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
198.54.116.47200 OK 906 B URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 198.54.116.47:0
File type ASCII text, with very long lines (11736)
Hash dfa4e3add9f185eaf959509b12a3f2f2
e9fcec09acb8cb18203b3c9c4133ab808576df38
060ede880f21b0bfe96d2e2b5f36606cef794e7e8814d1baf877c4868eca8a43
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 906
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2020/09/Nano-Green-1.png
198.54.116.47200 OK 11 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2020/09/Nano-Green-1.png
IP 198.54.116.47:0
File type PNG image data, 800 x 142, 8-bit/color RGBA, non-interlaced\012- data
Hash f87cfc14ec48b68124d93be70b3b7496
083a06ae167b9148d713df2b93cfe43ac785b22b
50f3af1bda43a8210f7112e03dfa0febf1aa1b1cad89c7282482ea6c6980d39b
GET /wp-content/uploads/2020/09/Nano-Green-1.png HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: image/png
last-modified: Thu, 20 Oct 2022 10:51:47 GMT
accept-ranges: bytes
content-length: 10693
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css
198.54.116.47200 OK 755 B URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css
IP 198.54.116.47:0
File type ASCII text, with very long lines (12953)
Hash 06f8182eaed70ee34f2eb64a5a2cb622
6778128d838f10f7aceb856516ea7064fcf9a082
8581e0bfb9d213aba6a15eb2d4937ac1c34a4e35a6f5cf7254b97db713f33b1a
GET /wp-content/plugins/elementor/assets/css/widget-icon-box.min.css HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 755
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2849.css?ver=1668360216
198.54.116.47200 OK 1.2 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2849.css?ver=1668360216
IP 198.54.116.47:0
File type ASCII text, with very long lines (9471), with no line terminators
Hash 808d1aa9cc3bba1ccb071b060adc2189
8a4ad81039fc0189f038fd89a4321e7705df2270
09b1bbd8f9ad9cc57b3ad975c2f63401083469313bb2faf3e3e9003edcb20bfc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-2849.css?ver=1668360216 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 17:23:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1216
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2854.css?ver=1668360216
198.54.116.47200 OK 1.4 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2854.css?ver=1668360216
IP 198.54.116.47:0
File type ASCII text, with very long lines (4852)
Hash 27f4076b8744aa9b78e74d0fb7c3445c
5dd8af7601ae01784a8f36155e880bd04703ff74
5467a90dca2516f3f42ec197d89a8cfad35658f4777e231025c493bde8dad8c0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-2854.css?ver=1668360216 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 17:23:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1440
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2856.css?ver=1668360216
198.54.116.47200 OK 564 B URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2856.css?ver=1668360216
IP 198.54.116.47:0
File type ASCII text, with very long lines (4597), with no line terminators
Hash e1dbb723816e43414de85c1b618123d4
c1ee32dc516d8224b008916cb6c31ebc299c57bb
807f1fc3c7a0c49fd1af54fa8b5cb8751b9d075a6a52991d18dea42e368e6c89
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-2856.css?ver=1668360216 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 17:23:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 564
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-1334.css?ver=1668360217
198.54.116.47200 OK 1.1 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/elementor/css/post-1334.css?ver=1668360217
IP 198.54.116.47:0
File type ASCII text, with very long lines (9301), with no line terminators
Hash 0a76012c256e2b2eb25213c460be3a90
eeab19efded7e6a60508c9c12297c33cdaa8c1e1
383cb19496fed4db77b6884319d859ceeba40c8e68027f4ebaf68fdd11e66aad
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-1334.css?ver=1668360217 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 17:23:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1051
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.6.7
198.54.116.47200 OK 6.8 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.6.7
IP 198.54.116.47:0
File type ASCII text, with very long lines (47365), with no line terminators
Hash 0ee79d22a2a5a4f3e7271619921d8278
a862397f0055d6c8248d8e994fc974c65c3f171d
cb343540a6ec474b28cb356f3dd3eb704e557a8cb6f20f8686d81152f94e1f99
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6824
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css?ver=2.6.7
198.54.116.47200 OK 0 B URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css?ver=2.6.7
IP 198.54.116.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-length: 0
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme-ie11.min.css?ver=2.6.7
198.54.116.47200 OK 327 B URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme-ie11.min.css?ver=2.6.7
IP 198.54.116.47:0
File type ASCII text, with very long lines (1757), with no line terminators
Hash ffd5231deea8157c0937ec860a68fad0
a478a46cb41c05f976ae0288964f54654967aa51
61eb67f4e2bccca4bc7c99bf5980a1324451250170dcdf47b6661d78730e76f9
GET /wp-content/plugins/gravityforms/assets/css/dist/theme-ie11.min.css?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 327
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme.min.css?ver=2.6.7
198.54.116.47200 OK 5.3 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme.min.css?ver=2.6.7
IP 198.54.116.47:0
File type ASCII text, with very long lines (31244), with no line terminators
Hash 6a49304cd1223bdc9551ee8747d37393
cd75831a0cfd9f48889b9e4c8034cdd1ce612256
e54b7cfeb9e23e60ec5b2f4043aaa67e453dc9ddc2b84ac930068a10f79e04ed
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/assets/css/dist/theme.min.css?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5349
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
198.54.116.47200 OK 2.4 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (10019)
Hash d2db71c82a8f672aea59a3e050cd8cd7
af626566f94b3164e4310288cfb142431e8349a6
bcd2c9c2ba22a48a8fabf9fbe5e947deb6404367e4be24f48326e302aead1180
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Tue, 13 Mar 2018 15:48:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2442
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
198.54.116.47200 OK 286 B URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 198.54.116.47:0
File type ASCII text, with very long lines (483)
Hash 8828fa3c5bdcfa66615714a2b8c9d807
4f556d0b005ac7754af607418df445f8cf98e8b1
16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 286
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
198.54.116.47200 OK 283 B URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 198.54.116.47:0
File type ASCII text, with very long lines (491)
Hash 453a93dc816be89f942ebb253ff199fb
01563d6019803e3ff2a94c5397e7e771ee6f440d
36beebcd3778e04c8973faa581d07c7e7dc0bac2a77f637379e7d110383ab5d7
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 283
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/js/royal_preloader.min.js?ver=20180910
198.54.116.47200 OK 3.8 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/royal_preloader.min.js?ver=20180910
IP 198.54.116.47:0
File type ASCII text, with very long lines (550), with CRLF, LF line terminators
Hash bea8d67fb58b13a68800c22c252dec14
5a6ea8e4f87bd1c1ad17b6dde4deff343d02a87f
a55fd1baaf9dd6911e5a9dd349bb3a54c15854d5619fcc0d8eb4f6545f60a81b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/js/royal_preloader.min.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3813
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
198.54.116.47200 OK 3.0 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 198.54.116.47:0
File type ASCII text, with very long lines (5499)
Hash 593888dcb18684e201864005188f2d2b
3602b83845619be12a2cf0baf30e45419c982edf
576aa11ca7b91d725538c54bf108e0dc534890dd0bbf651bd83634b586b96e12
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3026
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.magnific-popup.min.js?ver=20180910
198.54.116.47200 OK 8.6 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.magnific-popup.min.js?ver=20180910
IP 198.54.116.47:0
File type ASCII text, with very long lines (20840)
Hash 4f4f7b55316c1cbdd546cb7dafde04a7
e3f6960bde17f8f89b550bbd8e674bf8c6c0f267
8f0c0b89f8e547e98e5915888ad9bca9ca18e7d408d31241b89d944bbbdf3c52
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/js/jquery.magnific-popup.min.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 8605
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:25:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.isotope.min.js?ver=20190829
198.54.116.47200 OK 11 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.isotope.min.js?ver=20190829
IP 198.54.116.47:0
File type ASCII text, with very long lines (32003), with CRLF, LF line terminators
Hash da0744c72f74982f4960af06f9487cf1
a5c05ef1222786ea4405dc9379b723f68690cc8a
3973763785cedff3ae375cbcf19bec99309b78c07888eab93e5518030f23fb03
GET /wp-content/themes/engitech/js/jquery.isotope.min.js?ver=20190829 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 10806
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/js/slick.min.js?ver=20180910
198.54.116.47200 OK 11 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/slick.min.js?ver=20180910
IP 198.54.116.47:0
File type ASCII text, with very long lines (42862)
Hash 32261bbe6f99681cd77f90b6b4b13b1a
b8cbfe5ed03b80a245c8636bb80f655db2fec03d
1a68e8900e54a8b57e984fca99d185540626ea32b885193de5621d159e2da70a
GET /wp-content/themes/engitech/js/slick.min.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11449
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/js/easypiechart.min.js?ver=20190829
198.54.116.47200 OK 2.7 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/easypiechart.min.js?ver=20190829
IP 198.54.116.47:0
File type ASCII text, with very long lines (3713)
Hash 8d80cb87453736a801b8272cea988128
1f8aec8a3fed8dba2bed99eaa337a90eaa3e8d47
60c39d9547b8fa9a6d6a4ac47a3bf03fe433075cac5449e6902dc4e25349446b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/js/easypiechart.min.js?ver=20190829 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2734
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.countdown.min.js?ver=20180910
198.54.116.47200 OK 1.9 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.countdown.min.js?ver=20180910
IP 198.54.116.47:0
File type ASCII text, with very long lines (1178)
Hash 49cb8de2c4446f9b03e82ee25e72769d
bbba6b84131675ca2ecdd67da5481ee46eab46d7
aed4b717c31366a2e7a78b0139586774f133f246b705661cbe0601cadd006969
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/js/jquery.countdown.min.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1899
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/js/elementor.js?ver=20180910
198.54.116.47200 OK 5.7 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/elementor.js?ver=20180910
IP 198.54.116.47:0
File type ASCII text, with CRLF, LF line terminators
Hash 8b3c13a0a2d09205e5f33e7e95b94102
cff7664b6e4745dd524e5952781b188f7fdf963a
f9dfecf94c2c6358bec3d66f3de9e9f2fbbf7b34981cc55b2d30e30f61c1f4b5
GET /wp-content/themes/engitech/js/elementor.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5681
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/js/elementor-header.js?ver=20180910
198.54.116.47200 OK 2.3 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/elementor-header.js?ver=20180910
IP 198.54.116.47:0
File type ASCII text, with CRLF, LF line terminators
Hash 875a1bfe36878f2ab7dcb49f666ad938
ed26253e20c1dcda381a4ca70fd1c7a0d64cf543
d712b6a3f5165041ab3ad18a7e38b300a5ccbb5949569fe91209709180a54beb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/js/elementor-header.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2250
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/js/scripts.js?ver=20180910
198.54.116.47200 OK 3.3 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/scripts.js?ver=20180910
IP 198.54.116.47:0
File type ASCII text, with very long lines (384), with CRLF, LF line terminators
Hash 221fa027ae2088062746426d97023ed1
18d26a30e0362b8d49300d92e347d408b9f0a9e5
aad73556c99b93ae506ce33c0d13ab1685288b8c7a060862514fa3461991ea35
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/js/scripts.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3293
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/js/header-mobile.js?ver=20180910
198.54.116.47200 OK 1.6 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/js/header-mobile.js?ver=20180910
IP 198.54.116.47:0
File type ASCII text, with CRLF, LF line terminators
Hash 971e7b81fb3d31514a258acd497c4c0b
d9c65f88f1a3520b3799face47d149cb75450e25
52d05f02573badea9890e1e6ed0f06061321682be97fb8bb1f40a6f53ea6e2d5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/js/header-mobile.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1588
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
198.54.116.47200 OK 4.9 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
IP 198.54.116.47:0
Hash 7569cb62361f827219d51ba3a5e4a5c8
2400e05cdcac6ea2d63b32393da41ff5521b7218
a792a1f251a6587aaabf8fc0f019b27c46cc4c212b960d4f4b8d3dc119c8dcac
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 05:03:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4920
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
198.54.116.47200 OK 3.7 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 198.54.116.47:0
File type ASCII text, with very long lines (6497)
Hash d07e2b8b7607674554b4be03f74f1dee
e52aaef5f1f876e1f46a415d1b543df5632b54b7
7c0fd5ea3ffeecf77b5d8a2d13bd819953746fb8cbc54360f55d163049e97580
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3689
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
198.54.116.47200 OK 7.7 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 198.54.116.47:0
File type Unicode text, UTF-8 text, with very long lines (17841)
Hash de9dfec82ce37a4f4c63ae614f6ce045
cbef3ceeea7789bb6b1eb13a1f0982eae98071d8
f93328fa8b32c25071dcf75b1e60f5935b36c6d92f33cc42ca2caa3941cad8a8
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7654
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
198.54.116.47200 OK 1.5 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
IP 198.54.116.47:0
File type ASCII text, with very long lines (485)
Hash 664be57f865abb122b10e9495f5361a7
0038c5db3d693746bdceb548f719b727e41dd2e1
c46201fda6e71d81c2aff20b6730cfedbe3d1bbbaec121cdc570ffaf9fc80bc4
GET /wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1549
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
198.54.116.47200 OK 2.9 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP 198.54.116.47:0
File type ASCII text, with very long lines (4897)
Hash d7e126c3c59fc52841ca1cd840d661a4
ceb0ae2537e079c97a4b8ede3ed2bc0634ab1733
32827133735f494a1b1949e2191edb8e2ca38d82904c465eb2bdea3b450f0cd4
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2873
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
198.54.116.47200 OK 5.0 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP 198.54.116.47:0
Hash b8e3abc8940c66afc084930b157ff120
7e276b657d1082b4a5a1390dcad6280ca180e7ff
1588fcb9959c96cdc1ababdf57bb04fd1d9404f2f15e12679b3ca9b1095e702a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5030
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664
198.54.116.47200 OK 2.2 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664
IP 198.54.116.47:0
File type Unicode text, UTF-8 text, with very long lines (2494)
Hash a6fb17b8bf9cdc936c54337785cb409b
f008bbd23d24d53a1c72f5bb2a4608866f132eff
2d105cc39f94d30f8922c2f4b61d020d480967d0a3a276c1e94ed34e9760114a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2151
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.7
198.54.116.47200 OK 2.2 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.7
IP 198.54.116.47:0
File type ASCII text, with very long lines (1862)
Hash ebc03d41ae141692b9ff84f36562a443
6893cc96955f2dbb69006c42d7750e553bc0a73f
3d250bfe4218d07b64ba32f891e838219ae546162b99be9f12aee13735bfc477
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2168
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.7
198.54.116.47200 OK 14 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.7
IP 198.54.116.47:0
File type ASCII text, with very long lines (44351)
Hash 5833e40928086d41017bf2fc1aa7d8e7
0e58345bcf6c45ff7bc87ad3ad2b2c71e1f80972
80f993738d08a642efbadb38cbd0fef933355ec06232e16ff05ac05fa9462fe6
GET /wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 14146
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.6.7
198.54.116.47200 OK 2.9 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.6.7
IP 198.54.116.47:0
File type ASCII text, with very long lines (4632)
Hash 9e7ae0903b1c56cab77a2aaaa76fcad1
852ddeac3a36a3e15fec5878b0c34ce4c97aa09d
d681a8b5639e3f393902f83cbc0cca04751455a6250463f42415134b3331b236
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2897
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
198.54.116.47200 OK 3.3 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (4940)
Hash 86b5b108ce8f3af16d26b0364fd7e210
f626d3aa625068d95ef93fbc7d9475467aced52b
41e0163a6285079d8c21328b68b12b0c2707f4c684f46ba0aeb5735cac8e7205
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3344
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
198.54.116.47200 OK 12 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP 198.54.116.47:0
File type Unicode text, UTF-8 text, with very long lines (32929)
Hash a9c55d0ccdebd32a354462dcd2da47e8
8274de8c9b233994554632af04ea69483286f53b
54fac913bec6f9f1cca3c521a3d69cce8c9618dba03846c1220c3926e543c07f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11769
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:25:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:25:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
engitech.s3.amazonaws.com/images/bg-icon-box2.jpg
52.217.91.209200 OK 31 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/bg-icon-box2.jpg
IP 52.217.91.209:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x524, components 3\012- data
Hash 38d50aa637619ce80fcc6137119f7253
d87ef26260014b4867834acd9927fdf61e1d6b8d
7dfe0c4277a1cbd835df71b6321e91125dcad445acaaf7f118b17a9b013fe9fc
GET /images/bg-icon-box2.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: oqEyw/BFu7SJyfcqbPHNTLhjjgUZqTZCaWYxgBUxDbGmYG38VMZoZo/hiEUz7RCheZa1JBhRPgI=
x-amz-request-id: Y0J1JXGX3YVPYWF8
Date: Thu, 01 Dec 2022 05:25:06 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:27 GMT
ETag: "38d50aa637619ce80fcc6137119f7253"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 30682
engitech.s3.amazonaws.com/images/bg-icon-box1.jpg
52.217.91.209200 OK 31 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/bg-icon-box1.jpg
IP 52.217.91.209:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x524, components 3\012- data
Hash 2b33b9b5f84c5bd7e81e53ee1e2db6e8
845a1b538936da12031925c16e8e1a1138759cbf
2e5e3ace12750cb11134ab5be198549fc4d4ed0e63c3b72e11ad378e6481fe74
GET /images/bg-icon-box1.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 9Q64qdYEFIRXmfNWifMHir8eUXVSFAitWCcGuN7yGPSDFLeEiZjjdZmGoTQGz9Mf0EUn9HpdfGg=
x-amz-request-id: Y0JFXZHCHCH6HJ04
Date: Thu, 01 Dec 2022 05:25:06 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:27 GMT
ETag: "2b33b9b5f84c5bd7e81e53ee1e2db6e8"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 31008
engitech.s3.amazonaws.com/images/bg-icon-box3.jpg
52.217.91.209200 OK 30 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/bg-icon-box3.jpg
IP 52.217.91.209:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x524, components 3\012- data
Hash b08c65c15fcd7c2bc69abeccd146f2ac
620f28915f093c583c69c792411b2e8f33cf7890
de26ccc277101742184fcfca0d9d418a5ec8b369954c0316f18eff6ea5ac33d5
GET /images/bg-icon-box3.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: MTclrdvOEs/lLYcT2tnS3U/sUDpk7C/Q+0yt8NGs9Pek86hH+CkCMtV/+9CFKZjwGT1PLteNqBQ=
x-amz-request-id: Y0JFH8P24ND2DN62
Date: Thu, 01 Dec 2022 05:25:06 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:27 GMT
ETag: "b08c65c15fcd7c2bc69abeccd146f2ac"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 29654
engitech.s3.amazonaws.com/images/bg-icon-box5.jpg
52.217.91.209200 OK 29 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/bg-icon-box5.jpg
IP 52.217.91.209:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x524, components 3\012- data
Hash a589c95327e1906f6b5a8caa3928ecf9
3a23ed438d7a2c39b596bf7c82afbd62ccfe52f7
c483e3286b9d575e4bddab8f40257627baa4118046e5e0773521c299f14016e5
GET /images/bg-icon-box5.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: I1m0jF006rD/GLFqWCAKNJDIq8I/YtI05A2TtqxKzVUeCKftFs8vJJCZb98BIhvywUujAZdHauw=
x-amz-request-id: Y0J3GYHTF74V179Y
Date: Thu, 01 Dec 2022 05:25:06 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:28 GMT
ETag: "a589c95327e1906f6b5a8caa3928ecf9"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 28916
engitech.s3.amazonaws.com/images/bg-icon-box6.jpg
52.217.91.209200 OK 40 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/bg-icon-box6.jpg
IP 52.217.91.209:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x524, components 3\012- data
Hash c71fba8b5433c3bd12908e40c8867860
794c0609c456af6ff0742f29632b9a5fa6b19a04
38d63da6b69ad20025b1e2923655c1a8c1e6745ec072d391d489a7fe108bf408
GET /images/bg-icon-box6.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: pO2TZhetIq3ew7XbjLeoKIfdDMUH7cS24VSejTe0lDRmrH1mA/jCEyjoNmBMqZbMkGeCWvtTAmE=
x-amz-request-id: Y0J12FF97NGHH440
Date: Thu, 01 Dec 2022 05:25:06 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:28 GMT
ETag: "c71fba8b5433c3bd12908e40c8867860"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 40039
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
198.54.116.47200 OK 4.2 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 198.54.116.47:0
File type ASCII text, with very long lines (12220)
Hash a27e08757da450c51e86863e57a22eaf
da27e4112f714a520a4ebc90c3ade73730e809c9
e09b1d8ae790b2d9312600f6da43f0673a7b2c0600c8787f7e552ef0a56a73a0
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Wed, 11 Jan 2017 21:35:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4190
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
198.54.116.47200 OK 8.1 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 198.54.116.47:0
File type Unicode text, UTF-8 text, with very long lines (8211)
Hash 6e9ebd42a9410ab57cafc1dfd3b6ece7
3066fbef771cf7a63847b91c7b5c78099eef166d
16a472ad9b4c66e3a74791a8ad0728d680b2a3ef4fdf6b5cb3a29bef0f33bf20
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 8125
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
198.54.116.47200 OK 13 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (40496)
Hash 606f3449f351f4fb6a7afdaa8ed43dde
e165da9643eefbf0da5200e3d8c5f81450395e06
61ea954526c5dd4f4eaf1c6abd115bacc0a317b85c5e817e63604c848186c85a
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 13002
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
198.54.116.47200 OK 5.9 kB URL HTTP/2 nanosoftconsulting.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (15660)
Hash 764db34090857ca39d7047ad92326783
99c72d60f20e886e8c75bd8b44bf9265778811f4
f2c0f5c2f25a140c73e9deb8e51d6ef233d80fd6457975f2a4304c6c9d393c4b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5927
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2020/03/bg-map-dark.jpg
198.54.116.47200 OK 23 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2020/03/bg-map-dark.jpg
IP 198.54.116.47:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x755, components 3\012- data
Hash 56e55231d0caf6138726c4d4b2f4646b
ed96af3fac8a86ef1014c8e1f7104a59268a7886
0f0ffef753ca2037a92f3d98ccb16485de9d8032233e73d55903407370cff37e
GET /wp-content/uploads/2020/03/bg-map-dark.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2588.css?ver=1669415892
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:05 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:49:58 GMT
accept-ranges: bytes
content-length: 22618
date: Thu, 01 Dec 2022 05:25:05 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/themes/engitech/fonts/Flaticon.woff2
198.54.116.47200 OK 12 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/fonts/Flaticon.woff2
IP 198.54.116.47:0
File type Web Open Font Format (Version 2), TrueType, length 11896, version 1.0\012- data
Hash abe00f683e10e6978387f5cede633caf
1c4bb3ae0a74206f359b5a27dc37814d3317f440
ed0b55c2609cc4a6039c6fa571235f134ef2230e356491c488278c135fbc0dd6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/fonts/Flaticon.woff2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://nanosoftconsulting.com/wp-content/themes/engitech/css/flaticon.css?ver=6.1.1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: font/woff2
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-length: 11896
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:25:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:25:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 06:30:11 GMT
expires: Sat, 25 Nov 2023 06:30:11 GMT
cache-control: public, max-age=31536000
age: 514495
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
engitech.s3.amazonaws.com/images/bg-banner-home5.png
52.217.91.209200 OK 254 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/bg-banner-home5.png
IP 52.217.91.209:0
File type PNG image data, 1920 x 719, 8-bit colormap, non-interlaced\012- data
Size 254 kB (253907 bytes)
Hash b00776637242995d70aa24e93bcc73a8
4f2190681187d2ca57de0cda1268016c8e44a029
c9883e635e18cf7fd420775c0bf88ea42b4855f328ec06c7ab45c1077733a711
GET /images/bg-banner-home5.png HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 5DtBG4oTFz6evZl3UusS7Xtm+swAtQPuTLnAsWBvqbnWwSOTEX6dZ5da2v/83NzsmEMrBWvNZX0=
x-amz-request-id: Y0J8JNP62A2F8V2H
Date: Thu, 01 Dec 2022 05:25:06 GMT
Last-Modified: Fri, 13 Mar 2020 08:59:41 GMT
ETag: "b00776637242995d70aa24e93bcc73a8"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 253907
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8WAc5tU1E.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8WAc5tU1E.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16920, version 1.0\012- data
Hash 875cd87a3bfd0a454005f2b07ba35328
2ee20c6c9d1549d8d38b538e00903a75f5e02307
976177894b0cca88ff93ab02c6da363f2d55cce5d940139db955b251fcdd19a6
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8WAc5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 23:32:12 GMT
expires: Tue, 28 Nov 2023 23:32:12 GMT
cache-control: public, max-age=31536000
age: 193974
last-modified: Mon, 09 May 2022 18:31:06 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe01MImSLYBIv1o4X1M8cce4G2JvY1MIUg.woff2
216.58.207.227200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe01MImSLYBIv1o4X1M8cce4G2JvY1MIUg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17688, version 1.0\012- data
Hash 241b1d6a680b6b0d1c70cc45d6aa4066
d10bc093bac070d725ff9379686201b19d9c70f9
9b73529b4e8246ea3f18a62d5166c59e9912d10b4ed05cf4880adb3688a26408
GET /s/nunitosans/v12/pe01MImSLYBIv1o4X1M8cce4G2JvY1MIUg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17688
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 14:58:35 GMT
expires: Sun, 26 Nov 2023 14:58:35 GMT
cache-control: public, max-age=31536000
age: 397591
last-modified: Mon, 09 May 2022 18:31:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 35451
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17116, version 1.0\012- data
Hash bcf3a3fb620dfbee774f84e2c8e71530
40a79d240acdd7e5a95e165515ac7c0958a37971
280aaa8929329764ac3213ca093c63505cfcc665347939c79905c426d33867c5
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:42:48 GMT
expires: Wed, 29 Nov 2023 15:42:48 GMT
cache-control: public, max-age=31536000
age: 135738
last-modified: Mon, 09 May 2022 18:31:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17324, version 1.0\012- data
Hash 51ca5ce70497b58a8cc96b2b26ce2e19
7eb7e4f38f8ebe09b504f6dcc3226a8de63a9042
6fce8ebc3557b63496f8fafe1c182f2aa8669550f9398b4d9beebddd43306ed3
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 02:44:38 GMT
expires: Wed, 29 Nov 2023 02:44:38 GMT
cache-control: public, max-age=31536000
age: 182428
last-modified: Mon, 09 May 2022 18:31:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe0oMImSLYBIv1o4X1M8cce4E9lKdg.woff2
216.58.207.227200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe0oMImSLYBIv1o4X1M8cce4E9lKdg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17684, version 1.0\012- data
Hash 67f5e167a73df331cd54701561965cd0
5c6e5ca963553c516240156bcdca131b2d0ac87e
6637ea3139ffb01e240829717a4f8c195d7be6b81780ed643000b49833d8d6d1
GET /s/nunitosans/v12/pe0oMImSLYBIv1o4X1M8cce4E9lKdg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17684
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 12:31:31 GMT
expires: Fri, 24 Nov 2023 12:31:31 GMT
cache-control: public, max-age=31536000
age: 579215
last-modified: Mon, 09 May 2022 18:32:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17156, version 1.0\012- data
Hash 7e344afc10a492d516789f072fa6edfd
f38bd0b4e9d0577528f533b8ecd80801a0c6340f
c84423c305779f2aab07847a2e3870ac1ea4072e470d5eb149c01e0e0497eae3
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17156
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:12:20 GMT
expires: Tue, 28 Nov 2023 21:12:20 GMT
cache-control: public, max-age=31536000
age: 202366
last-modified: Mon, 09 May 2022 18:33:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16980, version 1.0\012- data
Hash 8a97f720d330e75ccdbda9ae0e9f5e90
8e4fee916581ab48d385187705667cebc7500afe
97d5a594e7f76c7e50045b67667fd6b74b268515efe6425097be1b2647079787
GET /s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:43:01 GMT
expires: Wed, 29 Nov 2023 15:43:01 GMT
cache-control: public, max-age=31536000
age: 135725
last-modified: Mon, 09 May 2022 18:33:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:25:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
engitech.s3.amazonaws.com/images/fun-fact2.jpg
52.217.91.209200 OK 19 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/fun-fact2.jpg
IP 52.217.91.209:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x480, components 3\012- data
Hash 062cf5f4346d26ab11662c36b1178fe4
ca0f27fba5372fcb7a08ba2713e6c72173db7492
0ccdc1dbbce5ec1ef949a0fe59dde858124fcde82c79057222fdef0e0c028138
GET /images/fun-fact2.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 8Tp7PU2XFoX7dxhPrLVIO6dPfDphsahUHgwdY0Mc9iCHjXVNAyWdqgusCYInEKFaxBD+H7Nu6Qk=
x-amz-request-id: 2XWG2TKQ757RSEDJ
Date: Thu, 01 Dec 2022 05:25:07 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:30 GMT
ETag: "062cf5f4346d26ab11662c36b1178fe4"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 19128
engitech.s3.amazonaws.com/images/bg-art-6.png
52.217.91.209200 OK 15 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/bg-art-6.png
IP 52.217.91.209:0
File type PNG image data, 322 x 444, 8-bit colormap, non-interlaced\012- data
Hash b4e5406cc3042bef75740e2d643a7ffd
eac18cce1e90516a37712cc8d5d84e3f07902c01
8ec58c7e8181efbb9dc293dfb3f5b2cc6893a82d7505fb74f09486011cc02115
GET /images/bg-art-6.png HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: TKx0DsTRKdHOwdJZgC/qlDwZveoCQP5vOsXXvXNw+X4jLqF+g72bpHyJ7ZnpK7dzBQH4rn/HCNg=
x-amz-request-id: 2XWR9FW5C99RPBEV
Date: Thu, 01 Dec 2022 05:25:07 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:26 GMT
ETag: "b4e5406cc3042bef75740e2d643a7ffd"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 15150
engitech.s3.amazonaws.com/images/fun-fact1.jpg
52.217.91.209200 OK 28 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/fun-fact1.jpg
IP 52.217.91.209:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x480, components 3\012- data
Hash 6042674f5bc8aacc50b13f8b4cf6c8ca
18f29685463df2f47343298cd98f7ee8b2e2b107
85853a38508abccf8a741ae41f780d292ac5b6a96cece6ce74a0ccf1ed794405
GET /images/fun-fact1.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: xWDBatFKdg4o4B14wN2j73dEsUlq87hqzjcEMv4X/ZxrruOGbVLywJOJLkOpFesZLSPp2qgtdxE=
x-amz-request-id: 2XWKT6BTATPEQ54G
Date: Thu, 01 Dec 2022 05:25:07 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:30 GMT
ETag: "6042674f5bc8aacc50b13f8b4cf6c8ca"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 27935
engitech.s3.amazonaws.com/images/bg-art-5.png
52.217.91.209200 OK 13 kB URL HTTP/1.1 engitech.s3.amazonaws.com/images/bg-art-5.png
IP 52.217.91.209:0
File type PNG image data, 321 x 447, 8-bit colormap, non-interlaced\012- data
Hash 1f62f659c190de9c2eee49780f8b8605
4b368824176196700ef9c1864f8cd3f4e7fd91d2
33ae30de8b7cdcf64861f16e45682b22e96231fde6c4a873052c7c0c36429571
GET /images/bg-art-5.png HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: N+UNj3R8VPRCXAdoiMTxZD5mM+HgcnwoTEZ7/l/Mf9/xGTOW6gFpctw9POtqwrSKWLwyRCGHA1U=
x-amz-request-id: 2XWRYC13G5W7PMFF
Date: Thu, 01 Dec 2022 05:25:07 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:25 GMT
ETag: "1f62f659c190de9c2eee49780f8b8605"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 13300
nanosoftconsulting.com/wp-content/fonts/roboto/KFOmCnqEu92Fr1Mu4mxMKTU1Kg.woff
198.54.116.47200 OK 14 kB URL HTTP/2 nanosoftconsulting.com/wp-content/fonts/roboto/KFOmCnqEu92Fr1Mu4mxMKTU1Kg.woff
IP 198.54.116.47:0
File type Web Open Font Format, TrueType, length 14384, version 1.1\012- data
Hash c7ab406db23cf2d880297f07a0ae35d3
53c9df3243c24df8728a0dd5be3c9c82ab7a38af
a9fdbefae33b742c5c1379fabbfa02d3491a9095ef762d8e23f135b66eefd7c9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/fonts/roboto/KFOmCnqEu92Fr1Mu4mxMKTU1Kg.woff HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: font/woff
last-modified: Fri, 14 Oct 2022 22:44:07 GMT
accept-ranges: bytes
content-length: 14384
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 901559b299bf5da715686bf725713575
be30fb222009d3f50896317218213b595e573eba
48849807a5ae96e7a3778f205d4da9c709417cafbf39ead4ef5bd7aefa060d28
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5292
Cache-Control: max-age=171254
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:25:06 GMT
Etag: "63881ffc-118"
Expires: Sat, 03 Dec 2022 04:59:20 GMT
Last-Modified: Thu, 01 Dec 2022 03:31:08 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280
nanosoftconsulting.com/wp-content/themes/engitech/fonts/fa-solid-900.woff2
198.54.116.47200 OK 76 kB URL HTTP/2 nanosoftconsulting.com/wp-content/themes/engitech/fonts/fa-solid-900.woff2
IP 198.54.116.47:0
File type Web Open Font Format (Version 2), TrueType, length 76084, version 330.-16253\012- data
Hash f6121be597a72928f54e7ab5b95512a1
b2c74520c3f506efbfefca867918e5ae28bd5222
787d76ad6deab67ccf8bac1b584260205e114f508fc5542b612e3f75d49a34e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/engitech/fonts/fa-solid-900.woff2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://nanosoftconsulting.com/wp-content/themes/engitech/css/font-awesome.min.css?ver=6.1.1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: font/woff2
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-length: 76084
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
198.54.116.47200 OK 77 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 198.54.116.47:0
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: font/woff2
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-length: 76764
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2019/11/project6-720x720.jpg
198.54.116.47200 OK 53 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2019/11/project6-720x720.jpg
IP 198.54.116.47:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 720x720, components 3\012- data
Hash a706709f153e8130460cbf76038ada0d
507e581cccdf903bf75ef5be922e7db6ca03e0e1
97ad22fea6e04e0857c928a086ed64a2d4c1a116b1f55bb396c0b0d62e12a914
GET /wp-content/uploads/2019/11/project6-720x720.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:52:15 GMT
accept-ranges: bytes
content-length: 53093
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.formilla.com/formilla-chat.asmx/LoadFormillaChatButton
104.26.6.68200 OK 0 B URL HTTP/2 www.formilla.com/formilla-chat.asmx/LoadFormillaChatButton
IP 104.26.6.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /formilla-chat.asmx/LoadFormillaChatButton HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://nanosoftconsulting.com/
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 05:25:07 GMT
content-length: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Accept
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qRfoWx6jod404Dwm3uBxj%2B1ekxll4UUXj5L5TMLY0ECrVjfXJwPT4b1dqVbaM6Z0N4Cw52H8sXm6QIH1jZntw%2F%2BVOlCUECz0Ncs%2BeDCx2utaQL%2FodqMEA2jFysKDLo4qUY4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7729667c28410b31-OSL
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2019/11/project2-720x720.jpg
198.54.116.47200 OK 37 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2019/11/project2-720x720.jpg
IP 198.54.116.47:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 720x720, components 3\012- data
Hash 7294facf393ce55ad988fc7e96276f30
7a7f7b92a7e8cc81a68a27124a37eb2be0294654
2048915466d456e1e6a01d7500fbbfe05a7dc210c4d758c7fe8ebc033cdab5b8
GET /wp-content/uploads/2019/11/project2-720x720.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:52:16 GMT
accept-ranges: bytes
content-length: 36720
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2019/11/project11-720x720.jpg
198.54.116.47200 OK 67 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2019/11/project11-720x720.jpg
IP 198.54.116.47:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 720x720, components 3\012- data
Hash 4ad5d277855f83eb46de8e07a56c9794
0808d5cd5524ca3ca6bf5d386968ee6ce76601a6
475027fc64950c079951e66f7d5a20158d447181d26f89076c092636651a1a92
GET /wp-content/uploads/2019/11/project11-720x720.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:52:14 GMT
accept-ranges: bytes
content-length: 67347
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2019/11/project10-720x720.jpg
198.54.116.47200 OK 86 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2019/11/project10-720x720.jpg
IP 198.54.116.47:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 720x720, components 3\012- data
Hash bd214ee4374a7b7a35ab59562c3cd61f
e7b361ff8c51b73b3ca4acaf58253e43ae15e60f
15577e5059f266a6cf249615fcf509b55373c88d09f21b819ce22f82f83c2a59
GET /wp-content/uploads/2019/11/project10-720x720.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:52:14 GMT
accept-ranges: bytes
content-length: 85826
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2019/11/project4-720x720.jpg
198.54.116.47200 OK 109 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2019/11/project4-720x720.jpg
IP 198.54.116.47:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 720x720, components 3\012- data
Size 109 kB (109093 bytes)
Hash 013d4c9f0bd97b27dbf128234c63a941
d13ebd651f193255fbdceeff118b9e3fceafa9d0
09c61bbd506577cd9b3eaf840636465515f2cc6c63b3d19ad4c33afd008d6589
GET /wp-content/uploads/2019/11/project4-720x720.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:51:47 GMT
accept-ranges: bytes
content-length: 109093
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2019/11/project1-720x720.jpg
198.54.116.47200 OK 82 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2019/11/project1-720x720.jpg
IP 198.54.116.47:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 720x720, components 3\012- data
Hash 1b6ff249c7b972879c2de0acc5798763
d76adac5fe7d7465747e4b731d623fc0ae434cef
8abada4aa48465946f7d96d8640e93e47f0f33db9cb7f807f13404336e0d18e5
GET /wp-content/uploads/2019/11/project1-720x720.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:51:49 GMT
accept-ranges: bytes
content-length: 82194
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.formilla.com/formilla-chat.asmx/LoadFormillaChatButton
104.26.6.68200 OK 37 kB URL HTTP/2 www.formilla.com/formilla-chat.asmx/LoadFormillaChatButton
IP 104.26.6.68:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash c42ac8e57853c4881179e9d9d75325c8
5ff4d79ee1063ff39a4bc7b82b2ff5aa8dab6d5a
cba4aab3badb9c5ca2def2466b471dd29901a5954e22993d3d5be7bc756bbd5a
POST /formilla-chat.asmx/LoadFormillaChatButton HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 977
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 05:25:07 GMT
content-type: application/json
cache-control: private, max-age=0
vary: Accept-Encoding
access-control-allow-origin: *
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E%2Bsd7zc4mdXzkYccNa%2BpNU2Di%2FIVlyEXtl78pp2t3PGae7AsCxvgJQ%2FbWott%2BDTfBgnHKqMSjwQBno88mstWT6qog31oX7RCAiDI6axcRiSeAvk05SzIlGviqAkKdzIVBSk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7729667fa99e0b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.formilla.com/remoteAssets/css/widgets/v4/fonts.css
104.26.6.68200 OK 8.3 kB URL HTTP/2 www.formilla.com/remoteAssets/css/widgets/v4/fonts.css
IP 104.26.6.68:0
File type ASCII text, with CRLF line terminators
Hash e6b370f016a053843186439f98af5b82
2320ef1d878125760012e772d1695df68b787077
4f1f5727015ccdc3749b0df3bd70229cf6ae57580d1934601a4073f478009a0d
GET /remoteAssets/css/widgets/v4/fonts.css HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 05:25:07 GMT
content-type: text/css
cache-control: max-age=604800
last-modified: Wed, 19 Oct 2022 22:22:36 GMT
etag: W/"c8c56e4a9e4d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
access-control-allow-origin: *
cf-cache-status: HIT
age: 551299
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hYWXCW8rxv3ODBZu%2FWMEnJlA3zwfAhe45J8cMY20EDpwUNP9n5G4Tk91Yh8z36A5tMb7%2B%2Ffif9SitEzG0WxLbbTpIYkx7dANaZM387%2Fdo%2FsWchQOm2XLlgy3YMjnZQoO064%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 772966828e570b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2020/03/image-banner-home5.png
198.54.116.47200 OK 123 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2020/03/image-banner-home5.png
IP 198.54.116.47:0
File type PNG image data, 858 x 494, 8-bit colormap, non-interlaced\012- data
Size 123 kB (122780 bytes)
Hash afc362f08896022c32e65b282f1f7718
62a2b11f79e941a490d98cad46ee6e9c80c69530
a5a50fd47ea0313383ca29c5c92e9b3a8f2ac94ca4c9f47edeacc9d134c82f87
GET /wp-content/uploads/2020/03/image-banner-home5.png HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/png
last-modified: Fri, 14 Oct 2022 22:49:58 GMT
accept-ranges: bytes
content-length: 122780
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js
198.54.116.47200 OK 10 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js
IP 198.54.116.47:0
File type ASCII text, with very long lines (28984)
Hash 80e0d5a94f83d84f2d23408adc8c56ae
9e1d3f29c2f212fc5481d3c4fee9504cd2eef0e0
6ab74c9f4dccef9cb125517456b137ca176ac83f2f905a8b144d11c89f1c9d57
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 10340
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
198.54.116.47200 OK 4.6 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 198.54.116.47:0
File type ASCII text, with very long lines (10544)
Hash 0ebf94108fa7b30dafa3df2eff537240
990b039aebaaab672af56b6b14324acb754479c3
4607611db95f4e64a732ea61e8fae8a0d3b85f9bd8b8375be9826bfc764f74d6
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: application/javascript
last-modified: Wed, 17 Nov 2021 13:27:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4571
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1
198.54.116.47200 OK 2.3 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1
IP 198.54.116.47:0
File type ASCII text, with very long lines (2642)
Hash 26634787df64a428449454352d82b991
5470a604b743fae6e8c9f53958500418cdc3f539
e16ffa3c55a74816fcc841251d64d23292cd8b27db13af17ffe04bf49da6935a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: application/javascript
last-modified: Mon, 01 Aug 2022 04:11:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2347
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
198.54.116.47200 OK 78 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 198.54.116.47:0
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: font/woff2
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-length: 78196
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2022/10/obalonye-pcccc-300x300.jpeg
198.54.116.47200 OK 16 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2022/10/obalonye-pcccc-300x300.jpeg
IP 198.54.116.47:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 49238a72ad0c8e8fbeeb7d4352e00450
2b3ffd5539cfe86f8fd6a319d9a8a82f702725f0
b4c3e1c6b101a9b62d94f248e57cbc1637ef6a0715e52f39fd33243d538c4d37
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/10/obalonye-pcccc-300x300.jpeg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 23:39:44 GMT
accept-ranges: bytes
content-length: 15550
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
198.54.116.47200 OK 1.9 kB URL HTTP/2 nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 198.54.116.47:0
File type ASCII text, with very long lines (1342)
Hash d69644c55828782aa93bb33aa05bb370
a867feada0f6acd840454a0bb1f2d1cb679c5707
b65487537ad762590bc81b649de92200f69716ccb2521a1aebf1f2e63eea916a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 18:59:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1881
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2020/01/member2.jpg
198.54.116.47200 OK 107 kB URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2020/01/member2.jpg
IP 198.54.116.47:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 720x986, components 3\012- data
Size 107 kB (107104 bytes)
Hash 810edc5f9ec9592822f96f79ff20ff48
671276d2c48aa9b4edb29220dc9c91f81e70d1c4
560f9e6a9c682d966c7b00f536ed558ee3ef6246f9a7477d45ce61767f789b1d
GET /wp-content/uploads/2020/01/member2.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:49:04 GMT
accept-ranges: bytes
content-length: 107104
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2020/01/member4.jpg
198.54.116.47200 OK 0 B URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2020/01/member4.jpg
IP 198.54.116.47:0
GET /wp-content/uploads/2020/01/member4.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:49:05 GMT
accept-ranges: bytes
content-length: 103656
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.formilla.com/remoteAssets/js/widgets/v4/jquery-3.6.0.min.js
104.26.6.68200 OK 0 B URL HTTP/2 www.formilla.com/remoteAssets/js/widgets/v4/jquery-3.6.0.min.js
IP 104.26.6.68:0
GET /remoteAssets/js/widgets/v4/jquery-3.6.0.min.js HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 05:25:07 GMT
content-type: application/javascript
cache-control: max-age=604800
last-modified: Fri, 18 Mar 2022 19:47:51 GMT
etag: W/"737195d13bd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
access-control-allow-origin: *
cf-cache-status: HIT
age: 432855
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nJYThoWt6XSGHm6y%2FxK4oRT6GLFxh63Cy3fUzfyyVFc3zBfSdJudObfqIOxz1V3YpTUla%2BDLk0%2F50%2BlDhqZpVd7jy70BeGQGELYurgT9J1fn34c2JUFLOvqG4MdVTwLlvq8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77296681de180b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2020/01/member3.jpg
198.54.116.47200 OK 0 B URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2020/01/member3.jpg
IP 198.54.116.47:0
GET /wp-content/uploads/2020/01/member3.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:49:04 GMT
accept-ranges: bytes
content-length: 155368
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2022/10/what-is-cloud-computing.jpeg
198.54.116.47200 OK 0 B URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2022/10/what-is-cloud-computing.jpeg
IP 198.54.116.47:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/10/what-is-cloud-computing.jpeg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/jpeg
last-modified: Sat, 22 Oct 2022 04:52:08 GMT
accept-ranges: bytes
content-length: 200938
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2020/09/Nano-soft-logo-2.png
198.54.116.47200 OK 0 B URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2020/09/Nano-soft-logo-2.png
IP 198.54.116.47:0
GET /wp-content/uploads/2020/09/Nano-soft-logo-2.png HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/png
last-modified: Fri, 21 Oct 2022 12:08:21 GMT
accept-ranges: bytes
content-length: 172152
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
www.formilla.com/scripts/fileAttachments.js
104.26.6.68200 OK 0 B URL HTTP/2 www.formilla.com/scripts/fileAttachments.js
IP 104.26.6.68:0
GET /scripts/fileAttachments.js HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 05:25:07 GMT
content-type: application/javascript
cache-control: max-age=14400
last-modified: Fri, 23 Apr 2021 12:02:50 GMT
etag: W/"0512953838d71:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
cf-cache-status: HIT
age: 240
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kw5sIqXcq5IKEKZQxuoWVpEwxH8Me4zcFN69PigRD1MbRdqIMaomC3xlG0m6r4WBFtU7jCfmnIjA4snRh%2BCMbYOLRY9xamdwXDnk46hcEzPzktb3BeUeKbfddU%2B3D390wY0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77296681de1c0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.formilla.com/remoteAssets/js/widgets/v4/autosize.min.js
104.26.6.68200 OK 0 B URL HTTP/2 www.formilla.com/remoteAssets/js/widgets/v4/autosize.min.js
IP 104.26.6.68:0
GET /remoteAssets/js/widgets/v4/autosize.min.js HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 05:25:07 GMT
content-type: application/javascript
cache-control: max-age=604800
last-modified: Wed, 21 Feb 2018 12:57:02 GMT
etag: W/"063697713abd31:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
access-control-allow-origin: *
cf-cache-status: HIT
age: 479906
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WlbUz%2Fjg3WSb0TdF2UQKlLnnkVx8Z50YCItiLFw9o7vprBp4a2nAEc7EoJ1IOArhe4ajbTBKlTbb29iO5cIDbrX%2BmF9jjxIIuIl%2FL1e1u58I%2F4q762dkuUbS976YVqKg8mo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77296681de1a0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.formilla.com/remoteAssets/js/widgets/v4/jquery.mCustomScrollbar.concat.min.js
104.26.6.68200 OK 0 B URL HTTP/2 www.formilla.com/remoteAssets/js/widgets/v4/jquery.mCustomScrollbar.concat.min.js
IP 104.26.6.68:0
GET /remoteAssets/js/widgets/v4/jquery.mCustomScrollbar.concat.min.js HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 05:25:07 GMT
content-type: application/javascript
cache-control: max-age=604800
last-modified: Fri, 18 Mar 2022 19:47:51 GMT
etag: W/"c9795d13bd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
access-control-allow-origin: *
cf-cache-status: HIT
age: 49909
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=07IsR6IBndGNYVKxl2GoBODzo3kEPqDRulFXph34SvG4k7nGcTRL6OchPbSLiFYXP71QCkMMJ323e7Qwd6aa2m1uFnFhDHxSfULICvtay2P20HctBqj6vRHYHiwQpsnajFQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77296681de190b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2022/10/petter-lagson-MSWD-PDMizQ-unsplash-1536x1024-1-601x520.jpg
198.54.116.47200 OK 0 B URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2022/10/petter-lagson-MSWD-PDMizQ-unsplash-1536x1024-1-601x520.jpg
IP 198.54.116.47:0
GET /wp-content/uploads/2022/10/petter-lagson-MSWD-PDMizQ-unsplash-1536x1024-1-601x520.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/jpeg
last-modified: Sat, 22 Oct 2022 04:50:51 GMT
accept-ranges: bytes
content-length: 27352
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2022/10/img-9-nano-home-page-7.webp
198.54.116.47200 OK 0 B URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2022/10/img-9-nano-home-page-7.webp
IP 198.54.116.47:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/10/img-9-nano-home-page-7.webp HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/webp
last-modified: Sat, 22 Oct 2022 11:27:45 GMT
accept-ranges: bytes
content-length: 121350
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CNunito+Sans%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CNunito+Sans%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext
IP 142.250.74.74:0
GET /css?family=Montserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CNunito+Sans%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 05:25:05 GMT
date: Thu, 01 Dec 2022 05:25:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.74:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 05:25:05 GMT
date: Thu, 01 Dec 2022 05:25:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.formilla.com/scripts/feedback.js
104.26.6.68200 OK 0 B URL HTTP/2 www.formilla.com/scripts/feedback.js
IP 104.26.6.68:0
GET /scripts/feedback.js HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 05:25:06 GMT
content-type: application/javascript
cache-control: max-age=14400
last-modified: Fri, 30 Sep 2022 19:24:40 GMT
etag: W/"0c12492d5d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
access-control-allow-origin: *
cf-cache-status: HIT
age: 530
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2cEP1I4Soulz8zX7y%2FNnmLTS2E5qTH3FSovn%2B5ZtnvSXr5Jfv6qSe7Tbiz3ErHvOT45ubCliS9JpEQRmr6jmlOi6XJMpeoFnzZmM0ORt%2F1LNJ11tvJ6DyVZ2dkj%2BMk7ZoKs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7729667b5b6f0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2022/10/SucculentPi-Part-2-Title-Image-1536x787-1-601x520.png
198.54.116.47200 OK 0 B URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2022/10/SucculentPi-Part-2-Title-Image-1536x787-1-601x520.png
IP 198.54.116.47:0
GET /wp-content/uploads/2022/10/SucculentPi-Part-2-Title-Image-1536x787-1-601x520.png HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/png
last-modified: Sat, 22 Oct 2022 04:48:42 GMT
accept-ranges: bytes
content-length: 181636
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
nanosoftconsulting.com/wp-content/uploads/2022/10/Nano-Icon1.png
198.54.116.47200 OK 0 B URL HTTP/2 nanosoftconsulting.com/wp-content/uploads/2022/10/Nano-Icon1.png
IP 198.54.116.47:0
GET /wp-content/uploads/2022/10/Nano-Icon1.png HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 05:25:06 GMT
content-type: image/png
last-modified: Fri, 14 Oct 2022 23:21:27 GMT
accept-ranges: bytes
content-length: 33359
date: Thu, 01 Dec 2022 05:25:06 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2