Network Analysis

GET /attachments/891021838312931420/902505896159113296/PL_Client.bmp HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.63 Safari/537.36 Host: cdn.discordapp.com Cache-Control: no-cache

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:04 GMT Content-Type: image/x-ms-bmp Content-Length: 1329668 Connection: keep-alive CF-Ray: 6a8ba31b58723531-ICN Accept-Ranges: bytes Age: 761144 Cache-Control: public, max-age=31536000 Content-Disposition: attachment;%20filename=PL_Client.bmp ETag: "6542ff843d091ef9901e839405497fa2" Expires: Fri, 04 Nov 2022 06:03:04 GMT Last-Modified: Tue, 26 Oct 2021 10:36:13 GMT Vary: Accept-Encoding CF-Cache-Status: HIT Alt-Svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400, h3-28=":443"; ma=86400, h3-27=":443"; ma=86400 Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" x-goog-generation: 1635244573456495 x-goog-hash: crc32c=oNVWKg== x-goog-hash: md5=ZUL/hD0JHvmQHoOUBUl/og== x-goog-metageneration: 1 x-goog-storage-class: STANDARD x-goog-stored-content-encoding: identity x-goog-stored-content-length: 1329668 X-GUploader-UploadID: ADPycdtwhWddoZV5AKuuSgGaxbJgxEniZVV1P3_LPByf4iofBWU7eXZA2qToOdd3Cc6Za17w-NgwgP5Tw7qo12HeiHVimhJCEA X-Robots-Tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RDbTDVq9d6bT3iwEddFQVcTY5UK%2BhbObr55hwowPiaqq31cxevLUgTekIXl58HSgWqNB7%2Bg5%2BS8nlBi7EikuhodIBUagW2jYY1fB4YEn9%2FZjTY%2BRgRMw%2Fm68eqbWaruwGLs1xQ%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare

GET /widget HTTP/1.1 Connection: Keep-Alive Referer: https://ipinfo.io/ User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: ipinfo.io

HTTP/1.1 200 OK access-control-allow-origin: * x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-content-type-options: nosniff referrer-policy: strict-origin-when-cross-origin content-type: application/json; charset=utf-8 content-length: 876 date: Thu, 04 Nov 2021 06:03:05 GMT x-envoy-upstream-service-time: 22 vary: Accept-Encoding Via: 1.1 google Alt-Svc: clear

GET /attachments/896617596772839426/897483264074350653/Service.bmp HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: cdn.discordapp.com Cache-Control: no-cache

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:14 GMT Content-Type: image/x-ms-bmp Content-Length: 398336 Connection: keep-alive CF-Ray: 6a8ba35a6ce900cf-ICN Accept-Ranges: bytes Age: 1958570 Cache-Control: public, max-age=31536000 Content-Disposition: attachment;%20filename=Service.bmp ETag: "19b0bf2bb132231de9dd08f8761c5998" Expires: Fri, 04 Nov 2022 06:03:14 GMT Last-Modified: Tue, 12 Oct 2021 13:58:04 GMT Vary: Accept-Encoding CF-Cache-Status: HIT Alt-Svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400, h3-28=":443"; ma=86400, h3-27=":443"; ma=86400 Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" x-goog-generation: 1634047084640154 x-goog-hash: crc32c=8rofXA== x-goog-hash: md5=GbC/K7EyIx3p3Qj4dhxZmA== x-goog-metageneration: 1 x-goog-storage-class: STANDARD x-goog-stored-content-encoding: identity x-goog-stored-content-length: 398336 X-GUploader-UploadID: ADPycdvNYTbv9XMaMw4eqsPhAZ95SFF6BNMkHC4FIwFjV1JqAmYk09LSMZ2PfxLCVnYxOrXs6E137zs8vxYTubF9S3_V3qUOfw X-Robots-Tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gcWJ0VZUaQ7glbIsWaWr21IOlIT8bzju4OMHOJFofb1va8iiKGgFqKx930Bwlc%2FuY2szFXAqLwYzpZmHP5cFMzKSo1%2FhmGdy19O%2Bo%2FFFBupfepNiicqtjXa1KLiXyWaYc4JHag%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare

GET /attachments/891006172130345095/905376099935080508/realV2_0301.bmp HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: cdn.discordapp.com Cache-Control: no-cache

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:14 GMT Content-Type: image/x-ms-bmp Content-Length: 738308 Connection: keep-alive CF-Ray: 6a8ba35a6c5f12de-ICN Accept-Ranges: bytes Age: 76533 Cache-Control: public, max-age=31536000 Content-Disposition: attachment;%20filename=realV2_0301.bmp ETag: "766837687f2fd867a07419ea3221a83d" Expires: Fri, 04 Nov 2022 06:03:14 GMT Last-Modified: Wed, 03 Nov 2021 08:41:23 GMT Vary: Accept-Encoding CF-Cache-Status: HIT Alt-Svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400, h3-28=":443"; ma=86400, h3-27=":443"; ma=86400 Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" x-goog-generation: 1635928883347918 x-goog-hash: crc32c=9c9YSA== x-goog-hash: md5=dmg3aH8v2GegdBnqMiGoPQ== x-goog-metageneration: 1 x-goog-storage-class: STANDARD x-goog-stored-content-encoding: identity x-goog-stored-content-length: 738308 X-GUploader-UploadID: ADPycdsBLS_onaNoj-8OQD5zPB8NGh4LApgiYmOKQyHRJzc1J-Mos8xyrh4isUZxfPweRAklAr6bZmIr5kkMEuMG7KgTKzjnvg X-Robots-Tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ujO8gKsygp1youFW5sBYfxLdG6lBkDh2V1N0KoJtCnhkR9Pwy77oJuoe4bz5ngR3zLEGGWVWOHcnZedAwrp9GUVOIAoeNJ66BYcBs4wNzh35npFlShSh3gcUCAzDaP%2Fqc37ktw%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare

GET / HTTP/1.1 Connection: Keep-Alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: yandex.ru

HTTP/1.1 200 Ok Accept-CH: Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT Accept-CH-Lifetime: 31536000 Cache-Control: no-cache,no-store,max-age=0,must-revalidate Content-Security-Policy: img-src *.verify.yandex.ru auto.ru strm.yandex.net thequestion.ru www.kinopoisk.ru zen-yandex-ru.cdnclab.net 'self' yastatic.net data: yandex.ru resize.yandex.net *.strm.yandex.net strm.yandex.ru avatars-fast.yandex.net favicon.yandex.net banners.adfox.ru content.adfox.ru ads6.adfox.ru yastat.net avatars.mds.yandex.net mc.yandex.ru *.tns-counter.ru verify.yandex.ru ads.adfox.ru bs.serving-sys.com ad.adriver.ru wcm.solution.weborama.fr wcm-ru.frontend.weborama.fr mc.admetrica.ru ad.doubleclick.net rgi.io track.rutarget.ru ssl.hurra.com px.moatads.com amc.yandex.ru gdeby.hit.gemius.pl tps.doubleverify.com pixel.adsafeprotected.com impression.appsflyer.com yabs.yandex.ru zen.yandex.ru s3.mds.yandex.net zen.s3.yandex.net *.mediascope.mc.yandex.ru tns-counter.ru storage.mds.yandex.net an.yandex.ru awaps.yandex.net awaps.yandex.ru gdero.hit.gemius.pl pixel.adlooxtracking.com mc.yandex.com *.mc.yandex.ru adstat.yandex.ru;media-src *.cdn.ngenix.net blob: *.strm.yandex.net *.yandex.net strm.yandex.ru *.strm.yandex.ru yastat.net data: yandex.ru yandex.st yastatic.net banners.adfox.ru content.adfox.ru;child-src passport.yandex.ru passport.yandex.ru yandex.ru yastatic.net 'self' blob: zen.yandex.ru awaps.yandex.net yandexadexchange.net *.yandexadexchange.net storage.mds.yandex.net *.yandex.ru banners.adfox.ru yastat.net mc.yandex.ru mc.yandex.md;style-src 'unsafe-inline' yastatic.net zen.yandex.ru yandex.st banners.adfox.ru content.adfox.ru yastat.net;report-uri https://csp.yandex.net/csp?project=morda&from=morda.big.ru&showid=1636005797.87687.85687.160600&h=stable-morda-sas-yp-116&yandexuid=9971437521636005797&&version=2021-11-02-1&adb=0;script-src 'nonce-6QpBuY/t0+2xfq/+WBiJzw==' mc.yandex.com zen-yandex-ru.cdnclab.net yastatic.net yandex.ru 'self' an.yandex.ru z.moatads.com storage.mds.yandex.net zen.yandex.ru yandex.st mc.yandex.ru banners.adfox.ru ads.adfox.ru ads6.adfox.ru yastat.net *.mc.yandex.ru adstat.yandex.ru;connect-src *.cdn.ngenix.net *.strm.yandex.net auto.ru blob: favicon.yandex.net log.strm.yandex.ru mc.yandex.com thequestion.ru www.kinopoisk.ru zen-yandex-ru.cdnclab.net yandex.ru yastatic.net yastat.net 'self' portal-xiva.yandex.net wss://portal-xiva.yandex.net strm.yandex.ru mobile.yandex.net yabs.yandex.ru an.yandex.ru verify.yandex.ru *.verify.yandex.ru mc.yandex.ru yandex.st matchid.adfox.yandex.ru adfox.yandex.ru ads.adfox.ru ads6.adfox.ru jstracer.yandex.ru awaps.yandex.ru tps.doubleverify.com pixel.adsafeprotected.com wss://webasr.voicetech.yandex.net zen.yandex.ru *.mediascope.mc.yandex.ru *.strm.yandex.ru frontend.vh.yandex.ru wss://push.yandex.ru awaps.yandex.net *.mc.yandex.ru adstat.yandex.ru mc.admetrica.ru;default-src yastatic.net yastat.net zen.yandex.ru awaps.yandex.net awaps.yandex.ru;font-src yastatic.net zen.yandex.ru an.yandex.ru yastat.net data: 'self';object-src avatars.mds.yandex.net Content-Type: text/html; charset=UTF-8 Date: Thu, 04 Nov 2021 06:03:18 GMT Expires: Thu, 04 Nov 2021 06:03:18 GMT Last-Modified: Thu, 04 Nov 2021 06:03:18 GMT NEL: {"report_to": "network-errors", "max_age": 86400, "success_fraction": 0.001, "failure_fraction": 0.1} P3P: policyref="/w3c/p3p.xml", CP="NON DSP ADM DEV PSD IVDo OUR IND STP PHY PRE NAV UNI" Report-To: { "group": "network-errors", "max_age": 86400, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]} Set-Cookie: yp=1638597798.ygu.1; Expires=Sun, 02-Nov-2031 06:03:17 GMT; Domain=.yandex.ru; Path=/ Set-Cookie: mda=0; Expires=Fri, 04-Mar-2022 06:03:17 GMT; Domain=.yandex.ru; Path=/ Set-Cookie: yandex_gid=10635; Expires=Sat, 04-Dec-2021 06:03:17 GMT; Domain=.yandex.ru; Path=/ Set-Cookie: yandexuid=9971437521636005797; Path=/; Domain=.yandex.ru; Expires=Sun, 02-Nov-2031 06:03:17 GMT; Secure Set-Cookie: is_gdpr=0; Path=/; Domain=.yandex.ru; Expires=Sat, 04 Nov 2023 06:03:17 GMT Set-Cookie: is_gdpr_b=COaIGBCBTygC; Path=/; Domain=.yandex.ru; Expires=Sat, 04 Nov 2023 06:03:17 GMT Set-Cookie: _yasc=TV2E+0U24dX4re1uxzpRimI9BKEk69BO+jo7IeVofssyFw8t; domain=.yandex.ru; path=/; expires=Sat, 04-Dec-2021 06:03:17 GMT; secure Set-Cookie: i=pL2lgDU7FmAyf1mHxG7JkjhvxjSs738dtzSbFXxyNWQaUFxIAMjNo5+TK1b7J2lgB6ifh+PnUSix3ZFc0TwjR9Y3wMU=; Expires=Sat, 04-Nov-2023 06:03:17 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly Strict-Transport-Security: max-age=31536000; includeSubDomains Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: DENY X-Requestid: 1636005797.87687.85687.160600 X-Yandex-Req-Id: 1636005797828664-9203606794797143752-man1-0130-man-l7-balancer-8080-BAL-4283

GET /widget HTTP/1.1 Connection: Keep-Alive Referer: https://ipinfo.io/ User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: ipinfo.io

HTTP/1.1 200 OK access-control-allow-origin: * x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-content-type-options: nosniff referrer-policy: strict-origin-when-cross-origin content-type: application/json; charset=utf-8 content-length: 876 date: Thu, 04 Nov 2021 06:03:22 GMT x-envoy-upstream-service-time: 19 vary: Accept-Encoding Via: 1.1 google Alt-Svc: clear

GET /attachments/896617596772839426/899593707228135434/Cube_WW14.bmp HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: cdn.discordapp.com Cache-Control: no-cache

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:36 GMT Content-Type: image/x-ms-bmp Content-Length: 412672 Connection: keep-alive CF-Ray: 6a8ba3e11c89ea00-ICN Accept-Ranges: bytes Age: 1455515 Cache-Control: public, max-age=31536000 Content-Disposition: attachment;%20filename=Cube_WW14.bmp ETag: "7c53b803484c308fa9e64a81afba9608" Expires: Fri, 04 Nov 2022 06:03:36 GMT Last-Modified: Mon, 18 Oct 2021 09:44:13 GMT Vary: Accept-Encoding CF-Cache-Status: HIT Alt-Svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400, h3-28=":443"; ma=86400, h3-27=":443"; ma=86400 Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" x-goog-generation: 1634550253504068 x-goog-hash: crc32c=mBsCEg== x-goog-hash: md5=fFO4A0hMMI+p5kqBr7qWCA== x-goog-metageneration: 1 x-goog-storage-class: STANDARD x-goog-stored-content-encoding: identity x-goog-stored-content-length: 412672 X-GUploader-UploadID: ADPycdvcb5-ZiO4W2j-4YnSVSSXnIpWaw0YeaepQXnFIghp2bYfCSo2jbLGdRCBuf4ZmQFOwD-04_2jHCYa50PbcYQIdkCzrbQ X-Robots-Tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KWEyirJzjzvFBfg3RKyxo1%2BB%2FhbkbKTP0tsOafn4gcBrOleLuAFK6%2BQ%2BL9eL1F%2BQfKt%2BX%2B%2FHtETQ3ONcevRTrMEj1nUiPkI0tvUaX9AvlFNH8%2FeTTciNyWW00ZT%2FtGjpBa9bDQ%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare

GET /attachments/891021838312931420/902505896159113296/PL_Client.bmp HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.63 Safari/537.36 Host: cdn.discordapp.com Cache-Control: no-cache

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:37 GMT Content-Type: image/x-ms-bmp Content-Length: 1329668 Connection: keep-alive CF-Ray: 6a8ba3ea59ac0f88-ICN Accept-Ranges: bytes Age: 761177 Cache-Control: public, max-age=31536000 Content-Disposition: attachment;%20filename=PL_Client.bmp ETag: "6542ff843d091ef9901e839405497fa2" Expires: Fri, 04 Nov 2022 06:03:37 GMT Last-Modified: Tue, 26 Oct 2021 10:36:13 GMT Vary: Accept-Encoding CF-Cache-Status: HIT Alt-Svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400, h3-28=":443"; ma=86400, h3-27=":443"; ma=86400 Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" x-goog-generation: 1635244573456495 x-goog-hash: crc32c=oNVWKg== x-goog-hash: md5=ZUL/hD0JHvmQHoOUBUl/og== x-goog-metageneration: 1 x-goog-storage-class: STANDARD x-goog-stored-content-encoding: identity x-goog-stored-content-length: 1329668 X-GUploader-UploadID: ADPycdtwhWddoZV5AKuuSgGaxbJgxEniZVV1P3_LPByf4iofBWU7eXZA2qToOdd3Cc6Za17w-NgwgP5Tw7qo12HeiHVimhJCEA X-Robots-Tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cZNNc8%2F3xW865VZhSEhTWRqEn7mioV54OuoJO9i8oo7FqYO3u%2BBfSNIbtghmtaQE%2Bt6st00IA8kDhwbZHJr23nYoudq2TGrsm%2BxhznSqQn17mGjYyl6FjP3I6xROxtVCkAq1WQ%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare

GET /widget HTTP/1.1 Connection: Keep-Alive Referer: https://ipinfo.io/ User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: ipinfo.io

HTTP/1.1 200 OK access-control-allow-origin: * x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-content-type-options: nosniff referrer-policy: strict-origin-when-cross-origin content-type: application/json; charset=utf-8 content-length: 876 date: Thu, 04 Nov 2021 06:03:38 GMT x-envoy-upstream-service-time: 19 vary: Accept-Encoding Via: 1.1 google Alt-Svc: clear

GET /attachments/891006172130345095/905393686618193921/help0301.bmp HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: cdn.discordapp.com Cache-Control: no-cache

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:48 GMT Content-Type: image/x-ms-bmp Content-Length: 390148 Connection: keep-alive CF-Ray: 6a8ba429ccc80fb5-ICN Accept-Ranges: bytes Age: 72312 Cache-Control: public, max-age=31536000 Content-Disposition: attachment;%20filename=help0301.bmp ETag: "e24aaa8d072d4b39a37b7d0ac310be49" Expires: Fri, 04 Nov 2022 06:03:48 GMT Last-Modified: Wed, 03 Nov 2021 09:51:16 GMT Vary: Accept-Encoding CF-Cache-Status: HIT Alt-Svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400, h3-28=":443"; ma=86400, h3-27=":443"; ma=86400 Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" x-goog-generation: 1635933076334878 x-goog-hash: crc32c=wzJFvw== x-goog-hash: md5=4kqqjQctSzmje30KwxC+SQ== x-goog-metageneration: 1 x-goog-storage-class: STANDARD x-goog-stored-content-encoding: identity x-goog-stored-content-length: 390148 X-GUploader-UploadID: ADPycdsXmOTNxdVhbL6qN3BmWaEC4mfyS9Y3xlk9Tyd7-cE2GU58Df4V8x4994eZCq_exTDRDOJJ8cDR9C5YtaOOpB4g0OWJ4A X-Robots-Tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ov4f9og3mDny%2FHZu3FMkC0kEjygwILFDNN4woiO8%2B8HerNOlIG33XFaKs31zCU49dgJ%2Fn3fHRZM5W31S5eDqJmN2GTQnJEo%2BY6lcmDKsZhLuZOfEnMuu51wN1EUSO1hPhkmBRg%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare

GET /userhome/22/any.exe HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: d.gogamed.com Cache-Control: no-cache

HTTP/1.1 302 Found Date: Thu, 04 Nov 2021 06:03:48 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive location: https://f.gogamef.com/userhome/22/23ce6573d0b61d1c6b7a3a8c1cdf07b2.exe CF-Cache-Status: BYPASS Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ymPsl4L3G4Krb%2BiuB71%2FvOgKcVPOfMypr3yr01Dt0EZ8foSZmNh%2FXRp4obNHI8eltZ%2FfHhqXmHR4D2bvNI3hA%2BNVtf7DIVb045ECXMscCLb4D8o8TzL6zvEdx%2BIZYcDq"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 6a8ba42d2a6b0a4a-KIX alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400, h3-28=":443"; ma=86400, h3-27=":443"; ma=86400

GET /userhome/22/23ce6573d0b61d1c6b7a3a8c1cdf07b2.exe HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Connection: Keep-Alive Cache-Control: no-cache Host: f.gogamef.com

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:49 GMT Content-Type: application/octet-stream Transfer-Encoding: chunked Connection: keep-alive content-disposition: attachment; filename="fzhang.exe" content-transfer-encoding: binary vary: Accept-Encoding Cache-Control: max-age=14400 CF-Cache-Status: HIT Age: 4285 Last-Modified: Thu, 04 Nov 2021 04:52:24 GMT Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vhJVDgUJpYvC1wzDFoWL%2Bg0kq8EXm%2BpwCgAfTSx9wDPKZaI4PAuSnADLJkWwSlZLdrVK09b4wran0LJt%2BxOHWdxu%2FRXrnogenVvMCYlCK9kKiSU%2B44uygJXwENNFrztl"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 6a8ba42f9b2d0a9a-KIX alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400, h3-28=":443"; ma=86400, h3-27=":443"; ma=86400

GET /kak.exe HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: el5en1977834657.s3.ap-south-1.amazonaws.com Cache-Control: no-cache

HTTP/1.1 200 OK x-amz-id-2: ByNBKlzJW1eMa+f/OJ+zYWrtL4nYFewfFfopizakj4Ogcv1AfDFmikY0g5bjXP3Z1Gw6IsIc77o= x-amz-request-id: EQ2MDRTWET3EX0NB Date: Thu, 04 Nov 2021 06:05:00 GMT Last-Modified: Tue, 02 Nov 2021 17:42:30 GMT ETag: "3b25bb47c77da6404c1b75133ccf2b1f" Accept-Ranges: bytes Content-Type: application/x-msdownload Server: AmazonS3 Content-Length: 766649

GET /server.txt HTTP/1.1 Connection: Keep-Alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.63 Safari/537.36 Host: 45.133.1.107

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:03 GMT Server: Apache/2.4.41 (Ubuntu) Last-Modified: Wed, 13 Oct 2021 17:20:14 GMT ETag: "13-5ce3f2cdcc2de" Accept-Ranges: bytes Content-Length: 19 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/plain

GET /base/api/statistics.php HTTP/1.1 Connection: Keep-Alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.63 Safari/537.36 Host: 212.192.241.62

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:04 GMT Server: Apache/2.4.48 (Win64) OpenSSL/1.1.1l PHP/8.0.10 X-Powered-By: PHP/8.0.10 Content-Length: 94 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8

POST /base/api/getData.php HTTP/1.1 Connection: Keep-Alive Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Content-Length: 413 Host: 212.192.241.62

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:05 GMT Server: Apache/2.4.48 (Win64) OpenSSL/1.1.1l PHP/8.0.10 X-Powered-By: PHP/8.0.10 Content-Length: 108 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8

POST /base/api/getData.php HTTP/1.1 Connection: Keep-Alive Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Content-Length: 133 Host: 212.192.241.62

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:05 GMT Server: Apache/2.4.48 (Win64) OpenSSL/1.1.1l PHP/8.0.10 X-Powered-By: PHP/8.0.10 Content-Length: 108 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8

HEAD /download/NiceProcessX64.bmp HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: 45.133.1.107 Content-Length: 0 Cache-Control: no-cache

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:06 GMT Server: Apache/2.4.41 (Ubuntu) Last-Modified: Sat, 11 Sep 2021 15:36:23 GMT ETag: "4fa00-5cbb9fe84ddf3" Accept-Ranges: bytes Content-Length: 326144 Content-Type: image/x-ms-bmp

GET /download/NiceProcessX64.bmp HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: 45.133.1.107 Cache-Control: no-cache

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:07 GMT Server: Apache/2.4.41 (Ubuntu) Last-Modified: Sat, 11 Sep 2021 15:36:23 GMT ETag: "4fa00-5cbb9fe84ddf3" Accept-Ranges: bytes Content-Length: 326144 Content-Type: image/x-ms-bmp

POST /base/api/getData.php HTTP/1.1 Connection: Keep-Alive Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Content-Length: 133 Host: 212.192.241.62

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:14 GMT Server: Apache/2.4.48 (Win64) OpenSSL/1.1.1l PHP/8.0.10 X-Powered-By: PHP/8.0.10 Content-Length: 512 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8

GET /proxies.txt HTTP/1.1 Connection: Keep-Alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: 45.133.1.182

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:21 GMT Server: Apache/2.4.41 (Ubuntu) Last-Modified: Wed, 13 Oct 2021 17:23:31 GMT ETag: "9cf-5ce3f389c997a" Accept-Ranges: bytes Content-Length: 2511 Vary: Accept-Encoding Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/plain

POST /service/communication.php HTTP/1.1 Connection: Keep-Alive Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Content-Length: 25 Host: 212.192.241.62

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:22 GMT Server: Apache/2.4.48 (Win64) OpenSSL/1.1.1l PHP/8.0.10 X-Powered-By: PHP/8.0.10 Content-Length: 3 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8

POST /service/communication.php HTTP/1.1 Connection: Keep-Alive Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Content-Length: 73 Host: 212.192.241.62

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:22 GMT Server: Apache/2.4.48 (Win64) OpenSSL/1.1.1l PHP/8.0.10 X-Powered-By: PHP/8.0.10 Content-Length: 90 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8

POST /base/api/getData.php HTTP/1.1 Connection: Keep-Alive Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Content-Length: 261 Host: 212.192.241.62

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:25 GMT Server: Apache/2.4.48 (Win64) OpenSSL/1.1.1l PHP/8.0.10 X-Powered-By: PHP/8.0.10 Content-Length: 108 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:03:28 GMT Date: Thu, 04 Nov 2021 06:03:28 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:03:29 GMT Date: Thu, 04 Nov 2021 06:03:29 GMT Connection: keep-alive

GET /server.txt HTTP/1.1 Connection: Keep-Alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.63 Safari/537.36 Host: 45.133.1.107

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:37 GMT Server: Apache/2.4.41 (Ubuntu) Last-Modified: Wed, 13 Oct 2021 17:20:14 GMT ETag: "13-5ce3f2cdcc2de" Accept-Ranges: bytes Content-Length: 19 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/plain

GET /base/api/statistics.php HTTP/1.1 Connection: Keep-Alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.63 Safari/537.36 Host: 212.192.241.62

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:37 GMT Server: Apache/2.4.48 (Win64) OpenSSL/1.1.1l PHP/8.0.10 X-Powered-By: PHP/8.0.10 Content-Length: 94 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8

POST /base/api/getData.php HTTP/1.1 Connection: Keep-Alive Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Content-Length: 389 Host: 212.192.241.62

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:38 GMT Server: Apache/2.4.48 (Win64) OpenSSL/1.1.1l PHP/8.0.10 X-Powered-By: PHP/8.0.10 Content-Length: 108 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8

POST /base/api/getData.php HTTP/1.1 Connection: Keep-Alive Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Content-Length: 133 Host: 212.192.241.62

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:39 GMT Server: Apache/2.4.48 (Win64) OpenSSL/1.1.1l PHP/8.0.10 X-Powered-By: PHP/8.0.10 Content-Length: 108 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8

HEAD /download/NiceProcessX64.bmp HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: 45.133.1.107 Content-Length: 0 Cache-Control: no-cache

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:40 GMT Server: Apache/2.4.41 (Ubuntu) Last-Modified: Sat, 11 Sep 2021 15:36:23 GMT ETag: "4fa00-5cbb9fe84ddf3" Accept-Ranges: bytes Content-Length: 326144 Content-Type: image/x-ms-bmp

GET /download/NiceProcessX64.bmp HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: 45.133.1.107 Cache-Control: no-cache

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:40 GMT Server: Apache/2.4.41 (Ubuntu) Last-Modified: Sat, 11 Sep 2021 15:36:23 GMT ETag: "4fa00-5cbb9fe84ddf3" Accept-Ranges: bytes Content-Length: 326144 Content-Type: image/x-ms-bmp

POST /base/api/getData.php HTTP/1.1 Connection: Keep-Alive Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Content-Length: 133 Host: 212.192.241.62

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:47 GMT Server: Apache/2.4.48 (Win64) OpenSSL/1.1.1l PHP/8.0.10 X-Powered-By: PHP/8.0.10 Content-Length: 1176 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8

HEAD /lqosko/p18j/cust9.exe HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: imgs.googlwaa.com Content-Length: 0 Cache-Control: no-cache

HTTP/1.1 200 OK Server: nginx Date: Thu, 04 Nov 2021 06:03:48 GMT Content-Type: application/octet-stream Content-Length: 1413632 Last-Modified: Thu, 21 Oct 2021 09:57:33 GMT Connection: keep-alive ETag: "6171398d-159200" Accept-Ranges: bytes

HEAD /search_hyperfs_209.exe HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: dataonestorage.com Content-Length: 0 Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently Server: nginx/1.20.1 Date: Thu, 04 Nov 2021 06:03:48 GMT Content-Type: text/html Content-Length: 169 Connection: keep-alive Location: https://dataonestorage.com/search_hyperfs_209.exe

HEAD /askhelp42/askinstall42.exe HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: www.hzradiant.com Content-Length: 0 Cache-Control: no-cache

HTTP/1.1 302 Found Server: nginx Date: Thu, 04 Nov 2021 06:03:48 GMT Content-Type: text/html; charset=UTF-8 Connection: keep-alive X-Powered-By: PHP/5.6.40 Location: http://www.hzradiant.com/askinstall42.exe

HEAD /pub33.exe HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: eguntong.com Content-Length: 0 Cache-Control: no-cache

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:48 GMT Server: Apache/2.4.38 (Debian) Last-Modified: Thu, 04 Nov 2021 05:32:02 GMT ETag: "22a00-5cfefd8a82af2" Accept-Ranges: bytes Content-Length: 141824 Connection: close Content-Type: application/x-msdos-program

GET /lqosko/p18j/cust9.exe HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: imgs.googlwaa.com Cache-Control: no-cache

HTTP/1.1 200 OK Server: nginx Date: Thu, 04 Nov 2021 06:03:48 GMT Content-Type: application/octet-stream Content-Length: 1413632 Last-Modified: Thu, 21 Oct 2021 09:57:33 GMT Connection: keep-alive ETag: "6171398d-159200" Accept-Ranges: bytes

HEAD /askinstall42.exe HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: www.hzradiant.com Content-Length: 0 Cache-Control: no-cache Connection: Keep-Alive

HTTP/1.1 200 OK Server: nginx Date: Thu, 04 Nov 2021 06:03:48 GMT Content-Type: text/html; charset=UTF-8 Connection: keep-alive Vary: Accept-Encoding X-Powered-By: PHP/5.6.40

GET /pub33.exe HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: eguntong.com Cache-Control: no-cache

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:49 GMT Server: Apache/2.4.38 (Debian) Last-Modified: Thu, 04 Nov 2021 05:32:02 GMT ETag: "22a00-5cfefd8a82af2" Accept-Ranges: bytes Content-Length: 141824 Connection: close Content-Type: application/x-msdos-program

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:03:49 GMT Date: Thu, 04 Nov 2021 06:03:49 GMT Connection: keep-alive

GET /askhelp42/askinstall42.exe HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: www.hzradiant.com Cache-Control: no-cache

HTTP/1.1 302 Found Server: nginx Date: Thu, 04 Nov 2021 06:03:49 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 0 Connection: keep-alive X-Powered-By: PHP/5.6.40 Location: http://www.hzradiant.com/askinstall42.exe

GET /askinstall42.exe HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: www.hzradiant.com Cache-Control: no-cache Connection: Keep-Alive

HTTP/1.1 200 OK Server: nginx Date: Thu, 04 Nov 2021 06:03:49 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 517 Connection: keep-alive X-Powered-By: PHP/5.6.40

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:03:50 GMT Date: Thu, 04 Nov 2021 06:03:50 GMT Connection: keep-alive

GET /search_hyperfs_209.exe HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36 Host: dataonestorage.com Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently Server: nginx/1.20.1 Date: Thu, 04 Nov 2021 06:03:50 GMT Content-Type: text/html Content-Length: 169 Connection: keep-alive Location: https://dataonestorage.com/search_hyperfs_209.exe

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:03:51 GMT Date: Thu, 04 Nov 2021 06:03:51 GMT Connection: keep-alive

GET /json/ HTTP/1.1 Connection: Keep-Alive Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 Accept-Language: en,q=0.9;q=0.8,ja;q=0.7,af;q=0.6,am;q=0.5,sq;q=0.4,ar;q=0.3,an;q=0.2,hy;q=0.1,ast;q=0.1,az;q=0.1,bn;q=0.1,eu;q=0.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Edg/87.0.664.60 viewport-width: 1920 Host: ip-api.com

HTTP/1.1 200 OK Date: Thu, 04 Nov 2021 06:03:51 GMT Content-Type: application/json; charset=utf-8 Content-Length: 276 Access-Control-Allow-Origin: * X-Ttl: 60 X-Rl: 44

GET /api/fbtime HTTP/1.1 Connection: Keep-Alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Edg/87.0.664.60 Host: staticimg.youtuuee.com

HTTP/1.1 200 OK Server: nginx Date: Thu, 04 Nov 2021 06:03:52 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding X-Powered-By: PHP/7.4.21

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:03:52 GMT Date: Thu, 04 Nov 2021 06:03:52 GMT Connection: keep-alive

POST /api/?sid=2098765&key=a7620f1fdb5530186e00465d6d97c1bb HTTP/1.1 Connection: Keep-Alive Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36 Edg/87.0.664.60 Content-Length: 290 Host: staticimg.youtuuee.com

HTTP/1.1 200 OK Server: nginx Date: Thu, 04 Nov 2021 06:03:52 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding X-Powered-By: PHP/7.4.21

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:03:53 GMT Date: Thu, 04 Nov 2021 06:03:53 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:03:54 GMT Date: Thu, 04 Nov 2021 06:03:54 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:03:55 GMT Date: Thu, 04 Nov 2021 06:03:55 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:03:56 GMT Date: Thu, 04 Nov 2021 06:03:56 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:03:57 GMT Date: Thu, 04 Nov 2021 06:03:57 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:03:59 GMT Date: Thu, 04 Nov 2021 06:03:59 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:00 GMT Date: Thu, 04 Nov 2021 06:04:00 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:01 GMT Date: Thu, 04 Nov 2021 06:04:01 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:02 GMT Date: Thu, 04 Nov 2021 06:04:02 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:03 GMT Date: Thu, 04 Nov 2021 06:04:03 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:04 GMT Date: Thu, 04 Nov 2021 06:04:04 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:05 GMT Date: Thu, 04 Nov 2021 06:04:05 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:06 GMT Date: Thu, 04 Nov 2021 06:04:06 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:08 GMT Date: Thu, 04 Nov 2021 06:04:08 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:09 GMT Date: Thu, 04 Nov 2021 06:04:09 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:10 GMT Date: Thu, 04 Nov 2021 06:04:10 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:11 GMT Date: Thu, 04 Nov 2021 06:04:11 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:12 GMT Date: Thu, 04 Nov 2021 06:04:12 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:13 GMT Date: Thu, 04 Nov 2021 06:04:13 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:14 GMT Date: Thu, 04 Nov 2021 06:04:14 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:16 GMT Date: Thu, 04 Nov 2021 06:04:16 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:17 GMT Date: Thu, 04 Nov 2021 06:04:17 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:18 GMT Date: Thu, 04 Nov 2021 06:04:18 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:19 GMT Date: Thu, 04 Nov 2021 06:04:19 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:20 GMT Date: Thu, 04 Nov 2021 06:04:20 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:21 GMT Date: Thu, 04 Nov 2021 06:04:21 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:22 GMT Date: Thu, 04 Nov 2021 06:04:22 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:24 GMT Date: Thu, 04 Nov 2021 06:04:24 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:25 GMT Date: Thu, 04 Nov 2021 06:04:25 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:26 GMT Date: Thu, 04 Nov 2021 06:04:26 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:27 GMT Date: Thu, 04 Nov 2021 06:04:27 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:28 GMT Date: Thu, 04 Nov 2021 06:04:28 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:29 GMT Date: Thu, 04 Nov 2021 06:04:29 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:30 GMT Date: Thu, 04 Nov 2021 06:04:30 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:32 GMT Date: Thu, 04 Nov 2021 06:04:32 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:33 GMT Date: Thu, 04 Nov 2021 06:04:33 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:34 GMT Date: Thu, 04 Nov 2021 06:04:34 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:35 GMT Date: Thu, 04 Nov 2021 06:04:35 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:36 GMT Date: Thu, 04 Nov 2021 06:04:36 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:37 GMT Date: Thu, 04 Nov 2021 06:04:37 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:38 GMT Date: Thu, 04 Nov 2021 06:04:38 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:40 GMT Date: Thu, 04 Nov 2021 06:04:40 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:41 GMT Date: Thu, 04 Nov 2021 06:04:41 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:42 GMT Date: Thu, 04 Nov 2021 06:04:42 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:43 GMT Date: Thu, 04 Nov 2021 06:04:43 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:44 GMT Date: Thu, 04 Nov 2021 06:04:44 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:45 GMT Date: Thu, 04 Nov 2021 06:04:45 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:46 GMT Date: Thu, 04 Nov 2021 06:04:46 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:47 GMT Date: Thu, 04 Nov 2021 06:04:47 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:49 GMT Date: Thu, 04 Nov 2021 06:04:49 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:50 GMT Date: Thu, 04 Nov 2021 06:04:50 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:51 GMT Date: Thu, 04 Nov 2021 06:04:51 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:52 GMT Date: Thu, 04 Nov 2021 06:04:52 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:53 GMT Date: Thu, 04 Nov 2021 06:04:53 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:54 GMT Date: Thu, 04 Nov 2021 06:04:54 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:55 GMT Date: Thu, 04 Nov 2021 06:04:55 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:57 GMT Date: Thu, 04 Nov 2021 06:04:57 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:58 GMT Date: Thu, 04 Nov 2021 06:04:58 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:04:59 GMT Date: Thu, 04 Nov 2021 06:04:59 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com

HTTP/1.1 200 OK X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'self' *.identrust.com Last-Modified: Fri, 29 Oct 2021 21:49:30 GMT ETag: "37d-5cf84cd446e80" Accept-Ranges: bytes Content-Length: 893 X-Content-Type-Options: nosniff X-Frame-Options: sameorigin Content-Type: application/pkcs7-mime Cache-Control: max-age=3600 Expires: Thu, 04 Nov 2021 07:05:00 GMT Date: Thu, 04 Nov 2021 06:05:00 GMT Connection: keep-alive

GET /roots/dstrootcax3.p7c HTTP/1.1 Connection: Keep-Alive Accept: */* User-Agent: Microsoft-CryptoAPI/6.1 Host: apps.identrust.com