Report - coronadetection.com/

Report Overview

Submitted URL
coronadetection.com/
IP
52.202.22.6
ASN
#14618 AMAZON-AES
Submitted
2022-12-09 11:47:50
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
widget.trustpilot.com	6018	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.1 kB	30 kB	143.204.55.101
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.218.164.174
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.1 kB	8.4 kB	142.250.74.131
s3.amazonaws.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	294 kB	52.217.98.158
script.hotjar.com	887	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	380 B	69 kB	143.204.55.96
vars.hotjar.com	1014	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	501 B	1.7 kB	143.204.55.118
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	698 B	31.13.72.36
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.3 kB	93.184.220.29
brandpa.com	329303	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	34 kB	54.86.113.187
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	490 B	39 kB	142.250.74.163
a.eu.silktide.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	934 B	458 B	34.251.130.40
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	49 kB	34.120.237.76
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.9 kB	22 kB	216.239.32.178
in.hotjar.com	1746	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	476 B	287 B	99.81.68.255
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	95.101.11.115
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
analytics.silktide.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	389 B	18 kB	143.204.55.50
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	419 B	1.5 kB	142.250.74.74
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.5 kB	7.0 kB	143.204.42.88
cdn.brandpa.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.9 kB	228 kB	54.230.111.13
coronadetection.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	351 B	618 B	52.202.22.6
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	512 B	694 B	216.58.211.4
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	511 B	694 B	142.250.74.67
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	369 B	29 kB	31.13.72.12
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	598 B	706 B	108.177.14.154
static.hotjar.com	641	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	373 B	624 B	143.204.55.84

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-09	medium	coronadetection.com/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (20)

	URL	Size	First Seen	Last Seen
	connect.facebook.net/signals/config/584104555758185?v=2.9.89&r=stable	300 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/signals/config/584104555758185?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:49:48 Last Seen2023-03-08 23:49:48 Times Seen1 Hash f3451b320190b9e8dc57d61e9c93f7bb fbc46c5ea8a1bad248d7b400ec40351ca451800e 9155c479dabf548484151ffe24f3fbb063875ab0aee1c9473ee86105b6331bda Loading...

	cdn.brandpa.com/v2/vendor/simplebar/dist/simplebar.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b	59 kB	2023-03-07	2024-02-22
Pretty URL cdn.brandpa.com/v2/vendor/simplebar/dist/simplebar.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b IP 54.230.111.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:38 Last Seen2024-02-22 04:29:10 Times Seen50 Hash 556a608ddfe0abeb3700244bceb486d0 633dba075fc5af5fc46c69affd21f9eedef4eb1e 8dc46be9998b5c2129294262820411fc918d90a732d524c6aa03caab3438d0e3 Loading...

	brandpa.com/names/coronadetection/landing	248 B	2023-03-07	2024-02-22
Pretty URL brandpa.com/names/coronadetection/landing IP 54.86.113.187 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:39 Last Seen2024-02-22 04:29:10 Times Seen43 Hash 0d977df261ed9c54a797e3a61aa916cd 61754298a01643cdf6c9b396a9a91349a68e2df9 079da815720313705820c8016d8d35d8ca70c6d0dd840fcf17d903f093c75f1f Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-08	2023-11-28
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-11-28 17:55:58 Times Seen32 Hash a6ef7927128284961f4cadd572969f09 57e21033749687e69de710a0be6d4244edf1fe51 d5c905d7ce4679b183eb11f7c6811682ddffbf0f037590360ae2b1a84a51ef1b Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-05-10
Pretty URL www.google-analytics.com/analytics.js IP 216.239.32.178 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-05-10 19:48:26 Times Seen1646 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	static.hotjar.com/c/hotjar-1308101.js?sv=6	7.2 kB	2023-03-08	2023-03-08
Pretty URL static.hotjar.com/c/hotjar-1308101.js?sv=6 IP 143.204.55.84 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:49:48 Last Seen2023-03-08 23:49:48 Times Seen1 Hash 075c102b15b48264f625ecc32964ceb7 7b1b0584c12e9fd682ff68f1bb5915925a47e69b 6731bdedd8564cf7c2d3b156a720ce8220052e123655c0f2178eb0933ecf1a04 Loading...

	cdn.brandpa.com/v2/vendor/bootstrap/dist/js/bootstrap.bundle.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b	78 kB	2023-03-07	2024-05-10
Pretty URL cdn.brandpa.com/v2/vendor/bootstrap/dist/js/bootstrap.bundle.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b IP 54.230.111.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:30:15 Last Seen2024-05-10 12:39:31 Times Seen1028 Hash 715756e65b9ff107f4cf927e3e8bbf76 f52210379974496514e24aeb07ecb6ef259063f6 2aebc2552d7dadf4e3a0b80cc830c274e91146584dad8e29b04338b9ecedb363 Loading...

	cdn.brandpa.com/js/lazysizes/lazysizes.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b	7.2 kB	2023-03-07	2024-05-10
Pretty URL cdn.brandpa.com/js/lazysizes/lazysizes.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b IP 54.230.111.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:04 Last Seen2024-05-10 10:18:42 Times Seen1089 Hash 0812d0f17b90a4aefd97bb91085ad252 b8d4d9cbfeb488d2fd61004fecbaca5ddf5ae932 876b4c12685e991d88378c1b6dd3638fd2da0c88f3c24da1ada950c1f26604e1 Loading...

	brandpa.com/names/coronadetection/landing	1.6 kB	2023-03-08	2023-03-08
Pretty URL brandpa.com/names/coronadetection/landing IP 54.86.113.187 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:49:48 Last Seen2023-03-08 23:49:48 Times Seen1 Hash 6e506e226e75f97e8506f3d11c7e4890 5a94c7b4e3e3d78b6c5ba8a36039e6cea6c8e235 189bf75ac388919ce4f65f0f1baa1eb9537da87c16e44cc393ddb0ae628c4c6d Loading...

	widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b	19 kB	2023-03-07	2023-11-04
Pretty URL widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b IP 143.204.55.101 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2023-11-04 14:10:25 Times Seen853 Hash 09f25c4b4cb4f5d5bd2bf7adf3235bc0 dbe22054d87d6ef7127d98ceab7650eaa0f6ed68 f3496bc7c277d917d35553c46ed1597a86065494cac582e42a3a1d55aedef7fb Loading...

	vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html	2.3 kB	2023-03-08	2023-03-26
Pretty URL vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html IP 143.204.55.118 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:11 Last Seen2023-03-26 01:38:12 Times Seen2 Hash 2ab04d2242413cc15369fa816e1a02f8 8ff148dd539f0fff0892dcc2075839c315cb8642 fe51660a3d21efbefab64694f51d02f2bcee4e82c324895e93c78ba6179508a3 Loading...

	cdn.brandpa.com/v2/vendor/nouislider/dist/nouislider.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b	27 kB	2023-03-07	2024-04-02
Pretty URL cdn.brandpa.com/v2/vendor/nouislider/dist/nouislider.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b IP 54.230.111.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:38 Last Seen2024-04-02 15:32:08 Times Seen85 Hash 99ef6393229840dc3761d4ec8714a3d8 077fa77ab887cde1bd6da1dc7df45d1de78cac3a f45f3d5c84714025d7651990853f602111d721b53f9ba3a59ea7a46635f48441 Loading...

	brandpa.com/names/coronadetection/landing	1.7 kB	2023-03-07	2023-05-15
Pretty URL brandpa.com/names/coronadetection/landing IP 54.86.113.187 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:39 Last Seen2023-05-15 03:16:01 Times Seen21 Hash e3643166b2179ec776c0af198df3de4a 4d7a24e44708f390a924e618077e6fcbf0f8769b 2c0dfe73cb4e6915f799910a89c74e930007f7566df3a1b7cd93eed9af4d8d92 Loading...

	analytics.silktide.com/4d509e1f75c1158cc3694c5e08b18a66.js	17 kB	2023-03-08	2023-03-08
Pretty URL analytics.silktide.com/4d509e1f75c1158cc3694c5e08b18a66.js IP 143.204.55.50 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:49:48 Last Seen2023-03-08 23:49:48 Times Seen1 Hash 51d7dc69bc4ab159bed345f779b5783e 99721a25350a0927514b3b76c84ba165488a0d91 2e57f822c571df8b9df5807693dbd24636196e3d55ec945d4923489a34b90ee2 Loading...

	brandpa.com/names/coronadetection/landing	2.8 kB	2023-03-08	2023-03-08
Pretty URL brandpa.com/names/coronadetection/landing IP 54.86.113.187 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:49:48 Last Seen2023-03-08 23:49:48 Times Seen1 Hash 5b2b1c7c067cf31071e3eb44e7cf3c81 53ac207345b7d5209849e494c27528db31c23b09 df3517139bdf63f0589210e4717ade0a0c96345be628fe366cf7f0f83683774d Loading...

	widget.trustpilot.com/trustboxes/5419b6a8b0d04a076446a9ad/main.js	56 kB	2023-03-08	2023-05-08
Pretty URL widget.trustpilot.com/trustboxes/5419b6a8b0d04a076446a9ad/main.js IP 143.204.55.101 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:45:44 Last Seen2023-05-08 11:51:05 Times Seen104 Hash f7d8a86392edc779b63392cb54a82abf 11b8ce12bc5bb8576df8190a5d001ede7313dff1 6d1f6db5e36ebb379fa23d98d00546f859e3b3c60dd158bdc1b873678add2e0d Loading...

	cdn.brandpa.com/js/jquery.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b	86 kB	2023-03-07	2024-02-22
Pretty URL cdn.brandpa.com/js/jquery.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b IP 54.230.111.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:39 Last Seen2024-02-22 04:29:10 Times Seen79 Hash eb761c3571b1286edb37cbc435be9bcf 2cd587d9663396c1b5e742b96f09912112f5f77e d1dc4ad2cfe31eaa7c57f4bc795eb11b2680cb798df9d1b0e71d744c5f8742b2 Loading...

	cdn.brandpa.com/v2/js/shared/v2-shared.js?cb=659fdcc172c16a70aaf6b34d6192f09b	18 kB	2023-03-07	2024-02-22
Pretty URL cdn.brandpa.com/v2/js/shared/v2-shared.js?cb=659fdcc172c16a70aaf6b34d6192f09b IP 54.230.111.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:38 Last Seen2024-02-22 04:29:10 Times Seen72 Hash 63e4fa3f7cac2a077039d91edf20a24f 3f9b1eb6f5265e1ae1ce2f30ac32fa1ffb7eaf85 0ab69b77a6c0e658031d2ce772a0c3e18de2b7e61284f2b27e026c1c9e6e4c92 Loading...

	cdn.brandpa.com/v2/vendor/smooth-scroll/dist/smooth-scroll.polyfills.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b	6.6 kB	2023-03-07	2024-05-08
Pretty URL cdn.brandpa.com/v2/vendor/smooth-scroll/dist/smooth-scroll.polyfills.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b IP 54.230.111.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:39 Last Seen2024-05-08 21:58:59 Times Seen229 Hash 62676384868a18036c009fa760ec1299 16e75ac6b7958c11c19bfd1248d18340241a29c3 8273d8d03942bb8c3ee319c3c8341b9fde427ab48b9fd65bc25dd5a76ebb1058 Loading...

	cdn.brandpa.com/v2/js/theme.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b	17 kB	2023-03-07	2024-02-22
Pretty URL cdn.brandpa.com/v2/js/theme.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b IP 54.230.111.13 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:38 Last Seen2024-02-22 04:29:10 Times Seen74 Hash ddb4e068c2d719652ee94e0b1b18f6cd 0a46daee297c4e17a942c55faec27c7758f26490 ee273304a74a16c3cd73a3bebbefc5828f31c43410b60ed6669aef8869c0f088 Loading...

HTTP Transactions (86)

URL IP Response Size

coronadetection.com/

52.202.22.6

301 Moved Permanently

338 B

URL HTTP/1.1
coronadetection.com/
IP
52.202.22.6:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
338 B (338 bytes)
Hash
df409ea98f69121d4fd58ee483abeea1
144da5b9d85906802d7f14c2e923966f3ee1110b
74eb38d2a9ba84c1990a1e81a660e844bc2c3149091591235c3741523816f211

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: coronadetection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 09 Dec 2022 10:37:06 GMT
Server: Apache/2.4.18 (Ubuntu)
Location: https://brandpa.com/names/coronadetection.com
Content-Length: 338
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5570
Expires: Fri, 09 Dec 2022 13:20:29 GMT
Date: Fri, 09 Dec 2022 11:47:39 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14144
Expires: Fri, 09 Dec 2022 15:43:23 GMT
Date: Fri, 09 Dec 2022 11:47:39 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15383
Expires: Fri, 09 Dec 2022 16:04:02 GMT
Date: Fri, 09 Dec 2022 11:47:39 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 11:08:18 GMT
content-type: application/json
age: 2361
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 42pjzk7kOcBScdXMbv6gLpjqu83Q7KeUJhQobFcsrmJQNY+30D9iTL/QT6xPpvM0chQELgwFQYvVKH0gmXNHTw==
x-amz-request-id: BJRTJEJYDV7N3GBW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 10:48:18 GMT
age: 3561
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 11:47:39 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 11:07:55 GMT
age: 2384
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.88

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.88:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
d0543452ab45d9b9ed02e8cdb73ab6dd
25edc77f52d4b266642a8e6936bdeac50ef6b082
535da8ddba99bf9c8a836648428670d048bad9c0267343fca2290460a34d49c1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=159537
Date: Fri, 09 Dec 2022 11:47:39 GMT
Etag: "6392ec8c-1d7"
Expires: Sun, 11 Dec 2022 08:06:36 GMT
Last-Modified: Fri, 09 Dec 2022 08:06:36 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uVVxQ6sRO1eKDUX0xEicwVfgKI1fYiw50iF_QRQw9sB2m4fH_T5sSA==

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5719
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 11:47:40 GMT
Last-Modified: Fri, 09 Dec 2022 10:12:21 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

brandpa.com/names/coronadetection.com

54.86.113.187

302 Found

366 B

URL HTTP/1.1
brandpa.com/names/coronadetection.com
IP
54.86.113.187:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
366 B (366 bytes)
Hash
ebc8513ce4cb3d273aa12304b12c5b4a
f5e6b7e146400c72ca168f6ea301db5c07fa66c0
5c1dd3dc24ba4ea6ccf37abb6a4a65cfc37d5da46d162540ec35a346b88b6e0f

HTTP Headers

GET /names/coronadetection.com HTTP/1.1
Host: brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 Found
Cache-Control: max-age=0, must-revalidate, no-cache, no-store, private
Content-Type: text/html; charset=UTF-8
Date: Fri, 09 Dec 2022 11:47:40 GMT
Location: /names/coronadetection/landing
Server: nginx
X-Frame-Options: sameorigin
Content-Length: 366
Connection: keep-alive

brandpa.com/names/coronadetection/landing

54.86.113.187

200 OK

12 kB

URL HTTP/1.1
brandpa.com/names/coronadetection/landing
IP
54.86.113.187:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (683)
Size
12 kB (11523 bytes)
Hash
ea6e9d11e102851e1f0711615b6028f2
6fc4fa91c6ce9c571f2ca028d4245d5cfa237ee0
2d4c80c48aec3722017ff3e9c2cedd5f9746cb4869e7a57456f1ae0de62de338

HTTP Headers

GET /names/coronadetection/landing HTTP/1.1
Host: brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate, no-cache, no-store, private
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Fri, 09 Dec 2022 11:47:40 GMT
Server: nginx
X-Frame-Options: sameorigin
Content-Length: 11523
Connection: keep-alive

widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b

143.204.55.101

200 OK

6.1 kB

URL HTTP/2
widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b
IP
143.204.55.101:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (19239)
Size
6.1 kB (6124 bytes)
Hash
5add60196e5f96a414fb4b9586764e5d
633f471b3c2fcedeef9cad90cb5bf56f5fe55588
5370f4ba91dda790c7cae92817b812fcbd1ab367cbb4862f5669960ae4e2c9e0

HTTP Headers

GET /bootstrap/v5/tp.widget.bootstrap.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6124
last-modified: Mon, 30 May 2022 14:38:02 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Fri, 09 Dec 2022 01:28:24 GMT
cache-control: max-age=86400
etag: "5add60196e5f96a414fb4b9586764e5d"
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PSPhoPPmCfbI4wrDILRCpogtJkyUUSEChY0H-nJWpwgF61wJcqWHFQ==
age: 37157
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.218.164.174

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.218.164.174:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: P8WoqJRdMav/iwg5diO/nQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: U/NMnDg/mfOpU7UunhcxrewDKb4=

ocsp.sca1b.amazontrust.com/

143.204.42.88

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.88:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
4495d6f51a7c79dca6be3ad079d43467
385a1ed95538c294e147af2af3213d50eb5e3d9b
272785b5769e36383a16ff7841860a033852652bfcd064f7aa12c331c6f1344f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 09 Dec 2022 11:47:40 GMT
Etag: "6391e719-1d7"
Last-Modified: Fri, 09 Dec 2022 10:15:44 GMT
Server: ECS (dcb/7EA5)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: C7ffoAoiEJ0DKC0zS7L8FUiVctRCyMKlhBUfIF_tB7phLjBj4vuOTA==
Age: 5516

cdn.brandpa.com/v2/img/cards-bw.png

54.230.111.13

200 OK

25 kB

URL HTTP/2
cdn.brandpa.com/v2/img/cards-bw.png
IP
54.230.111.13:0
ASN
#16509 AMAZON-02

File type
PNG image data, 602 x 75, 8-bit/color RGBA, non-interlaced\012- data
Size
25 kB (24774 bytes)
Hash
97eace84758df38454eb732abe8dda77
0de63a8fbbd68b083e227f66b62a13010aab6391
70ec9ff31591dc6ccd2829a8a670c83b47f865a0fc3af117ae1b7bb065f6311d

HTTP Headers

GET /v2/img/cards-bw.png HTTP/1.1
Host: cdn.brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 24774
accept-ranges: bytes
last-modified: Mon, 28 Nov 2022 21:09:58 GMT
server: nginx
date: Fri, 09 Dec 2022 11:47:40 GMT
etag: "638523a6-60c6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0qUrwzXDux2cbcivkRTRvOmHgn1qYw1kNVrAvA18tT6olyere68jdw==
age: 21416
X-Firefox-Spdy: h2

analytics.silktide.com/4d509e1f75c1158cc3694c5e08b18a66.js

143.204.55.50

200 OK

17 kB

URL HTTP/2
analytics.silktide.com/4d509e1f75c1158cc3694c5e08b18a66.js
IP
143.204.55.50:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (17058)
Size
17 kB (17443 bytes)
Hash
51d7dc69bc4ab159bed345f779b5783e
99721a25350a0927514b3b76c84ba165488a0d91
2e57f822c571df8b9df5807693dbd24636196e3d55ec945d4923489a34b90ee2

HTTP Headers

GET /4d509e1f75c1158cc3694c5e08b18a66.js HTTP/1.1
Host: analytics.silktide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 17443
date: Fri, 09 Dec 2022 11:05:11 GMT
last-modified: Fri, 09 Dec 2022 11:02:34 GMT
etag: "51d7dc69bc4ab159bed345f779b5783e"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _NLLSJwjp5vjIFnsQFYM-t_iBLhLyv2Z4K7khTfmp6TXsVWbB_M1Eg==
age: 2550
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4e3dc85fd71bdb106039966a96cdd02b
53d3487232ddcac30b53c224c94e63571633e5af
d0a3a292876b50c590a3fa6c04d3471a6fb726c54f57e75c21f2e1bd45424ace

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 11:47:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

brandpa.com/v2/img/logos/brandpa-logo-dark.png

54.86.113.187

200 OK

10 kB

URL HTTP/1.1
brandpa.com/v2/img/logos/brandpa-logo-dark.png
IP
54.86.113.187:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 200 x 80, 8-bit/color RGBA, interlaced\012- data
Size
10 kB (10143 bytes)
Hash
5eb254dee3991ceab32af50e798d03e4
7381bf3782915e913521205d83a9f4b0b2332386
445ad9d5e936366cf9fb0c102526eca367058884480986f1ace138e1e959097f

HTTP Headers

GET /v2/img/logos/brandpa-logo-dark.png HTTP/1.1
Host: brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/names/coronadetection/landing
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Fri, 09 Dec 2022 11:47:40 GMT
ETag: "638523a6-279f"
Last-Modified: Mon, 28 Nov 2022 21:09:58 GMT
Server: nginx
Content-Length: 10143
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4e3dc85fd71bdb106039966a96cdd02b
53d3487232ddcac30b53c224c94e63571633e5af
d0a3a292876b50c590a3fa6c04d3471a6fb726c54f57e75c21f2e1bd45424ace

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 11:47:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.brandpa.com/v2/fonts/around-icons.ttf?enmnv5

54.230.111.13

200 OK

74 kB

URL HTTP/2
cdn.brandpa.com/v2/fonts/around-icons.ttf?enmnv5
IP
54.230.111.13:0
ASN
#16509 AMAZON-02

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, around-icons\012- data
Size
74 kB (74516 bytes)
Hash
1f503dd82c8e0f129b5a55efe0a17868
65a61042c87db68abd74fe69252d63575899382f
1ac079262cd640ed984c09b6e5d7f56493dd0553b7c3bffa06d502db45f558f8

HTTP Headers

GET /v2/fonts/around-icons.ttf?enmnv5 HTTP/1.1
Host: cdn.brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://brandpa.com
Connection: keep-alive
Referer: https://cdn.brandpa.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
content-length: 74516
accept-ranges: bytes
access-control-allow-origin: *
last-modified: Mon, 28 Nov 2022 21:09:58 GMT
server: nginx
date: Fri, 09 Dec 2022 11:47:40 GMT
etag: "638523a6-12314"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: neLQDhX54IyMFUlSlE1F3ASeDaTk8OP2M8IsKwOlpVFIXLKM8uSb8A==
age: 16275
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c9208747f2926b414bae65ed0e18fac5
3b25f459b1fe1a63689880699450305a8aee8b77
2c5333a23ade630e8dd8242aa59e371fa2208e265c58916e6fa799683d53f196

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 11:47:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

widget.trustpilot.com/trustboxes/5419b6a8b0d04a076446a9ad/index.html?templateId=5419b6a8b0d04a076446a9ad&businessunitId=5b09542ed354b6000134ca6e

143.204.55.101

200 OK

2.0 kB

URL HTTP/2
widget.trustpilot.com/trustboxes/5419b6a8b0d04a076446a9ad/index.html?templateId=5419b6a8b0d04a076446a9ad&businessunitId=5b09542ed354b6000134ca6e
IP
143.204.55.101:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6419)
Size
2.0 kB (2030 bytes)
Hash
0bed8f219278d79878d48af3082f466e
b26b7fd8d8397b68ae6f1510034e0671883556d5
1ae19d1393877a59253b33b2fe2d410e7113b252f003b9e1189110f6a27dd55a

HTTP Headers

GET /trustboxes/5419b6a8b0d04a076446a9ad/index.html?templateId=5419b6a8b0d04a076446a9ad&businessunitId=5b09542ed354b6000134ca6e HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/html
content-length: 2030
date: Fri, 09 Dec 2022 03:37:26 GMT
last-modified: Tue, 04 Oct 2022 10:33:36 GMT
etag: "0bed8f219278d79878d48af3082f466e"
x-amz-server-side-encryption: AES256
cache-control: max-age=86400
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IqGeI3yvUm-ZiH7LfIxAvp8hI0tE6xmEDfe2gF6S1j4_M5b0Sb0Kag==
age: 29415
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c9208747f2926b414bae65ed0e18fac5
3b25f459b1fe1a63689880699450305a8aee8b77
2c5333a23ade630e8dd8242aa59e371fa2208e265c58916e6fa799683d53f196

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 11:47:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

142.250.74.163

200 OK

38 kB

URL HTTP/2
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Size
38 kB (37924 bytes)
Hash
e08be6d5d433944f7ad52902e4d24db5
e2600c1d60d12d397b3ee44411a021231d71e974
450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e

HTTP Headers

GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandpa.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 06:03:56 GMT
expires: Fri, 08 Dec 2023 06:03:56 GMT
cache-control: public, max-age=31536000
age: 107024
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c9208747f2926b414bae65ed0e18fac5
3b25f459b1fe1a63689880699450305a8aee8b77
2c5333a23ade630e8dd8242aa59e371fa2208e265c58916e6fa799683d53f196

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 11:47:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c9208747f2926b414bae65ed0e18fac5
3b25f459b1fe1a63689880699450305a8aee8b77
2c5333a23ade630e8dd8242aa59e371fa2208e265c58916e6fa799683d53f196

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 11:47:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

widget.trustpilot.com/trustboxes/5419b6a8b0d04a076446a9ad/main.js

143.204.55.101

200 OK

17 kB

URL HTTP/2
widget.trustpilot.com/trustboxes/5419b6a8b0d04a076446a9ad/main.js
IP
143.204.55.101:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (56151)
Size
17 kB (17316 bytes)
Hash
e0c85940aa394c44099c4b02cb3783a1
03bfad213f18c72f560e13605488208647f45ea7
e05a1c92bdd6989a57bc43aed483582feee48e374bc789a88d029c095fb00f08

HTTP Headers

GET /trustboxes/5419b6a8b0d04a076446a9ad/main.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b6a8b0d04a076446a9ad/index.html?templateId=5419b6a8b0d04a076446a9ad&businessunitId=5b09542ed354b6000134ca6e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/x-javascript
content-length: 17316
date: Thu, 08 Dec 2022 21:55:35 GMT
last-modified: Tue, 04 Oct 2022 10:33:38 GMT
etag: "e0c85940aa394c44099c4b02cb3783a1"
x-amz-server-side-encryption: AES256
cache-control: max-age=86400
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ya-lUHZA-O_CZ2mZIg9fFSosWARQAMNyj7INcK3ArTuGQ7omhzEZEQ==
age: 49926
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.88

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.88:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
9339e946ac214e7f0fae26fbb0f86402
c3c21c6f12a64d96ef5e39acb895db4210d46af8
bc70f65bc29e724b208408b2856b482a1865b2756093da1fd33e83526133d00e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=94444
Date: Fri, 09 Dec 2022 11:47:40 GMT
Etag: "6391d7ae-1d7"
Expires: Sat, 10 Dec 2022 14:01:44 GMT
Last-Modified: Thu, 08 Dec 2022 12:25:18 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: IfTRldXh0zq9k4Ji-ENHb67qi0_zG4FsjHFEKMsdIddmF9dQFpgDOA==
Age: 5786

fonts.googleapis.com/css?family=Inter:300,400,500,600,700&display=swap

142.250.74.74

200 OK

745 B

URL HTTP/2
fonts.googleapis.com/css?family=Inter:300,400,500,600,700&display=swap
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
745 B (745 bytes)
Hash
8a1baaec88830bb78569d4dca20ef811
cad637a79fc0259c36dcfec177f4b9905b8ece1d
f9e04c72954c90b4940e1d97980149c0194367744b03690b9ad97d847ddc6caf

HTTP Headers

GET /css?family=Inter:300,400,500,600,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.brandpa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 11:47:40 GMT
date: Fri, 09 Dec 2022 11:47:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c9208747f2926b414bae65ed0e18fac5
3b25f459b1fe1a63689880699450305a8aee8b77
2c5333a23ade630e8dd8242aa59e371fa2208e265c58916e6fa799683d53f196

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 11:47:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

brandpa.com/images/call.jpg

54.86.113.187

200 OK

11 kB

URL HTTP/1.1
brandpa.com/images/call.jpg
IP
54.86.113.187:0
ASN
#14618 AMAZON-AES

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=Copyright (c) 2013 OPOLJA/Shutterstock. No use without permission.], baseline, precision 8, 200x200, components 3\012- data
Size
11 kB (11273 bytes)
Hash
bf6bf5ced86a678bbffe2151e453fbe9
c23f6aa06713a101a8b77c88162cec554f7fadc3
61dfd0adbccd0107c25a625d05ba8a58fa868b971ba545192f460f0cd3ff4b8a

HTTP Headers

GET /images/call.jpg HTTP/1.1
Host: brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/names/coronadetection/landing
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/jpeg
Date: Fri, 09 Dec 2022 11:47:40 GMT
ETag: "638523a5-2c09"
Last-Modified: Mon, 28 Nov 2022 21:09:57 GMT
Server: nginx
Content-Length: 11273
Connection: keep-alive

ocsp.sca1b.amazontrust.com/

143.204.42.88

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.88:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
9339e946ac214e7f0fae26fbb0f86402
c3c21c6f12a64d96ef5e39acb895db4210d46af8
bc70f65bc29e724b208408b2856b482a1865b2756093da1fd33e83526133d00e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=94448
Date: Fri, 09 Dec 2022 11:47:40 GMT
Etag: "6391d7ae-1d7"
Expires: Sat, 10 Dec 2022 14:01:48 GMT
Last-Modified: Thu, 08 Dec 2022 12:25:18 GMT
Server: ECS (nyb/1D06)
X-Cache: Miss from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xyD3m9CR6BN39wWWQdSAQVv0tiYr-sjpJCtdvUAtk7KX8vXRev4Ufw==
Age: 5790

ocsp.sca1b.amazontrust.com/

143.204.42.88

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.88:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
9339e946ac214e7f0fae26fbb0f86402
c3c21c6f12a64d96ef5e39acb895db4210d46af8
bc70f65bc29e724b208408b2856b482a1865b2756093da1fd33e83526133d00e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=94449
Date: Fri, 09 Dec 2022 11:47:40 GMT
Etag: "6391d7ae-1d7"
Expires: Sat, 10 Dec 2022 14:01:49 GMT
Last-Modified: Thu, 08 Dec 2022 12:25:18 GMT
Server: ECS (nyb/1D0D)
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 23or0E4CnYXxUH9DcwuCpsBqC6oGbsge0rQW5yBUSXj36Y34mzmi4Q==
Age: 5791

ocsp.sca1b.amazontrust.com/

143.204.42.88

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.88:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
833835a9c0fb39bfb2d83d2ba2c6f3bc
860bfd1a1ebab06e7c9aaf304b759c1404f92b4b
dd5db143b4ff57fa3c72085f7b57a0026d59e90eb9ac03ad30ff0c894cee29fa

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=130380
Date: Fri, 09 Dec 2022 11:47:40 GMT
Etag: "639269db-1d7"
Expires: Sun, 11 Dec 2022 00:00:40 GMT
Last-Modified: Thu, 08 Dec 2022 22:48:59 GMT
Server: ECS (dcb/7F18)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tVEuiK00yEa8DDEUXBoyRxYqlL_36wUw0xQxaHW6YHrycJ9_Cul-PA==
Age: 4301

widget.trustpilot.com/trustbox-data/5419b6a8b0d04a076446a9ad?businessUnitId=5b09542ed354b6000134ca6e&locale=en-US

143.204.55.101

200 OK

547 B

URL HTTP/2
widget.trustpilot.com/trustbox-data/5419b6a8b0d04a076446a9ad?businessUnitId=5b09542ed354b6000134ca6e&locale=en-US
IP
143.204.55.101:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (1234), with no line terminators
Size
547 B (547 bytes)
Hash
69f6099768361eea1b1c9d5126733518
16b30c85b44389261c1448d4c27458394f67895a
3bfadebfcdde283b02a20aebbeb7e38da16e354e84539fd1dc54074b2b38e044

HTTP Headers

GET /trustbox-data/5419b6a8b0d04a076446a9ad?businessUnitId=5b09542ed354b6000134ca6e&locale=en-US HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b6a8b0d04a076446a9ad/index.html?templateId=5419b6a8b0d04a076446a9ad&businessunitId=5b09542ed354b6000134ca6e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 547
content-encoding: gzip
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public,max-age=1800
date: Fri, 09 Dec 2022 11:27:32 GMT
etag: "ce4e4b07a33cd23e94c3c956fde32be4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7uit1OXRn6VWnNCAr73GOhlgf9d4-GnD45zZ0k_KxG6i5tWSZ3l-hw==
age: 1208
X-Firefox-Spdy: h2

cdn.brandpa.com/v2/vendor/bootstrap/dist/js/bootstrap.bundle.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b

54.230.111.13

200 OK

23 kB

URL HTTP/2
cdn.brandpa.com/v2/vendor/bootstrap/dist/js/bootstrap.bundle.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b
IP
54.230.111.13:0
ASN
#16509 AMAZON-02

File type
data
Size
23 kB (22984 bytes)
Hash
e8bfbb50f8a25a17e93cf17b1a717dd3
71a8513650f9bba5d58d864d185d334c303f7d85
fcc877576fb4923060a8171b4a5e3eda83fe8ed3d22e0c4ead22242bf004baa9

HTTP Headers

GET /v2/vendor/bootstrap/dist/js/bootstrap.bundle.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b HTTP/1.1
Host: cdn.brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 09 Dec 2022 11:00:29 GMT
etag: W/"638523a6-13284"
last-modified: Mon, 28 Nov 2022 21:09:58 GMT
server: nginx
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wFpsH33jmCEngSC06n6_3J0rk0WoQvWhzRHtNMepGhYcQat7hlZWkw==
age: 2831
X-Firefox-Spdy: h2

widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=24px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5b09542ed354b6000134ca6e&widgetId=5419b6a8b0d04a076446a9ad

143.204.55.101

204 No Content

0 B

URL HTTP/2
widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=24px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5b09542ed354b6000134ca6e&widgetId=5419b6a8b0d04a076446a9ad
IP
143.204.55.101:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /stats/TrustboxImpression?locale=en-US&styleHeight=24px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5b09542ed354b6000134ca6e&widgetId=5419b6a8b0d04a076446a9ad HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b6a8b0d04a076446a9ad/index.html?templateId=5419b6a8b0d04a076446a9ad&businessunitId=5b09542ed354b6000134ca6e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Fri, 09 Dec 2022 11:47:40 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GOb5Z449RKKONFk6BDmiKtvyIp2gnUK6QL2nCbxrCms_bebQIfoT7g==
X-Firefox-Spdy: h2

a.eu.silktide.com/v1/events

34.251.130.40

200 OK

0 B

URL HTTP/2
a.eu.silktide.com/v1/events
IP
34.251.130.40:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v1/events HTTP/1.1
Host: a.eu.silktide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://brandpa.com/
Origin: https://brandpa.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 11:47:40 GMT
content-type: application/json
content-length: 0
x-powered-by: Silktide
access-control-allow-origin: *
access-control-allow-headers: content-type, x-forwarded-for
allow: OPTIONS, POST
X-Firefox-Spdy: h2

widget.trustpilot.com/stats/TrustboxView?locale=en-US&styleHeight=24px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5b09542ed354b6000134ca6e&widgetId=5419b6a8b0d04a076446a9ad

143.204.55.101

204 No Content

0 B

URL HTTP/2
widget.trustpilot.com/stats/TrustboxView?locale=en-US&styleHeight=24px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5b09542ed354b6000134ca6e&widgetId=5419b6a8b0d04a076446a9ad
IP
143.204.55.101:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /stats/TrustboxView?locale=en-US&styleHeight=24px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5b09542ed354b6000134ca6e&widgetId=5419b6a8b0d04a076446a9ad HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b6a8b0d04a076446a9ad/index.html?templateId=5419b6a8b0d04a076446a9ad&businessunitId=5b09542ed354b6000134ca6e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Fri, 09 Dec 2022 11:47:40 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ptvvp26hWDIIKEYtIOvIRn2qBSV2Y2acZ8Jvp2E1_YwqyIBmrNPvFA==
X-Firefox-Spdy: h2

a.eu.silktide.com/v1/events

34.251.130.40

202 Accepted

2 B

URL HTTP/2
a.eu.silktide.com/v1/events
IP
34.251.130.40:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /v1/events HTTP/1.1
Host: a.eu.silktide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 158
Origin: https://brandpa.com
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 202 Accepted
date: Fri, 09 Dec 2022 11:47:41 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by: Silktide
access-control-allow-origin: *
X-Firefox-Spdy: h2

s3.amazonaws.com/logos.brandpa.com/uploads/d88bc15af0acc4e67b7e1cc86e3b9542/CoronaDetection.png

52.217.98.158

200 OK

27 kB

URL HTTP/1.1
s3.amazonaws.com/logos.brandpa.com/uploads/d88bc15af0acc4e67b7e1cc86e3b9542/CoronaDetection.png
IP
52.217.98.158:0
ASN
#16509 AMAZON-02

File type
PNG image data, 795 x 480, 8-bit/color RGBA, non-interlaced\012- data
Size
27 kB (27146 bytes)
Hash
abee0145dd05b0586273984d4c280834
b857e5a7005ea8ae50f5d35e158c50db4022ae92
4b1057be95e913a37be53583f7598e0c6831377d1196d7eec1db5ea3c1a4fe2f

HTTP Headers

GET /logos.brandpa.com/uploads/d88bc15af0acc4e67b7e1cc86e3b9542/CoronaDetection.png HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 5NZxNoI2YvzbsXBjNvXuL2+yO6i3fdWmmd9gyXJO9iYBcxBamE94EXWb9fvP12cYjqyLRoxrKhk=
x-amz-request-id: KY7KFY8JDGHFZJCX
Date: Fri, 09 Dec 2022 11:47:41 GMT
Last-Modified: Mon, 07 Nov 2022 04:35:01 GMT
ETag: "abee0145dd05b0586273984d4c280834"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 27146

s3.amazonaws.com/logos.brandpa.com/images/square-c05f8b7d05f6fd8a0449409796c0c972.png

52.217.98.158

200 OK

32 kB

URL HTTP/1.1
s3.amazonaws.com/logos.brandpa.com/images/square-c05f8b7d05f6fd8a0449409796c0c972.png
IP
52.217.98.158:0
ASN
#16509 AMAZON-02

File type
PNG image data, 600 x 600, 8-bit/color RGB, non-interlaced\012- data
Size
32 kB (32285 bytes)
Hash
e8e8444d45a2883a04c46606bc40ebd9
0ed590d74cadf855693942b76a36c3f63f2bd9bd
c78a3d02ea618d253cc533a4b803a7c9463a91b389859a83f1aa08ac00056006

HTTP Headers

GET /logos.brandpa.com/images/square-c05f8b7d05f6fd8a0449409796c0c972.png HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: WuMBewaNU9KXMx6o+OFLwPy18Emwk82X/6Ib9W6ssTUIa/bTHtkS7hj/gPW75VA/CF87OIkCb6s=
x-amz-request-id: KY7KTWTT8SNQCTA0
Date: Fri, 09 Dec 2022 11:47:41 GMT
Last-Modified: Mon, 07 Nov 2022 04:37:26 GMT
ETag: "e8e8444d45a2883a04c46606bc40ebd9"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 32285

s3.amazonaws.com/logos.brandpa.com/banners/coronadetection-man-5-7a12-thumbnail.jpg

52.217.98.158

200 OK

51 kB

URL HTTP/1.1
s3.amazonaws.com/logos.brandpa.com/banners/coronadetection-man-5-7a12-thumbnail.jpg
IP
52.217.98.158:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 600x400, components 3\012- data
Size
51 kB (50801 bytes)
Hash
71d5900d670806d990b34ada8e28bca6
caac534d503178d84f3f1b90a8feee50d136111b
82c0a5e73efa5d888b73336b9743a5178c67806b7bb383dfa42ea80ebb354e64

HTTP Headers

GET /logos.brandpa.com/banners/coronadetection-man-5-7a12-thumbnail.jpg HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: Zdcy5F00xlsN2mJPwLQTrAg6YSFOXjG9JGOTLOjdRpm0uBcbwh3TQBnfGN8wj9ag5lzRiPzSdIc=
x-amz-request-id: KY7RA3A2J8DE7PJJ
Date: Fri, 09 Dec 2022 11:47:41 GMT
Last-Modified: Mon, 07 Nov 2022 04:37:27 GMT
ETag: "71d5900d670806d990b34ada8e28bca6"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 50801

s3.amazonaws.com/logos.brandpa.com/banners/coronadetection-laptop-1-7a12-thumbnail.jpg

52.217.98.158

200 OK

57 kB

URL HTTP/1.1
s3.amazonaws.com/logos.brandpa.com/banners/coronadetection-laptop-1-7a12-thumbnail.jpg
IP
52.217.98.158:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 600x400, components 3\012- data
Size
57 kB (57339 bytes)
Hash
3daa1fcff15177bdc0c18e41975526fc
dc3cdcf84c7ceab571d73e141d4afca228aa6aaf
4d82cb152966e29d27c812c2e480b7677991ee3de0ebfb396add16f8ee38873e

HTTP Headers

GET /logos.brandpa.com/banners/coronadetection-laptop-1-7a12-thumbnail.jpg HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: lv+NDMM3fWUBGqxQD5B1rkPcK787dRbACwwp2st2vNwiV22JjVokNg7LjCcejQPwVBLehjG4iVk=
x-amz-request-id: KY7RH6A2G6QSMZ8E
Date: Fri, 09 Dec 2022 11:47:41 GMT
Last-Modified: Mon, 07 Nov 2022 04:37:27 GMT
ETag: "3daa1fcff15177bdc0c18e41975526fc"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 57339

cdn.brandpa.com/images/favicon.png

54.230.111.13

200 OK

11 kB

URL HTTP/2
cdn.brandpa.com/images/favicon.png
IP
54.230.111.13:0
ASN
#16509 AMAZON-02

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10659 bytes)
Hash
ce9a74799ef4764a4f1c246097ac02b8
aad544145aaea84b28472d0c2639f9226115ab28
b6290351aaae92249c24ed8c5b7b9f46c0d243980e5363626fcc4ce8cdfe2a6f

HTTP Headers

GET /images/favicon.png HTTP/1.1
Host: cdn.brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 10659
accept-ranges: bytes
last-modified: Mon, 28 Nov 2022 21:09:57 GMT
server: nginx
date: Thu, 08 Dec 2022 20:38:09 GMT
etag: "638523a5-29a3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rHMxvc9V7W9K8lzht7FjWu6_bSW3qujQo5Z49o5vmB_GSdrXPmQBdg==
age: 54572
X-Firefox-Spdy: h2

s3.amazonaws.com/logos.brandpa.com/banners/coronadetection-building-1-7a12-thumbnail.jpg

52.217.98.158

200 OK

125 kB

URL HTTP/1.1
s3.amazonaws.com/logos.brandpa.com/banners/coronadetection-building-1-7a12-thumbnail.jpg
IP
52.217.98.158:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 600x451, components 3\012- data
Size
125 kB (125051 bytes)
Hash
b355ed5d849bd0cc83477332a9c38455
0d62f7f60b0d4b01b066d59fce6a6a6e0f4cf8ea
da9453c453a484ba08d96b167e8d4a762d6d47b3230d04a1c04e4ebb121c0e98

HTTP Headers

GET /logos.brandpa.com/banners/coronadetection-building-1-7a12-thumbnail.jpg HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: oMd93gSn3FctztoSpSq2sVLFqR5kDqZ+U5p9kNmLtCEV48WopgWy8JdtFGXVRlC3oQUZOSCtId4=
x-amz-request-id: KY7QB9F3B2XVDVH7
Date: Fri, 09 Dec 2022 11:47:41 GMT
Last-Modified: Mon, 07 Nov 2022 04:37:28 GMT
ETag: "b355ed5d849bd0cc83477332a9c38455"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 125051

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
615fddb7dcff0826f0a7dd4140f370b6
06d26c99fcf20516839a656c4c5b023088eb4eaa
f561bef7be5b58a820d37e40135c8bc83511ae9298e6317bf1761f7cc24941bf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3009
Cache-Control: max-age=106054
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 11:47:41 GMT
Etag: "63920fe2-1d7"
Expires: Sat, 10 Dec 2022 17:15:15 GMT
Last-Modified: Thu, 08 Dec 2022 16:25:06 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
795e67bdfadc3c890a663080413b56b7
fdefde3befb6aceac3c337c34c8d738f5091908c
8375b55cfc13989b0cf96293b7bead2ce5811a993b3445da1776ca7015c36985

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 11:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27340 bytes)
Hash
44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: osnp2V2TXGFBsSHCUEa7QJ0Mke+FfZPmy5F6cMJ8+yzT2csDte1zUb/iKk9XU36RN4iQTlPFWJmhvTBlKwe51A==
content-length: 27340
x-fb-trip-id: 1904183273
date: Fri, 09 Dec 2022 11:47:41 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

216.239.32.178

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
216.239.32.178:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 09 Dec 2022 10:41:08 GMT
expires: Fri, 09 Dec 2022 12:41:08 GMT
cache-control: public, max-age=7200
age: 3993
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
615fddb7dcff0826f0a7dd4140f370b6
06d26c99fcf20516839a656c4c5b023088eb4eaa
f561bef7be5b58a820d37e40135c8bc83511ae9298e6317bf1761f7cc24941bf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3009
Cache-Control: max-age=106054
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 11:47:41 GMT
Etag: "63920fe2-1d7"
Expires: Sat, 10 Dec 2022 17:15:15 GMT
Last-Modified: Thu, 08 Dec 2022 16:25:06 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

www.google-analytics.com/j/collect?v=1&_v=j98&a=1652743028&t=pageview&_s=1&dl=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&ul=en-us&de=UTF-8&dt=CoronaDetection.com%20is%20for%20sale&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1620897030&gjid=1160993071&cid=1837495611.1670586461&tid=UA-41300248-3&_gid=614964254.1670586461&_r=1&_slc=1&z=263053134

216.239.32.178

200 OK

4 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j98&a=1652743028&t=pageview&_s=1&dl=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&ul=en-us&de=UTF-8&dt=CoronaDetection.com%20is%20for%20sale&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1620897030&gjid=1160993071&cid=1837495611.1670586461&tid=UA-41300248-3&_gid=614964254.1670586461&_r=1&_slc=1&z=263053134
IP
216.239.32.178:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8

HTTP Headers

POST /j/collect?v=1&_v=j98&a=1652743028&t=pageview&_s=1&dl=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&ul=en-us&de=UTF-8&dt=CoronaDetection.com%20is%20for%20sale&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1620897030&gjid=1160993071&cid=1837495611.1670586461&tid=UA-41300248-3&_gid=614964254.1670586461&_r=1&_slc=1&z=263053134 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://brandpa.com
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://brandpa.com
date: Fri, 09 Dec 2022 11:47:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn.brandpa.com/js/jquery.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b

54.230.111.13

200 OK

30 kB

URL HTTP/2
cdn.brandpa.com/js/jquery.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b
IP
54.230.111.13:0
ASN
#16509 AMAZON-02

File type
data
Size
30 kB (30379 bytes)
Hash
934c5c3b4524dad8c1202f3f6a099940
9f84df0a7bb9258fdc0e18d99a65b485ffae10ef
5fa9d12dec4541ff44413b2b184ee13db94652864ff8d3bbf0a9d1c64994a5aa

HTTP Headers

GET /js/jquery.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b HTTP/1.1
Host: cdn.brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 09 Dec 2022 11:00:11 GMT
etag: W/"638523a6-14e9b"
last-modified: Mon, 28 Nov 2022 21:09:58 GMT
server: nginx
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yOB9j_Me2yyTJp7K-512PVf2kzngRGr8rgbJjWJ_s_hBAJoJxzqQvA==
age: 2849
X-Firefox-Spdy: h2

www.google-analytics.com/collect?v=1&_v=j98&a=1652743028&t=event&_s=2&dl=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&ul=en-us&de=UTF-8&dt=CoronaDetection.com%20is%20for%20sale&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&ec=Domain&ea=view&el=coronadetection.com&ev=4999&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=1837495611.1670586461&tid=UA-41300248-3&_gid=614964254.1670586461&z=166284074

216.239.32.178

200 OK

35 B

URL HTTP/2
www.google-analytics.com/collect?v=1&_v=j98&a=1652743028&t=event&_s=2&dl=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&ul=en-us&de=UTF-8&dt=CoronaDetection.com%20is%20for%20sale&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&ec=Domain&ea=view&el=coronadetection.com&ev=4999&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=1837495611.1670586461&tid=UA-41300248-3&_gid=614964254.1670586461&z=166284074
IP
216.239.32.178:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015

HTTP Headers

GET /collect?v=1&_v=j98&a=1652743028&t=event&_s=2&dl=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&ul=en-us&de=UTF-8&dt=CoronaDetection.com%20is%20for%20sale&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&ec=Domain&ea=view&el=coronadetection.com&ev=4999&_u=IEBAAEABAAAAACAAI~&jid=&gjid=&cid=1837495611.1670586461&tid=UA-41300248-3&_gid=614964254.1670586461&z=166284074 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Fri, 09 Dec 2022 02:44:09 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 32612
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18495
Expires: Fri, 09 Dec 2022 16:55:56 GMT
Date: Fri, 09 Dec 2022 11:47:41 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18495
Expires: Fri, 09 Dec 2022 16:55:56 GMT
Date: Fri, 09 Dec 2022 11:47:41 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5169 bytes)
Hash
06514ce96ae21cb01f526a5febdcbeb4
ebb97e5b97f394e8c67098f55581d5329ce819a2
4099a2fb6ddc4feaa30f357a180d64aeb7c9fc73f115fc762d5fe5c221d2e89e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5169
x-amzn-requestid: 277a1b04-4e19-4313-8aac-5f9ab9076305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEdkFGrIAMFvHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb456-5b21edd57297665012d536cc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: swNGUcNy2i0w9UGe-EJhwslE01TzTC3rrDhLhVVxHyhWMGSC1uq0mA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:46:15 GMT
age: 25286
etag: "ebb97e5b97f394e8c67098f55581d5329ce819a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6578 bytes)
Hash
8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: nXaZ1pazAGWMI9GFYZjGlvVVIb8wX6feD0O8VpzjsL8F8l3mFmydAw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:59 GMT
age: 16422
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10205 bytes)
Hash
45e0c1638ad919bde19731f7987ab064
1e492807c665e6e6b24ec6ce19035fdfc6f23b92
f0d3738ec8406958470c8fd152a02a123d7654c30f974c1df5c4977a380c2d62

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10205
x-amzn-requestid: c5704c7a-60c4-402b-8018-5885a8dae971
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F9BIAMF3ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-3e9573d900714e3250f43e17;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mLTL7L808-OguYGrl3FUvwmFmPQjBPRj7PVfgEheFHWg4g4skoBvOg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 18:05:28 GMT
age: 63733
etag: "1e492807c665e6e6b24ec6ce19035fdfc6f23b92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.2 kB (7217 bytes)
Hash
955c6ac69b89f6cbd497df53fcb2ae1b
2506152cdd1056533116feb9350124356e570e54
fca1b303a554aa9cdd13c4769a1088e1905ef888ed703de17864fe76ff880abe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7217
x-amzn-requestid: be9196fc-3d43-49db-8522-8781cbf5a247
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUEDEWpIAMFqUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e66e6-04b24220213872ba378d3538;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4QlJZW4ZiPNVhOJbcRldanR8veym3l0sIBGa1Ym-4FOTT_utMQeZQg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 09:33:53 GMT
age: 8028
etag: "2506152cdd1056533116feb9350124356e570e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7897 bytes)
Hash
8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oV7bB5Tek01MFi9x2tr_Wix13-UGlQPIt042XM0ALNUvVFYnu5DRcg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:38:26 GMT
age: 29355
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5188 bytes)
Hash
fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dGxzuQ6zj6wXQbkBuKBnOKxwKJDHUyGoi7PgcugcpdX4QYruNiFxsQ==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:24 GMT
age: 50177
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

script.hotjar.com/modules.bc0a4c72d88d266f15af.js

143.204.55.96

200 OK

69 kB

URL HTTP/2
script.hotjar.com/modules.bc0a4c72d88d266f15af.js
IP
143.204.55.96:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (48638)
Size
69 kB (68590 bytes)
Hash
2375e31c5dc0ca09d740bee5c1486c2b
d68ad5ffd79e99af40377945f2f41db8b6f00ad0
2197593e6c85391abbb9c0cba866862dc84bad91aedbe5d90d374e413504f5cb

HTTP Headers

GET /modules.bc0a4c72d88d266f15af.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 68590
date: Wed, 07 Dec 2022 14:35:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "2375e31c5dc0ca09d740bee5c1486c2b"
last-modified: Wed, 07 Dec 2022 14:34:24 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TRhK6C0lURS1w8Kl5ot9_ZtTWvB-IEhA7KBTGYH8uMcili0JhHu9qg==
age: 162755
X-Firefox-Spdy: h2

vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html

143.204.55.118

200 OK

1.0 kB

URL HTTP/2
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP
143.204.55.118:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Size
1.0 kB (1035 bytes)
Hash
e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d

HTTP Headers

GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kL7HQxhg1qXjrmXOo2aTPEXuxtuIowpZQ6PZLdPq6ik-k4ufZtC6AQ==
age: 1377455
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2556512b197b09798af71bea10bb4bbb
23b647aca5f8294ae82fa8cc7e2215ebe3347b60
3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 11:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-41300248-3&cid=1837495611.1670586461&jid=1620897030&gjid=1160993071&_gid=614964254.1670586461&_u=IEBAAEAAAAAAACAAI~&z=1648343962

108.177.14.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-41300248-3&cid=1837495611.1670586461&jid=1620897030&gjid=1160993071&_gid=614964254.1670586461&_u=IEBAAEAAAAAAACAAI~&z=1648343962
IP
108.177.14.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-41300248-3&cid=1837495611.1670586461&jid=1620897030&gjid=1160993071&_gid=614964254.1670586461&_u=IEBAAEAAAAAAACAAI~&z=1648343962 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://brandpa.com
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://brandpa.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 09 Dec 2022 11:47:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2556512b197b09798af71bea10bb4bbb
23b647aca5f8294ae82fa8cc7e2215ebe3347b60
3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 11:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.brandpa.com/v2/css/theme.min.css

54.230.111.13

200 OK

53 kB

URL HTTP/2
cdn.brandpa.com/v2/css/theme.min.css
IP
54.230.111.13:0
ASN
#16509 AMAZON-02

File type
data
Size
53 kB (52979 bytes)
Hash
f79fe33c0f5d5b2c5d36418cb0d5f278
2ed40f86abad7b1dbb43adbfb894cc8854c7d9e3
c3237e3570f251002f63ed3dc3aad9d6d5d15df613ce70c2ad536cbe214b5ac2

HTTP Headers

GET /v2/css/theme.min.css HTTP/1.1
Host: cdn.brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 28 Nov 2022 21:09:58 GMT
server: nginx
content-encoding: gzip
date: Fri, 09 Dec 2022 11:47:40 GMT
etag: W/"638523a6-4fa87"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lIs_uFB4Vg2WN-Yc37q6Rmn2zhmtGiO4Ns8Iyvs8-asDtWeEtXsyGw==
age: 33334
X-Firefox-Spdy: h2

cdn.brandpa.com/v2/css/overrides.css?cb=659fdcc172c16a70aaf6b34d6192f09b

54.230.111.13

200 OK

5.7 kB

URL HTTP/2
cdn.brandpa.com/v2/css/overrides.css?cb=659fdcc172c16a70aaf6b34d6192f09b
IP
54.230.111.13:0
ASN
#16509 AMAZON-02

File type
data
Size
5.7 kB (5664 bytes)
Hash
51656841cf8d8040d57ed67728d4c387
bef67917b5044fea91bd2a3f9e35112ab7ab0168
771baf4e750c1da1a05dfc2dceed59ca0a8f7c2c9c08865a5665712be7c8ef2b

HTTP Headers

GET /v2/css/overrides.css?cb=659fdcc172c16a70aaf6b34d6192f09b HTTP/1.1
Host: cdn.brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
content-type: text/css
date: Fri, 09 Dec 2022 11:00:29 GMT
etag: W/"638523a6-53c8"
last-modified: Mon, 28 Nov 2022 21:09:58 GMT
server: nginx
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4wf9A5GiQMNDkJO5syS6mlcGB8i1HE_YJDBmfFVgU1kJcweuzIwC3Q==
age: 2831
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41300248-3&cid=1837495611.1670586461&jid=1620897030&_u=IEBAAEAAAAAAACAAI~&z=334911018

216.58.211.4

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41300248-3&cid=1837495611.1670586461&jid=1620897030&_u=IEBAAEAAAAAAACAAI~&z=334911018
IP
216.58.211.4:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41300248-3&cid=1837495611.1670586461&jid=1620897030&_u=IEBAAEAAAAAAACAAI~&z=334911018 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 11:47:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41300248-3&cid=1837495611.1670586461&jid=1620897030&_u=IEBAAEAAAAAAACAAI~&z=334911018

142.250.74.67

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41300248-3&cid=1837495611.1670586461&jid=1620897030&_u=IEBAAEAAAAAAACAAI~&z=334911018
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-41300248-3&cid=1837495611.1670586461&jid=1620897030&_u=IEBAAEAAAAAAACAAI~&z=334911018 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 11:47:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
32d90ff0cc366730c3633c1201b4c058
f4175292b607197a15085e14bf69df301dff6706
b4b2f80fbe9b02f3d54dc35a3738c31a4d7cb5a5e528fcbce50263d8c458231a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 11:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8585fe73b51c643ee300c3df9313bfe1
c184ce0c12fbfc0f17a81ad0e0bdaad5503bceb1
807b590f961c83886bbd27c879dfbf03a3336005cdabbba42d4d63bdcb11bf51

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 11:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sca1b.amazontrust.com/

143.204.42.88

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.88:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
1f5e215f8a7a02c43465654c397e0bbd
167bfd0fe3b0bba7170f6d2b9e345ef6b3b6dfd7
ea8f444a8683640e753d493f1ffed8356ad3280f8e64f5e38e95b6551e84b383

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=105037
Date: Fri, 09 Dec 2022 11:47:41 GMT
Etag: "639201e6-1d7"
Expires: Sat, 10 Dec 2022 16:58:18 GMT
Last-Modified: Thu, 08 Dec 2022 15:25:26 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: j79lwwX2XrAn8LYfL7yVQfURCpjXb1Dd4HQJrejuF75_1Sb0X-VP_Q==
Age: 5572

www.facebook.com/tr/?id=584104555758185&ev=PageView&dl=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&rl=&if=false&ts=1670586460943&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670586460940.1035328063&it=1670586460561&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=584104555758185&ev=PageView&dl=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&rl=&if=false&ts=1670586460943&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670586460940.1035328063&it=1670586460561&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=584104555758185&ev=PageView&dl=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&rl=&if=false&ts=1670586460943&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1670586460940.1035328063&it=1670586460561&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 09 Dec 2022 11:47:41 GMT
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=584104555758185&ev=ViewContent&dl=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&rl=&if=false&ts=1670586460945&cd[content_ids]=%5B%22coronadetection.com%22%5D&cd[content_type]=product&cd[value]=4999&cd[currency]=USD&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=30&fbp=fb.1.1670586460940.1035328063&it=1670586460561&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=584104555758185&ev=ViewContent&dl=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&rl=&if=false&ts=1670586460945&cd[content_ids]=%5B%22coronadetection.com%22%5D&cd[content_type]=product&cd[value]=4999&cd[currency]=USD&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=30&fbp=fb.1.1670586460940.1035328063&it=1670586460561&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=584104555758185&ev=ViewContent&dl=https%3A%2F%2Fbrandpa.com%2Fnames%2Fcoronadetection%2Flanding&rl=&if=false&ts=1670586460945&cd[content_ids]=%5B%22coronadetection.com%22%5D&cd[content_type]=product&cd[value]=4999&cd[currency]=USD&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=30&fbp=fb.1.1670586460940.1035328063&it=1670586460561&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 09 Dec 2022 11:47:41 GMT
X-Firefox-Spdy: h2

cdn.brandpa.com/v2/vendor/simplebar/dist/simplebar.min.css

54.230.111.13

200 OK

0 B

URL HTTP/2
cdn.brandpa.com/v2/vendor/simplebar/dist/simplebar.min.css
IP
54.230.111.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v2/vendor/simplebar/dist/simplebar.min.css HTTP/1.1
Host: cdn.brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 28 Nov 2022 21:09:58 GMT
server: nginx
content-encoding: gzip
date: Fri, 09 Dec 2022 00:53:44 GMT
etag: W/"638523a6-b79"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ipifjgxbDmP7r5uJ2ml-vhJf3BT3Ov_wFnDrXxvGxFYewKvLxlVbxA==
age: 39236
X-Firefox-Spdy: h2

cdn.brandpa.com/v2/vendor/nouislider/dist/nouislider.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b

54.230.111.13

200 OK

0 B

URL HTTP/2
cdn.brandpa.com/v2/vendor/nouislider/dist/nouislider.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b
IP
54.230.111.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v2/vendor/nouislider/dist/nouislider.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b HTTP/1.1
Host: cdn.brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 09 Dec 2022 11:00:29 GMT
etag: W/"638523a6-6803"
last-modified: Mon, 28 Nov 2022 21:09:58 GMT
server: nginx
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aX0KucIlflk1hGur4aZbWXd__yC54loShItfVCg0rNr7J66J8CAJDw==
age: 2831
X-Firefox-Spdy: h2

cdn.brandpa.com/v2/vendor/smooth-scroll/dist/smooth-scroll.polyfills.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b

54.230.111.13

200 OK

0 B

URL HTTP/2
cdn.brandpa.com/v2/vendor/smooth-scroll/dist/smooth-scroll.polyfills.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b
IP
54.230.111.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v2/vendor/smooth-scroll/dist/smooth-scroll.polyfills.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b HTTP/1.1
Host: cdn.brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 09 Dec 2022 11:00:29 GMT
etag: W/"638523a6-19a3"
last-modified: Mon, 28 Nov 2022 21:09:58 GMT
server: nginx
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AyKfE5VqkNcB5HbBuE2L55ov86691uQ4pprCgwqjHfK_itYc8S1xeA==
age: 2831
X-Firefox-Spdy: h2

cdn.brandpa.com/v2/js/theme.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b

54.230.111.13

200 OK

0 B

URL HTTP/2
cdn.brandpa.com/v2/js/theme.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b
IP
54.230.111.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v2/js/theme.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b HTTP/1.1
Host: cdn.brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 09 Dec 2022 11:00:29 GMT
etag: W/"638523a6-41a5"
last-modified: Mon, 28 Nov 2022 21:09:58 GMT
server: nginx
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WAaG9zsHH9W5lyaGsysS9lHwEzpIQkgsMxE9RBJDErvtwVtILPaIbw==
age: 2831
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-1308101.js?sv=6

143.204.55.84

200 OK

0 B

URL HTTP/2
static.hotjar.com/c/hotjar-1308101.js?sv=6
IP
143.204.55.84:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/hotjar-1308101.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Fri, 09 Dec 2022 11:47:41 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/075c102b15b48264f625ecc32964ceb7
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: m1iVuCr89b5Qn2oU0qWA3LWHXwwS2OsdbVLmguNxxqmOKZZ1TaFWjw==
X-Firefox-Spdy: h2

in.hotjar.com/api/v2/client/sites/1308101/visit-data?sv=6

99.81.68.255

200 OK

0 B

URL HTTP/2
in.hotjar.com/api/v2/client/sites/1308101/visit-data?sv=6
IP
99.81.68.255:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /api/v2/client/sites/1308101/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 146
Origin: https://brandpa.com
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 11:47:41 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2

cdn.brandpa.com/v2/vendor/simplebar/dist/simplebar.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b

54.230.111.13

200 OK

0 B

URL HTTP/2
cdn.brandpa.com/v2/vendor/simplebar/dist/simplebar.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b
IP
54.230.111.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v2/vendor/simplebar/dist/simplebar.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b HTTP/1.1
Host: cdn.brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 09 Dec 2022 11:00:29 GMT
etag: W/"638523a6-e57e"
last-modified: Mon, 28 Nov 2022 21:09:58 GMT
server: nginx
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fqcHzaG-ARtkuz-6GlJmjD6W8v9lgRW56YVWfhbt6yZtgnlqOUG6zQ==
age: 2831
X-Firefox-Spdy: h2

cdn.brandpa.com/js/lazysizes/lazysizes.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b

54.230.111.13

200 OK

0 B

URL HTTP/2
cdn.brandpa.com/js/lazysizes/lazysizes.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b
IP
54.230.111.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/lazysizes/lazysizes.min.js?cb=659fdcc172c16a70aaf6b34d6192f09b HTTP/1.1
Host: cdn.brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 09 Dec 2022 11:00:11 GMT
etag: W/"638523a6-1c43"
last-modified: Mon, 28 Nov 2022 21:09:58 GMT
server: nginx
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oofcoVo3WYmEwmiVxtG4kn-fk7P32RK7sFFxAzNTigf5mM5oUZn5GA==
age: 2849
X-Firefox-Spdy: h2

cdn.brandpa.com/v2/js/shared/v2-shared.js?cb=659fdcc172c16a70aaf6b34d6192f09b

54.230.111.13

200 OK

0 B

URL HTTP/2
cdn.brandpa.com/v2/js/shared/v2-shared.js?cb=659fdcc172c16a70aaf6b34d6192f09b
IP
54.230.111.13:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v2/js/shared/v2-shared.js?cb=659fdcc172c16a70aaf6b34d6192f09b HTTP/1.1
Host: cdn.brandpa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandpa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Fri, 09 Dec 2022 11:00:29 GMT
etag: W/"638523a6-47a9"
last-modified: Mon, 28 Nov 2022 21:09:58 GMT
server: nginx
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OfaMOushIIOiDQqzjJhol7lkx0y1A8O7h8H2jTUK5wCJpgFdH5zdkg==
age: 2831
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations