Overview

URL www.freecoursebd.xyz/2022/07/seo-friendly-content-writing-paid.html
IP142.250.74.179
ASNGOOGLE
Location United States
Report completed2022-09-10 09:00:48 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-10 2 upgulpinon.com/1?z=5330304 Malware
2022-09-10 2 upgulpinon.com/27/55dfd372293146a7ca113106d0d608dd Malware
2022-09-10 2 upgulpinon.com/1?z=5330304 Malware
2022-09-10 2 upgulpinon.com/1?z=5330304 Malware
2022-09-10 2 upgulpinon.com/1?z=5330304 Malware
2022-09-10 2 upgulpinon.com/1?z=5330304 Malware
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-10 2 kickchecking.com Sinkholed
2022-09-10 2 fleraprt.com Sinkholed
2022-09-10 2 kickchecking.com Sinkholed
2022-09-10 2 kickchecking.com Sinkholed
2022-09-10 2 kickchecking.com Sinkholed
2022-09-10 2 kickchecking.com Sinkholed
2022-09-10 2 glizauvo.net Sinkholed
2022-09-10 2 unphionetor.com Sinkholed
2022-09-10 2 unphionetor.com Sinkholed
2022-09-10 2 skipdearbeautify.com Sinkholed
2022-09-10 2 perryvolleyball.com Sinkholed
2022-09-09 2 graduatewonderentreaty.com Sinkholed
2022-09-10 2 skipdearbeautify.com Sinkholed
2022-09-09 2 graduatewonderentreaty.com Sinkholed
2022-09-10 2 phosphatepossible.com Sinkholed
2022-09-10 2 perryvolleyball.com Sinkholed
2022-09-10 2 phosphatepossible.com Sinkholed
2022-09-10 2 glizauvo.net Sinkholed
2022-09-10 2 glizauvo.net Sinkholed


Files

No files detected



Passive DNS (29)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS kickchecking.com (5) 0 2022-05-05 02:33:48 UTC 2022-09-07 20:34:55 UTC 192.243.61.227 Unknown ranking
mnemonic passive DNS phosphatepossible.com (2) 0 2022-09-03 20:30:35 UTC 2022-09-09 23:23:47 UTC 192.243.61.225 Unknown ranking
mnemonic passive DNS blogger.googleusercontent.com (4) 16485 2012-05-25 17:41:01 UTC 2022-09-10 04:41:50 UTC 142.250.74.1
mnemonic passive DNS ocsp.pki.goog (6) 175 2017-06-14 07:23:31 UTC 2022-09-09 04:41:59 UTC 142.250.74.3
mnemonic passive DNS skipdearbeautify.com (2) 0 2022-08-06 01:34:51 UTC 2022-09-09 19:30:58 UTC 192.243.61.227 Unknown ranking
mnemonic passive DNS cdn.cloudimagesb.com (4) 23099 2021-02-12 16:15:41 UTC 2022-09-09 18:31:35 UTC 45.133.44.9
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-10 06:39:00 UTC 34.218.164.174
mnemonic passive DNS ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-09-10 05:14:59 UTC 104.18.21.226
mnemonic passive DNS upgulpinon.com (11) 83187 2020-06-05 12:59:18 UTC 2022-09-10 07:14:54 UTC 139.45.197.242
mnemonic passive DNS offerimage.com (1) 304078 2019-06-10 11:11:53 UTC 2022-09-10 07:14:53 UTC 104.22.33.172
mnemonic passive DNS interstitial-07.com (2) 36198 2017-03-09 00:00:07 UTC 2022-09-09 20:31:40 UTC 139.45.197.154
mnemonic passive DNS ocsp.sectigo.com (2) 487 2018-12-17 11:31:55 UTC 2022-09-10 07:09:56 UTC 172.64.155.188
mnemonic passive DNS unphionetor.com (2) 54035 2022-02-11 12:53:49 UTC 2022-09-09 12:22:25 UTC 139.45.197.236
mnemonic passive DNS perryvolleyball.com (2) 0 2022-08-25 13:05:48 UTC 2022-09-09 20:55:49 UTC 192.243.59.12 Unknown ranking
mnemonic passive DNS graduatewonderentreaty.com (2) 0 2022-09-03 20:26:10 UTC 2022-09-10 05:34:11 UTC 173.233.137.44 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (11) 344 2020-12-02 08:52:13 UTC 2022-09-10 04:48:54 UTC 23.36.77.32
mnemonic passive DNS www.freecoursebd.xyz (3) 0 2022-05-29 16:07:57 UTC 2022-08-24 07:54:30 UTC 142.250.74.179 Unknown ranking
mnemonic passive DNS my.rtmark.net (1) 9054 2017-08-22 14:11:49 UTC 2022-09-09 07:17:23 UTC 139.45.195.8
mnemonic passive DNS tzegilo.com (1) 0 2022-01-14 15:27:15 UTC 2022-09-10 07:14:53 UTC 104.21.22.169 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2022-09-10 05:46:48 UTC 93.184.220.29
mnemonic passive DNS cdn.jsdelivr.net (2) 439 2012-09-30 00:15:09 UTC 2022-09-10 04:49:17 UTC 151.101.85.229
mnemonic passive DNS simplewebanalysis.com (3) 0 2022-02-25 04:06:25 UTC 2022-09-10 04:51:16 UTC 52.28.172.243 Unknown ranking
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-10 04:47:11 UTC 143.204.55.35
mnemonic passive DNS ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.158
mnemonic passive DNS glizauvo.net (3) 0 2022-05-04 17:35:51 UTC 2022-09-09 20:31:53 UTC 139.45.197.236 Unknown ranking
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-10 05:02:17 UTC 143.204.55.27
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-10 04:48:42 UTC 34.117.237.239
mnemonic passive DNS fleraprt.com (1) 0 2022-01-14 22:55:14 UTC 2022-09-10 07:14:53 UTC 139.45.195.254 Unknown ranking
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-10 04:30:10 UTC 34.120.237.76


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 142.250.74.179

Date UQ / IDS / BL URL IP
2022-11-28 10:30:10 +0000
0 - 0 - 2 www.elpidiosinlimites.com/2022/10/48-anos-del (...) 142.250.74.179
2022-11-28 02:56:10 +0000
0 - 0 - 3 blog.konsultasikredit.com/2022/02/definition- (...) 142.250.74.179
2022-11-28 02:55:14 +0000
0 - 0 - 25 www.techtolive.xyz/2022/08/indian-entertainme (...) 142.250.74.179
2022-11-27 23:49:43 +0000
0 - 0 - 2 www.edupai.web.id/search/label/Download?max-r (...) 142.250.74.179
2022-11-27 22:11:04 +0000
0 - 0 - 3 blog.konsultasikredit.com/2021/08/rvw-money-m (...) 142.250.74.179

Last 5 reports on ASN: GOOGLE

Date UQ / IDS / BL URL IP
2022-11-28 12:44:10 +0000
0 - 0 - 2 whatsapp.covid19.et/ 35.184.137.237
2022-11-28 12:22:50 +0000
0 - 0 - 2 cvenhancer.com/wp-content/plugins/super-forms (...) 35.213.158.29
2022-11-28 12:10:15 +0000
0 - 0 - 12 insolvenz-578.blogspot.com/2021/02/view-31-sc (...) 142.250.74.161
2022-11-28 12:10:10 +0000
0 - 0 - 2 sdfgsdfgsdfgsdgf.blogspot.com/search/label/po (...) 142.250.74.161
2022-11-28 12:09:41 +0000
0 - 0 - 4 gianfrancomanfrinak65.blogspot.com/2022/11/we (...) 142.250.74.161

Last 1 reports on domain: freecoursebd.xyz

Date UQ / IDS / BL URL IP
2022-09-10 09:00:48 +0000
0 - 0 - 25 www.freecoursebd.xyz/2022/07/seo-friendly-con (...) 142.250.74.179

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-18 15:28:09 +0000
0 - 0 - 13 www.theflix.com.br/ 34.159.75.132
2022-09-14 13:57:27 +0000
0 - 0 - 5 www.gologinme.com/cibc-auto-insurance-login-c (...) 66.198.240.11
2022-09-09 09:18:12 +0000
0 - 0 - 17 sakshyammagazine.com/ 45.129.2.102
2022-09-04 15:35:16 +0000
0 - 0 - 16 lite-link.com/NYyKUJU 204.197.248.11
2022-09-01 21:58:30 +0000
0 - 0 - 12 www.mp4upload.com/ptikr5pqccfv 172.67.212.119


JavaScript

Executed Scripts (34)


Executed Evals (5)

#1 JavaScript::Eval (size: 2107, repeated: 1) - SHA256: 802c843952bc96b7504f182a96014266beae43dc92fa1b091036ab9b000ab5ec

                                                       (function() {
                   var bn;
                   if (bn = document.getElementById('atLink-9b7f6cb42d593d860eafc1d12aa1a84b')) {
                       var callback = function() {
                           (new Image()).src = '//phosphatepossible.com/clk.gif?landing_id=2896811&placement_id=17323259&sid=H4sIAAAAAAAC%2F1RTT2sd1Rs%2Bt7%2F0p1A3liIUityFCwtNcs78HwuKtUaKsa1txe7k%2FJv0mLkzwzkzd26yChalyyz8AJMnaaumSP0AFrkpCBaEXFdZGPwEboRu3MiNwasvHN7neZ938ZzzvueLreaQUDT84PIH5brJc74YLtD%2B67cZu9hfNkUz6o%2BS6JMouNi3wzfSaIGe77%2Bn5Wq56FFGKaOsv2SszsrR4lSEqR6lbCGlC4G3wMIAI%2Ftf7poeHO9BDQ%2FJaRg1mXvaOwMjxygGjy9rt1qX1YV3B03O69JiqB5%2BVKwWZVtgMIOZ7SErHh53o3T7S09QFveP7KIc%2FtMozIT0fnwCUTw8Ngkx3DnyKXLoAkKdQjscQ%2BdjGD6GLO%2FCqH0CSIWr11AMHlwtbcvX%2Flb5VJ2Qued%2FwLQTMvfrGRSDby%2FlZtS%2FWeZNbcrCYZR1MKMxzMoYVbOHev0ETLsHWX8Go34mi8%2BXUQx2rrm8hFEHr7GYJZlOvXkZCTUf8NibF4x587FSXEaBopyHRw9kzBgmGyPXm%2BCuh2Z6TA9N1kNT9TBQB33JGIupkpwmqZS%2BirWIFGU8zhhnNErQyOkdNlFXm5D5JqTdQGU3sGq%2B3D%2F15v7Z3f3w9P7J32CbH%2BDuHHwlgijMZJDQzPMDlqoojH0%2FYCJL%2FCxIKWVBGnhcqoRxpVMVezJTke%2BFHs1iyuMk5EykXhZSP%2FAyKjTz0jDwecJ9Sr0sDhIaa4%2BGkqUsEZmMfBpI4VMWK4%2FSMNSJSpT0hfRSFcehL2PNuNShH%2FlhEKqA8yiJQ85TODUHV09I78MNDFWHVhO0jqDlBK0haGuCdtjdV7nzXPdA5a4R7Dh7x9nvtst6ZYvfL%2BsVXZCt6pC8PJ1478Vbf2JVH%2FRTEWeRFIGnwtRXSUQ1zyRTzOOc8SQQcKaDcSeO5rNuJuTc7kuozISc%2FP1zCL4Hl%2B9BmnPgzUnwdtunFPzOthdSrBePM6u1LBvrtFALo7V1qLJDVc%2BhXutt5Yfk7NH2XfB3oeUzchyQtkNlO3xqnhKs5Pe2b5Qt2blRto58d62qzcCs8%2Blm3qx5rf%2F%2Fzft6rS2tunLZbX79tpwKU%2Fjolnb1Mi%2BUKVYc2b1klNJ2qbRSk%2B%2BvuI%2B1uN64O5caWzTV8vV3lq4MKqudM2UxBjf7%2BidIMyEvnL959OVeuX4bxo5hmw6DZubUlGPIagOumtVcSWDzGRcVQdt029YTs2JuCHI941x0cP%2FiYoa33D2s2FfB67soBh2GtsMw78DzTbjmf9t1ZZ%2B99Yt%2FFBB5b1vkluyI3E51c9APwiCMMj%2BWQaQSFYc%2BTbnSLEtV4AdxlqF2E3nuRvIXAAAA%2F%2F8BAAD%2F%2Fy%2FONsM4BQAA&psid=';
                       };
                       if (bn.addEventListener) bn.addEventListener('click', callback, false);
                       else if (bn.attachEvent) bn.attachEvent('onclick', callback);
                       else bn.onclick = callback;
                   }
               })();
                                    

#2 JavaScript::Eval (size: 2102, repeated: 1) - SHA256: b2d26dbb8bfb57b4c7b07c21d5a55bed041de02d1e783b46ed1a53c0eca60ca5

                                                       (function() {
                   var bn;
                   if (bn = document.getElementById('atLink-9b7f6cb42d593d860eafc1d12aa1a84b')) {
                       var callback = function() {
                           (new Image()).src = '//skipdearbeautify.com/clk.gif?landing_id=2896811&placement_id=17323259&sid=H4sIAAAAAAAC%2F1RTz2sdVRs%2B0y%2F9vg%2FqxlKEQpG7cGGhSc6Z32NBsdZIMbalrdidnJ%2FpMXNnhjkzd26yKhalyyz8AyZP0lZNkfoHWOSmIFgQcl1lYfAvcCN040ZuDEbfzfs87%2FMunvec9%2F18sz0gFC3fv%2FxBuW7znC9GC3Tw%2Bm3GLg6WbdGOB%2BM0%2FjgOLw7q0RtZvEDPD97TcrVc9CmjlFE2WLK1NuV4cSbCVo8ztpDRhdBfYFGIcf1v7loPjntQowNyGlZN5555Z2DlBMXwyWXtVpuyuvDusM15U9YYqUcfFqtF2RUYHkNTezDFo6NulG5v6SnK4sGhXZSjvxuFnRLvh6cQxaMjkxCj7UOfIocuINQpdKMJdD6B5RPI8h6s2iOAVLh6DcXw4dWy7vjaXyqfqVMy9%2BJ32G5K5n45g2L4zaXcjgc3y7xtbFk4jE0PO57ArkxQtbto1k%2FAdruQzaew6iey%2BGIZxXD7mstLWLX%2FWqDigGeMz0fCN%2FMhjcw8p0bNy4QxP9PSRElw%2BEDWTmDNBLneAHcn0DoPrfXQGg9t5WGo9geSMZZQJTlNMykDlWgRK8p4YhhnNE7RytkMG2iqDch8A7K%2Bi6q%2Bi1X7xd6pN%2FfO7uxFp%2FdO%2Foq6%2FR7uzv6Xsc6E0loFcRamPDDS1yrTXJowCmLqR2GqApNQKX1hAioSkWYhi7LED2XmC5OEoZAi01ma0jgOsyxOZJL6aZYksUyziArtU86ESXng61QIHUVZGlPBBcsOR0lMFDOfqYgJn%2Fq%2BMYKLVImEGcFCGUQy0ZKGCZzy4BqCkerRaYLOEXScoLMEXUPQjfoHKne%2B6x%2Bq3LWCHWX%2FKAf9VtmsbPIHZbOiC7JZHZCXZ7%2Ft%2Ff%2FWH1jV%2B4NMJCaWIvRVlAUqjanmRjLFfM4ZT0MBZ3tYdwLceVi3U3Ju5yVUdkpO%2FvYZBN%2BFy3ch7Tnw9iR4txVQCn5ny48o1osnptZalm3ttFAL47V1qLJH1cyhWfM28wNy9nDzLgQ70PI5OQrIukdV9%2FjEPiNYye9v3Sg7sn2j7Bz59lrV2KFd57OtvNnwRv%2F36%2Ff1WlfW6splt%2FHV23ImzODjW9o1y7xQtlhxZOeSVUrXS2UtNfnuivtIi%2Butu3OprYu2Wr7%2BztKVYVVr52xZTMDtnv4R0k7J%2F87fPDy3V67fhq0nqNsew%2FbYqS0nkNVduOq45kqCOj%2FmoiLo2n6r9sVxMbcEuT7mXPRw%2F%2BDiGG%2B6%2B1ipXwVv7qEY9hjVPUZ5D55vwLX%2F2Wqq%2BvlbPweHAZF7WyKvybbI65lu9wdhFEaxCRIZxipVSRTQjCvNTKbCIEyMQeOm8tyN9E8AAAD%2F%2FwEAAP%2F%2FxpwGbTQFAAA%3D&psid=';
                       };
                       if (bn.addEventListener) bn.addEventListener('click', callback, false);
                       else if (bn.attachEvent) bn.attachEvent('onclick', callback);
                       else bn.onclick = callback;
                   }
               })();
                                    

#3 JavaScript::Eval (size: 2130, repeated: 1) - SHA256: 19a26fb943065afec587dd9f811962d508ccae1b58ef91477b2a63e21a6e35f7

                                                       (function() {
                   var bn;
                   if (bn = document.getElementById('atLink-9b7f6cb42d593d860eafc1d12aa1a84b')) {
                       var callback = function() {
                           (new Image()).src = '//graduatewonderentreaty.com/clk.gif?landing_id=2896806&placement_id=17323259&sid=H4sIAAAAAAAC%2F1RTz4scRRuuzrf5vg%2FyXb4QhECQOXgwkN2t6q7%2BZUAxxpXgmsRsRG9SPzfl9nQ1Vd3Ts3taDEqOe%2FAP6H1nk6AJEv8Ag8wGBAPCjKc9uPgXeBFy8SIzLo6%2B0LzP8z7v4emqpz7fb44RhoYdXX3P7piiYKvxCu69%2BhEhl3vrpmyGvWGWfJzQyz03eC1PVvDF3jtKbNnVEBOMCSa9NeOUtsPVmQimepyTlRyv0HCFxBSG7p%2FcNwF4FoAcHKOzYOR06VlwDowYQ9l%2FclX5rdpWl97uNwWrrYOBfPhBuVXatoT%2BAmoXgC4fnmyD9ZO1p2DL%2B3O7YAd%2FLXIzRcH3T4GXD09MAh8czH3yAlQJXJ6BdjAGVYzBsDEIexeMnCAAIeH6DSj7D65b17LtP1U2U6do6cVvYNopWvr5HJT9r68UZtjbsEVTG1t6GOoOzHAMZnMMVXMI9c4pMO0hiPpTMPJHtPpiHcr%2BwQ1fWDDy6BWSkkyrPFwWCZfLlKXhMickXE6lZCKhEjMWzw%2FImDEYPYZC7QHzATSzzwTQ6ACaKoC%2BPOoJQkiKpWA4y4WIZKp4IjFhqSaM4CSDRsz%2BYQ%2Fqag9EsQfC7ULldmHLfDE58%2Frk%2FKNJfHZy%2BhdwzXfg7xyNlRRMiUyolMaZjJJISYVDwTQNJVU5kYIJomka8SjLKJcqE7EWsRA81yLBSmApmZQ6p5qKhKSc61DGcU5UrDGJsiRWaRomjOEoTpXmEkc81yTGeUwZC6MkSnEa4UTmVCYRZ5wlKpMpI5oxTNMsTVSaJBrrEEcRy9KIZlGGaZbpPAmpCqkCL0%2BBr6coeH8XBrKDViFoPYKWIWgNgrZG0A66%2B7Lwoe8eyMI3nJz08KRH3cjWm%2Fvsvq03VYn2q2P0%2F1kWgv%2Fe%2Fh221FEv56lOBKehjPNIZglWTAsiScgYYRnl4E0Hxp%2Ba39yOmaILj%2F4HlZmi079%2BBpwdgi8OQZgLwJrTwNpRhDGwO6MwxrBTPtFOKWEb5xWXK8PtHZC2g6pegno72C%2BO0fl5Li9FD0CJ5%2BikQLgOKtfBJ%2BYZgs3i3uiWbdHBLdt69M2NqjZ9s8Nmmd2oWa3%2B%2FdW7aru1Tl676ve%2BfFPMhBl8fFv5ep2V0pSbHj26YqRUbs06odC31%2FyHit9s%2FJ0rjSubav3mW2vX%2BpVT3htbjoGZifoBhJmi%2F1zcmD%2FGl25ugHFjcE0H%2FWbh1NgxiGoXfLWYeYvAFQvOKwRt041cyBfDwiAo1IIz3oH%2FG%2BcLvO%2FvwaZ7GVh9F8p%2BBwPXwaDogBV74Jt%2FjerKPX%2Fjp2hewItgxAuHDnjhZro56tGYxomOUkETmck0jnDOpCI6lzSiqdZQ%2B6m4cCv7AwAA%2F%2F8BAAD%2F%2F7JyNdFSBQAA&psid=';
                       };
                       if (bn.addEventListener) bn.addEventListener('click', callback, false);
                       else if (bn.attachEvent) bn.attachEvent('onclick', callback);
                       else bn.onclick = callback;
                   }
               })();
                                    

#4 JavaScript::Eval (size: 2107, repeated: 1) - SHA256: 2d73044e77e979983a6b93c2a2ed1b36404e77ce8196a2934d69864f255124d0

                                                       (function() {
                   var bn;
                   if (bn = document.getElementById('atLink-9b7f6cb42d593d860eafc1d12aa1a84b')) {
                       var callback = function() {
                           (new Image()).src = '//perryvolleyball.com/clk.gif?landing_id=2896808&placement_id=17323259&sid=H4sIAAAAAAAC%2F1RTzYsdxRetl0x%2BPyFuDEEIBHkLFwYyM1X93QYUYxwJjknMB7qT%2BupJOf26m6ru129mNRiULGfhH9BzZvKhCRL%2FAIO8CQgGhHmuZuHgX%2BBGyMaNvHHw6YXinnPPXZyqe%2BvLreaAUDR8%2F9KH5brJc74YLtD%2BG58wdqG%2FbIpm1B8l0adRcKFvh2%2Bm0QI9139fy9Vy0aOMUkZZf8lYnZWjxakIUz1O2UJKFwJvgYUBRva%2F3DU9ON6DGh6QUzBqMvesdxpGjlEMnlzSbrUuq%2FPvDZqc16XFUD24VawWZVtgMIOZ7SErHhx1o3R7S09RFvcO7aIc%2FtMozIT0fnwKUTw4Mgkx3Dn0KXLoAkKdRDscQ%2BdjGD6GLO%2FAqD0CSIUrV1EM7l8pbcvX%2Flb5VJ2QuRd%2FwLQTMvfraRSDby%2FmZtS%2FUeZNbcrCYZR1MKMxzMoYVbOLev0YTLsLWX8Oo34miy%2BWUQx2rrq8hFH7r7OYJZlOvXkZCTUf8NibF4x587FSXEaBopyHhw9kzBgmGyPXm%2BCuh2Z6TA9N1kNT9TBQ%2B33JGIupkpwmqZS%2BirWIFGU8zhhnNErQyOkdNlFXm5D5JqTdQGU3sGq%2B2jv51t6ZR3vhqb0Tv8E2P8Dd3n%2FIuBaxTJkvaeIFacpkkDFfRSKKRBTElPvK4yrh3PNiFQcBFbFKWZylXhhqL0xZ6nMqmM5CrlVAtfDDmEZeFqRCB5pyloRUJCylURRGUeZFylce9UKZxakXhYnvh0GQKBHyWItMZ3EmAh5pP%2BC%2BSHkidejFfhoJOHUcrp6Q3kcbGKoOrSZoHUHLCVpD0NYE7bC7p3Lnue6%2Byl0j2FH2jrLfbZf1yha%2FV9YruiBb1QF5ZTrx3ks3%2F8Sq3u%2BnIs4iKQJPhamvkohqnkmmmMc540kg4EwH444dzmfdTMjZRy%2BjMhNy4vcvIPguXL4Lac6CNyfA222fUvDb215IsV48yazWsmys00ItjNbWocoOVT2Heq23lR%2BQM4fbd95%2FCC2fk6OAtB0q2%2BEz84xgJb%2B7fb1syc71snXku6tVbQZmnU8380bNa%2F2%2Fbz7Qa21p1eVLbvPrd%2BRUmMLHN7Wrl3mhTLHiyKOLRiltl0orNfn%2BsvtYi2uNu32xsUVTLV97d%2BnyoLLaOVMWY3Czp3%2BCNBPy%2F3M3Dr%2Fcq9duwdgxbNNh0MycmnIMWW3AVbOaKwlsPuOiImibbtt6YlbMDUGuZ5yLDu5fXMzwlruLFfsaeH0HxaDD0HYY5h14vgnXHN%2BuK%2Fv87V%2F8w4DIe9sit2RH5Haqm%2F1%2BEAZhlPmxDCKVqDj0acqVZlmqAj%2BIswy1m8iz15O%2FAAAA%2F%2F8BAAD%2F%2FxOYD4c4BQAA&psid=';
                       };
                       if (bn.addEventListener) bn.addEventListener('click', callback, false);
                       else if (bn.attachEvent) bn.attachEvent('onclick', callback);
                       else bn.onclick = callback;
                   }
               })();
                                    

#5 JavaScript::Eval (size: 2068, repeated: 1) - SHA256: f4684307fa7cc33c1de6c956783ad8d45157e71648d3a1e4a3d73f1cb47a79d3

                                                       (function() {
                   var bn;
                   if (bn = document.getElementById('atLink-9b7f6cb42d593d860eafc1d12aa1a84b')) {
                       var callback = function() {
                           (new Image()).src = '//skipdearbeautify.com/clk.gif?landing_id=2896805&placement_id=17323259&sid=H4sIAAAAAAAC%2F1RTT4tcxRetl9%2FkpxA3hiAEgvTChYHMTNX7%2FwwoxjgSHJMwiehO6u%2BknNevHlXv9evpVTAoWfbCD%2FDm9kyiTpD4AQzSExAMCN2ueuHgJ3AjZONGuh1svVDcc%2B65i1N1b32xVx8jDDWdXf3ADHSe0%2FVoDXde%2F5iQy51NXdT9Tj%2BNP4nDyx3beyOL1%2FDFznuS75h1HxOMCSadDW2lMv31uQi6fJSRtQyvhf4aiULo2%2F9yV3vgqAeid4zOghbTlafeOdB8DEX38VXpdipTXnq3W%2Be0MhZ64uGHxU5hmgK6S6isB6p4eNINxk02noApDhZ2wfT%2BaWR6irwfnwArHp6YBNbbX%2FhkOcgCmDgDTW8MMh%2BDpmPg5h5oMUEAXMD1G1B0H1w3tqG7f6t0rk7RyvM%2FQDdTtPLrOSi6317Jdb9zy%2BR1pU3hoK9a0P0x6O0xlPURVINToJsj4NVnoMXPaP35JhTd%2FRsuN6DF7DWSkFTJzF%2FlMROrIU38VUaIv5oIQXkcCkxptHggrceg1RhyOQTqPKjnR3tQKw%2Fq0oOumHU4ISTBglOcZpwHIpEsFpjQRBFKcJxCzed3GEJVDoHnQ%2BD2LpT2LuzoLydn3pycP5xEZyenfwNb%2FwDuzuwrzCkhYYBFzEjEsixTYZCG1BcqxQRHQUZFmFAWkyCULOMZDnHK4ijChAolmOAJFYJi5guRJjKLJWaJIswPSOhHAeGS8ljykEmVcSVSnJJYhDRlkfKp7zMSpzxLVBbHURjGMuE04Yr4sYik8knKRcIyxkOswAkPXIWgJ1poJILGIWgogkYjaCoETa89ELnzXftA5K5m5CT7JzloR6ba3qMHptqWBdorj9HL82l7L97%2BE3bkrJOxRMWchb6IskCkMZZUcSKITymhacjA6Ra0O7WYzUBP0YXDl6DUU3T698%2BB0SNw%2BRFwfQFofRpoMwowBnpn5EcYBsVjZaXkprZOMrHW3x2AMC2U1QpUu95efozOLzbvUnAAkj9DJwHctlDaFj7VTxFs5%2FdHW6ZB%2B1umcei7G2Wlu3pA51t5q6KV%2FP8378vdxlhx7aobfv02nwtz%2BOi2dNUmLYQuth06vKKFkHbDWC7R99fcR5LdrN2dK7Ut6nLz5jsb17qllc5pU4yB6on8Cbieohcu3lp8t1duboG2Y7B1C9166VSbMfDyLrhyWXMGgc2XnJUImrodWZ8ti7lGkMslp6wF9y%2FOlnjP3Ydt%2ByrQ6h4U3RZ6toVe3gLNh%2BDq%2F42q0j5765dgEcByb8Ryi%2FZZbue6nnXCKIxiFSQ8jEUqkijAGRWSqEyEQZgoBZWb8gtb6V8AAAD%2F%2FwEAAP%2F%2FVnFjpjQFAAA%3D&psid=';
                       };
                       if (bn.addEventListener) bn.addEventListener('click', callback, false);
                       else if (bn.attachEvent) bn.attachEvent('onclick', callback);
                       else bn.onclick = callback;
                   }
               })();
                                    

Executed Writes (1)

#1 JavaScript::Write (size: 114, repeated: 1) - SHA256: b72857e76526d8b3a964a0cbc22a78fbd57a67c5e75d25d072d3c022c7ee11ee

                                        < script type = "text/javascript"
src = "https://kickchecking.com/9b7f6cb42d593d860eafc1d12aa1a84b/invoke.js" > < /script>
                                    


HTTP Transactions (86)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 10 Sep 2022 08:06:28 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WgkLLFd_DC2PemvbR2De2UamCkm5Rry8htS0Ql_P98gyZ6Kpy0PW3w==
Age: 3249


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    99b7d23c1748d0526782b9ff9ea45f09
Sha1:   eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
Sha256: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4B09E1D2B887DED061E4EC5F82EC70CE699EEED428ACC6B4FD3EF10ED9233C89"
Last-Modified: Thu, 08 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16413
Expires: Sat, 10 Sep 2022 13:34:10 GMT
Date: Sat, 10 Sep 2022 09:00:37 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 10 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: COzT0CZ-5y9u-4twJqxDM7Rc9llbutrBAsKWab6rABjkAcQptTA2cA==
age: 6205
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:37 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /2022/07/seo-friendly-content-writing-paid.html HTTP/1.1 
Host: www.freecoursebd.xyz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         142.250.74.179
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: https://www.freecoursebd.xyz/2022/07/seo-friendly-content-writing-paid.html
Content-Encoding: gzip
Date: Sat, 10 Sep 2022 09:00:37 GMT
Expires: Sat, 10 Sep 2022 09:00:37 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 213
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   213
Md5:    af28184387d03482e9f1b9e0f8886ca1
Sha1:   3db572ccad530b5ae7fcb2696b31227f6cbcd5e3
Sha256: 0e3b4a536ac327580ba1deafdfeb99e005a81e5033a57930ce111f7382bc75f0
                                        
                                            POST /s/gts1d4/Mjqwd_0ud4s HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 10 Sep 2022 09:00:37 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 10 Sep 2022 08:56:07 GMT
Cache-Control: max-age=3600
Expires: Sat, 10 Sep 2022 09:53:37 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gFasVkZQy3rvPFA9NoCVMvSOIDryMpkjUcY9xM8jiPtGhfjWABmMsQ==
Age: 270


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4438
Cache-Control: 'max-age=158059'
Date: Sat, 10 Sep 2022 09:00:38 GMT
Last-Modified: Sat, 10 Sep 2022 07:46:40 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /2022/07/seo-friendly-content-writing-paid.html HTTP/1.1 
Host: www.freecoursebd.xyz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         142.250.74.179
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
expires: Sat, 10 Sep 2022 09:00:38 GMT
date: Sat, 10 Sep 2022 09:00:38 GMT
cache-control: private, max-age=0
last-modified: Fri, 09 Sep 2022 13:41:08 GMT
etag: W/"2b9cdf828342922ae6e2be7469b0fa34edf6d81f7f8aca608338a64ec9407b59"
x-robots-tag: all,noodp
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 25208
server: GSE
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (12266)
Size:   25208
Md5:    05dc776afa019efc05514e7698200b64
Sha1:   88adbd40e10506c7959c40d71ce80918cc0290ab
Sha256: 5a7fe55242fad7edb15f71e637e61ef1960d847253b4944533d4528759f2f81d
                                        
                                            GET /gh/jettheme/js@0.5.5/main.js HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.229
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 0.5.5
x-jsd-version-type: version
etag: W/"3122-6kmtk52Xy6HP/Wr2Rx1SXQewc0A"
content-encoding: gzip
accept-ranges: bytes
date: Sat, 10 Sep 2022 09:00:38 GMT
age: 3400076
x-served-by: cache-fra19179-FRA, cache-bma1660-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5928
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12577)
Size:   5928
Md5:    2897c63405c1f7c0979e25dd3bda641e
Sha1:   7a152baf6d957bbe71a399202c0c438eea9ab7b0
Sha256: 393bb14bd4b54bf17c1c29c066318f56e10a3f871ced634b44fd827ad6b0f629
                                        
                                            GET /npm/bootstrap@5.1.3/dist/css/bootstrap.min.css HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.229
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 5.1.3
x-jsd-version-type: version
etag: W/"28021-7Ba9Gb9K6bwuIzasQJpQO7varK0"
content-encoding: gzip
accept-ranges: bytes
date: Sat, 10 Sep 2022 09:00:38 GMT
age: 11602594
x-served-by: cache-fra19136-FRA, cache-bma1660-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23938
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65306)
Size:   23938
Md5:    57a992194d8a5b4bbd4ade561fd348bb
Sha1:   bb66f00fe168c6df50af51abdededdfceb15c59f
Sha256: be95ec6ab71f5fa87401a698cb9566490258fa9012bb0e8467920b0f74163a0a
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yh5V/xIiP0rhfWr++rv4bw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.218.164.174
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gFZoum61iNDE1Qre7VCrlywob1A=

                                        
                                            POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 10 Sep 2022 09:00:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "D88BA6D5F83CBB65DCE493C8DE9CE21B5CB1BE16"
Expires: Sat, 10 Sep 2022 19:00:00 GMT
Last-Modified: Sat, 10 Sep 2022 07:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2297
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7486f9748c0bb505-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    04a5389199e6a076826e4442f3501e82
Sha1:   d088f2b6a64315841d9b821fcfb5ae369937b87a
Sha256: 7d430c3ac9f38fa5b0d3b3da2b71387e8c6f38779cb65e212826594101121568
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "36AFF03CCA6066D2D6F3ECEEB81CDD257581D1B62859BFC92568847DB2E2FB56"
Last-Modified: Wed, 07 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7681
Expires: Sat, 10 Sep 2022 11:08:39 GMT
Date: Sat, 10 Sep 2022 09:00:38 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E4861BF5C385CF5EC5BDDFFFEB5BBA940A1B90CF43B9AE74FAF744A774EC300B"
Last-Modified: Sat, 10 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15148
Expires: Sat, 10 Sep 2022 13:13:06 GMT
Date: Sat, 10 Sep 2022 09:00:38 GMT
Connection: keep-alive

                                        
                                            GET /1?z=5330304 HTTP/1.1 
Host: upgulpinon.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.197.242
HTTP/2 200 OK
content-type: text/javascript
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:38 GMT
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 4bd122eeefd9e264933b4b6c80648b2f
access-control-expose-headers: X-Sc
x-sc: qPSaKWYKbB2htMGNkYAMcfw9ErnopEdA2HLL2i4o9lRjb0WLhAHvXJgo5otDPX045ioSOYBdMq5bUepAhjeFDfbJNOE=
set-cookie: scm=1; expires=Sun, 10 Sep 2023 09:00:38 GMT; secure; SameSite=None OAID=69654225ee724c529eab6efe497bcaae; expires=Sun, 10 Sep 2023 09:00:38 GMT; secure; SameSite=None oaidts=1662800438; expires=Sun, 10 Sep 2023 09:00:38 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   4044
Md5:    f0ba06f6c7b3eb76dcf827e5ecdaa1ac
Sha1:   dbbe0f7dca41198c4bec1f2b6a12159edf748a95
Sha256: b70b9393dc21ffad5ac980b65c387a7c791d517cced84183db19723b448f0739

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /9b7f6cb42d593d860eafc1d12aa1a84b/invoke.js HTTP/1.1 
Host: kickchecking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.61.227
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 09:00:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 49b61d17b7e614b81d26898adf01fc94
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (26949), with no line terminators
Size:   9781
Md5:    747a662597b99d161ec06e1c9c7a9b5d
Sha1:   4b29df8b8d61c8d82abae52f486d6565e8bde5ff
Sha256: 5f3d909e0484b6fb35b7f412f5a14ac63f76a4e7e5198e01a608fb9c0a61a842

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 10 Sep 2022 09:00:39 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 12:52:23 GMT
Expires: Thu, 15 Sep 2022 12:52:22 GMT
Etag: "e4b0ac57e7c2d6d00e508cd99231b0f8d58942af"
Cache-Control: max-age=445302,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7486f9779ea7b506-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 10 Sep 2022 09:00:39 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 18:25:21 GMT
Expires: Thu, 15 Sep 2022 18:25:20 GMT
Etag: "a653f55ef7e337bd259cd76d14fe2adc91c11603"
Cache-Control: max-age=465280,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7486f9779e31b517-OSL

                                        
                                            GET /gid.js HTTP/1.1 
Host: my.rtmark.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freecoursebd.xyz
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.195.8
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:39 GMT
content-length: 65
access-control-allow-origin: https://www.freecoursebd.xyz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=4c60f5472df3481f9c70b20b1eb94891; expires=Sun, 10 Sep 2023 09:00:39 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   65
Md5:    1a02d3d7a4939efb95bc1af62eec02fb
Sha1:   80d7ad8ec045803bc6ae6bad1f98616f3c3850a3
Sha256: 31439eeb930de0fca17d70c9aa5a10b9ea1a5d309662d0c62db6871b405ec95a
                                        
                                            POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1 
Host: fleraprt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.freecoursebd.xyz/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.freecoursebd.xyz
Content-Length: 1563
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.195.254
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Server: nginx/1.19.10
Date: Sat, 10 Sep 2022 09:00:50 GMT
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://www.freecoursebd.xyz
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    adb4650bfc9d2a73d4dd69583b0ceb14
Sha1:   1ce399d6e936232aaf2192cd7903a279c5015f22
Sha256: 21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /42/38?z=5330304 HTTP/1.1 
Host: upgulpinon.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Cookie: scm=1; OAID=69654225ee724c529eab6efe497bcaae; oaidts=1662800438
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.197.242
HTTP/2 200 OK
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:39 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: ea0e6b50e4155fe11885bfe0b26649aa
access-control-expose-headers: X-Sc
set-cookie: OAID=69654225ee724c529eab6efe497bcaae; expires=Sun, 10 Sep 2023 09:00:39 GMT; secure; SameSite=None oaidts=1662800438; expires=Sun, 10 Sep 2023 09:00:39 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /9b7f6cb42d593d860eafc1d12aa1a84b/invoke.js HTTP/1.1 
Host: kickchecking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.61.227
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 09:00:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 126ae6f091555b2d9c00aa5202a7ea1a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (26949), with no line terminators
Size:   9781
Md5:    747a662597b99d161ec06e1c9c7a9b5d
Sha1:   4b29df8b8d61c8d82abae52f486d6565e8bde5ff
Sha256: 5f3d909e0484b6fb35b7f412f5a14ac63f76a4e7e5198e01a608fb9c0a61a842

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.158
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 10 Sep 2022 09:00:39 GMT
Last-Modified: Sat, 10 Sep 2022 07:59:30 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JsxDZNgBCZFKwMELSP272nXbrfnCkuAunT1DTBjcdVh1ZTMi4VqzaQ==
Age: 3669

                                        
                                            GET /stats HTTP/1.1 
Host: simplewebanalysis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freecoursebd.xyz
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.28.172.243
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Sat, 10 Sep 2022 09:00:39 GMT
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.freecoursebd.xyz
access-control-allow-credentials: true
set-cookie: uid_id2=3d63a91a-5b2f-405f-a0fd-c71129ecf573:2:1; expires=Tue, 07 Sep 2032 09:00:39 GMT; secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   40
Md5:    cd5a6cbe298829641afd8ce44ad20043
Sha1:   0a3ffd1797c67380144d5a4422b88d44a316bc1c
Sha256: 763fc3e668814013f3b72da30329ec2c05e6299c139da752dbf9749b92662299
                                        
                                            GET /stats HTTP/1.1 
Host: simplewebanalysis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freecoursebd.xyz
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.28.172.243
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Sat, 10 Sep 2022 09:00:39 GMT
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.freecoursebd.xyz
access-control-allow-credentials: true
set-cookie: uid_id2=1718fe92-c6bd-4a72-b112-7ddac64d0aa5:1:1; expires=Tue, 07 Sep 2032 09:00:39 GMT; secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   40
Md5:    4884f09dbe21fd0ec2317b4869afe6a6
Sha1:   2d9b30c108b530e522ed6c07020ca58a6bdbb1ca
Sha256: 449cf831d3bc699d00f62518a77ce534f6784388311f933d6fcf7d2b4d4d1a5b
                                        
                                            GET /27/55dfd372293146a7ca113106d0d608dd HTTP/1.1 
Host: upgulpinon.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Cookie: scm=1; OAID=69654225ee724c529eab6efe497bcaae; oaidts=1662800438
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.197.242
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:39 GMT
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Wed, 07 Sep 2022 05:02:06 GMT
expires: Wed, 07 Oct 2082 05:02:06 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65523)
Size:   131159
Md5:    1850a22e4ebd82ee6882b5d10d922adb
Sha1:   e26eefc4e6fb875502d22ee30439be7685fa2ba0
Sha256: d7ef02e969ff3817a1216c588b703250da366e58d2dff63c51f3f78a14af50cf

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /9b7f6cb42d593d860eafc1d12aa1a84b/invoke.js HTTP/1.1 
Host: kickchecking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.61.227
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 09:00:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dc3a5033bd27eb03495027240c1cb167
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (26947), with no line terminators
Size:   9780
Md5:    143b22836ff4b1fa91a94e45474dce86
Sha1:   9efb55435860e9796d4256c96d00d0d861ad0a53
Sha256: 6133709751d4aa136914f02e8ec489f534808b386061e6e472476f18c0d1ec18

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            OPTIONS /9?z=5330304&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=4c60f5472df3481f9c70b20b1eb94891 HTTP/1.1 
Host: upgulpinon.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.freecoursebd.xyz/
Origin: https://www.freecoursebd.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.197.242
HTTP/2 204 No Content
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:39 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.freecoursebd.xyz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /stats HTTP/1.1 
Host: simplewebanalysis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freecoursebd.xyz
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Cookie: uid_id2=1718fe92-c6bd-4a72-b112-7ddac64d0aa5:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         52.28.172.243
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Sat, 10 Sep 2022 09:00:39 GMT
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.freecoursebd.xyz
access-control-allow-credentials: true
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   40
Md5:    4884f09dbe21fd0ec2317b4869afe6a6
Sha1:   2d9b30c108b530e522ed6c07020ca58a6bdbb1ca
Sha256: 449cf831d3bc699d00f62518a77ce534f6784388311f933d6fcf7d2b4d4d1a5b
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10757
Expires: Sat, 10 Sep 2022 11:59:56 GMT
Date: Sat, 10 Sep 2022 09:00:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10757
Expires: Sat, 10 Sep 2022 11:59:56 GMT
Date: Sat, 10 Sep 2022 09:00:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10757
Expires: Sat, 10 Sep 2022 11:59:56 GMT
Date: Sat, 10 Sep 2022 09:00:39 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9009587-828b-4a7a-8b84-f28d4b93cdef.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7515
x-amzn-requestid: bb6a7928-9bdc-44e7-8478-b415bc504343
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YJu0bGYdoAMF5jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a2b4f-208339fd72e62dff4a2ba339;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 17:50:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: UaU9GK4lcCuAN2WghBDa7f-21dRTA4Fh1tlAmGFMKh4wQOGZlKdmOw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 13:14:31 GMT
age: 71168
etag: "09dcbdc6043f01dd56920cca3ce3920d0d07b795"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7515
Md5:    60fa03262bb3728f24a4c7a8177ec788
Sha1:   09dcbdc6043f01dd56920cca3ce3920d0d07b795
Sha256: e7448f186933f9848f1d55f0e8dba593918846d02fb9cc3a7cd86d69b96a7fde
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5def240-4ed3-41d4-8b6e-a1fa4a410f93.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6667
x-amzn-requestid: 4fcb8697-073d-4664-8efe-db88e6de9d0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNjs3GIyoAMFQ_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb31e-4ef7c76671cea89d0f6e43c8;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EMsT7bGLgFiFUf1-iLOqeS8Q6j_U4vO771766CxZG2TQqGbwO7YBBQ==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:12:29 GMT
age: 38890
etag: "7e7e2d0ed77a8392ee6f5c939f3ade9f62a0c606"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6667
Md5:    d89faac48bf00a6c9f164a274a13ed2f
Sha1:   7e7e2d0ed77a8392ee6f5c939f3ade9f62a0c606
Sha256: afcf733c808403b8608d92f1117cc66e34aa9fa6266aadb973449150fbfb57f2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9766
x-amzn-requestid: 720a4111-91de-4672-88c8-f40db517c07d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YHsjRE13oAMFbCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63195ae1-288f1f5456bf4d146dcf774c;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 03:00:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HwwG0Hjf8uZn1AtbLU_wKs3w9lict3tRP31XQY6tIxDz9KDNaBMAqw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 04:00:05 GMT
age: 18034
etag: "3768753be084c0e0fc268be5b192d02d769114b6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9766
Md5:    7ade70e6dbcfb3ca1765f95112671e69
Sha1:   3768753be084c0e0fc268be5b192d02d769114b6
Sha256: 9670a3bf2476ba193cfeb3153c1254bdcfc980a28503dda0d9b398a3a59f53f4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a40490a-216d-49e4-bfae-20c0ba1e9616.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4434
x-amzn-requestid: d2239717-afaf-485c-b238-e421f3f2750f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNjs3GsCoAMFTYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb31e-4d779e9e395f30db784955e7;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:41:50 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: hW6DClTvHw4WjHttC_4SBQBO0E8cAi1GnufETnH2OzaUP0EAj0S14g==
via: 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 a8e5d5aeee6eacca5c379e5059b1f68c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:54:41 GMT
age: 39958
etag: "75438d4566755201604bebadec4b699ba585b62b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4434
Md5:    0fd70eea0aa5e563509d9e2c0ae25050
Sha1:   75438d4566755201604bebadec4b699ba585b62b
Sha256: 584534a66a490a6a5f217b484edc5aebbb3076f70280984fecd724138420331c
                                        
                                            GET /9b7f6cb42d593d860eafc1d12aa1a84b/invoke.js HTTP/1.1 
Host: kickchecking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.61.227
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 09:00:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b045dd9c00212995f07acad38eb28766
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (26961), with no line terminators
Size:   9786
Md5:    352345af24046b67fb921c43bde72b06
Sha1:   3b35cf35236e203d0a8ab4f2dc4dbe7af42eda5e
Sha256: e326853a87bafa2caa9f54645dd7b47432106355aace2e6de2a26ee49206b4ba

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa03f5a55-72fc-42e1-bf3b-1c427237302d.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14312
x-amzn-requestid: 4d301754-9ed3-401f-9ad5-1862533d7559
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNj5wGowIAMF4WA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb371-7729383d0bc0f729231ad5b8;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:43:13 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: QWNGLaXe2lZ7niw6TU6KUOuMnWi-Ml3hkw6WLB8vD_jWsg5YMuFWbw==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:54:57 GMT
age: 39942
etag: "7532d9543b93248891324e07e8edff10a36d174d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14312
Md5:    412441a2a064555c5d7f1400c2741360
Sha1:   7532d9543b93248891324e07e8edff10a36d174d
Sha256: 421b3e9db572f1077abd4ef2748696b38a4117e33db6ae0b5fa46841afa2693f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cb41144-803c-4f52-8cbe-27da96acb450.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11021
x-amzn-requestid: d3a3966b-c977-467f-8bd6-7cd0cc4e6831
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNitVFfbIAMFyFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb188-153e070b1f764b6c32bd316f;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:35:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: rzP9_raSYP8_JfuiV_21dmJmwqin417zzbRfulJiMELgAG3IrhIl2Q==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 57bd3a2d9e0e4cbf89d9eb3d7dfb916e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:13:09 GMT
age: 38850
etag: "45cd3f2951313d0c4beff490753b228e998caa30"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11021
Md5:    6759bd6c847ff8f62b279887f56ba080
Sha1:   45cd3f2951313d0c4beff490753b228e998caa30
Sha256: 8c4edb4b6edb6017f147979c042c47934d2e3f010b5b6d0ab028192ff7dfb75f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2097
Cache-Control: 'max-age=158059'
Date: Sat, 10 Sep 2022 09:00:39 GMT
Last-Modified: Sat, 10 Sep 2022 08:25:42 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /11?rnd=1029378904&z=5330304&b=14082267&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=wzyg4HqGjjvLI-y9vsCguAS2Dj8sParoy_Ev3ssTJ4Qtg_D5nrGq0rasOV2BnHqLa-dg5QSeCeiu25Mv5EP-le-Ma416YokjEA72RQIujQqTyUi_w77tebVNVsUMnnN17atKK4xRw61qi40RVqyCjz_le5aY_a7I-EL2GMFFqfx9bDSfUVZXCsgLyrhxBNl0at7aymyY08cYd9CUUuNUIxNBUMa5dGpl_J-WkBLDG8HlMjKX1OT6FDejpuSqVKCXUWbv5SsBic_B6E7NmUYsZd82X1n-1B5z2_vDWQqznBL0sMslchRa7oCjeBxt-xzlsr_TsLourQD2-UeuJdZ-_OykFt2BRmuXpprpOOzimx9rg37vmAHV6j9yhQ0Hat7P8f7eplofKJgmVVHwGJ6XKsrHk4d87pSfjcxXEpDVNT5ZPy4tR3m4Mvx28m6D4y9d-bEE8y_dVdldTB_cOBYJk9r5pdp857oOXhpCFn2Bd01KQ1gRUNVrQp8jFTAehWYt58z9vtIA6523Ix6_Avv-rWvJzavACwZba7fH_4keZXJuLHK6ik4Yp3itzMgKkmdjzLdbaYdlRyOvp54z6ccfSC5XtANrVYVV-uAFvabcoNd9oRISvgTeodQwdTglHuTUj3UDnK9drknA8-1XeHDWnA==&ruid=52dc7e9a-5dff-49b3-a24b-7f202c786aa6&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ot=130 HTTP/1.1 
Host: upgulpinon.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freecoursebd.xyz
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Cookie: scm=1; OAID=4c60f5472df3481f9c70b20b1eb94891; oaidts=1662800438
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.197.242
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:39 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.freecoursebd.xyz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: edb517f3de4515df7526907c4f5cd387
access-control-expose-headers: X-Sc
set-cookie: OAID=4c60f5472df3481f9c70b20b1eb94891; expires=Sun, 10 Sep 2023 09:00:39 GMT; secure; SameSite=None oaidts=1662800438; expires=Sun, 10 Sep 2023 09:00:39 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /www/images/3d08aacb36c7474e0d13b60f8f4adc14.png HTTP/1.1 
Host: offerimage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.22.33.172
HTTP/2 200 OK
content-type: image/png
                                        
date: Sat, 10 Sep 2022 09:00:39 GMT
content-length: 66121
last-modified: Mon, 12 Oct 2020 05:50:58 GMT
etag: "5f83eec2-10249"
expires: Sat, 10 Sep 2022 12:30:47 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 73792
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7486f97b69329902-ARN
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size:   66121
Md5:    3d08aacb36c7474e0d13b60f8f4adc14
Sha1:   e4af2de372b5e3a2211579a5973ef7ed160e7be4
Sha256: 54b0569cf052e12dd373e86031009d0a54a893275a21c2ef863277a9a978ab1c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5EAD23C004FB06735A1FC4F6C6846A5CB43D28FC25788B74113CA59670F72154"
Last-Modified: Thu, 08 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1794
Expires: Sat, 10 Sep 2022 09:30:33 GMT
Date: Sat, 10 Sep 2022 09:00:39 GMT
Connection: keep-alive

                                        
                                            GET /9b7f6cb42d593d860eafc1d12aa1a84b/invoke.js HTTP/1.1 
Host: kickchecking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.61.227
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 09:00:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 42dbd412b52e23e5d2897fd0a09c4e25
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (26951), with no line terminators
Size:   9784
Md5:    2ac9f6c660555a6224de3762d7946dd9
Sha1:   ca21f1e15a73469f8d99a5f8310c6f6803ef2418
Sha256: 63c4522f200f6e6af8dcff2c398b02cdd1d9daab847a66a963c056cca4eee9ff

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /500/5330301?excludes=&oaid=4c60f5472df3481f9c70b20b1eb94891&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1 
Host: glizauvo.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.freecoursebd.xyz
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Cookie: OAID=1720e12440164a2396b83b8db2c5eb8e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.197.236
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:39 GMT
x-trace-id: 728b8617f8dcff0af9fc4db52cb1bf89
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://www.freecoursebd.xyz
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=4c60f5472df3481f9c70b20b1eb94891; expires=Sun, 10 Sep 2023 09:00:39 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   5209
Md5:    ae08cbf6b612abdfe078a1ede2df9d48
Sha1:   a260728139426fd29ee6f82008896d638fff664f
Sha256: 9447c25185dbd68382041af3db727ba73c67d7d0f116d9571684d03e02d12558

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /?l=gP386FeXkNqGNM3&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Fupgulpinon.com%2F12%3Frnd%3D388746518%26z%3D5330304%26b%3D14082267%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3Dwzyg4HqGjjvLI-y9vsCguAS2Dj8sParoy_Ev3ssTJ4Qtg_D5nrGq0rasOV2BnHqLa-dg5QSeCeiu25Mv5EP-le-Ma416YokjEA72RQIujQqTyUi_w77tebVNVsUMnnN17atKK4xRw61qi40RVqyCjz_le5aY_a7I-EL2GMFFqfx9bDSfUVZXCsgLyrhxBNl0at7aymyY08cYd9CUUuNUIxNBUMa5dGpl_J-WkBLDG8HlMjKX1OT6FDejpuSqVKCXUWbv5SsBic_B6E7NmUYsZd82X1n-1B5z2_vDWQqznBL0sMslchRa7oCjeBxt-xzlsr_TsLourQD2-UeuJdZ-_OykFt2BRmuXpprpOOzimx9rg37vmAHV6j9yhQ0Hat7P8f7eplofKJgmVVHwGJ6XKsrHk4d87pSfjcxXEpDVNT5ZPy4tR3m4Mvx28m6D4y9d-bEE8y_dVdldTB_cOBYJk9r5pdp857oOXhpCFn2Bd01KQ1gRUNVrQp8jFTAehWYt58z9vtIA6523Ix6_Avv-rWvJzavACwZba7fH_4keZXJuLHK6ik4Yp3itzMgKkmdjzLdbaYdlRyOvp54z6ccfSC5XtANrVYVV-uAFvabcoNd9oRISvgTeodQwdTglHuTUj3UDnK9drknA8-1XeHDWnA%3D%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3D52dc7e9a-5dff-49b3-a24b-7f202c786aa6%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.freecoursebd.xyz%252F2022%252F07%252Fseo-friendly-content-writing-paid.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1 
Host: interstitial-07.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         139.45.197.154
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:39 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.27
set-cookie: reverse=ggjIOIK8iwd62plcS0HhfU3XojYRJUAz4Y5IZRMI9as; expires=Sat, 10-Sep-2022 10:00:39 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   48079
Md5:    5e055c77d9eafe4a06a6aed62b09464f
Sha1:   337d28ab1c207730f88568d1a04aaedc6ac330c9
Sha256: 6cea8cdc9b1117267c0d87a4c7d089c50e51bf3b0e3a851f9d1447ed3265183d
                                        
                                            POST /9?z=5330304&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=4c60f5472df3481f9c70b20b1eb94891 HTTP/1.1 
Host: upgulpinon.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 266
Origin: https://www.freecoursebd.xyz
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Cookie: scm=1; OAID=69654225ee724c529eab6efe497bcaae; oaidts=1662800438
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.197.242
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:39 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.freecoursebd.xyz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: ab4cc8d0080dc323f830cdd3e92ff42d
access-control-expose-headers: X-Sc
set-cookie: OAID=4c60f5472df3481f9c70b20b1eb94891; expires=Sun, 10 Sep 2023 09:00:39 GMT; secure; SameSite=None oaidts=1662800438; expires=Sun, 10 Sep 2023 09:00:39 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3209
Md5:    0f2301b8b3ba5d6f2d0328950f8ca254
Sha1:   480f3ebbbeefd97f833c99ce8f2d56b5bdb6ea9d
Sha256: 8ed0746c9f61f60a4b2611650b3c321a171b477fec4fc130ff34adf0a8568e7f
                                        
                                            GET /contents/s/06/81/01/3a2614b7b0b9c1fe8640a337d6/01564863680579.jpeg HTTP/1.1 
Host: interstitial-07.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=gP386FeXkNqGNM3&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Fupgulpinon.com%2F12%3Frnd%3D388746518%26z%3D5330304%26b%3D14082267%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3Dwzyg4HqGjjvLI-y9vsCguAS2Dj8sParoy_Ev3ssTJ4Qtg_D5nrGq0rasOV2BnHqLa-dg5QSeCeiu25Mv5EP-le-Ma416YokjEA72RQIujQqTyUi_w77tebVNVsUMnnN17atKK4xRw61qi40RVqyCjz_le5aY_a7I-EL2GMFFqfx9bDSfUVZXCsgLyrhxBNl0at7aymyY08cYd9CUUuNUIxNBUMa5dGpl_J-WkBLDG8HlMjKX1OT6FDejpuSqVKCXUWbv5SsBic_B6E7NmUYsZd82X1n-1B5z2_vDWQqznBL0sMslchRa7oCjeBxt-xzlsr_TsLourQD2-UeuJdZ-_OykFt2BRmuXpprpOOzimx9rg37vmAHV6j9yhQ0Hat7P8f7eplofKJgmVVHwGJ6XKsrHk4d87pSfjcxXEpDVNT5ZPy4tR3m4Mvx28m6D4y9d-bEE8y_dVdldTB_cOBYJk9r5pdp857oOXhpCFn2Bd01KQ1gRUNVrQp8jFTAehWYt58z9vtIA6523Ix6_Avv-rWvJzavACwZba7fH_4keZXJuLHK6ik4Yp3itzMgKkmdjzLdbaYdlRyOvp54z6ccfSC5XtANrVYVV-uAFvabcoNd9oRISvgTeodQwdTglHuTUj3UDnK9drknA8-1XeHDWnA%3D%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3D52dc7e9a-5dff-49b3-a24b-7f202c786aa6%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.freecoursebd.xyz%252F2022%252F07%252Fseo-friendly-content-writing-paid.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D1%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         139.45.197.154
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:39 GMT
content-length: 125242
last-modified: Mon, 18 Jul 2022 20:55:17 GMT
etag: "62d5c8b5-1e93a"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 900x600, components 3\012- data
Size:   125242
Md5:    0681013a2614b7b0b9c1fe8640a337d6
Sha1:   a422ab7fbf3cd22db2f3edd47aee04eae4355246
Sha256: f3f918825d47aed0e2003ed3d95563abdfc80592531b6cfd593aafa356959766
                                        
                                            GET /fv.js?t=72747&cb=1227148724 HTTP/1.1 
Host: unphionetor.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.197.236
HTTP/2 200 OK
content-type: text/javascript; charset=utf8
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:39 GMT
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 63cca31c24fa8ff4c13edf4900c5773e
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5213), with no line terminators
Size:   2153
Md5:    0254fb1dad74628b7ad0f97d304fac92
Sha1:   35f7af13a08eb87023ec7df4d3c35c21b2cde79d
Sha256: 47fb6ce428ca80ea69b772e4f66e4e5c622a4005db601746033d04511bd27536

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B7AB0757BE22EFF55A38052AE741FC087AD317A904393010E7A529493B4317E4"
Last-Modified: Fri, 09 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15937
Expires: Sat, 10 Sep 2022 13:26:16 GMT
Date: Sat, 10 Sep 2022 09:00:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B6356CA3D2C56C5C037CCCD61DB43DB246F0B64A68AE596C51002955C19BBF0E"
Last-Modified: Thu, 08 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7766
Expires: Sat, 10 Sep 2022 11:10:05 GMT
Date: Sat, 10 Sep 2022 09:00:39 GMT
Connection: keep-alive

                                        
                                            GET /11?rnd=1029378904&z=5330304&b=14082267&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=wzyg4HqGjjvLI-y9vsCguAS2Dj8sParoy_Ev3ssTJ4Qtg_D5nrGq0rasOV2BnHqLa-dg5QSeCeiu25Mv5EP-le-Ma416YokjEA72RQIujQqTyUi_w77tebVNVsUMnnN17atKK4xRw61qi40RVqyCjz_le5aY_a7I-EL2GMFFqfx9bDSfUVZXCsgLyrhxBNl0at7aymyY08cYd9CUUuNUIxNBUMa5dGpl_J-WkBLDG8HlMjKX1OT6FDejpuSqVKCXUWbv5SsBic_B6E7NmUYsZd82X1n-1B5z2_vDWQqznBL0sMslchRa7oCjeBxt-xzlsr_TsLourQD2-UeuJdZ-_OykFt2BRmuXpprpOOzimx9rg37vmAHV6j9yhQ0Hat7P8f7eplofKJgmVVHwGJ6XKsrHk4d87pSfjcxXEpDVNT5ZPy4tR3m4Mvx28m6D4y9d-bEE8y_dVdldTB_cOBYJk9r5pdp857oOXhpCFn2Bd01KQ1gRUNVrQp8jFTAehWYt58z9vtIA6523Ix6_Avv-rWvJzavACwZba7fH_4keZXJuLHK6ik4Yp3itzMgKkmdjzLdbaYdlRyOvp54z6ccfSC5XtANrVYVV-uAFvabcoNd9oRISvgTeodQwdTglHuTUj3UDnK9drknA8-1XeHDWnA==&ruid=52dc7e9a-5dff-49b3-a24b-7f202c786aa6&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1 
Host: upgulpinon.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freecoursebd.xyz
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Cookie: scm=1; OAID=4c60f5472df3481f9c70b20b1eb94891; oaidts=1662800438
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.197.242
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:40 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.freecoursebd.xyz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 3529d2a42b9be1f9399c504f9eda26b8
access-control-expose-headers: X-Sc
set-cookie: OAID=4c60f5472df3481f9c70b20b1eb94891; expires=Sun, 10 Sep 2023 09:00:40 GMT; secure; SameSite=None oaidts=1662800438; expires=Sun, 10 Sep 2023 09:00:40 GMT; secure; SameSite=None oaidvc=1; expires=Sun, 10 Sep 2023 09:00:40 GMT; secure; SameSite=None CNT=1_v1_2-DWAAEAAAAtS_9_; expires=Sat, 10 Sep 2022 10:00:40 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

                                        
                                            POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1 
Host: unphionetor.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

                                         
                                         139.45.197.236
HTTP/2 204 No Content
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:40 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 6e37a897c4e30795d5c68df11ba6e1b9
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /1?z=5330304 HTTP/1.1 
Host: upgulpinon.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Cookie: scm=1; OAID=69654225ee724c529eab6efe497bcaae; oaidts=1662800438
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.197.242
HTTP/2 200 OK
content-type: text/javascript
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:39 GMT
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 24c4cb2063f3188531f1ae8e4300c7ad
access-control-expose-headers: X-Sc
set-cookie: OAID=69654225ee724c529eab6efe497bcaae; expires=Sun, 10 Sep 2023 09:00:39 GMT; secure; SameSite=None oaidts=1662800438; expires=Sun, 10 Sep 2023 09:00:39 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7767)
Size:   3539
Md5:    2d6ee623706086de16480b048bcad8e5
Sha1:   8fdf4994d2156244588c9c02e19f99365879830a
Sha256: eca9835371b71e8c67de1adc4829d1ad5947395214bd0e3561b3ca27e11807c7

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /watch.76023655236.js?key=9b7f6cb42d593d860eafc1d12aa1a84b&kw=%5B%22seo%22%2C%22friendly%22%2C%22content%22%2C%22writing%22%2C%22paid%22%2C%22course%22%2C%22by%22%2C%22ghoori%22%2C%22learning%22%2C%22free%22%2C%22-%22%2C%22freecoursebd%22%5D&refer=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&tz=0&dev=r&res=12.31&uuid=3d63a91a-5b2f-405f-a0fd-c71129ecf573%3A2%3A1 HTTP/1.1 
Host: skipdearbeautify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freecoursebd.xyz
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.61.227
HTTP/1.1 307 Temporary Redirect
Content-Type: text/html
                                        
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 09:00:40 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.freecoursebd.xyz
Access-Control-Allow-Origin: https://www.freecoursebd.xyz
Access-Control-Allow-Credentials: true
Location: https://skipdearbeautify.com/watch.76023655236.js?key=9b7f6cb42d593d860eafc1d12aa1a84b&kw=%5B%22seo%22%2C%22friendly%22%2C%22content%22%2C%22writing%22%2C%22paid%22%2C%22course%22%2C%22by%22%2C%22ghoori%22%2C%22learning%22%2C%22free%22%2C%22-%22%2C%22freecoursebd%22%5D&refer=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&tz=0&dev=r&res=12.31&uuid=3d63a91a-5b2f-405f-a0fd-c71129ecf573%3A2%3A1&shu=6e9bdeed36948a3fc2ed9eacf453602548d3f70cc2bf30b7b894159724c92bf744bcb9e98806649967c78289776c8950be20a1bf8a32e8bbe559860bab191170d7f56121d51b2022ffbab8db71fb14c35c7ec047&pst=1662800500&rmtc=t
Set-Cookie: u_pl=17323259; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None ain=eyJhbGciOiJIUzI1NiJ9.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.RK2EGcDCmrbYMvRunDplwZf6mZl0OfaOZyhzxKUtjM8; expires=Sat, 10 Sep 2022 09:01:40 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2ddd2ccb5784c7bbcf8be414571b7032
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2D202B32D453153ECBA07114225F07B281C8A69616533A8378A9983A6B24E303"
Last-Modified: Thu, 08 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7654
Expires: Sat, 10 Sep 2022 11:08:14 GMT
Date: Sat, 10 Sep 2022 09:00:40 GMT
Connection: keep-alive

                                        
                                            GET /watch.802527436372.js?key=9b7f6cb42d593d860eafc1d12aa1a84b&kw=%5B%22seo%22%2C%22friendly%22%2C%22content%22%2C%22writing%22%2C%22paid%22%2C%22course%22%2C%22by%22%2C%22ghoori%22%2C%22learning%22%2C%22free%22%2C%22-%22%2C%22freecoursebd%22%5D&refer=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&tz=0&dev=r&res=12.31&uuid=1718fe92-c6bd-4a72-b112-7ddac64d0aa5%3A1%3A1 HTTP/1.1 
Host: perryvolleyball.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freecoursebd.xyz
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.59.12
HTTP/1.1 307 Temporary Redirect
Content-Type: text/html
                                        
Server: nginx/1.17.6
Date: Sat, 10 Sep 2022 09:00:40 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.freecoursebd.xyz
Access-Control-Allow-Origin: https://www.freecoursebd.xyz
Access-Control-Allow-Credentials: true
Location: https://perryvolleyball.com/watch.802527436372.js?key=9b7f6cb42d593d860eafc1d12aa1a84b&kw=%5B%22seo%22%2C%22friendly%22%2C%22content%22%2C%22writing%22%2C%22paid%22%2C%22course%22%2C%22by%22%2C%22ghoori%22%2C%22learning%22%2C%22free%22%2C%22-%22%2C%22freecoursebd%22%5D&refer=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&tz=0&dev=r&res=12.31&uuid=1718fe92-c6bd-4a72-b112-7ddac64d0aa5%3A1%3A1&shu=1aeb7c913c0824991c4f13d6b66b6470a3d2ad8aa227d7440b7d917f9255e259193a0b1ef5aed40eb357062f49be4e0a1850b819066566f26d3d2025cf792658335448db5a7ebfef7fb4a6e34a3b9a8ce527396b&pst=1662800500&rmtc=t
Set-Cookie: u_pl=17323259; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzMyMzI1OSwiayI6IjliN2Y2Y2I0MmQ1OTNkODYwZWFmYzFkMTJhYTFhODRiIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxODc4Nzk2LCJwaWQiOjM4ODc0MSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyOCwiYWlkIjo1LCJwdCI6NCwicGsiOiJteGF0a2JlemljIiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3d3dy5mcmVlY291cnNlYmQueHl6LzIwMjIvMDcvc2VvLWZyaWVuZGx5LWNvbnRlbnQtd3JpdGluZy1wYWlkLmh0bWwifX0.RK2EGcDCmrbYMvRunDplwZf6mZl0OfaOZyhzxKUtjM8; expires=Sat, 10 Sep 2022 09:01:40 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1239af1b955bc3131e05bf13a777e4fd
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /watch.93904118011.js?key=9b7f6cb42d593d860eafc1d12aa1a84b&kw=%5B%22seo%22%2C%22friendly%22%2C%22content%22%2C%22writing%22%2C%22paid%22%2C%22course%22%2C%22by%22%2C%22ghoori%22%2C%22learning%22%2C%22free%22%2C%22-%22%2C%22freecoursebd%22%5D&refer=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&tz=0&dev=r&res=12.31&uuid=1718fe92-c6bd-4a72-b112-7ddac64d0aa5%3A1%3A1 HTTP/1.1 
Host: graduatewonderentreaty.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freecoursebd.xyz
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         173.233.137.44
HTTP/1.1 307 Temporary Redirect
Content-Type: text/html
                                        
Server: nginx/1.19.5
Date: Sat, 10 Sep 2022 09:00:40 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.freecoursebd.xyz
Access-Control-Allow-Origin: https://www.freecoursebd.xyz
Access-Control-Allow-Credentials: true
Location: https://graduatewonderentreaty.com/watch.93904118011.js?key=9b7f6cb42d593d860eafc1d12aa1a84b&kw=%5B%22seo%22%2C%22friendly%22%2C%22content%22%2C%22writing%22%2C%22paid%22%2C%22course%22%2C%22by%22%2C%22ghoori%22%2C%22learning%22%2C%22free%22%2C%22-%22%2C%22freecoursebd%22%5D&refer=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&tz=0&dev=r&res=12.31&uuid=1718fe92-c6bd-4a72-b112-7ddac64d0aa5%3A1%3A1&shu=edcaec8ce7458d363ede02caf42d4e91dcac1f473b3884bde8c5fc5ccb9fc60ec0ddaddf94f4c617bbf2d5591e5f013865e7726aa0357efbd03b9f150954aa2363707306d94d63baba6e8d7a1faa047876e766f0f2033a87348380488f9624e24e&pst=1662800500&rmtc=t
Set-Cookie: u_pl=17323259; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None ain=eyJhbGciOiJIUzI1NiJ9.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.RK2EGcDCmrbYMvRunDplwZf6mZl0OfaOZyhzxKUtjM8; expires=Sat, 10 Sep 2022 09:01:40 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e69b5718be452da21426ab810f543937
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /1?z=5330304 HTTP/1.1 
Host: upgulpinon.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Cookie: scm=1; OAID=69654225ee724c529eab6efe497bcaae; oaidts=1662800438
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.197.242
HTTP/2 200 OK
content-type: text/javascript
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:39 GMT
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 22246d35c763c12a24ee5ccdd59eb7dc
access-control-expose-headers: X-Sc
set-cookie: OAID=69654225ee724c529eab6efe497bcaae; expires=Sun, 10 Sep 2023 09:00:39 GMT; secure; SameSite=None oaidts=1662800438; expires=Sun, 10 Sep 2023 09:00:39 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7767)
Size:   5498
Md5:    0377dc63a3cc1fcffaff39cc48031006
Sha1:   bd305db9452d1b7cd183d7b2e4d34666f213d1f3
Sha256: 7bfd431ab748905503e037051d2bc4da8b2286276d7ccac706166bf9bc8c05b0

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /watch.76023655236.js?key=9b7f6cb42d593d860eafc1d12aa1a84b&kw=%5B%22seo%22%2C%22friendly%22%2C%22content%22%2C%22writing%22%2C%22paid%22%2C%22course%22%2C%22by%22%2C%22ghoori%22%2C%22learning%22%2C%22free%22%2C%22-%22%2C%22freecoursebd%22%5D&refer=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&tz=0&dev=r&res=12.31&uuid=3d63a91a-5b2f-405f-a0fd-c71129ecf573%3A2%3A1&shu=6e9bdeed36948a3fc2ed9eacf453602548d3f70cc2bf30b7b894159724c92bf744bcb9e98806649967c78289776c8950be20a1bf8a32e8bbe559860bab191170d7f56121d51b2022ffbab8db71fb14c35c7ec047&pst=1662800500&rmtc=t HTTP/1.1 
Host: skipdearbeautify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freecoursebd.xyz
Referer: https://www.freecoursebd.xyz/
Connection: keep-alive
Cookie: u_pl=17323259; ain=eyJhbGciOiJIUzI1NiJ9.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.RK2EGcDCmrbYMvRunDplwZf6mZl0OfaOZyhzxKUtjM8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.61.227
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 09:00:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.freecoursebd.xyz
Access-Control-Allow-Origin: https://www.freecoursebd.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=3d63a91a-5b2f-405f-a0fd-c71129ecf573:2:1; expires=Sat, 17 Sep 2022 09:00:40 GMT; secure; SameSite=None pdhtkv=true; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None uncs=1; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None pdhtkv5=true; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None uncs5=1; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 416aa7296fdd1999575d23b6ecc3a32b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2442)
Size:   1974
Md5:    2271cf1e5241a28096f7be68a3154310
Sha1:   80a2cc001ee4fabdb576bc07025fe997deedea0b
Sha256: 337ae6a7de419ce27c6a325a9f202d639f4fb34142964219a8feab02167da9c3

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /watch.93904118011.js?key=9b7f6cb42d593d860eafc1d12aa1a84b&kw=%5B%22seo%22%2C%22friendly%22%2C%22content%22%2C%22writing%22%2C%22paid%22%2C%22course%22%2C%22by%22%2C%22ghoori%22%2C%22learning%22%2C%22free%22%2C%22-%22%2C%22freecoursebd%22%5D&refer=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&tz=0&dev=r&res=12.31&uuid=1718fe92-c6bd-4a72-b112-7ddac64d0aa5%3A1%3A1&shu=edcaec8ce7458d363ede02caf42d4e91dcac1f473b3884bde8c5fc5ccb9fc60ec0ddaddf94f4c617bbf2d5591e5f013865e7726aa0357efbd03b9f150954aa2363707306d94d63baba6e8d7a1faa047876e766f0f2033a87348380488f9624e24e&pst=1662800500&rmtc=t HTTP/1.1 
Host: graduatewonderentreaty.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freecoursebd.xyz
Referer: https://www.freecoursebd.xyz/
Connection: keep-alive
Cookie: u_pl=17323259; ain=eyJhbGciOiJIUzI1NiJ9.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.RK2EGcDCmrbYMvRunDplwZf6mZl0OfaOZyhzxKUtjM8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         173.233.137.44
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.19.5
Date: Sat, 10 Sep 2022 09:00:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.freecoursebd.xyz
Access-Control-Allow-Origin: https://www.freecoursebd.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=1718fe92-c6bd-4a72-b112-7ddac64d0aa5:1:1; expires=Sat, 17 Sep 2022 09:00:40 GMT; secure; SameSite=None pdhtkv=true; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None uncs=1; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None pdhtkv5=true; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None uncs5=1; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b0b67bf4401db80a97f7cff6a3447385
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2470)
Size:   2007
Md5:    dc195113d90122d8c9be6530f8b918d4
Sha1:   1b2d3c3edb0dcecadcef3172c485a1571f7f27e0
Sha256: 99d42c64adc9aa049f47905a9f2564ff9dfd64ad0b49ff2bac6f7e151e5846a3

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /watch.378897832953.js?key=9b7f6cb42d593d860eafc1d12aa1a84b&kw=%5B%22seo%22%2C%22friendly%22%2C%22content%22%2C%22writing%22%2C%22paid%22%2C%22course%22%2C%22by%22%2C%22ghoori%22%2C%22learning%22%2C%22free%22%2C%22-%22%2C%22freecoursebd%22%5D&refer=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&tz=0&dev=r&res=12.31&uuid=1718fe92-c6bd-4a72-b112-7ddac64d0aa5%3A1%3A1 HTTP/1.1 
Host: phosphatepossible.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freecoursebd.xyz
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.61.225
HTTP/1.1 307 Temporary Redirect
Content-Type: text/html
                                        
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 09:00:40 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.freecoursebd.xyz
Access-Control-Allow-Origin: https://www.freecoursebd.xyz
Access-Control-Allow-Credentials: true
Location: https://phosphatepossible.com/watch.378897832953.js?key=9b7f6cb42d593d860eafc1d12aa1a84b&kw=%5B%22seo%22%2C%22friendly%22%2C%22content%22%2C%22writing%22%2C%22paid%22%2C%22course%22%2C%22by%22%2C%22ghoori%22%2C%22learning%22%2C%22free%22%2C%22-%22%2C%22freecoursebd%22%5D&refer=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&tz=0&dev=r&res=12.31&uuid=1718fe92-c6bd-4a72-b112-7ddac64d0aa5%3A1%3A1&shu=b465fc480f23419d6573341bf83f490014942acd81ade9d72cfd632520f70a785a1b92f50342f0be129543a8a3002f74807e205c1918bfc6304cb3017d20055e8d8dc3bc29d7753c7e1ace5363545d4aa6875aa9&pst=1662800500&rmtc=t
Set-Cookie: u_pl=17323259; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None ain=eyJhbGciOiJIUzI1NiJ9.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.RK2EGcDCmrbYMvRunDplwZf6mZl0OfaOZyhzxKUtjM8; expires=Sat, 10 Sep 2022 09:01:40 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4843663504331eff2a87653cce444a80
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /watch.802527436372.js?key=9b7f6cb42d593d860eafc1d12aa1a84b&kw=%5B%22seo%22%2C%22friendly%22%2C%22content%22%2C%22writing%22%2C%22paid%22%2C%22course%22%2C%22by%22%2C%22ghoori%22%2C%22learning%22%2C%22free%22%2C%22-%22%2C%22freecoursebd%22%5D&refer=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&tz=0&dev=r&res=12.31&uuid=1718fe92-c6bd-4a72-b112-7ddac64d0aa5%3A1%3A1&shu=1aeb7c913c0824991c4f13d6b66b6470a3d2ad8aa227d7440b7d917f9255e259193a0b1ef5aed40eb357062f49be4e0a1850b819066566f26d3d2025cf792658335448db5a7ebfef7fb4a6e34a3b9a8ce527396b&pst=1662800500&rmtc=t HTTP/1.1 
Host: perryvolleyball.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freecoursebd.xyz
Referer: https://www.freecoursebd.xyz/
Connection: keep-alive
Cookie: u_pl=17323259; ain=eyJhbGciOiJIUzI1NiJ9.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.RK2EGcDCmrbYMvRunDplwZf6mZl0OfaOZyhzxKUtjM8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.59.12
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.17.6
Date: Sat, 10 Sep 2022 09:00:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.freecoursebd.xyz
Access-Control-Allow-Origin: https://www.freecoursebd.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=1718fe92-c6bd-4a72-b112-7ddac64d0aa5:1:1; expires=Sat, 17 Sep 2022 09:00:40 GMT; secure; SameSite=None pdhtkv=true; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None uncs=1; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None pdhtkv5=true; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None uncs5=1; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 74b5625736f95a72dd243f03c1644f57
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2447)
Size:   1977
Md5:    de5336005b75f5676e89875b56e0929e
Sha1:   a61f03e2d55518a438c8dda0e7cc35e1a237601d
Sha256: 4237fe36f6131fa36a742428be89ded674f795d923912b6c56629d96b946c7f1

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "46FA93A75D4BB081E5F0E3C098D97E5B9364364D29F6B1C814AE582DC675C110"
Last-Modified: Fri, 09 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15652
Expires: Sat, 10 Sep 2022 13:21:32 GMT
Date: Sat, 10 Sep 2022 09:00:40 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 10 Sep 2022 09:00:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 10 Sep 2022 09:00:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 10 Sep 2022 09:00:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 10 Sep 2022 09:00:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /cti/c8/d8/67/c8d8673ced1eaa7e51baa9035243a09a/1627915868.png HTTP/1.1 
Host: cdn.cloudimagesb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         45.133.44.9
HTTP/2 200 OK
content-type: image/png
                                        
date: Sat, 10 Sep 2022 09:00:40 GMT
content-length: 107711
server: nginx/1.17.6
last-modified: Mon, 02 Aug 2021 14:51:18 GMT
etag: "61080666-1a4bf"
expires: Mon, 12 Sep 2022 09:00:40 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Size:   107711
Md5:    d5d8bc18ba152c6e850417cdf9dfbbff
Sha1:   888bf155775a9879f26faf0e7faaff5803296e8e
Sha256: b481f86a9731573e3cfd04880209d5ecb5c163caa0e2656a9f740321c5e637c8
                                        
                                            GET /cti/bb/59/ee/bb59ee37dc1dd0489ac3b5ab7eeb3863/1627915891.png HTTP/1.1 
Host: cdn.cloudimagesb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         45.133.44.9
HTTP/2 200 OK
content-type: image/png
                                        
date: Sat, 10 Sep 2022 09:00:40 GMT
content-length: 111057
server: nginx/1.17.6
last-modified: Mon, 02 Aug 2021 14:51:41 GMT
etag: "6108067d-1b1d1"
expires: Mon, 12 Sep 2022 09:00:40 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Size:   111057
Md5:    1da8cd55f8d6f2f83002d45575b7499d
Sha1:   b7fb60c04d04cb55259c92cc184662aebabb3f32
Sha256: c818c1651508b4817d15851e5a688f70551f10dbec541782757b9e4a9dc2280e
                                        
                                            GET /cti/c9/11/c0/c911c0a120ad25a0b0f51d2b42804521/1627915999.png HTTP/1.1 
Host: cdn.cloudimagesb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         45.133.44.9
HTTP/2 200 OK
content-type: image/png
                                        
date: Sat, 10 Sep 2022 09:00:40 GMT
content-length: 96103
server: nginx/1.17.6
last-modified: Mon, 02 Aug 2021 14:53:29 GMT
etag: "610806e9-17767"
expires: Mon, 12 Sep 2022 09:00:40 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Size:   96103
Md5:    0ba904126a4592e4866c657f761ddc25
Sha1:   6b40223686b8ce5bf58ec0375a09de7c0c3bec7a
Sha256: f0e24a117d128140b403f57dc94cf263cf5e6ed39c757f7e0f39988cb32bc00b
                                        
                                            GET /watch.378897832953.js?key=9b7f6cb42d593d860eafc1d12aa1a84b&kw=%5B%22seo%22%2C%22friendly%22%2C%22content%22%2C%22writing%22%2C%22paid%22%2C%22course%22%2C%22by%22%2C%22ghoori%22%2C%22learning%22%2C%22free%22%2C%22-%22%2C%22freecoursebd%22%5D&refer=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&tz=0&dev=r&res=12.31&uuid=1718fe92-c6bd-4a72-b112-7ddac64d0aa5%3A1%3A1&shu=b465fc480f23419d6573341bf83f490014942acd81ade9d72cfd632520f70a785a1b92f50342f0be129543a8a3002f74807e205c1918bfc6304cb3017d20055e8d8dc3bc29d7753c7e1ace5363545d4aa6875aa9&pst=1662800500&rmtc=t HTTP/1.1 
Host: phosphatepossible.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freecoursebd.xyz
Referer: https://www.freecoursebd.xyz/
Connection: keep-alive
Cookie: u_pl=17323259; ain=eyJhbGciOiJIUzI1NiJ9.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.RK2EGcDCmrbYMvRunDplwZf6mZl0OfaOZyhzxKUtjM8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.61.225
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 09:00:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.freecoursebd.xyz
Access-Control-Allow-Origin: https://www.freecoursebd.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=1718fe92-c6bd-4a72-b112-7ddac64d0aa5:1:1; expires=Sat, 17 Sep 2022 09:00:40 GMT; secure; SameSite=None pdhtkv=true; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None uncs=1; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None pdhtkv5=true; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None uncs5=1; expires=Sun, 11 Sep 2022 09:00:40 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f5f9cd5bedcb2bc0c9d8dfbee645b244
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2447)
Size:   1981
Md5:    6a51479cbefc925bdb30a879bd61a62e
Sha1:   055acaffa4bb44a46d0dc03986dc47df4ce90424
Sha256: 4c51acf74772fbccf27000e7507d9c7e39c43541d08ae671ae6cbb7415664a70

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /cti/0f/19/1c/0f191c5d3acdb94fc619fe49f3e35e6d/1627915929.png HTTP/1.1 
Host: cdn.cloudimagesb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         45.133.44.9
HTTP/2 200 OK
content-type: image/png
                                        
date: Sat, 10 Sep 2022 09:00:40 GMT
content-length: 111206
server: nginx/1.17.6
last-modified: Mon, 02 Aug 2021 14:52:19 GMT
etag: "610806a3-1b266"
expires: Mon, 12 Sep 2022 09:00:40 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Size:   111206
Md5:    07ff58dd4e527aa139b3ca4bc2d86d12
Sha1:   68f4fec46190913399a1ee165eb17ceee6901ac3
Sha256: 39af4877d1d9b2f78a9ca4c0060438a7cf2ddd271c3581910600b6999728dc77
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.freecoursebd.xyz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/2022/07/seo-friendly-content-writing-paid.html
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=1718fe92-c6bd-4a72-b112-7ddac64d0aa5%3A1%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         142.250.74.179
HTTP/2 200 OK
content-type: image/x-icon; charset=UTF-8
                                        
expires: Sat, 10 Sep 2022 09:00:40 GMT
date: Sat, 10 Sep 2022 09:00:40 GMT
cache-control: private, max-age=86400
last-modified: Fri, 09 Sep 2022 13:41:08 GMT
etag: W/"2b9cdf828342922ae6e2be7469b0fa34edf6d81f7f8aca608338a64ec9407b59"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 386
server: GSE
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   386
Md5:    69bb136a99c492344cbb3b3825a536b6
Sha1:   eacd631e71d735c6a41490bf3b4e8bdbc5d77905
Sha256: 09943975a27433837571acc1d3de960a1408f0ef41ed105e70a445cef4e293c7
                                        
                                            GET /img/b/R29vZ2xl/AVvXsEjcQdTGVyO2v8B-2pvTOKV-0Im97IEYau3Vcnm7luaWsudbx78x4RpzvSc0YPh3scmfDi2pLGVFIMQZ1nPuRrPMnpJLbv3RM0k2F2jTDmf_qTBBOREIj3J5n4cK1pw5sriLmrsBZjnVqdhkKNM4oGHxptzhtNZHSDciSvw5IeZvluJrSwYdgzohAIBD-Q/s320/images.webp HTTP/1.1 
Host: blogger.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.1
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
etag: "v17c"
expires: Sun, 11 Sep 2022 09:00:41 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="images.jpg"
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 09:00:41 GMT
server: fife
content-length: 8648
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x72, components 3\012- data
Size:   8648
Md5:    c987e52f3d06afa3dbabf3d46b7fb1e9
Sha1:   767fb3a08cee0b1c4adba82b24e86dfdf93cd1db
Sha256: ad46c239b7636a0218dd9379f89781680d88e5455b23f7be47317580657ac57a
                                        
                                            GET /img/b/R29vZ2xl/AVvXsEhLY3Md_PomET4LpnfG0MIBQCuy3-a8Cs8EbcVpedxmZBc_MEj5q5FZeVLlTPu0eI4Rxbgu9eRweXM6sfmE6KY8-KV-cW3uBJPeRCXoIqMFx5XS6ANQQYbc2cvfbjCefCPFSGylixdCb9Eom7Is4pQFb0P_nJ5-QW_1_sg-cEl8-z-AHdUIbVbRBIqaEA/s1600/download.webp HTTP/1.1 
Host: blogger.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.1
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
etag: "v179"
expires: Sun, 11 Sep 2022 09:00:41 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="download.jpg"
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 09:00:41 GMT
server: fife
content-length: 1812
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 287x175, components 3\012- data
Size:   1812
Md5:    5d3e7c9e021b15db769cd75bc0d82764
Sha1:   fb0ff2e68eade65b9951c13ea51900f146f731b3
Sha256: 5dc9663c4f8087bb9bfa5e9dee5efc88a900e8cfca3e2b3cd5272dab90b9f2be
                                        
                                            GET /img/b/R29vZ2xl/AVvXsEhd4tcdfJKwPMr84KKU9BzcTvF0SY4Fz3eCy8ZYnoXHEPLT4D4sIV6FNxK_yov2GNi_6QXIPg-Wdjjc1_3yh3aKRrwdkh1GpN4jIt06GQFxV_glQBsle4QjcEtOrInc_nn98eXpMhJwgiDmEV0sFcNal_XaCieY5rznhLpI0rbmOGX1tyPZjDOMo4N7mA/s1600/download%20(1).webp HTTP/1.1 
Host: blogger.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.1
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
etag: "v17d"
expires: Sun, 11 Sep 2022 09:00:41 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="download (1).jpg"
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 09:00:41 GMT
server: fife
content-length: 14180
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 225x225, components 3\012- data
Size:   14180
Md5:    0d79e1b05d56d4fed290ba29f44135b4
Sha1:   a36fce5ba5e476bee75c0c91b0aef1e017de245d
Sha256: 0e5039ec7f94805f85146d2d009b707cd0f422d19fcda5c25c16b35ac66b7bfd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 10 Sep 2022 09:00:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /img/b/R29vZ2xl/AVvXsEjen-jCNuGjkalQKz93DLL9EnGdavQU6ZPgAiE1_K6izAhmx_i3ZSqVqkMj3NBp8jMYchE6ohGGGJO6ppO2xfo1J3KYz-lo1vLfv3o3GPi3t3A81k08zU647EA-juK17WfVbL4gPn6rL1c8gdIV3HlRa-Ura8W09oWDsfSjiMTDT6Si8-nH7iHsoC-5gg/s320/SEO%20Friendly%20Content%20Writing%20Paid%20Course%20By%20Ghoori%20Learning%20Free.webp HTTP/1.1 
Host: blogger.googleusercontent.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.1
HTTP/2 200 OK
content-type: image/jpeg
                                        
access-control-expose-headers: Content-Length
etag: "v208"
expires: Sun, 11 Sep 2022 09:00:41 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="SEO Friendly Content Writing Paid Course By Ghoori Learning Free.jpg"
vary: Origin
x-content-type-options: nosniff
date: Sat, 10 Sep 2022 09:00:41 GMT
server: fife
content-length: 19923
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x172, components 3\012- data
Size:   19923
Md5:    a498ec25eb77b0c8c0fc9feccf290124
Sha1:   96846b1a36afaf731cf9c66ea44bdc99e37fba25
Sha256: a167dfe2cbb5448b2ee0aad3b9e1b76ed1365625d742bb9ff90dc300b3f3389f
                                        
                                            GET /impression/_N7BRZIVlBAPEpt1QFu2XEcRcPVt3dLPMeRlVbny-y9lWkhIdvMs9R1Qm3TwekVwzFZMEWNsnQaP5pWowOYkmUvBTMtodyE3u_6FPEQJxL_8LWmxXFBrttNRaPdYOZNAMkrqBa0Ye5iKHcz8lRwloqqcCuzghgumqDj0718uyn6fx0dmyKWxXw8rZegzdD2cp5UWinnj4Nzi55IPSa1jyLmDk2gYZP02YmznrizlcxYgeTxKN-WOLqmzSWX7Yk7zEQ22ezHHUmmmWUo2zyzJNf0dK2T7_GVjRH9ffaKjRwDO4Nek_7SfBLaonkPiQyADkdbK_Gf1jcqFY3Mcwrrz6fXVpLVeDhA--TwHSuP76ULp3GHlRb0ruZ87E-UkyZEeG3vb1Ifx4DQK-ParJGMsXiXLZESqf9CKSd0MxNcF46lYo0Hq8YopnYfESP2ksIll1zIfCDAdjJ97Owu-4Xng1kmwfIofkbUvJZQYa-a9p2JG-GgJPxKCUfq2RNjNNiwyc-qMPW5qS9iLcKuKLl1xnlVyox2VrPRtgIEhcJQo2XcKSDZh4bym_zrTQ5KWW9_Ltazamlxz_ZsPKXNFrAcR5jafaCjxSNlUvPdjzg==?_z=5330301&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=7&pl=https%3A%2F%2Fwww.freecoursebd.xyz%2F2022%2F07%2Fseo-friendly-content-writing-paid.html&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1 
Host: glizauvo.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Cookie: OAID=4c60f5472df3481f9c70b20b1eb94891
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.197.236
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:43 GMT
content-length: 43
x-trace-id: e794e519c9cbc4f9c326ab198477e733
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8924b46b-4731-4526-b3b6-de366eb0e889.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5284
x-amzn-requestid: c7255083-dd50-40ae-82c8-fef8617930b7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNkC0EF4IAMFe8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb3ab-28a11c9e09716207223f3eef;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:44:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U8NVEHwdcLA1TleMXu-RrayfBJIxMLStiR1fs-mU088_Pt-tlv9AhA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:00:06 GMT
age: 39640
etag: "daf3fe4b0f004bc1bbd3b1acbc4f61d70ffcf2ff"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5284
Md5:    aebe3c28455bc6c3da231ec6d873fb37
Sha1:   daf3fe4b0f004bc1bbd3b1acbc4f61d70ffcf2ff
Sha256: efc51c27b859193ad35b279946c482784fff7429539c4b8bc35f09170fc0a904
                                        
                                            GET /1?z=5330304 HTTP/1.1 
Host: upgulpinon.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Cookie: scm=1; OAID=69654225ee724c529eab6efe497bcaae; oaidts=1662800438
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.197.242
HTTP/2 200 OK
content-type: text/javascript
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:39 GMT
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: c78856ab68276bac35177aa050f66b70
access-control-expose-headers: X-Sc
set-cookie: OAID=69654225ee724c529eab6efe497bcaae; expires=Sun, 10 Sep 2023 09:00:39 GMT; secure; SameSite=None oaidts=1662800438; expires=Sun, 10 Sep 2023 09:00:39 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /1?z=5330304 HTTP/1.1 
Host: upgulpinon.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Cookie: scm=1; OAID=69654225ee724c529eab6efe497bcaae; oaidts=1662800438
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.197.242
HTTP/2 200 OK
content-type: text/javascript
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:39 GMT
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 33da1a2917430aeb203c757c557411f3
access-control-expose-headers: X-Sc
set-cookie: OAID=69654225ee724c529eab6efe497bcaae; expires=Sun, 10 Sep 2023 09:00:39 GMT; secure; SameSite=None oaidts=1662800438; expires=Sun, 10 Sep 2023 09:00:39 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /401/5330301 HTTP/1.1 
Host: glizauvo.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.197.236
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sat, 10 Sep 2022 09:00:38 GMT
x-trace-id: 0df297b729b550f91383e46e667b018c
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=1720e12440164a2396b83b8db2c5eb8e; expires=Sun, 10 Sep 2023 09:00:38 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /stattag.js HTTP/1.1 
Host: tzegilo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freecoursebd.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.22.169
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 10 Sep 2022 09:00:38 GMT
last-modified: Thu, 04 Aug 2022 15:18:11 GMT
etag: W/"62ebe333-8007"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 739
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zz10084aPqU79J22u9l0gXCgjmZPLWOP75672ocbYyNVpcDV05kG1LRefU%2Bav%2Bga1Emy%2FIq%2F3dUelo%2FSFxsRshhwhnbGd9fgg3sYnh8iXBj88iaI7L2SSVW8oo0h8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7486f975cbd7b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---