bone.strongpcprotection.site/c/cce23e0fee9d07c0?CLCUSD=0.052&s1=kd2-mcaf-us&s3=edwide&s4=319911&s5=1374010752369560&s6=5935979&s7=612386&s8=Spectrum%20Business&s9=MICROSOFT_EDGE&s10=Windows%2010&clickid=cnv4150a162d4a384fe96e5a7553deca175
52.19.101.114200 OK 3.2 kB URL HTTP/1.1 bone.strongpcprotection.site/c/cce23e0fee9d07c0?CLCUSD=0.052&s1=kd2-mcaf-us&s3=edwide&s4=319911&s5=1374010752369560&s6=5935979&s7=612386&s8=Spectrum%20Business&s9=MICROSOFT_EDGE&s10=Windows%2010&clickid=cnv4150a162d4a384fe96e5a7553deca175
IP 52.19.101.114:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (17676)
Hash 29122a6e9ca63915571753dad1ff660e
961ec76ded19f85a05571e0501c8675c6c8893ac
19fda3889f6e3451a0b0b48190bfb8137db390177caca12e0dd9edf06c64bf4f
GET /c/cce23e0fee9d07c0?CLCUSD=0.052&s1=kd2-mcaf-us&s3=edwide&s4=319911&s5=1374010752369560&s6=5935979&s7=612386&s8=Spectrum%20Business&s9=MICROSOFT_EDGE&s10=Windows%2010&clickid=cnv4150a162d4a384fe96e5a7553deca175 HTTP/1.1
Host: bone.strongpcprotection.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 04:36:02 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: unique_id=6382e9320002fec8; Path=/; Expires=Thu, 26 Jan 2023 04:36:02 GMT
unique_id2=6382e932000309e3; Path=/; Expires=Sat, 25 Feb 2023 04:36:02 GMT
impression=; Path=/; Expires=Sun, 27 Nov 2022 04:36:02 GMT
6382e932000309e3_sl=[210094]; Path=/; Expires=Sun, 11 Dec 2022 04:36:02 GMT
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 150792cfc458af013998f4ef6bdf5f74
d5179b2dcb11d06f82606bf6eb6648319998d63e
72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3647
Expires: Sun, 27 Nov 2022 05:36:49 GMT
Date: Sun, 27 Nov 2022 04:36:02 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6584
Cache-Control: max-age=114290
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 04:36:02 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 12:20:52 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 04:17:35 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1107
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3139
Expires: Sun, 27 Nov 2022 05:28:21 GMT
Date: Sun, 27 Nov 2022 04:36:02 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kAZCe/dMgLuOdFd/LxWvNgRGjbLMEhkn7r61z03Y6EGcz2IXk+kVDqlUSeN14RV9stmc1qfES9NYjzFuR1jWpQ==
x-amz-request-id: EFRVQZQ5EVZXVHJT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 03:41:28 GMT
age: 3274
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 04:36:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdn-adef.akamaized.net/landings/210094/1665074482/js/main.js?1665074482
23.36.76.194200 OK 750 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/js/main.js?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1668)
Hash eed2658cf6c3c5a5c872bee7a416935c
12087545088a1898342e7066e689973c8cadb231
33d6747f19a889ba16007999396e73bb3b195f7a0d2040e6e0971e4be7db1d19
GET /landings/210094/1665074482/js/main.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: FpDFBkNFSlDxr02oSpf9H/iCHHxgADUjRVJpuTi2N5Y4RI0yTtp89TmEHh2hpmW7yzO1MeVrg0E=
x-amz-request-id: 01S87RZH8G4F888Y
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "faeed909095b5eed12a9132579eea70e"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 04:36:02 GMT
Content-Length: 750
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/css/style.css?1665074482
23.36.76.194200 OK 2.0 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/css/style.css?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with CRLF line terminators
Hash cbebfbfa9821de84707e1af1e6a76d4b
564362b542854a20f890353ee49b35992ee75e61
4339353bf696a2d4e8df354289884d144b5bd938ff34f7644dc7033f2292fb08
GET /landings/210094/1665074482/css/style.css?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: KaSHS9WcM4FwNWo/xH9aq91ayTAILkJshSVuZr5qlK3weLdiGLVzYQXiolTKboD1Bpob6it3d48=
x-amz-request-id: NG3S7V3KW3M78Z7K
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "ffa5421a0b7b7e9bdd28c477095cbd2d"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 04:36:02 GMT
Content-Length: 1959
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/js/interactive.js?1665074482
23.36.76.194200 OK 4.9 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/js/interactive.js?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (23751), with no line terminators
Hash 8618da9f60ac759c7c91f99749f1c6a5
7746a0f302eaa3badc9a517c07daeee3921bc770
e743983276c32fe6cc5e1a0ec45fe1da88375849aca1664365ce32fe9621fdd1
GET /landings/210094/1665074482/js/interactive.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: +K6L/LjLgkG9nrdZi4cTIEIBesfjVem9fxb5DY6hKDxszKHVzJuEkNYA3z/2J/+iIvcquB7XMUU=
x-amz-request-id: 01S0PJFG0GPZJKEG
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "bb8e11305fb8c3574c2ea1ae2a7da66b"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 04:36:02 GMT
Content-Length: 4891
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/js/js.cockie.min.js?1665074482
23.36.76.194200 OK 912 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/js/js.cockie.min.js?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
Hash 96533a0859f3dfc61d7471beec7b8642
7b4f1497692f2ea0d3d1eaa44db54b22345486b8
994b8097c16e97d8b28ab498f2f4290ebd8ca0353e23e7ddd2a6edd8b648bd46
GET /landings/210094/1665074482/js/js.cockie.min.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: BdEj4SJmKQEIFzoI7F/Tp+yQ4NWogaw2cGBG0WjmezIwnKmJ18R4GgYrJcSNH6XeyQHVaTPnrWw=
x-amz-request-id: A12Y6EMCGZJGSP6F
Last-Modified: Thu, 06 Oct 2022 16:41:26 GMT
ETag: "c9e9a54501fc6f6e8918b2c0f2a53981"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 04:36:02 GMT
Content-Length: 912
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/js/translate.js?1665074482
23.36.76.194200 OK 544 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/js/translate.js?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
Hash 015967e055e606d62302b33ca898240c
97a3a854502409b10635b092500bfc5b244642e4
5bc3f308bb3236dbb04b2ac5d01905f9081d24827d4cd26c33ec5f716acd8427
GET /landings/210094/1665074482/js/translate.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: HyXB5wrRKspDgb7HewytILh7MQtido3Ebgr2xij4VVuWLh2p3Zeh3wKw+hP7BIrpIjU3OA8UcJI=
x-amz-request-id: 8EQS4KJNWH4P9XCW
Last-Modified: Thu, 06 Oct 2022 16:41:26 GMT
ETag: "fcd546809170dd574eb37b989529f69a"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 04:36:02 GMT
Content-Length: 544
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/js/site-protect.js?1665074482
23.36.76.194200 OK 771 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/js/site-protect.js?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
Hash 374496cfad56243dce97281141912979
2684f16d4ce2676cb5d23e2f8bf5be3b6abba436
8bfb2943d98ad06afe4dcbbdc2dab6f451eda54e1ad6b5ceacc12eefe767c0d9
GET /landings/210094/1665074482/js/site-protect.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: DDpGErthCVuqRzTsTcwhfakYS9jTnnzYRD6mv6nTvgUG6IAngOoaKUC1LeHlA2ggjI2jirEBIUc=
x-amz-request-id: 3ZV00E4RZPFEG5YH
Last-Modified: Thu, 06 Oct 2022 16:41:26 GMT
ETag: "c47f7c71171eca259d1bf8b6bd018587"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 04:36:02 GMT
Content-Length: 771
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/js/jquery.min.js?1665074482
23.36.76.194200 OK 30 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/js/jquery.min.js?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65451)
Hash a6b22944e852281bd6098509b0bea251
ae0671465ee9bc7354942a48a87d0e0397799bf4
042d48a6103607bdc54170ab6e118859980c1bdf47ca857cfed44af87593827a
GET /landings/210094/1665074482/js/jquery.min.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: LSv0ocHORMy3WsY/QpmDg5ZrOViHVaU7QXQEHZGeCSikST7WO1QzWDeu+8EcoAQU0hp+pc4M0xY=
x-amz-request-id: 2MB3HAY9B7MQJVM0
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "a09e13ee94d51c524b7e2a728c7d4039"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 04:36:02 GMT
Content-Length: 30351
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/js/GTM-N4GRR3S.js?1665074482
23.36.76.194200 OK 407 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/js/GTM-N4GRR3S.js?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type exported SGML document, ASCII text, with CRLF line terminators
Hash fc9a8507ee55f09c46bfdce61a8a2cc2
9d83880e0819dc336f38bdef6c6a086a10e33f02
c8ba9fc3b2f8faabdd618fa2da77a135b9e1a0bd6e62e74cb91a500caae1ec5a
GET /landings/210094/1665074482/js/GTM-N4GRR3S.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: u5TNcWtXkTFmWhSeydM4TdnzUDuOpCu6VYwA4fYMoNMA+8SExSOu0zk6CGWnR/trZsNgGEFSYfw=
x-amz-request-id: F2468FQSR2Y82F33
Last-Modified: Thu, 06 Oct 2022 16:41:26 GMT
ETag: "fc9a8507ee55f09c46bfdce61a8a2cc2"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Content-Length: 407
Date: Sun, 27 Nov 2022 04:36:02 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/js/second_back_multi.js?1665074482
23.36.76.194200 OK 790 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/js/second_back_multi.js?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type HTML document, ASCII text
Hash 5c1190b869b7ce7e7e61bb06daeef517
034dd9bab87cbe052f2ce293ce35b1bec7fe1b53
b7f6f310dab1572e7d9ed3e46a5e1fa1c87228d70b3979cbe541cddba876195a
GET /landings/210094/1665074482/js/second_back_multi.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: a6msK8P3XfSS2VHGULt2nz7PGMB9Kf0ZnkaeT09JcC7kqjV7pTAQMPoY7kiSufI0DPo6sDumYPI=
x-amz-request-id: 10GH5ZXG4RZMAPTA
Last-Modified: Thu, 06 Oct 2022 16:41:26 GMT
ETag: "b2e5bcd8e92cf97cd2a0ea4f76194bfe"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 04:36:02 GMT
Content-Length: 790
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/css/translate.css?1665074482
23.36.76.194200 OK 3.9 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/css/translate.css?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
Hash f7116ac9c34bce9ddb1cb0ca45e71a5e
4b923e60630ee4ac54f00b4bc916ddbdf5da9115
9e63cc29a086f1c981c3387494dc31e2f2cb9c2fa83df6f28f8b6f47000bcd60
GET /landings/210094/1665074482/css/translate.css?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: OQv8jxSZTGUJW5raXFpu73HiMX7DFPnBn/l4KNv46Q3PBs0UcgxCPzfCaf6Dolnv0MtIpD0e3gg=
x-amz-request-id: G19JBHQH5E2B72KG
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "c09d0e8abc947698e6d20bf75e1d8238"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 04:36:02 GMT
Content-Length: 3855
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 04:36:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-N4GRR3S
142.250.74.168200 OK 48 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-N4GRR3S
IP 142.250.74.168:0
File type ASCII text, with very long lines (2472)
Hash 248ae9977df695ccd2bfb17e8ef21f45
0077513bc0e408057e94f2f11af7d6d1ba62fdeb
83206023b179e0978ad74e9f24809e729e9a266bc29948353b98dc1d7e714b77
GET /gtm.js?id=GTM-N4GRR3S HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 04:36:02 GMT
expires: Sun, 27 Nov 2022 04:36:02 GMT
cache-control: private, max-age=900
last-modified: Sun, 27 Nov 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 48378
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 04:08:54 GMT
cache-control: public,max-age=3600
age: 1628
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 04:36:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3584
Cache-Control: max-age=106232
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 04:36:03 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 10:06:35 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
cdn.stfilecamp.com/stormtrk.js?1665074482
205.185.216.10200 OK 6.5 kB URL HTTP/2 cdn.stfilecamp.com/stormtrk.js?1665074482
IP 205.185.216.10:0
Hash 469e121bb4c4fe159bbca2b4f5a88267
f0c66f226de28b324e4f1ecb766597938f984c60
4706b6d6c3e39cf2915a772595f2cc124e96d0919538b56aa817113e6482c416
Analyzer Verdict Alert fortinet Phishing
GET /stormtrk.js?1665074482 HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 04:36:03 GMT
cache-control: max-age=3600
content-length: 6502
content-type: text/javascript
last-modified: Tue, 07 Sep 2021 08:59:42 GMT
accept-ranges: bytes
x-rgw-object-type: Normal
etag: "469e121bb4c4fe159bbca2b4f5a88267"
x-amz-request-id: tx00000000000006d8a60bc-006382e933-213dd56e-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
x-hw: 1669523762.dop229.sk1.t,1669523762.cds206.sk1.hn,1669523763.cds201.sk1.pr
X-Firefox-Spdy: h2
cdn-adef.akamaized.net/landings/210094/1665074482/images/pc_green.gif
23.36.76.194200 OK 723 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/pc_green.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 120 x 97\012- data
Hash ea44081971aed96fbfa38fa187b6df4a
a3ec8cd4c76f517584faef83f96e32683265bdb1
e0f52d9433540bafa2f05fc3c04839b4990c2ce5ef718975a8d4eef9866f06be
GET /landings/210094/1665074482/images/pc_green.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: yX/OGClO8RX6GHOnsS0EH+TNqk2XTGIlBp1GX/7K5LjPgFhXPgppykRcFIHn3+aKJL6aQPn4ko4=
x-amz-request-id: 5EA646EPVDSF74QP
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "ea44081971aed96fbfa38fa187b6df4a"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 723
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_gray1.png
23.36.76.194200 OK 364 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_gray1.png
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash e144c3378090087c8ce129a30cb6cb4e
59da5466551de941d0215e45c54aa2ceaf436be1
b13a03e0db893734298cbe203bf264407636ffe5dab0a141f83c492d0034dd6a
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/ico_gray1.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: kdIINfQcDqdpUVsE3WFIOhv7Prh6SoMP4MKZHnKRPI81DM+Wm1optoGWewi+j+H/SYUcNmDt2gY=
x-amz-request-id: EVGRFGWXB2P9Z28W
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "e144c3378090087c8ce129a30cb6cb4e"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 364
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/win_cls.png
23.36.76.194200 OK 293 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/win_cls.png
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash 9eb68d2ce05c151bda542a7a6356e22c
baeeefe4a7ac657c10a5f081841015de1bcf90dd
2d2b7040bc32b397c3c60d800de9aa7d86404f1874862eba61bdaa21f1523eb7
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/win_cls.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: kXr7BQBnHoQPPKb4B6j6NxsKnaBIDfNR6h+6BFvkdQk/MYxaptq2y2+olDhSQnKLZABdKb4tCH8=
x-amz-request-id: HG269CWFBZDRKH55
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "9eb68d2ce05c151bda542a7a6356e22c"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 293
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/corner.gif
23.36.76.194200 OK 102 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/corner.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 24 x 9\012- data
Hash ef14d57c065fdbd3c66d017a729ca91f
2e7b72d674361a9c2b41767ccfbed2486e6695dd
6fcbfcda8a36536a0f9b0bc8c4a6ca451d9bafd4a879d56697e48e209691ba36
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/corner.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: FPGxrOAcS/379Axn4kbNrnfT5boZQ74Gc+W/4nBPl+Qe80cHTMUq2636ObUEd6f9XwIwerOtJVg=
x-amz-request-id: HG2CQ0APRQ9HN8E9
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "ef14d57c065fdbd3c66d017a729ca91f"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 102
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/win_min.png
23.36.76.194200 OK 128 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/win_min.png
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash 0bb86caf792dd7d24731c18cd37bb68e
dda1e433a0eaf785b2aa2c6214d5e48cb82a3a25
2ac27821ba64d645f36e2ad197492d30c11b10a032cc474554679555f4604622
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/win_min.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: tmYHHj2LB2OD94ehf5dsHx3YSdIpIbMhjGXBtIJZ82FEUIASO5BDEHml0hET/5PbKM35X4sCc5I=
x-amz-request-id: 44XDCWQK1QTPADR0
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "0bb86caf792dd7d24731c18cd37bb68e"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 128
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl1.gif
23.36.76.194200 OK 511 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl1.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 80 x 65\012- data
Hash af3aca2036675c5979fb535c5d190f15
70c4f17ef1a2afe0477c84c5d209fbe31760b657
aa88fa9731a6021cd8c0f80ef76476fd055a9cf0bff3ad9fbefbedbd255e26fa
GET /landings/210094/1665074482/images/ico_bl1.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: pO+fWpJBCoBT2H+r3STt3YyUh3VWl0xyCKfhwa6PQp/5wIWx2bt5fBeY5BL8tzgmeYx/VT9H0f0=
x-amz-request-id: V276BSYMECDVDG2C
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "af3aca2036675c5979fb535c5d190f15"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 511
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl2.gif
23.36.76.194200 OK 1.5 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl2.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 65 x 80\012- data
Hash af52e51f42fd0c55bc3cf2c8ece71492
016f83da68ff461a5c6aebcc2a45668317b2f24c
e91f304cf7409723968740e6363dda01b50acb8e94b5ca05b4a4617666ff095c
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/ico_bl2.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: X172F/rDy9NtAVi86n9t0UYE+EfyOLSorrnK0/LkSuzXTupVAM3C7NindDZ6BkJxF3CY2fcFdYQ=
x-amz-request-id: HG2D4P0F6F4PVB17
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "af52e51f42fd0c55bc3cf2c8ece71492"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 1547
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_gray2.png
23.36.76.194200 OK 349 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_gray2.png
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type PNG image data, 13 x 13, 8-bit/color RGB, non-interlaced\012- data
Hash 7454c652e0733d92de6c920c2d646ae0
34a5bd8c7401f95e346895b0e5ccffbf0e9ad638
44f752b0bd2e48052d538bc6aca5379f3630ca64da945f794690ddf47e8eaef7
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/ico_gray2.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: sjWU78x9fW90wYWwBU5KmzwvObjWlFg1zoZyyyOJAz0EUtPFCdQyKDJHGv+kX687noJuH0HKh4A=
x-amz-request-id: HG28HS22WY8X0QPZ
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "7454c652e0733d92de6c920c2d646ae0"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 349
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/nrt_logo.png
23.36.76.194200 OK 1.7 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/nrt_logo.png
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type PNG image data, 65 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash 552a64cb68788eda1e39803a214e6089
bfdff83a307360453e686bc006e33baa3b7ac6e5
76efdff7f7d19e2b7c161d769c023890a9304a98ac76c26a30d3b8a7dceeaed5
GET /landings/210094/1665074482/images/nrt_logo.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: iGZoXibmJy9D6j8ERctD+z7dULYpV66rmrAM9UYz3eQE8y/n3kaoM8pFTurUbCOgaoEtlBf8ECU=
x-amz-request-id: 5SZNFM8DHX7R6C9M
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "552a64cb68788eda1e39803a214e6089"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1658
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray3.gif
23.36.76.194200 OK 234 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray3.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 16 x 16\012- data
Hash 9ce99ec458daf212f9812a90f3fadd13
9e3041bc91b79a17b52e0fbb6c2d0e2f905d98a1
b0d335401c9fd5fac9991ec92edaf7865ff3a491ebe390120936c69796c3b753
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/ico_tray3.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: NIf3CWpiOl4IpxbUjGOpmlw/OrOeFWlzrWax/OrYZEzglRoLLvIpUrbX4udKxvMnXlBbeETPEw0=
x-amz-request-id: JZQCJ0W2ASTQ0V9D
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "9ce99ec458daf212f9812a90f3fadd13"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 234
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl3.gif
23.36.76.194200 OK 949 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl3.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 78 x 68\012- data
Hash da9d153375da51a616a7663f1504e3a5
bd81fe60fe017bfe79be8c1afed88b659ff166d9
9bb88049c3d3f3c172d97246fa148bb725e727847c37e28c3be156be240a0c04
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/ico_bl3.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: F7q6i/K7RtVbTjVJ6YGiDvpl1asCD+Lnn1r8HSyf7e9yxpmeok6IacYPGiOvdx9z4wov21Rv7Tk=
x-amz-request-id: HG24X7MB24AYC02G
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "da9d153375da51a616a7663f1504e3a5"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 949
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray2.gif
23.36.76.194200 OK 377 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray2.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 16 x 16\012- data
Hash c10bdec858cb0cf9e6cc5865d5925746
697c095ed5509e5a5af0c5ebf2380662aeffc531
b65b47a79e32335d9ca35ff59c6975d2b5808f84da0db88d11ce777b33e72ad9
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/ico_tray2.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 0rT+kj/6W4izASCBW1TFt+y+m0Qv6+ef6jup+38SbYAhZoGIUzklyauQnlx1p6T1yHqqSSnoXI8=
x-amz-request-id: 5EACCVBJ1JC6D0C4
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "c10bdec858cb0cf9e6cc5865d5925746"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 377
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray1.gif
23.36.76.194200 OK 69 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray1.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 16 x 16\012- data
Hash 3ae573d079dcd1d2da4086f2c0c72c45
e7c9dabec81379373476ed23168dcecb9b8c56aa
9cce08ab28e94790cf78c87e37f8690acbc6c535e4b43ae7b38506b94538e107
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/ico_tray1.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Y69rZi0GPmBkoLqkcKGLxETlf/XFx3FPgj4LXhsAxVry/xXjtGDrnhfh+32OCDIKxoZF+iGUnOs=
x-amz-request-id: R9ECTGZFG56M373P
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "3ae573d079dcd1d2da4086f2c0c72c45"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 69
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/logo.png
23.36.76.194200 OK 5.0 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/logo.png
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type PNG image data, 157 x 43, 8-bit/color RGBA, non-interlaced\012- data
Hash 0f00a5ca8441973c8bdb7adad8d10742
575564b9a087ddfb14f5b2544c33e85565089d59
f3c9f517b92df590f6baf628ed1e0bf794872d1c85ecfd163a3a242412e92a5c
GET /landings/210094/1665074482/images/logo.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Ez5SgwpnxiKWoHDW/6fX/EywC1cz3I5tZAN3JpQqllrt77rwVRV2cbRki8JMK5aa1W9NbFeefrI=
x-amz-request-id: HG214Q4PC7W4FEVC
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "0f00a5ca8441973c8bdb7adad8d10742"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4994
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ring.gif
23.36.76.194200 OK 315 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ring.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 30 x 29\012- data
Hash c3b64d6515c79193f47b3f6780840578
0edb138e48313bbea641208092d9072cee89652e
275e633fe30013ed09ab33d46f668be82c19c93ed3c66485a5bef53d74eeaa89
GET /landings/210094/1665074482/images/ring.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: +i9iykDz2gTmfikl62UNQX1mjWgb7wn6p+T4KrGuHWxpgSU+tL4Qxr+O8KhmLiZjUbLtbENZDWE=
x-amz-request-id: 5HKTQB3HFT3ZAMZ6
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "c3b64d6515c79193f47b3f6780840578"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 315
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/logo-white.png
23.36.76.194200 OK 2.0 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/logo-white.png
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type PNG image data, 415 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash 3c9430ab1ed0536d46dd917813f11c4d
cc4057a93be6f92d7068a8b6d3bcd56f90f4e182
c9170db9afee7b62db6dccbc35fe3111ec22caa8bc378b9804713035692cb986
GET /landings/210094/1665074482/images/logo-white.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 51ohBK1y861xlT2f2v9l+zDsnf6w+IxYn/l8AGqf1pVWINC9eh/mpbZTG9tAMlJtG1gXYpQBapI=
x-amz-request-id: NSXD4N25S2CCWDA9
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "3c9430ab1ed0536d46dd917813f11c4d"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 2013
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/cross.gif
23.36.76.194200 OK 211 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/cross.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 29 x 29\012- data
Hash 45b0c8a1e52d91e8cf84eaf75ebca9a9
0e358b8571f9062dedfacd0c31d54179270153cd
4e635bdab7a300d0ccb5aac26b4610a07ee1b33643578c1a4308e677d7eb595d
GET /landings/210094/1665074482/images/cross.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: SxnV7UUeW2FgMLi881LC3GOr+UJKUhqeVRm+UlN4J/KN3ZrIkP3WkvZUcnfvQa2ROqoy54dtTjA=
x-amz-request-id: 5EA6K98F779ZY8HG
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "45b0c8a1e52d91e8cf84eaf75ebca9a9"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 211
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/mcafee-total-protection.jpg
23.36.76.194200 OK 244 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/mcafee-total-protection.jpg
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2806x1200, components 3\012- data
Size 244 kB (243629 bytes)
Hash dd4acb73b402577e9296a3d02f01ae23
390fc162fcacda7f0b3d918c3f144021767e237f
ae61661052377eb572cbeeca552616f086fc47f15df4ba36092a20ba8146df69
GET /landings/210094/1665074482/images/mcafee-total-protection.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: gAbU9TCFZQwncqgUbfjK/wsFklR0GsM9JpDwqB9uE+jKSXd9TjtlxTWJBkj0lWYdEn6e59SqbXA=
x-amz-request-id: HG27E1KSHB3AG2TY
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "dd4acb73b402577e9296a3d02f01ae23"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 243629
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl4.png
23.36.76.194200 OK 662 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl4.png
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type PNG image data, 78 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash 7a11ddabe8ccece588c8aef50f5d12dc
e36cd99c427e79f156e99bd8078c14be23aec42a
15d874692f178f9bf819b8c13274b71ca400b0f37bfda1433834a959d0413dfa
GET /landings/210094/1665074482/images/ico_bl4.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: cxe+y8lUHIkDTPvem7LKMtPlqagnFi2EInsOypU7K0wTgSe3TwJmowe9B24wqW906aWT6Thj0GQ=
x-amz-request-id: 3VJX0VSWF4HZ398J
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "7a11ddabe8ccece588c8aef50f5d12dc"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 662
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
push.services.mozilla.com/
52.43.253.52101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.253.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MuCR69cFAUd7DSgQqhM7vw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tc+NWRS9Pew+p/H1D8VWyGn3XMU=
cdn-adef.akamaized.net/landings/210094/1665074482/images/favicon.ico?t=20221127043602
23.36.76.194200 OK 1.2 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/favicon.ico?t=20221127043602
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash ff7441c3264d89023f376e5319dad793
1f0be835d947eb2de35d945ea5b9b92578a8cbd7
93130759a18703dcad5862bc2fd2973edf9ab7e48ba2c0b4cd4fcfaf832df223
GET /landings/210094/1665074482/images/favicon.ico?t=20221127043602 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: EcRJY/I6i2ov0oASvnYp6gT6YnB8Osrimg9bkiCBdHT8xF9c4eVVwrov94BVCv4Y0dkj+irnMKQ=
x-amz-request-id: HF2F7NX30QQ29VXZ
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "ff7441c3264d89023f376e5319dad793"
Accept-Ranges: bytes
Content-Type: image/x-icon
Server: AmazonS3
Content-Length: 1150
Date: Sun, 27 Nov 2022 04:36:03 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 27 Nov 2022 02:41:08 GMT
expires: Sun, 27 Nov 2022 04:41:08 GMT
cache-control: public, max-age=7200
age: 6895
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 88e42375d2172305f819b892225cf877
674324641f82700172e72fe259ee2241361e2ea1
6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 04:36:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash e5c575edb3490f720b8df0fd80e3e380
30d31a7d3993717f4c79487864959e29cad3289d
385cd86c33c7e1bc8a3dae64c0c5b21d6869c389f33d9d37807e25c821994d7a
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 04:36:03 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Thu, 01 Dec 2022 02:00:10 GMT
ETag: "30d31a7d3993717f4c79487864959e29cad3289d"
Last-Modified: Sun, 27 Nov 2022 02:00:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2183
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770829229f45b518-OSL
www.google-analytics.com/j/collect?v=1&_v=j98&a=341639068&t=pageview&_s=1&dl=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&ul=en-us&de=UTF-8&dt=McAfee%20Security&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=642621259&gjid=1588897159&cid=1977506557.1669523763&tid=UA-178924098-3&_gid=1458619037.1669523763&_r=1>m=2wgb90N4GRR3S&z=884331526
142.250.74.174200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=341639068&t=pageview&_s=1&dl=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&ul=en-us&de=UTF-8&dt=McAfee%20Security&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=642621259&gjid=1588897159&cid=1977506557.1669523763&tid=UA-178924098-3&_gid=1458619037.1669523763&_r=1>m=2wgb90N4GRR3S&z=884331526
IP 142.250.74.174:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j98&a=341639068&t=pageview&_s=1&dl=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&ul=en-us&de=UTF-8&dt=McAfee%20Security&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=642621259&gjid=1588897159&cid=1977506557.1669523763&tid=UA-178924098-3&_gid=1458619037.1669523763&_r=1>m=2wgb90N4GRR3S&z=884331526 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://bone.strongpcprotection.site
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: http://bone.strongpcprotection.site
date: Sun, 27 Nov 2022 04:36:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 88e42375d2172305f819b892225cf877
674324641f82700172e72fe259ee2241361e2ea1
6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 04:36:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 04:36:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
translate.googleapis.com/translate_static/css/translateelement.css
142.250.74.106200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 142.250.74.106:0
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 03:38:24 GMT
expires: Sun, 27 Nov 2022 04:38:24 GMT
cache-control: public, max-age=3600
age: 3459
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
77.88.21.119200 OK 73 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 77.88.21.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (587)
Hash 1d79426653c3b55939eaec59a2ce8ef5
c6db0314df7a4e5c08047f6306e0b79a1ad3bab2
2729cfe8b2f5142cf99734cbb4e1a3c6cd35868d279cd796db49ef62742ef993
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73267
date: Sun, 27 Nov 2022 04:36:03 GMT
access-control-allow-origin: *
etag: "637f41b2-11e33"
expires: Sun, 27 Nov 2022 05:36:03 GMT
last-modified: Thu, 24 Nov 2022 13:04:34 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 04:36:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stormtrk.com/api/1.0/ping/pong?location=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175
104.26.4.120200 OK 75 kB URL HTTP/2 stormtrk.com/api/1.0/ping/pong?location=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175
IP 104.26.4.120:0
File type JSON data\012- , ASCII text, with very long lines (458)
Hash 178f19342b159c01a9b1fc2383937700
bf8c0061146662fbd6d5366372c2a5401c9694d2
99fc789d731f677fe1bf36a570d4a65dd8e738992eb7d2b6d3a736cfa25b1a39
GET /api/1.0/ping/pong?location=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175 HTTP/1.1
Host: stormtrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bone.strongpcprotection.site
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 04:36:03 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OondCmbpAGLIiffYUv5bQc3nbq4ZT3Haey9MqUCmO7r9%2B9t0NkhvsPaiVO2BBALdFccexKfH7u8UXFwGYkCN4DXwt8kAiS4r2pMfoEknvv8m3dJmKCpfggWPjAhkSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77082920b89cb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 04:36:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/watch/84852946/1?wmode=7&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1277%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1096364406166%3Ahid%3A114144038%3Az%3A0%3Ai%3A20221127043603%3Aet%3A1669523764%3Ac%3A1%3Arn%3A844679074%3Arqn%3A1%3Au%3A1669523764817780927%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A86%2C37%2C51%2C1%2C-5%2C0%2C%2C1084%2C3%2C%2C%2C%2C1277%3Ans%3A1669523761844%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669523764%3At%3AMcAfee%20Security&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
77.88.21.119200 OK 407 B URL HTTP/2 mc.yandex.ru/watch/84852946/1?wmode=7&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1277%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1096364406166%3Ahid%3A114144038%3Az%3A0%3Ai%3A20221127043603%3Aet%3A1669523764%3Ac%3A1%3Arn%3A844679074%3Arqn%3A1%3Au%3A1669523764817780927%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A86%2C37%2C51%2C1%2C-5%2C0%2C%2C1084%2C3%2C%2C%2C%2C1277%3Ans%3A1669523761844%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669523764%3At%3AMcAfee%20Security&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
IP 77.88.21.119:0
File type JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Hash 134bc7e423c50349c1d837f6e86c84d0
e869597ef55bbdadbf1d81e03ae1fc63d54e87db
c1ffab21fb21187e546ccfc8420dc77c6a29fdfe8b70c36158272aec0559f26d
GET /watch/84852946/1?wmode=7&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1277%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1096364406166%3Ahid%3A114144038%3Az%3A0%3Ai%3A20221127043603%3Aet%3A1669523764%3Ac%3A1%3Arn%3A844679074%3Arqn%3A1%3Au%3A1669523764817780927%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A86%2C37%2C51%2C1%2C-5%2C0%2C%2C1084%2C3%2C%2C%2C%2C1277%3Ans%3A1669523761844%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669523764%3At%3AMcAfee%20Security&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bone.strongpcprotection.site
Referer: http://bone.strongpcprotection.site/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 407
date: Sun, 27 Nov 2022 04:36:03 GMT
x-content-type-options: nosniff
access-control-allow-origin: http://bone.strongpcprotection.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 27-Nov-2022 04:36:03 GMT
last-modified: Sun, 27-Nov-2022 04:36:03 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 04:36:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/images/branding/product/1x/translate_24dp.png
142.250.74.163200 OK 846 B URL HTTP/2 www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP 142.250.74.163:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 04:28:55 GMT
expires: Mon, 27 Nov 2023 04:28:55 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 428
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.stfilecamp.com/fp.min.js
205.185.216.10200 OK 32 kB URL HTTP/2 cdn.stfilecamp.com/fp.min.js
IP 205.185.216.10:0
File type Unicode text, UTF-8 text, with very long lines (31370)
Hash 198f2f5b0a649f41fe890c59d37319aa
f24629687612889bb59f610df3879afcd766fb80
d2bc2cb800679f495a7731c105b2e2047965800515f98008867ab33edc940912
Analyzer Verdict Alert fortinet Phishing
GET /fp.min.js HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 04:36:03 GMT
cache-control: max-age=1919
content-length: 31705
content-type: text/javascript
last-modified: Mon, 13 Jun 2022 11:23:14 GMT
accept-ranges: bytes
x-rgw-object-type: Normal
etag: "198f2f5b0a649f41fe890c59d37319aa"
x-amz-request-id: tx00000000000006d85a4ae-006382e2a2-213dd56e-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
x-hw: 1669523763.dop229.sk1.t,1669523763.cds206.sk1.hn,1669523763.cds237.sk1.c
X-Firefox-Spdy: h2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
142.250.74.46200 OK 28 kB URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 142.250.74.46:0
Hash 7a28771ecd241cc9a5890bd3f30f9e79
24d827f4fbcefbf86f3dd3f7eaea8cffca9326e1
87278f0dedaf14487d1fd6b1bc8edafba61eee2984b0f13a5a4eae70c6584888
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 04:36:03 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+626; expires=Tue, 26-Nov-2024 04:36:03 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sun, 27 Nov 2022 04:36:03 GMT
access-control-allow-origin: *
etag: "637f41b2-2b"
expires: Sun, 27 Nov 2022 05:36:03 GMT
accept-ranges: bytes
last-modified: Thu, 24 Nov 2022 13:04:34 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 04:36:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3963
Expires: Sun, 27 Nov 2022 05:42:07 GMT
Date: Sun, 27 Nov 2022 04:36:04 GMT
Connection: keep-alive
mc.yandex.ru/watch/84852946?wmode=7&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1277%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1096364406166%3Ahid%3A114144038%3Az%3A0%3Ai%3A20221127043603%3Aet%3A1669523764%3Ac%3A1%3Arn%3A844679074%3Arqn%3A1%3Au%3A1669523764817780927%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A86%2C37%2C51%2C1%2C-5%2C0%2C%2C1084%2C3%2C%2C%2C%2C1277%3Ans%3A1669523761844%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669523764%3At%3AMcAfee%20Security&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
77.88.21.119302 Found 503 B URL HTTP/2 mc.yandex.ru/watch/84852946?wmode=7&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1277%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1096364406166%3Ahid%3A114144038%3Az%3A0%3Ai%3A20221127043603%3Aet%3A1669523764%3Ac%3A1%3Arn%3A844679074%3Arqn%3A1%3Au%3A1669523764817780927%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A86%2C37%2C51%2C1%2C-5%2C0%2C%2C1084%2C3%2C%2C%2C%2C1277%3Ans%3A1669523761844%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669523764%3At%3AMcAfee%20Security&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
IP 77.88.21.119:0
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
GET /watch/84852946?wmode=7&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1277%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1096364406166%3Ahid%3A114144038%3Az%3A0%3Ai%3A20221127043603%3Aet%3A1669523764%3Ac%3A1%3Arn%3A844679074%3Arqn%3A1%3Au%3A1669523764817780927%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A86%2C37%2C51%2C1%2C-5%2C0%2C%2C1084%2C3%2C%2C%2C%2C1277%3Ans%3A1669523761844%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669523764%3At%3AMcAfee%20Security&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bone.strongpcprotection.site
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/84852946/1?wmode=7&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1277%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1096364406166%3Ahid%3A114144038%3Az%3A0%3Ai%3A20221127043603%3Aet%3A1669523764%3Ac%3A1%3Arn%3A844679074%3Arqn%3A1%3Au%3A1669523764817780927%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A86%2C37%2C51%2C1%2C-5%2C0%2C%2C1084%2C3%2C%2C%2C%2C1277%3Ans%3A1669523761844%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669523764%3At%3AMcAfee%20Security&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Sun, 27 Nov 2022 04:36:03 GMT
access-control-allow-origin: http://bone.strongpcprotection.site
set-cookie: yandexuid=4738780981669523763; Expires=Mon, 27-Nov-2023 04:36:03 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=4738780981669523763; Expires=Mon, 27-Nov-2023 04:36:03 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1787626381669523763; Path=/; SameSite=None; Secure
i=6sSE/uAfSUkRgfG1m2Osko3NWZ0PiZYEs2TIS00bvzJeynNLC3gH+7dnJqt7HCpTQ3ezGNcZ1DB5pQVtdTDmwRDoYuE=; Expires=Wed, 24-Nov-2032 04:35:57 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1701059763.yc.1669523763#1701059763.yrts.1669523763#1701059763.yrtsi.1669523763; Expires=Mon, 27-Nov-2023 04:36:03 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 27-Nov-2022 04:36:03 GMT
last-modified: Sun, 27-Nov-2022 04:36:03 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3963
Expires: Sun, 27 Nov 2022 05:42:07 GMT
Date: Sun, 27 Nov 2022 04:36:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3963
Expires: Sun, 27 Nov 2022 05:42:07 GMT
Date: Sun, 27 Nov 2022 04:36:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3963
Expires: Sun, 27 Nov 2022 05:42:07 GMT
Date: Sun, 27 Nov 2022 04:36:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 116eb5028a206e55f758f3e34887c87e
10577d9fc19028a0e0303634ec16ad8b2d41fa7a
d5d0f5518f8346e78f00a57632efe36f3363cabfa9abb30b7bea60261b29910b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5103
x-amzn-requestid: 203eadee-9375-4290-ae0a-dd48e83df697
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFGzTE90oAMFTyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637eb814-2c32253b155d5dd0283fdd07;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 00:17:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NQEJS9-L2M6WJ5nqH7C7MqIv96GDNUexqw60hbX_3z8wxv8bp0ARwQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 17:52:17 GMT
age: 38627
etag: "10577d9fc19028a0e0303634ec16ad8b2d41fa7a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31dafe91-0b1b-40e9-927c-c01863516712.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31dafe91-0b1b-40e9-927c-c01863516712.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccb536b51f31391c89fb2abe3be6c749
c9a5ab962bfdd174aecd4809d770f0fe305ab8e4
b4b6f70603ab79399aeda1d8b7e8f2662da37b51a2d076b8e754c812b6fa5b47
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31dafe91-0b1b-40e9-927c-c01863516712.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9073
x-amzn-requestid: 6cf20b75-6b27-4a34-97a8-017d7169f31b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8JuVHY7IAMFtRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2328-1ca76b3537613fb26358b8f2;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:05:12 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: lg8rdnHT_ndB-9CMrHcVN8a2xZCubuTEpUQ2m6i77l-NfdNfhfITEQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 cca7d60248a961ff8fc8c5640024b652.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 16:41:41 GMT
age: 42863
etag: "c9a5ab962bfdd174aecd4809d770f0fe305ab8e4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8aa8094-2375-4409-9501-0fe4e50b766d.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8aa8094-2375-4409-9501-0fe4e50b766d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6328cb630204883d77babc9922075f1
e440f7b94b53b6e7880b26f9653b1b266aae0190
b15144c88277e24acde95b45e56fb2d237f5b1d34a9590aa5aa2741f7102a9fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8aa8094-2375-4409-9501-0fe4e50b766d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8584
x-amzn-requestid: ef9e42a9-be9d-4239-831d-4c4250b0cb8d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCKAsGTDIAMFa1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8a04-17e610e05ee024007d64c6ea;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 02:48:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yeEzjiU_qN75issum4uP2zFM3C-DlSfIm728WgTPLvfvUmT0fWf-lA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 22:02:07 GMT
age: 23637
etag: "e440f7b94b53b6e7880b26f9653b1b266aae0190"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 433875a1b1fef34e45f2d8ac344c07e3
f2129466436cbbdd58abe42a47fb7af19eba58e6
ab1e7b46f3804640c7dd94d70c8c31ec2dfc3e2f0f015a8556d04d9d9089c450
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5099
x-amzn-requestid: 57648043-7820-453d-9549-0f743b6c2557
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4jFBvoAMFl1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-53b59d607b82c264180f469d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: VsdLWuh4rCawI5V0YYGaHxEMl2YEVNgsbjfCwzDsrnCZhRK2FkCkVw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:41 GMT
age: 24263
etag: "f2129466436cbbdd58abe42a47fb7af19eba58e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:51:37 GMT
age: 24267
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57bc6cf-beaa-443b-9756-cf26e4fe3767.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57bc6cf-beaa-443b-9756-cf26e4fe3767.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2212cf75f99dc67fd45db47f7101d754
4b4a8c8e8aeccfff25d2748720dcef8fed287126
7b2d2e302faba8f273b51031fa48b444cb7839733b90e8c9d077ca63637320d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57bc6cf-beaa-443b-9756-cf26e4fe3767.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6954
x-amzn-requestid: af6ab88e-884f-4c3f-a2ba-241d8bd04670
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8I_xG2SIAMF3xQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b21fe-573bfad8002144b7637e80f0;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:00:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: icdx5uaiqsWXMMoKgOwAV4sOfVhAw7oLi79yfweIw5_1pTTzI_qm_w==
via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 08:41:17 GMT
age: 71687
etag: "4b4a8c8e8aeccfff25d2748720dcef8fed287126"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn-adef.akamaized.net/
23.36.76.194302 Moved Temporarily 0 B IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET / HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://cdn-adef.akamaized.net/404
Date: Sun, 27 Nov 2022 04:36:05 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/404
23.36.76.194404 Not Found 134 B URL HTTP/1.1 cdn-adef.akamaized.net/404
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9c7c01b7650d428a3540bd1d22390a2f
1de74307526c98f84fe5ef2f7dce7ae7c1f77dd0
08c97b6bb3dda74ce86e43cfe75fe216618aa8d1f1e04fa9fc5ef57d3b1a69e1
GET /404 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bone.strongpcprotection.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 134
Date: Sun, 27 Nov 2022 04:36:05 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=1&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=506975503&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669523766%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043606%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523766&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=1&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=506975503&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669523766%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043606%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523766&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/84852946?wmode=0&wv-part=1&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=506975503&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669523766%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043606%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523766&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 23438
Origin: http://bone.strongpcprotection.site
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sun, 27 Nov 2022 04:36:06 GMT
access-control-allow-origin: http://bone.strongpcprotection.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 27-Nov-2022 04:36:06 GMT
last-modified: Sun, 27-Nov-2022 04:36:06 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=1&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=646293239&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669523767%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043606%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523767&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=1&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=646293239&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669523767%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043606%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523767&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/84852946?wmode=0&wv-part=1&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=646293239&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669523767%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043606%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523767&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: http://bone.strongpcprotection.site
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sun, 27 Nov 2022 04:36:06 GMT
access-control-allow-origin: http://bone.strongpcprotection.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 27-Nov-2022 04:36:06 GMT
last-modified: Sun, 27-Nov-2022 04:36:06 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=2&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=335518060&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669523768%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043608%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523768&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=2&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=335518060&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669523768%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043608%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523768&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/84852946?wmode=0&wv-part=2&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=335518060&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669523768%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043608%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523768&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 369
Origin: http://bone.strongpcprotection.site
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sun, 27 Nov 2022 04:36:08 GMT
access-control-allow-origin: http://bone.strongpcprotection.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 27-Nov-2022 04:36:08 GMT
last-modified: Sun, 27-Nov-2022 04:36:08 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
cdn-adef.akamaized.net/
23.36.76.194302 Moved Temporarily 0 B IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET / HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://cdn-adef.akamaized.net/404
Date: Sun, 27 Nov 2022 04:36:08 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/404
23.36.76.194404 Not Found 134 B URL HTTP/1.1 cdn-adef.akamaized.net/404
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9c7c01b7650d428a3540bd1d22390a2f
1de74307526c98f84fe5ef2f7dce7ae7c1f77dd0
08c97b6bb3dda74ce86e43cfe75fe216618aa8d1f1e04fa9fc5ef57d3b1a69e1
GET /404 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bone.strongpcprotection.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 134
Date: Sun, 27 Nov 2022 04:36:08 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=3&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=337381589&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669523770%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043610%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523770&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=3&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=337381589&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669523770%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043610%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523770&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/84852946?wmode=0&wv-part=3&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=337381589&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669523770%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043610%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523770&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 559
Origin: http://bone.strongpcprotection.site
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sun, 27 Nov 2022 04:36:10 GMT
access-control-allow-origin: http://bone.strongpcprotection.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 27-Nov-2022 04:36:10 GMT
last-modified: Sun, 27-Nov-2022 04:36:10 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/84852946?wv-check=5245&wv-type=0&wmode=0&wv-part=1&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=971980410&browser-info=gdpr%3A14%3Aet%3A1669523771%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043611%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523771&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/84852946?wv-check=5245&wv-type=0&wmode=0&wv-part=1&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=971980410&browser-info=gdpr%3A14%3Aet%3A1669523771%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043611%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523771&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/84852946?wv-check=5245&wv-type=0&wmode=0&wv-part=1&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=971980410&browser-info=gdpr%3A14%3Aet%3A1669523771%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043611%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523771&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: http://bone.strongpcprotection.site
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sun, 27 Nov 2022 04:36:11 GMT
access-control-allow-origin: http://bone.strongpcprotection.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 27-Nov-2022 04:36:11 GMT
last-modified: Sun, 27-Nov-2022 04:36:11 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=2&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=287184137&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669523771%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043611%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523771&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=2&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=287184137&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669523771%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043611%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523771&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/84852946?wmode=0&wv-part=2&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=287184137&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669523771%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043611%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523771&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: http://bone.strongpcprotection.site
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sun, 27 Nov 2022 04:36:11 GMT
access-control-allow-origin: http://bone.strongpcprotection.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 27-Nov-2022 04:36:11 GMT
last-modified: Sun, 27-Nov-2022 04:36:11 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=4&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=963358238&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669523771%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043611%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523771&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=4&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=963358238&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669523771%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043611%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523771&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/84852946?wmode=0&wv-part=4&wv-hit=114144038&page-url=http%3A%2F%2Fbone.strongpcprotection.site%2Fc%2Fcce23e0fee9d07c0%3FCLCUSD%3D0.052%26s1%3Dkd2-mcaf-us%26s3%3Dedwide%26s4%3D319911%26s5%3D1374010752369560%26s6%3D5935979%26s7%3D612386%26s8%3DSpectrum%2520Business%26s9%3DMICROSOFT_EDGE%26s10%3DWindows%252010%26clickid%3Dcnv4150a162d4a384fe96e5a7553deca175&rn=963358238&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669523771%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221127043611%3Au%3A1669523764817780927%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669523771&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 465
Origin: http://bone.strongpcprotection.site
Connection: keep-alive
Referer: http://bone.strongpcprotection.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sun, 27 Nov 2022 04:36:11 GMT
access-control-allow-origin: http://bone.strongpcprotection.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 27-Nov-2022 04:36:11 GMT
last-modified: Sun, 27-Nov-2022 04:36:11 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2