urlscan.io Open in urlscan Pro
49.12.22.106 Public Scan

Go To Rescan
Add Verdict Report

URL:
https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
Submission: On March 04 via manual (March 4th 2024, 8:11:14 am UTC) from GB — Scanned from IL

Summary HTTP 26 Redirects Links 51 Behaviour Indicators

Summary

This website contacted 3 IPs in 2 countries across 3 domains to perform 26 HTTP transactions. The main IP is 49.12.22.106, located in Germany and belongs to HETZNER-AS, DE. The main domain is urlscan.io. The Cisco Umbrella rank of the primary domain is 89805.
TLS certificate: Issued by R3 on January 25th 2024. Valid for: 3 months.

This is the only time urlscan.io was scanned on urlscan.io!

urlscan.io Verdict: No classification

Domain & IP information

	IP Address	AS Autonomous System
22	49.12.22.106 49.12.22.106	24940 (HETZNER-AS) (HETZNER-AS)
1	142.250.186.42 142.250.186.42	15169 (GOOGLE) (GOOGLE)
3	172.217.18.3 172.217.18.3	15169 (GOOGLE) (GOOGLE)
26	3

22 49.12.22.106 (Germany)

ASN24940 (HETZNER-AS, DE)
PTR: urlscan.io

urlscan.io	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 142.250.186.42 (United States)

ASN15169 (GOOGLE, US)
PTR: fra24s04-in-f10.1e100.net

fonts.googleapis.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

3 172.217.18.3 (United States)

ASN15169 (GOOGLE, US)
PTR: fra02s19-in-f3.1e100.net

fonts.gstatic.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

	Apex Domain Subdomains	Transfer
22	urlscan.io urlscan.io — Cisco Umbrella Rank: 89805	398 KB
3	gstatic.com fonts.gstatic.com	70 KB
1	googleapis.com fonts.googleapis.com — Cisco Umbrella Rank: 30	865 B
26	3

	Domain	Requested by
22	urlscan.io	urlscan.io
3	fonts.gstatic.com	fonts.googleapis.com
1	fonts.googleapis.com	urlscan.io
26	3

This site contains links to these domains. Also see Links.

Domain
pro.urlscan.io
www.virustotal.com
securitytrails.com
crt.sh
community.riskiq.com
transparencyreport.google.com
web.archive.org
whois.domaintools.com
www.censys.io
sandyspringspestcontrol.com
www.abuseipdb.com
ipinfo.io
www.shodan.io
as-rank.caida.org
bgpranking.circl.lu
chart.googleapis.com
twitter.com
www.subscribepage.com
status.urlscan.io

Subject Issuer	Validity	Valid
urlscan.io R3	`2024-01-25` - `2024-04-24`	3 months	crt.sh
upload.video.google.com GTS CA 1C3	`2024-02-05` - `2024-04-29`	3 months	crt.sh
*.gstatic.com GTS CA 1C3	`2024-02-05` - `2024-04-29`	3 months	crt.sh

This page contains 1 frames:

Primary Page: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
Frame ID: DDCEB8270821909E98E23B73328308A0
Requests: 26 HTTP requests in this frame

Screenshot
Live screenshot

Full Image

Page Title

sandyspringspestcontrol.com - urlscan.io

Detected technologies

Bootstrap (Web Frameworks) Expand

Overall confidence: 100%
Detected patterns

<link[^>]* href=[^>]*?bootstrap(?:[^>]*?([0-9a-fA-F]{7,40}|[\d]+(?:.[\d]+(?:.[\d]+)?)?)|)[^>]*?(?:\.min)?\.css
bootstrap(?:[^>]*?([0-9a-fA-F]{7,40}|[\d]+(?:.[\d]+(?:.[\d]+)?)?)|)[^>]*?(?:\.min)?\.js

Google Font API (Font Scripts) Expand

Overall confidence: 100%
Detected patterns

<link[^>]* href=[^>]+fonts\.(?:googleapis|google)\.com

Page Statistics

26
Requests

100 %
HTTPS

0 %
IPv6

3
Domains

3
Subdomains

3
IPs

2
Countries

469 kB
Transfer

892 kB
Size

0
Cookies

51 Outgoing links

These are links going to different origins than the main page.

URL: https://pro.urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
Title: Open in urlscan Pro

Search URL Search Domain Scan URL

URL: https://www.virustotal.com/#/domain/sandyspringspestcontrol.com
Title: VirusTotal

Search URL Search Domain Scan URL

URL: https://securitytrails.com/domain/sandyspringspestcontrol.com/dns
Title: SecurityTrails

Search URL Search Domain Scan URL

URL: https://crt.sh/?q=sandyspringspestcontrol.com
Title: crt.sh

Search URL Search Domain Scan URL

URL: https://community.riskiq.com/search/sandyspringspestcontrol.com
Title: RiskIQ

Search URL Search Domain Scan URL

URL: https://transparencyreport.google.com/safe-browsing/search?url=https://sandyspringspestcontrol.com/
Title: Google Safe Browsing

Search URL Search Domain Scan URL

URL: https://web.archive.org/web/*/https://sandyspringspestcontrol.com/
Title: Archive.org

Search URL Search Domain Scan URL

URL: https://www.virustotal.com/#/ip-address/172.67.143.75
Title: VirusTotal

Search URL Search Domain Scan URL

URL: https://securitytrails.com/list/ip/172.67.143.75
Title: SecurityTrails

Search URL Search Domain Scan URL

URL: https://community.riskiq.com/search/172.67.143.75
Title: RiskIQ

Search URL Search Domain Scan URL

URL: http://whois.domaintools.com/172.67.143.75
Title: Domaintools

Search URL Search Domain Scan URL

URL: https://www.censys.io/ipv4/172.67.143.75
Title: Censys

Search URL Search Domain Scan URL

URL: https://sandyspringspestcontrol.com/
Title: Go To

Search URL Search Domain Scan URL

URL: https://www.abuseipdb.com/check/172.67.143.75
Title: AbuseIPDB

Search URL Search Domain Scan URL

URL: https://ipinfo.io/172.67.143.75
Title: ipinfo.io

Search URL Search Domain Scan URL

URL: https://www.shodan.io/host/172.67.143.75
Title: Shodan

Search URL Search Domain Scan URL

URL: http://as-rank.caida.org/?mode0=as-info&mode1=as-table&as=13335&data-selected-id=30
Title: CAIDA Rank

Search URL Search Domain Scan URL

URL: https://ipinfo.io/AS13335
Title: ipinfo.io

Search URL Search Domain Scan URL

URL: http://bgpranking.circl.lu/asn_details?date=;source=;asn=13335
Title: CIRCL BGP Ranking

Search URL Search Domain Scan URL

URL: https://www.censys.io/domain/sandyspringspestcontrol.com
Title: Censys

Search URL Search Domain Scan URL

URL: http://whois.domaintools.com/sandyspringspestcontrol.com
Title: Domaintools

Search URL Search Domain Scan URL

URL: https://securitytrails.com/list/ip/142.250.185.202
Title: SecurityTrails

Search URL Search Domain Scan URL

URL: https://www.virustotal.com/#/ip-address/142.250.185.202
Title: VirusTotal

Search URL Search Domain Scan URL

URL: https://www.abuseipdb.com/check/142.250.185.202
Title: AbuseIPDB

Search URL Search Domain Scan URL

URL: https://www.censys.io/ipv4/142.250.185.202
Title: Censys

Search URL Search Domain Scan URL

URL: http://whois.domaintools.com/142.250.185.202
Title: Domaintools

Search URL Search Domain Scan URL

URL: https://ipinfo.io/142.250.185.202
Title: ipinfo.io

Search URL Search Domain Scan URL

URL: https://www.shodan.io/host/142.250.185.202
Title: Shodan

Search URL Search Domain Scan URL

URL: http://as-rank.caida.org/?mode0=as-info&mode1=as-table&as=15169&data-selected-id=30
Title: CAIDA Rank

Search URL Search Domain Scan URL

URL: https://ipinfo.io/AS15169
Title: ipinfo.io

Search URL Search Domain Scan URL

URL: http://bgpranking.circl.lu/asn_details?date=;source=;asn=15169
Title: CIRCL BGP Ranking

Search URL Search Domain Scan URL

URL: https://www.virustotal.com/#/domain/chart.googleapis.com
Title: VirusTotal

Search URL Search Domain Scan URL

URL: https://securitytrails.com/domain/chart.googleapis.com/dns
Title: SecurityTrails

Search URL Search Domain Scan URL

URL: https://crt.sh/?q=chart.googleapis.com
Title: crt.sh

Search URL Search Domain Scan URL

URL: https://www.censys.io/domain/chart.googleapis.com
Title: Censys

Search URL Search Domain Scan URL

URL: http://whois.domaintools.com/chart.googleapis.com
Title: Domaintools

Search URL Search Domain Scan URL

URL: https://crt.sh/?CN=sandyspringspestcontrol.com&match==
Title: crt.sh

Search URL Search Domain Scan URL

URL: https://crt.sh/?CN=upload.video.google.com&match==
Title: crt.sh

Search URL Search Domain Scan URL

URL: https://web.archive.org/web/*/https://sandyspringspestcontrol.com/images/header.png
Title: Check archive.org

Search URL Search Domain Scan URL

URL: https://sandyspringspestcontrol.com/images/header.png
Title: Download

Search URL Search Domain Scan URL

URL: https://web.archive.org/web/*/https://sandyspringspestcontrol.com/images/commercial-pest-control.png
Title: Check archive.org

Search URL Search Domain Scan URL

URL: https://sandyspringspestcontrol.com/images/commercial-pest-control.png
Title: Download

Search URL Search Domain Scan URL

URL: https://web.archive.org/web/*/https://sandyspringspestcontrol.com/images/pest-control-services.png
Title: Check archive.org

Search URL Search Domain Scan URL

URL: https://sandyspringspestcontrol.com/images/pest-control-services.png
Title: Download

Search URL Search Domain Scan URL

URL: https://web.archive.org/web/*/https://sandyspringspestcontrol.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
Title: Check archive.org

Search URL Search Domain Scan URL

URL: https://sandyspringspestcontrol.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
Title: Download

Search URL Search Domain Scan URL

URL: https://web.archive.org/web/*/https://chart.googleapis.com/chart?chs=150x150&cht=qr&chl=https://sandyspringspestcontrol.com/
Title: Check archive.org

Search URL Search Domain Scan URL

URL: https://chart.googleapis.com/chart?chs=150x150&cht=qr&chl=https://sandyspringspestcontrol.com/
Title: Download

Search URL Search Domain Scan URL

URL: https://twitter.com/urlscanio
Title: Follow @urlscanio

Search URL Search Domain Scan URL

URL: https://www.subscribepage.com/urlscanio
Title: Newsletter

Search URL Search Domain Scan URL

URL: https://status.urlscan.io/
Title: Status Page

Search URL Search Domain Scan URL

Redirected requests

There were HTTP redirect chains for the following requests:

26 HTTP transactions
0 data transactions

Method
Protocol Status Resource
Path Size
x-fer Time
Latency Type
MIME-Type IP
Location

GET
H2 200 Primary Request / Show response
urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/ 100 KB
13 KB 497ms
256ms Document
text/html 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

11f1f2b1922f38cc06fd6dfdf9467c8da66021b4a8c3a6099fe3ce0bbbcc28c8

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language: he-IL,he;q=0.9

Response headers

cache-control: private, max-age=60
content-encoding: gzip
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
content-type: text/html; charset=utf-8
date: Mon, 04 Mar 2024 08:11:08 GMT
etag: W/"18ea0-UBii8m0WFHST9/50BkzYF8vYcuk"
referrer-policy: unsafe-url
server: nginx
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: MISS
x-rate-limit-action: retrieve
x-rate-limit-limit: 20
x-rate-limit-remaining: 20
x-rate-limit-reset: 2024-03-04T08:12:00.000Z
x-rate-limit-reset-after: 51
x-rate-limit-scope: ip-address
x-rate-limit-window: minute
x-robots-tag: all
x-xss-protection: 0

GET
H2 200 glyphicons-halflings-regular.woff2
urlscan.io/vendor/bootstrap/fonts/ 18 KB
18 KB 211ms
206ms Font
font/woff2 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://urlscan.io/vendor/bootstrap/fonts/glyphicons-halflings-regular.woff2

Requested by

Host: urlscan.io
URL: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
Origin: https://urlscan.io
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:08 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-length: 18028
x-xss-protection: 0
referrer-policy: unsafe-url
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
etag: W/"466c-18df8f8c730"
x-frame-options: DENY
content-type: font/woff2
cache-control: public, max-age=3600
accept-ranges: bytes
x-robots-tag: all
x-proxy-cache: HIT

GET
H2 200 bootstrap.min.css
urlscan.io/vendor/bootstrap/css/ 119 KB
20 KB 143ms
138ms Stylesheet
text/css 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://urlscan.io/vendor/bootstrap/css/bootstrap.min.css

Requested by

Host: urlscan.io
URL: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

fa00e1049bcb2085317320e5818f2564985f1c90dcb60ed7406c1d0a2bacad03

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:08 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
referrer-policy: unsafe-url
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
content-encoding: gzip
x-content-type-options: nosniff
etag: W/"1da18-18df8f8c730"
x-frame-options: DENY
content-type: text/css; charset=UTF-8
cache-control: public, max-age=3600
x-robots-tag: all
x-xss-protection: 0
x-proxy-cache: HIT

GET
H2 200 sc-btn.css
urlscan.io/vendor/social-buttons/ 6 KB
2 KB 150ms
146ms Stylesheet
text/css 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://urlscan.io/vendor/social-buttons/sc-btn.css

Requested by

Host: urlscan.io
URL: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

cdaa043da36b05e233c207b1665a195ea1e7838dbd6c49b70e6db45c567a5b21

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:08 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
referrer-policy: unsafe-url
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
content-encoding: gzip
x-content-type-options: nosniff
etag: W/"1712-18df8f8c730"
x-frame-options: DENY
content-type: text/css; charset=UTF-8
cache-control: public, max-age=3600
x-robots-tag: all
x-xss-protection: 0
x-proxy-cache: HIT

GET
H2 200 urlscan.css
urlscan.io/ 16 KB
5 KB 181ms
177ms Stylesheet
text/css 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://urlscan.io/urlscan.css

Requested by

Host: urlscan.io
URL: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

6b04aa773b73bbc94dcd5a5a5aaa880c03b3a37d4bfbb9176f5a9723df6d3910

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:08 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
referrer-policy: unsafe-url
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
content-encoding: gzip
x-content-type-options: nosniff
etag: W/"3ee4-18df8f8c730"
x-frame-options: DENY
content-type: text/css; charset=UTF-8
cache-control: public, max-age=3600
x-robots-tag: all
x-xss-protection: 0
x-proxy-cache: HIT

GET
H2 200 flag-icon.min.css
urlscan.io/vendor/flag-icon-css/css/ 33 KB
3 KB 182ms
179ms Stylesheet
text/css 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://urlscan.io/vendor/flag-icon-css/css/flag-icon.min.css

Requested by

Host: urlscan.io
URL: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

1108d9c16e258ebb7d76ca276f25feb22ea46f182455d7b8ed3cbd1507a19d48

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:08 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
referrer-policy: unsafe-url
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
content-encoding: gzip
x-content-type-options: nosniff
etag: W/"82c9-18df8f8c730"
x-frame-options: DENY
content-type: text/css; charset=UTF-8
cache-control: public, max-age=3600
x-robots-tag: all
x-xss-protection: 0
x-proxy-cache: HIT

GET
H2 200 urlscan_256.png
urlscan.io/img/ 6 KB
7 KB 218ms
215ms Image
image/png 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://urlscan.io/img/urlscan_256.png

Requested by

Host: urlscan.io
URL: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

48cdea2dd75a0def891f0d5a2b3e6c611cfe0985125ac60915f3da7cacb2cd2b

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:08 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-length: 6143
x-xss-protection: 0
referrer-policy: unsafe-url
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
etag: W/"17ff-18df8f8c730"
x-frame-options: DENY
content-type: image/png
cache-control: public, max-age=3600
accept-ranges: bytes
x-robots-tag: all
x-proxy-cache: HIT

GET
H2 200 securitytrails-rf.png
urlscan.io/img/ 36 KB
37 KB 235ms
233ms Image
image/png 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://urlscan.io/img/securitytrails-rf.png

Requested by

Host: urlscan.io
URL: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

89a3fc351bb8fbc4cc0cc8cf361a09368ce57e32fbb9839d259e2424adf681de

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:08 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-length: 36852
x-xss-protection: 0
referrer-policy: unsafe-url
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
etag: W/"8ff4-18df8f8c730"
x-frame-options: DENY
content-type: image/png
cache-control: public, max-age=3600
accept-ranges: bytes
x-robots-tag: all
x-proxy-cache: HIT

GET
H2 200 550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb.png
urlscan.io/screenshots/ 189 KB
189 KB 797ms
792ms Image
image/png 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://urlscan.io/screenshots/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb.png
Requested by: Host: urlscan.io
URL: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
Protocol: H2
Security: TLS 1.3, , AES_128_GCM
Server: 49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),
Reverse DNS: urlscan.io
Software: nginx /
Resource Hash: be99423bcf7b2317607e9ec624200eba664d24fd894f04c4bc38aeb246011561

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

expires: Mon, 04 Mar 2024 09:11:09 GMT
date: Mon, 04 Mar 2024 08:11:09 GMT
last-modified: Mon, 04 Mar 2024 06:52:16 GMT
server: nginx
etag: "de472d9a8cad64d308a2b1275494edc3"
content-type: image/png
cache-control: max-age=3600, public
content-length: 193498
x-proxy-cache: MISS

GET
H2 200 961.94db1687de237c3ce6ec.js Show response
urlscan.io/js/ 127 KB
42 KB 261ms
256ms Script
application/javascript 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://urlscan.io/js/961.94db1687de237c3ce6ec.js

Requested by

Host: urlscan.io
URL: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

5abee0e86da44cdaabec8bb8204efa9cfed47b4058a271ad710dde07439ce527

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:08 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
referrer-policy: unsafe-url
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
content-encoding: gzip
x-content-type-options: nosniff
etag: W/"1fae5-18df8f8c730"
x-frame-options: DENY
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=3600
x-robots-tag: all
x-xss-protection: 0
x-proxy-cache: HIT

GET
H2 200 692.4940d799c6356d8df842.js Show response
urlscan.io/js/ 85 KB
30 KB 288ms
283ms Script
application/javascript 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://urlscan.io/js/692.4940d799c6356d8df842.js

Requested by

Host: urlscan.io
URL: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

ec16300e46575cc734b716fb981b9f5c73fa01e755be88dbee49c76693381b98

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:08 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
referrer-policy: unsafe-url
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
content-encoding: gzip
x-content-type-options: nosniff
etag: W/"154da-18df8f8c730"
x-frame-options: DENY
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=3600
x-robots-tag: all
x-xss-protection: 0
x-proxy-cache: HIT

GET
H2 200 142.2aaa4495030f711ab1e6.js Show response
urlscan.io/js/ 9 KB
4 KB 296ms
292ms Script
application/javascript 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://urlscan.io/js/142.2aaa4495030f711ab1e6.js

Requested by

Host: urlscan.io
URL: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

94b24d758f642f18491c54d33e992e67e4d72841c645490e3faf977d8d9d526b

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:08 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
referrer-policy: unsafe-url
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
content-encoding: gzip
x-content-type-options: nosniff
etag: W/"2330-18df8f8c730"
x-frame-options: DENY
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=3600
x-robots-tag: all
x-xss-protection: 0
x-proxy-cache: HIT

GET
H2 200 959.ef0f5d0e8912794bfce5.js Show response
urlscan.io/js/ 15 KB
4 KB 298ms
295ms Script
application/javascript 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://urlscan.io/js/959.ef0f5d0e8912794bfce5.js

Requested by

Host: urlscan.io
URL: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

de6dc9daf5dd33d6b30fbf797e573da92cd55786cd7c9b9fd7a5e80eda29c316

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:08 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
referrer-policy: unsafe-url
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
content-encoding: gzip
x-content-type-options: nosniff
etag: W/"3a79-18df8f8c730"
x-frame-options: DENY
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=3600
x-robots-tag: all
x-xss-protection: 0
x-proxy-cache: HIT

GET
H2 200 result.5fdad677cd9fc72405fd.js Show response
urlscan.io/js/ 6 KB
3 KB 299ms
297ms Script
application/javascript 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://urlscan.io/js/result.5fdad677cd9fc72405fd.js

Requested by

Host: urlscan.io
URL: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

c0c1666f610c1c9705134ed61f5efe1c3042d761780d01c4fadd2d9edb9750ee

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:08 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
referrer-policy: unsafe-url
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
content-encoding: gzip
x-content-type-options: nosniff
etag: W/"16fe-18df8f8c730"
x-frame-options: DENY
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=3600
x-robots-tag: all
x-xss-protection: 0
x-proxy-cache: HIT

GET
H2 200 125.b6a57c39b9acfaebbb1d.js Show response
urlscan.io/js/ 39 KB
11 KB 305ms
302ms Script
application/javascript 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://urlscan.io/js/125.b6a57c39b9acfaebbb1d.js

Requested by

Host: urlscan.io
URL: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

d93e0152188be9a736f213f414920af27c721161c82b7eefcb2dd4707b3551ae

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:08 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
referrer-policy: unsafe-url
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
content-encoding: gzip
x-content-type-options: nosniff
etag: W/"9b6c-18df8f8c730"
x-frame-options: DENY
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=3600
x-robots-tag: all
x-xss-protection: 0
x-proxy-cache: HIT

GET
H2 200 app.117b28bf42b532886c11.js Show response
urlscan.io/js/ 5 KB
3 KB 306ms
304ms Script
application/javascript 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://urlscan.io/js/app.117b28bf42b532886c11.js

Requested by

Host: urlscan.io
URL: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

4c6d82428b8edd08573a56830cf8129cfd0cdb30ad337ee015fc107afa30063f

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:08 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
referrer-policy: unsafe-url
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
content-encoding: gzip
x-content-type-options: nosniff
etag: W/"14ae-18df8f8c730"
x-frame-options: DENY
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=3600
x-robots-tag: all
x-xss-protection: 0
x-proxy-cache: HIT

GET
H2 200 css
fonts.googleapis.com/ 2 KB
865 B 354ms
121ms Stylesheet
text/css 142.250.186.42
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://fonts.googleapis.com/css?family=Lato:400,700,400italic&display=swap

Requested by

Host: urlscan.io
URL: https://urlscan.io/vendor/bootstrap/css/bootstrap.min.css

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

142.250.186.42 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra24s04-in-f10.1e100.net

Software

ESF /

Resource Hash

fba31c2cd9699431dba47604216525f9bcc0cb1d5980fbae9b19c8b86454d2fc

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Content-Type-Options	nosniff
X-Frame-Options	SAMEORIGIN
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/vendor/bootstrap/css/bootstrap.min.css
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

strict-transport-security: max-age=31536000
date: Mon, 04 Mar 2024 08:11:08 GMT
content-encoding: gzip
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-xss-protection: 0
last-modified: Mon, 04 Mar 2024 08:11:08 GMT
server: ESF
cross-origin-opener-policy: same-origin-allow-popups
x-frame-options: SAMEORIGIN
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: private, max-age=86400, stale-while-revalidate=604800
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
expires: Mon, 04 Mar 2024 08:11:08 GMT

GET
H2 403 / Show response
urlscan.io/user/username/ 40 B
200 B 135ms
134ms Fetch
application/json 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to

Full URL: https://urlscan.io/user/username/
Requested by: Host: urlscan.io
URL: https://urlscan.io/js/app.117b28bf42b532886c11.js
Protocol: H2
Security: TLS 1.3, , AES_128_GCM
Server: 49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),
Reverse DNS: urlscan.io
Software: nginx /
Resource Hash: 86e91e6c8ac39ebad1fa2b5ad4b38073fbd5b832891acf93cedf409adc2e0a5d

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:09 GMT
content-encoding: gzip
server: nginx
etag: W/"28-xDjs8ZQNYqJbt4ErYrJb/PSGY+o"
vary: Accept
content-type: application/json; charset=utf-8

GET
H2 200 stats Show response
urlscan.io/ 99 B
700 B 121ms
121ms Fetch
application/json 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://urlscan.io/stats

Requested by

Host: urlscan.io
URL: https://urlscan.io/js/app.117b28bf42b532886c11.js

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

ee515002287e5bb71631bdbf2124613ff20ed0fa49c590a72169ea9d8d606605

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:09 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
referrer-policy: unsafe-url
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-encoding: gzip
server: nginx
x-content-type-options: nosniff
etag: W/"63-jFhdgceFFWTkTeGGuMcTAfsF/gE"
x-frame-options: DENY
content-type: application/json; charset=utf-8
cache-control: public, max-age=10
x-robots-tag: all
x-xss-protection: 0
x-proxy-cache: HIT

GET
H2 200 us.svg
urlscan.io/vendor/flag-icon-css/flags/4x3/ 7 KB
2 KB 119ms
119ms Image
image/svg+xml 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://urlscan.io/vendor/flag-icon-css/flags/4x3/us.svg

Requested by

Host: urlscan.io
URL: https://urlscan.io/vendor/flag-icon-css/css/flag-icon.min.css

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

6d053f4d6e1412745749fc8d981833d6d7f8f19b72042d1a65e3356ca29a7ef7

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/vendor/flag-icon-css/css/flag-icon.min.css
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:09 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
referrer-policy: unsafe-url
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
content-encoding: gzip
x-content-type-options: nosniff
etag: W/"1b4d-18df8f8c730"
x-frame-options: DENY
content-type: image/svg+xml
cache-control: public, max-age=3600
x-robots-tag: all
x-xss-protection: 0
x-proxy-cache: HIT

GET
H2 200 il.svg
urlscan.io/vendor/flag-icon-css/flags/4x3/ 1 KB
1 KB 121ms
121ms Image
image/svg+xml 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://urlscan.io/vendor/flag-icon-css/flags/4x3/il.svg

Requested by

Host: urlscan.io
URL: https://urlscan.io/vendor/flag-icon-css/css/flag-icon.min.css

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

98c3c0d9628008ac3a947d8f10fcb01d8e2545dfb265e94e6a29910e1ba57a2d

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/vendor/flag-icon-css/css/flag-icon.min.css
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:09 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
referrer-policy: unsafe-url
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
content-encoding: gzip
x-content-type-options: nosniff
etag: W/"416-18df8f8c730"
x-frame-options: DENY
content-type: image/svg+xml
cache-control: public, max-age=3600
x-robots-tag: all
x-xss-protection: 0
x-proxy-cache: HIT

GET
H2 200 S6uyw4BMUTPHjx4wXg.woff2
fonts.gstatic.com/s/lato/v24/ 23 KB
24 KB 346ms
111ms Font
font/woff2 172.217.18.3
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

Requested by

Host: fonts.googleapis.com
URL: https://fonts.googleapis.com/css?family=Lato:400,700,400italic&display=swap

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

172.217.18.3 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra02s19-in-f3.1e100.net

Software

sffe /

Resource Hash

918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

Referer: https://fonts.googleapis.com/
Origin: https://urlscan.io
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 26 Feb 2024 20:08:18 GMT
x-content-type-options: nosniff
age: 561771
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 23580
x-xss-protection: 0
last-modified: Tue, 02 May 2023 15:17:22 GMT
server: sffe
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-type: font/woff2
access-control-allow-origin: *
cache-control: public, max-age=31536000
accept-ranges: bytes
timing-allow-origin: *
expires: Tue, 25 Feb 2025 20:08:18 GMT

GET
H2 200 S6u9w4BMUTPHh6UVSwiPGQ.woff2
fonts.gstatic.com/s/lato/v24/ 23 KB
23 KB 406ms
171ms Font
font/woff2 172.217.18.3
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2

Requested by

Host: fonts.googleapis.com
URL: https://fonts.googleapis.com/css?family=Lato:400,700,400italic&display=swap

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

172.217.18.3 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra02s19-in-f3.1e100.net

Software

sffe /

Resource Hash

c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

Referer: https://fonts.googleapis.com/
Origin: https://urlscan.io
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Tue, 27 Feb 2024 08:46:45 GMT
x-content-type-options: nosniff
age: 516264
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 23040
x-xss-protection: 0
last-modified: Tue, 02 May 2023 15:07:25 GMT
server: sffe
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-type: font/woff2
access-control-allow-origin: *
cache-control: public, max-age=31536000
accept-ranges: bytes
timing-allow-origin: *
expires: Wed, 26 Feb 2025 08:46:45 GMT

GET
H2 200 S6u8w4BMUTPHjxsAXC-q.woff2
fonts.gstatic.com/s/lato/v24/ 24 KB
24 KB 438ms
204ms Font
font/woff2 172.217.18.3
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://fonts.gstatic.com/s/lato/v24/S6u8w4BMUTPHjxsAXC-q.woff2

Requested by

Host: fonts.googleapis.com
URL: https://fonts.googleapis.com/css?family=Lato:400,700,400italic&display=swap

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

172.217.18.3 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra02s19-in-f3.1e100.net

Software

sffe /

Resource Hash

bca1d88ada544d9c80872d4da27133fab6d347361fa26e932b47ec9559088fd0

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

Referer: https://fonts.googleapis.com/
Origin: https://urlscan.io
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 26 Feb 2024 18:40:42 GMT
x-content-type-options: nosniff
age: 567027
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 24408
x-xss-protection: 0
last-modified: Tue, 02 May 2023 15:14:26 GMT
server: sffe
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-type: font/woff2
access-control-allow-origin: *
cache-control: public, max-age=31536000
accept-ranges: bytes
timing-allow-origin: *
expires: Tue, 25 Feb 2025 18:40:42 GMT

GET
H2 200 sandyspringspestcontrol.com Show response
urlscan.io/api/verdict/ 3 KB
2 KB 879ms
879ms XHR
application/json 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://urlscan.io/api/verdict/sandyspringspestcontrol.com

Requested by

Host: urlscan.io
URL: https://urlscan.io/js/692.4940d799c6356d8df842.js

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

200258f50951a9af4ee0ba57e7939032235140d47464c810545b20bf83da5b88

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

Accept: application/json, text/javascript, */*; q=0.01
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
X-Requested-With: XMLHttpRequest
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:09 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
referrer-policy: unsafe-url
strict-transport-security: max-age=63072000; includeSubdomains; preload
content-encoding: gzip
server: nginx
x-content-type-options: nosniff
etag: W/"c5f-76KIi6y88AUCMAElEmc0VgbSxFM"
x-frame-options: DENY
content-type: application/json; charset=utf-8
cache-control: public, max-age=60
x-robots-tag: all
x-xss-protection: 0
x-proxy-cache: MISS

GET
H2 200 loading.svg
urlscan.io/img/ 3 KB
1022 B 117ms
117ms Image
image/svg+xml 49.12.22.106
HETZNER-AS

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://urlscan.io/img/loading.svg

Requested by

Host: urlscan.io
URL: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

49.12.22.106 , Germany, ASN24940 (HETZNER-AS, DE),

Reverse DNS

urlscan.io

Software

nginx /

Resource Hash

0a9b13d99a5a6965e08e1cb4017a8820821d28434739dd6be36b0c940f473510

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://urlscan.io/result/550e60b8-94ac-4dea-bc35-7ef6f0dcfdfb/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:11:09 GMT
content-security-policy: default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
referrer-policy: unsafe-url
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 01 Mar 2024 07:44:30 GMT
server: nginx
content-encoding: gzip
x-content-type-options: nosniff
etag: W/"bf6-18df8f8c730"
x-frame-options: DENY
content-type: image/svg+xml
cache-control: public, max-age=3600
x-robots-tag: all
x-xss-protection: 0
x-proxy-cache: HIT

Verdicts & Comments Add Verdict or Comment

2 JavaScript Global Variables

These are the non-standard "global" variables defined on the window object. These can be helpful in identifying possible client-side frameworks and code.

object| webpackChunkurlscan_server function| onSubmit

0 Cookies

Cookies are little pieces of information stored in the browser of a user. Whenever a user visits the site again, he will also send his cookie values, thus allowing the website to re-identify him even if he changed locations. This is how permanent logins work.

1 Console Messages

A page may trigger messages to the console to be logged. These are often error messages about being unable to load a resource or execute a piece of JavaScript. Sometimes they also provide insight into the technology behind a website.

Source	Level	URL Text
network	error	URL: https://urlscan.io/user/username/ Message: Failed to load resource: the server responded with a status of 403 ()

Security Headers

This page lists any security headers set by the main page. If you want to understand what these mean and how to use them, head on over to this page

Header	Value
Content-Security-Policy	default-src 'self' data:; script-src 'self' data: developers.google.com www.google.com www.gstatic.com; style-src 'self' fonts.googleapis.com www.google.com; img-src * data:; font-src 'self' fonts.gstatic.com; child-src 'self'; frame-src https://www.google.com/recaptcha/; form-action 'self'; connect-src 'self'; upgrade-insecure-requests; frame-ancestors 'none'
Strict-Transport-Security	max-age=63072000; includeSubdomains; preload
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Indicators

This is a term in the security industry to describe indicators such as IPs, Domains, Hashes, etc. This does not imply that any of these indicate malicious activity.

fonts.googleapis.com
fonts.gstatic.com
urlscan.io
142.250.186.42
172.217.18.3
49.12.22.106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urlscan.io Open in urlscan Pro 49.12.22.106 Public Scan

Summary

urlscan.io Verdict: No classification

Domain & IP information

Screenshot Live screenshot Full Image

Page Title

Detected technologies

Page Statistics

26 Requests

100 %HTTPS

0 %IPv6

3 Domains

3 Subdomains

3 IPs

2 Countries

469 kBTransfer

892 kBSize

0 Cookies

51 Outgoing links

Redirected requests

26 HTTP transactions Everything HTML Script AJAX CSS Image Expand all 0 data transactions

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Verdicts & Comments Add Verdict or Comment

2 JavaScript Global Variables

0 Cookies

1 Console Messages

Security Headers

Indicators

urlscan.io Open in urlscan Pro
49.12.22.106 Public Scan

Screenshot
Live screenshot

Full Image

26
Requests

100 %
HTTPS

0 %
IPv6

3
Domains

3
Subdomains

3
IPs

2
Countries

469 kB
Transfer

892 kB
Size

0
Cookies

26 HTTP transactions
0 data transactions