Report - git.test.blog.blog.test.demo.bexbet.cc/login.php

Report Overview

Submitted URL
git.test.blog.blog.test.demo.bexbet.cc/login.php
IP
185.178.208.142
ASN
#57724 Ddos-guard Ltd
Submitted
2023-02-07 05:06:05
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
3
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.213.114.144
sentry.io	2743	2016-08-31T07:38:44Z	2023-03-13T05:17:08Z	613 B	426 B	35.188.42.15
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	57 kB	34.120.237.76
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	700 B	1.9 kB	54.230.245.118
firehose.us-west-2.amazonaws.com	5730	2017-01-30T11:07:36Z	2023-03-13T06:54:14Z	1.6 kB	1.2 kB	35.89.72.48
git.test.blog.blog.test.demo.bexbet.cc	unknown	2022-11-14T23:09:55Z	2023-02-07T05:44:36Z	8.7 kB	837 kB	185.178.208.142
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.7 kB	7.1 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-07 05:06:42	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-02-07 05:06:42	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-02-07 05:06:42	medium	Client IP	Internal IP	ET DNS Query for .cc TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	git.test.blog.blog.test.demo.bexbet.cc/cp/javascript/externals/require.js?1667462262	18 kB	2023-03-07	2024-04-25
Pretty URL git.test.blog.blog.test.demo.bexbet.cc/cp/javascript/externals/require.js?1667462262 IP 185.178.208.142 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:39 Last Seen2024-04-25 09:55:37 Times Seen2052 Hash 220acf7972072071438cc24778c255ff 590d02db4b7d2be0864a64efec3525e07a40e271 af09ac9bed074d089e213edb597d36acfe0ce46dfe9112f290776395fb61986d Loading...

	git.test.blog.blog.test.demo.bexbet.cc/modules/notifier/global.js?1674784288	15 kB	2023-03-08	2023-10-15
Pretty URL git.test.blog.blog.test.demo.bexbet.cc/modules/notifier/global.js?1674784288 IP 185.178.208.142 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:21:27 Last Seen2023-10-15 10:24:37 Times Seen1869 Hash 75017fa816a5cfab9fcecac0b84f9ed5 844ab1cfb5f24e43a0585ec4fa44053376a4d13c dd22b0163452cdeb3545cfa50dd2e2bcb9d37776b7d8a1a3a5bf73737332eddc Loading...

	git.test.blog.blog.test.demo.bexbet.cc/cp/javascript/externals/prototype.js?1667462262	98 kB	2023-03-07	2023-11-22
Pretty URL git.test.blog.blog.test.demo.bexbet.cc/cp/javascript/externals/prototype.js?1667462262 IP 185.178.208.142 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:39 Last Seen2023-11-22 14:12:06 Times Seen186 Hash 376d4fa07f4512ed39c3e8cef0e72618 0221d728831cd22678a0c15b0b2d347a69b9d5f9 17d6af2a222b2684f5c438a56df96e4151d77bb9f73e30878880b6c3346b1cee Loading...

	git.test.blog.blog.test.demo.bexbet.cc/login_up.php	194 B	2023-03-08	2023-11-22
Pretty URL git.test.blog.blog.test.demo.bexbet.cc/login_up.php IP 185.178.208.142 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:21:27 Last Seen2023-11-22 14:12:06 Times Seen80 Hash 2eb628eba1b9b3a8c09eb03f58f42e87 327fc6a62ca94db12f0f71bad4bba2c60abec72a abe0fabd5fe192932d6ea2c05e60feeb94daf6a72eebeffdf7896a8236f2c295 Loading...

	git.test.blog.blog.test.demo.bexbet.cc/login_up.php	499 B	2023-03-12	2023-11-22
Pretty URL git.test.blog.blog.test.demo.bexbet.cc/login_up.php IP 185.178.208.142 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 13:38:58 Last Seen2023-11-22 14:12:06 Times Seen71 Hash 0c1c4d595af16b95f6636196e4c475eb 4b80e55daca3b5450a341aecb0d4e845256d7f15 aae9cfb23119513f240655825d0e9c1d4f0a9d93e58512fb3a984fb1fba144e4 Loading...

	git.test.blog.blog.test.demo.bexbet.cc/login_up.php	51 B	2023-03-08	2024-04-25
Pretty URL git.test.blog.blog.test.demo.bexbet.cc/login_up.php IP 185.178.208.142 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:21:27 Last Seen2024-04-25 04:59:28 Times Seen1073 Hash 4ba9671892ee40ef730a9de509f739aa fb9d10e170d9e076a15dafcc6f6c72c7e6dea4e9 89e0312bdb2d175a6b1fe8e30843f86a88f45354029b304c48baa69a776df696 Loading...

	git.test.blog.blog.test.demo.bexbet.cc/login_up.php	17 kB	2023-03-13	2023-04-01
Pretty URL git.test.blog.blog.test.demo.bexbet.cc/login_up.php IP 185.178.208.142 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:03:04 Last Seen2023-04-01 10:30:56 Times Seen17 Hash a03f398c32d2086d75c77f6ff80428a6 d01d310f0307e4720e2cc0a8104cced2d19b4816 33f162feb87017b7dbee925ebef2e7be4671edc320be6fe7d2e613691c6787f7 Loading...

	git.test.blog.blog.test.demo.bexbet.cc/modules/letsencrypt/global.js?1675474044	726 B	2023-03-07	2024-04-25
Pretty URL git.test.blog.blog.test.demo.bexbet.cc/modules/letsencrypt/global.js?1675474044 IP 185.178.208.142 ASN #57724 Ddos-guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:39 Last Seen2024-04-25 09:55:36 Times Seen1349 Hash 4acc4592b2dce096cae6507c3eb1ee40 aaddedad4e54fd1a00a8d1df7becfb212393e414 02cc6928e5d72c61fbc379087a5ce4d29262a281c457aecebe86bbfb4a136af5 Loading...

HTTP Transactions (41)

	URL	IP	Response	Size
	git.test.blog.blog.test.demo.bexbet.cc/login.php	185.178.208.142	301 Moved Permanently	568 B
URL HTTP/1.1 git.test.blog.blog.test.demo.bexbet.cc/login.php IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (564), with no line terminators Size 568 B (568 bytes) Hash 2761b98db33884ab29711096ab315edb 8cea6e53464aea178b72e06a906205d040f14ca5 9f7a07f69d9b9a5af186a79159ccea18935ab4103128ca967e3f3f8ae45fb3ee HTTP Headers `GET /login.php HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Server: ddos-guard Date: Tue, 07 Feb 2023 05:05:54 GMT Connection: keep-alive Keep-Alive: timeout=60 Location: https://git.test.blog.blog.test.demo.bexbet.cc/login.php Content-Type: text/html; charset=utf8 Content-Length: 568`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a cfdba5bc597130461dd67bf6cda53183be592493 60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D" Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18435 Expires: Tue, 07 Feb 2023 10:13:09 GMT Date: Tue, 07 Feb 2023 05:05:54 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash dca68db7aea32f6683ce8d542c078f04 19c495238df74fca680e21f18627ff94de5dd2e5 35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61" Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10054 Expires: Tue, 07 Feb 2023 07:53:28 GMT Date: Tue, 07 Feb 2023 05:05:54 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash bf0c602d32b3c14606f22a86183b5e3c 6eabd8d83475eba731968abe1a05a8bfd272f160 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Tue, 07 Feb 2023 04:34:07 GMT content-type: application/json age: 1907 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash cc14b0d2f7c451f6431dc87ba54d1d60 bab8bfda6fa3e2f17125353f5147211787dc25d0 b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD" Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6553 Expires: Tue, 07 Feb 2023 06:55:07 GMT Date: Tue, 07 Feb 2023 05:05:54 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e76071a28ee566dababb3834f46d68ed aebb4e68c1ba2de0f90025283e8ed8470944fde0 78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: 9/SobqEtvJfbt8MsiOwhgMoqsuf/6kotpJ8E3dF7EYWDgwTW8He1UUAiTrimQwF4+/YuG+N1gTM= x-amz-request-id: 3CZ8JMQC9EWNN45E content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 07 Feb 2023 04:35:23 GMT age: 1831 last-modified: Sun, 29 Jan 2023 18:44:47 GMT etag: "e76071a28ee566dababb3834f46d68ed" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Tue, 07 Feb 2023 05:05:54 GMT content-type: application/json content-length: 12 vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 64dc9e6115da024aa0482c0b117f2841 3cbad85d98b880b49afd9c0036df1b2e91d00d9c bf2d9db84e5249b07601d5ad83853c5d392610514eabbb8aa82a6f0b6e13e27d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "BF2D9DB84E5249B07601D5AD83853C5D392610514EABBB8AA82A6F0B6E13E27D" Last-Modified: Tue, 07 Feb 2023 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21561 Expires: Tue, 07 Feb 2023 11:05:15 GMT Date: Tue, 07 Feb 2023 05:05:54 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Tue, 07 Feb 2023 04:07:20 GMT age: 3514 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9b88bae61bca33aba8aa99f6128db8d9 a07b61fb2458917699613fcae68710941b595416 54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA" Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9065 Expires: Tue, 07 Feb 2023 07:37:00 GMT Date: Tue, 07 Feb 2023 05:05:55 GMT Connection: keep-alive`

	git.test.blog.blog.test.demo.bexbet.cc/modules/letsencrypt/global.css?1675474044	185.178.208.142	200 OK	261 B
URL HTTP/2 git.test.blog.blog.test.demo.bexbet.cc/modules/letsencrypt/global.css?1675474044 IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type ASCII text Size 261 B (261 bytes) Hash 1663a7daf430f69c0f6e9ba89fe23632 9f53dd27a0953e696bc72501244f4a580a481abf 31b5259447426c08f9dcaa397870372c4b20cbd451178b2fcd5ee6f56397ca18 HTTP Headers GET /modules/letsencrypt/global.css?1675474044 HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://git.test.blog.blog.test.demo.bexbet.cc/login_up.php Cookie: __ddg1_=CKkAG99GmzHCSmgDq8W5 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: ddos-guard content-security-policy: upgrade-insecure-requests; date: Tue, 07 Feb 2023 04:45:07 GMT content-type: text/css vary: Accept-Encoding last-modified: Sat, 04 Feb 2023 01:27:24 GMT etag: W/"63ddb47c-2a4" content-encoding: br age: 1249 content-length: 261 ddg-cache-status: HIT,HIT X-Firefox-Spdy: h2`

	git.test.blog.blog.test.demo.bexbet.cc/cp/javascript/externals/require.js?1667462262	185.178.208.142	200 OK	6.7 kB
URL HTTP/2 git.test.blog.blog.test.demo.bexbet.cc/cp/javascript/externals/require.js?1667462262 IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type ASCII text, with very long lines (17560) Size 6.7 kB (6657 bytes) Hash bb8e45242af9f48161749dd0621f09df 17ddcea53494fc9c96ba766905bd193e48bde296 c91bb9cf8b9c2ae45e25a82cbfc6622db62693394f6ba589bad252042492a874 HTTP Headers `GET /cp/javascript/externals/require.js?1667462262 HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://git.test.blog.blog.test.demo.bexbet.cc/login_up.php Cookie: __ddg1_=CKkAG99GmzHCSmgDq8W5 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: ddos-guard content-security-policy: upgrade-insecure-requests; date: Tue, 07 Feb 2023 04:44:55 GMT content-type: application/javascript vary: Accept-Encoding last-modified: Thu, 03 Nov 2022 07:57:42 GMT etag: W/"63637476-4562" content-encoding: gzip age: 1260 content-length: 6657 ddg-cache-status: HIT,HIT X-Firefox-Spdy: h2`

	git.test.blog.blog.test.demo.bexbet.cc/modules/notifier/global.js?1674784288	185.178.208.142	200 OK	3.8 kB
URL HTTP/2 git.test.blog.blog.test.demo.bexbet.cc/modules/notifier/global.js?1674784288 IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type ASCII text, with very long lines (15013), with no line terminators Size 3.8 kB (3771 bytes) Hash e98252358dbdb105aec21be2cd8121c8 35748d10861a4fda9ef246df4f7ca683180bf570 70a4e11fbe01c42a2df000e9a3f05a266ff5e626d91672534e79da83d62a447b HTTP Headers `GET /modules/notifier/global.js?1674784288 HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://git.test.blog.blog.test.demo.bexbet.cc/login_up.php Cookie: __ddg1_=CKkAG99GmzHCSmgDq8W5 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: ddos-guard content-security-policy: upgrade-insecure-requests; date: Tue, 07 Feb 2023 04:44:56 GMT content-type: application/javascript vary: Accept-Encoding last-modified: Fri, 27 Jan 2023 01:51:28 GMT etag: W/"63d32e20-3aa5" content-encoding: gzip age: 1259 content-length: 3771 ddg-cache-status: HIT,HIT X-Firefox-Spdy: h2`

	git.test.blog.blog.test.demo.bexbet.cc/modules/letsencrypt/global.js?1675474044	185.178.208.142	200 OK	341 B
URL HTTP/2 git.test.blog.blog.test.demo.bexbet.cc/modules/letsencrypt/global.js?1675474044 IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type ASCII text Size 341 B (341 bytes) Hash bde9084e819095e106165c53f05d2cb2 c2aec3cac4c3ce9e3b451396d22622e8ea1368d9 ea431da27fd6a3d4a1e3a1bc5f0bb86cffa0ef829e83cd8f94b2ee73b324525f HTTP Headers `GET /modules/letsencrypt/global.js?1675474044 HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://git.test.blog.blog.test.demo.bexbet.cc/login_up.php Cookie: __ddg1_=CKkAG99GmzHCSmgDq8W5 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: ddos-guard content-security-policy: upgrade-insecure-requests; date: Tue, 07 Feb 2023 04:44:57 GMT content-type: application/javascript vary: Accept-Encoding last-modified: Sat, 04 Feb 2023 01:27:24 GMT etag: W/"63ddb47c-2d6" content-encoding: gzip age: 1258 content-length: 341 ddg-cache-status: HIT,HIT X-Firefox-Spdy: h2`

	git.test.blog.blog.test.demo.bexbet.cc/cp/javascript/externals/prototype.js?1667462262	185.178.208.142	200 OK	30 kB
URL HTTP/2 git.test.blog.blog.test.demo.bexbet.cc/cp/javascript/externals/prototype.js?1667462262 IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type ASCII text, with very long lines (60984) Size 30 kB (30382 bytes) Hash 77c3b24909c6f46610d5f0b9203e3974 c19c6d5e50b08681913da58a269ebb347dce3ffc c05b8c69334ec4b0e71184e3b0f4520f8fbc308f53d538ddf13b600219a2b6c9 HTTP Headers `GET /cp/javascript/externals/prototype.js?1667462262 HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://git.test.blog.blog.test.demo.bexbet.cc/login_up.php Cookie: __ddg1_=CKkAG99GmzHCSmgDq8W5 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: ddos-guard content-security-policy: upgrade-insecure-requests; date: Tue, 07 Feb 2023 04:44:48 GMT content-type: application/javascript vary: Accept-Encoding last-modified: Thu, 03 Nov 2022 07:57:42 GMT etag: W/"63637476-17ccf" content-encoding: gzip age: 1267 content-length: 30382 ddg-cache-status: HIT,HIT X-Firefox-Spdy: h2`

	git.test.blog.blog.test.demo.bexbet.cc/login.php	185.178.208.142	303 See Other	25 kB
URL HTTP/2 git.test.blog.blog.test.demo.bexbet.cc/login.php IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type ASCII text, with very long lines (65536), with no line terminators Size 25 kB (25100 bytes) Hash 9002bcc01585272e2724aebd99de65d6 8fea75db1c0122ccc073b5166a47d8e8254c474d 311bcee3f716adcc4b3b81f0bed714f2d1c663e389dd1957e2b5175b51e1e602 HTTP Headers `GET /login.php HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 303 See Other server: ddos-guard content-security-policy: upgrade-insecure-requests; set-cookie: __ddg1_=CKkAG99GmzHCSmgDq8W5; Domain=.bexbet.cc; HttpOnly; Path=/; Expires=Wed, 07-Feb-2024 05:05:54 GMT date: Tue, 07 Feb 2023 05:05:55 GMT content-type: text/html; charset=utf-8 expires: Fri, 28 May 1999 00:00:00 GMT last-modified: Tue, 07 Feb 2023 05:05:55 GMT cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 pragma: no-cache p3p: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block location: https://git.test.blog.blog.test.demo.bexbet.cc/login_up.php content-encoding: br vary: Accept-Encoding X-Firefox-Spdy: h2

	git.test.blog.blog.test.demo.bexbet.cc/ui-library/plesk-ui-library.min.js?1667361334	185.178.208.142	200 OK	142 kB
URL HTTP/2 git.test.blog.blog.test.demo.bexbet.cc/ui-library/plesk-ui-library.min.js?1667361334 IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type ASCII text, with very long lines (27646) Size 142 kB (142116 bytes) Hash c5a5da571546aeb25fc839b8fa7e84fc bdd8539b07076b577db4c7c2d1c670d28a93d5cd d7d1e963f37a8a6d9a2540f00f683d9147c1c5a8206c901a488e4885a6502c7f HTTP Headers `GET /ui-library/plesk-ui-library.min.js?1667361334 HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://git.test.blog.blog.test.demo.bexbet.cc/login_up.php Cookie: __ddg1_=CKkAG99GmzHCSmgDq8W5 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: ddos-guard content-security-policy: upgrade-insecure-requests; date: Tue, 07 Feb 2023 04:44:49 GMT content-type: application/javascript vary: Accept-Encoding last-modified: Wed, 02 Nov 2022 03:55:34 GMT etag: W/"6361ea36-76346" content-encoding: gzip age: 1266 content-length: 142116 ddg-cache-status: HIT,HIT X-Firefox-Spdy: h2`

	git.test.blog.blog.test.demo.bexbet.cc/cp/javascript/vendors.js?1667462262	185.178.208.142	200 OK	369 kB
URL HTTP/2 git.test.blog.blog.test.demo.bexbet.cc/cp/javascript/vendors.js?1667462262 IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators Size 369 kB (369051 bytes) Hash 8172fa84fb331c0df12acc74d4d0f436 c0d748cd20643e5871bf0b9c6cd535280c25124e 07d50d9a1825c9a25c8b5ca1a65d46971c30e202ba9a96ac9863c38282cba1cd HTTP Headers `GET /cp/javascript/vendors.js?1667462262 HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://git.test.blog.blog.test.demo.bexbet.cc/login_up.php Cookie: __ddg1_=CKkAG99GmzHCSmgDq8W5 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: ddos-guard content-security-policy: upgrade-insecure-requests; date: Tue, 07 Feb 2023 04:44:51 GMT content-type: application/javascript vary: Accept-Encoding last-modified: Thu, 03 Nov 2022 07:57:42 GMT etag: W/"63637476-14e38d" content-encoding: gzip age: 1264 content-length: 369051 ddg-cache-status: HIT,HIT X-Firefox-Spdy: h2`

	push.services.mozilla.com/	54.213.114.144	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.213.114.144:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: kaYUd+M1w8t0QvlpGkX9Sw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: bli/bmSsdq6jT99btsKDAVxrRAc=`

	git.test.blog.blog.test.demo.bexbet.cc/cp/theme/css/main.css?1675746301	185.178.208.142	200 OK	125 kB
URL HTTP/2 git.test.blog.blog.test.demo.bexbet.cc/cp/theme/css/main.css?1675746301 IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type ASCII text, with very long lines (65536), with no line terminators Size 125 kB (124891 bytes) Hash e530099adaaa4ef998b52a264a9fc548 68a4e3c72ead9e79edca8da6200df16a2ad5b748 cb466690aff3910d9ea81758e280beb02eb0a2b6faab2e8411cfec421e0f304a HTTP Headers `GET /cp/theme/css/main.css?1675746301 HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://git.test.blog.blog.test.demo.bexbet.cc/login_up.php Cookie: __ddg1_=CKkAG99GmzHCSmgDq8W5 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: ddos-guard content-security-policy: upgrade-insecure-requests; date: Tue, 07 Feb 2023 05:05:55 GMT content-type: text/css vary: Accept-Encoding last-modified: Tue, 07 Feb 2023 05:05:01 GMT etag: W/"63e1dbfd-4ec49" content-encoding: br age: 0 ddg-cache-status: MISS,MISS X-Firefox-Spdy: h2`

	git.test.blog.blog.test.demo.bexbet.cc/cp/theme/images/logos/plesk/logo.svg	185.178.208.142	200 OK	1.4 kB
URL HTTP/2 git.test.blog.blog.test.demo.bexbet.cc/cp/theme/images/logos/plesk/logo.svg IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2517) Size 1.4 kB (1380 bytes) Hash 3a5f3cf41e50e5cdb822a705411fba2e 9e9a7c9554fdc7150fd76aee513394f51f16f5bc 1564bd2d0743a0524949defb960505c222a5af2172bab46c8bd09bd4eb248fc7 HTTP Headers GET /cp/theme/images/logos/plesk/logo.svg HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://git.test.blog.blog.test.demo.bexbet.cc/login_up.php Cookie: __ddg1_=CKkAG99GmzHCSmgDq8W5 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: ddos-guard content-security-policy: upgrade-insecure-requests; date: Tue, 07 Feb 2023 04:45:09 GMT content-type: image/svg+xml last-modified: Thu, 03 Nov 2022 07:57:42 GMT etag: W/"63637476-aa8" accept-ranges: bytes content-encoding: br vary: Accept-Encoding age: 1247 content-length: 1380 ddg-cache-status: HIT,HIT X-Firefox-Spdy: h2`

	git.test.blog.blog.test.demo.bexbet.cc/ui-library/fonts/open-sans-regular.woff2?e7777b3c2bb7ae4d50f3abe9ee4f1eb5	185.178.208.142	200 OK	60 kB
URL HTTP/2 git.test.blog.blog.test.demo.bexbet.cc/ui-library/fonts/open-sans-regular.woff2?e7777b3c2bb7ae4d50f3abe9ee4f1eb5 IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type Web Open Font Format (Version 2), TrueType, length 59600, version 1.0\012- data Size 60 kB (59600 bytes) Hash e78dce533ecee30c5efd812bb23c248d 87d988c2f0343952ccded7c17b000e33db6f3d15 03e2544599e5a06566b2579f82ac6e445b724435fccb1f3e8988e58f45b1fc5e HTTP Headers GET /ui-library/fonts/open-sans-regular.woff2?e7777b3c2bb7ae4d50f3abe9ee4f1eb5 HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://git.test.blog.blog.test.demo.bexbet.cc/ui-library/plesk-ui-library.css?1667361334 Cookie: __ddg1_=CKkAG99GmzHCSmgDq8W5 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: ddos-guard content-security-policy: upgrade-insecure-requests; date: Tue, 07 Feb 2023 05:05:56 GMT content-type: font/woff2 content-length: 59600 last-modified: Wed, 02 Nov 2022 03:55:34 GMT etag: "6361ea36-e8d0" accept-ranges: bytes age: 0 ddg-cache-status: MISS,MISS X-Firefox-Spdy: h2`

	sentry.io/api/1327420/envelope/?sentry_key=50365a6fe24f4ff28f6b625410e04a35&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.14.2	35.188.42.15	200 OK	2 B
URL HTTP/1.1 sentry.io/api/1327420/envelope/?sentry_key=50365a6fe24f4ff28f6b625410e04a35&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.14.2 IP 35.188.42.15:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 2 B (2 bytes) Hash 99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a HTTP Headers POST /api/1327420/envelope/?sentry_key=50365a6fe24f4ff28f6b625410e04a35&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.14.2 HTTP/1.1 Host: sentry.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://git.test.blog.blog.test.demo.bexbet.cc/ Content-Type: text/plain;charset=UTF-8 Origin: https://git.test.blog.blog.test.demo.bexbet.cc Content-Length: 428 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Server: nginx Date: Tue, 07 Feb 2023 05:05:56 GMT Content-Type: application/json Content-Length: 2 Connection: keep-alive access-control-allow-origin: https://git.test.blog.blog.test.demo.bexbet.cc access-control-expose-headers: x-sentry-error, x-sentry-rate-limits, retry-after vary: Origin x-envoy-upstream-service-time: 0 Strict-Transport-Security: max-age=31536000; includeSubDomains; preload`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19" Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11897 Expires: Tue, 07 Feb 2023 08:24:13 GMT Date: Tue, 07 Feb 2023 05:05:56 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19" Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11897 Expires: Tue, 07 Feb 2023 08:24:13 GMT Date: Tue, 07 Feb 2023 05:05:56 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19" Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11897 Expires: Tue, 07 Feb 2023 08:24:13 GMT Date: Tue, 07 Feb 2023 05:05:56 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e47a0b9-4a27-4f39-8f25-f88789a2408f.jpeg	34.120.237.76	200 OK	3.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e47a0b9-4a27-4f39-8f25-f88789a2408f.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 3.7 kB (3712 bytes) Hash 0594f78c4fdfed5dd2e0666312555f40 db903b9a3f387c1510170f8d16dd4d289f7df83f 8874083a529064657b18be58147ae7df5fe79c822c4bd2a023fdf3df7186a62e HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e47a0b9-4a27-4f39-8f25-f88789a2408f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 3712 x-amzn-requestid: 44c7e7bd-1a95-49b6-9b0a-f8aff3725ded x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ftbOtH-lIAMF0xw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dba591-2fb19c33646c3d327681e9f9;Sampled=0 x-amzn-remapped-date: Thu, 02 Feb 2023 11:59:13 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: Z5r7rFH2nEro98p7U4_Lz8xIrX_bnU7ntAc46ytGzL8498buHzsCcg== via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google date: Mon, 06 Feb 2023 21:55:26 GMT age: 25830 etag: "db903b9a3f387c1510170f8d16dd4d289f7df83f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg	34.120.237.76	200 OK	4.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.2 kB (4227 bytes) Hash eedb4de12585c70ddb5b8f94fe6a59e2 83c9437e71a0a03b3e8ff652155a85eafa76cdda d4493a30f62e9ad224b3595ba3af8a322e2d4a3d9238a1847973f962bdcc0c82 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4227 x-amzn-requestid: b45f2ab7-0102-4542-9514-54fb93a0e27f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f77sTH4jIAMFnsQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e1731b-4a24bcb1102e58543cd81343;Sampled=0 x-amzn-remapped-date: Mon, 06 Feb 2023 21:37:31 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: ovhdLaEGaDSC8X0F9VamLw0KyBPWkxfYg5pssOT8NOZP4IBtNk6Gfw== via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google date: Mon, 06 Feb 2023 21:55:19 GMT etag: "83c9437e71a0a03b3e8ff652155a85eafa76cdda" content-type: image/jpeg age: 25837 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F198b8ebd-22a2-44e4-af1d-3429fb3e64bb.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F198b8ebd-22a2-44e4-af1d-3429fb3e64bb.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (12368 bytes) Hash 08d66d83f1ae9acd6e442c4dcaed2a20 8c258ac6de196f8c32f1af69e7a754da0610b090 a32b5df8fd6bea737e04679d05e9f0cc645cbe6d799329877e78f9e994a6eff6 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F198b8ebd-22a2-44e4-af1d-3429fb3e64bb.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12368 x-amzn-requestid: 988041b5-278d-4ea6-9ee9-77377bcab080 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fzPr-GoQoAMFkGA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63ddf97f-4a891b142f5d503703694380;Sampled=0 x-amzn-remapped-date: Sat, 04 Feb 2023 06:21:51 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: tFE9XdCE4VScFBlyxeWM-7mPl7tH7x5KrVsE4te7JUuerHnti03Vyg== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google date: Mon, 06 Feb 2023 22:47:51 GMT age: 22685 etag: "8c258ac6de196f8c32f1af69e7a754da0610b090" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32cb7a16-13bc-4d42-8e17-7be2a40cfc82.jpeg	34.120.237.76	200 OK	6.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32cb7a16-13bc-4d42-8e17-7be2a40cfc82.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.3 kB (6316 bytes) Hash c3cd20c6639e2b0d996fbbd7df2d4f47 2e54c22fb83981e2690161cd521e4fc3998e9c16 9b2b1f3e062fca74341d09540e44d2a02ec451b8349440ed5917073e8fab988d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32cb7a16-13bc-4d42-8e17-7be2a40cfc82.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6316 x-amzn-requestid: 879578cc-a58a-4516-a7cd-68850553762b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fpc79ECLIAMFclw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63da0eb2-57141dcf1c5595110f5f572e;Sampled=0 x-amzn-remapped-date: Wed, 01 Feb 2023 07:03:14 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: ARr-i9j3ruIxZ123Ae2bEk_c2s_5Zs7fhrn4UXphw_jOYrtvq9OMVg== via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google date: Mon, 06 Feb 2023 16:55:00 GMT age: 43856 etag: "2e54c22fb83981e2690161cd521e4fc3998e9c16" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8ec9ce3-b686-41f5-8011-400eea8266d1.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8ec9ce3-b686-41f5-8011-400eea8266d1.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10297 bytes) Hash bea82060b0cd156bf25493942ab62317 4182ba66cceb85c1e873ed5c72a86d53ab851b94 b77aaa7620aa77c7b73be04ad7c91af04f5e91393b3847928668bed644d68709 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8ec9ce3-b686-41f5-8011-400eea8266d1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10297 x-amzn-requestid: e1dcfab3-4321-4c83-8ad2-5b6a1b948178 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f77J0G-voAMFrfg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e1723e-33c2bc5c1f200cca7d7aa961;Sampled=0 x-amzn-remapped-date: Mon, 06 Feb 2023 21:33:50 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 6X7tm-1VoSJ0mm0sAsGfD4R-lnaCIUmy91BFZo72Idl1di8SabpEWw== via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google date: Mon, 06 Feb 2023 21:55:29 GMT age: 25827 etag: "4182ba66cceb85c1e873ed5c72a86d53ab851b94" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 13 kB (13390 bytes) Hash 75b0935816ca54d5d20a9fffa5531e0d bd8374980c16b7d5a28e55b8bef2215713b1ebb2 4ab6f49d22d029681754b617001f93467d63035acdaf12905c2314cab77991af HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 13390 x-amzn-requestid: e7653b49-3160-42e3-8292-8ae32604f775 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fpc8KEoPoAMFrUg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63da0eb4-68fd76a95ffa656318bedff6;Sampled=0 x-amzn-remapped-date: Wed, 01 Feb 2023 07:03:16 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: KaitXsesZ9mJducJ54ChzQGfb-2-hEN4W_QojGMKXYEji4xsjNdWCA== via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google date: Mon, 06 Feb 2023 09:06:57 GMT age: 71939 etag: "bd8374980c16b7d5a28e55b8bef2215713b1ebb2" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	git.test.blog.blog.test.demo.bexbet.cc/images/apple-touch-icon.png?1667466638	185.178.208.142	200 OK	4.5 kB
URL HTTP/2 git.test.blog.blog.test.demo.bexbet.cc/images/apple-touch-icon.png?1667466638 IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Size 4.5 kB (4528 bytes) Hash ebbd61fb584cc8ae62ffa726070c952f 7aefbffc866e859207b23f736faeac97f51414e6 b23ec702f16e22329aa8d8a74cede38c886e609acd467517a004439cbbb1da1c HTTP Headers GET /images/apple-touch-icon.png?1667466638 HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://git.test.blog.blog.test.demo.bexbet.cc/login_up.php Cookie: __ddg1_=CKkAG99GmzHCSmgDq8W5 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: ddos-guard content-security-policy: upgrade-insecure-requests; date: Tue, 07 Feb 2023 05:05:56 GMT content-type: image/png content-length: 4528 last-modified: Thu, 03 Nov 2022 09:10:38 GMT etag: "6363858e-11b0" accept-ranges: bytes age: 0 ddg-cache-status: MISS,MISS X-Firefox-Spdy: h2`

	git.test.blog.blog.test.demo.bexbet.cc/ui-library/fonts/open-sans-600.woff2?098c0a7547a49b0ce57658f41c897ecd	185.178.208.142	200 OK	62 kB
URL HTTP/2 git.test.blog.blog.test.demo.bexbet.cc/ui-library/fonts/open-sans-600.woff2?098c0a7547a49b0ce57658f41c897ecd IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type Web Open Font Format (Version 2), TrueType, length 61548, version 1.0\012- data Size 62 kB (61548 bytes) Hash e9681ca3d29d814a5621d4764dd1a11e bbda68459fc0531b915bdf9e524ecc8f782db0aa 51f0bacf9e49a400a5a2947ef6b14127ef3241b0760d97721e0aedd7add66456 HTTP Headers GET /ui-library/fonts/open-sans-600.woff2?098c0a7547a49b0ce57658f41c897ecd HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://git.test.blog.blog.test.demo.bexbet.cc/ui-library/plesk-ui-library.css?1667361334 Cookie: __ddg1_=CKkAG99GmzHCSmgDq8W5 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: ddos-guard content-security-policy: upgrade-insecure-requests; date: Tue, 07 Feb 2023 05:05:56 GMT content-type: font/woff2 content-length: 61548 last-modified: Wed, 02 Nov 2022 03:55:34 GMT etag: "6361ea36-f06c" accept-ranges: bytes age: 0 ddg-cache-status: MISS,MISS X-Firefox-Spdy: h2`

	ocsp.sca1b.amazontrust.com/	54.230.245.118	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.118:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 4204d605e3c290ca611107c29e26fab1 bc329bed8c1b937cec952737be21f34ab5eb165c be326af8aae48273df7262828f10535d47599052207888471733541f1f9bc837 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Tue, 07 Feb 2023 05:05:57 GMT Last-Modified: Tue, 07 Feb 2023 03:24:56 GMT Server: ECS (bsa/EB24) X-Cache: Miss from cloudfront Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: Nm_AwMq3RkvaM6DJWv4g4fuEjQkBzjIe8yCrJfNuBCw3r_Tq0xmy_A== Age: 6061`

	ocsp.sca1b.amazontrust.com/	54.230.245.118	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.118:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 4204d605e3c290ca611107c29e26fab1 bc329bed8c1b937cec952737be21f34ab5eb165c be326af8aae48273df7262828f10535d47599052207888471733541f1f9bc837 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Tue, 07 Feb 2023 05:05:57 GMT Last-Modified: Tue, 07 Feb 2023 03:49:28 GMT Server: ECS (bsa/EB16) X-Cache: Miss from cloudfront Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: -O1t8oNadzAl2eqYdVBxsJYa3z77RTXE2Ac5dZalDwfheFq7uLYOCw== Age: 4589`

	firehose.us-west-2.amazonaws.com/	35.89.72.48	200 OK	20 B
URL HTTP/1.1 firehose.us-west-2.amazonaws.com/ IP 35.89.72.48:0 ASN #16509 AMAZON-02 File type data Size 20 B (20 bytes) Hash 3970e82605c7d109bb348fc94e9eecc0 e03849ea786b9f7b28a35c17949e85a93eb1cff1 f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967 HTTP Headers OPTIONS / HTTP/1.1 Host: firehose.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: authorization,content-type,x-amz-content-sha256,x-amz-date,x-amz-target,x-amz-user-agent Referer: https://git.test.blog.blog.test.demo.bexbet.cc/ Origin: https://git.test.blog.blog.test.demo.bexbet.cc Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK x-amzn-RequestId: feca8266-0d44-fd66-a291-5c1379a05d37 Access-Control-Allow-Origin: * Content-Encoding: gzip Access-Control-Allow-Headers: authorization,content-type,x-amz-content-sha256,x-amz-date,x-amz-target,x-amz-user-agent Access-Control-Allow-Methods: POST Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date Access-Control-Max-Age: 172800 Content-Length: 20 Date: Tue, 07 Feb 2023 05:05:56 GMT`

	firehose.us-west-2.amazonaws.com/	35.89.72.48	200 OK	247 B
URL HTTP/1.1 firehose.us-west-2.amazonaws.com/ IP 35.89.72.48:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with no line terminators Size 247 B (247 bytes) Hash 01e1b840fcab9814a157744dc4cdefd6 c4b5d6a816c33c5dcd5080d1f83980e708d1d38f 6d22e61b06e8469f27f1b5cca332f16afab0abe9acc37ab7f4de72371c24ea10 HTTP Headers POST / HTTP/1.1 Host: firehose.us-west-2.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-Amz-User-Agent: aws-sdk-js/2.1231.0 callback Content-Type: application/x-amz-json-1.1 X-Amz-Target: Firehose_20150804.PutRecord X-Amz-Content-Sha256: c7f50797cfeadf478fd3e55df22d24835b4027cd55c2e0c642b247b05b895839 X-Amz-Date: 20230207T050645Z Authorization: AWS4-HMAC-SHA256 Credential=AKIAR4YEYRJLZOCG766Q/20230207/us-west-2/firehose/aws4_request, SignedHeaders=host;x-amz-content-sha256;x-amz-date;x-amz-target;x-amz-user-agent, Signature=2bd42c249701db54cf37236e8ed85183265960e1f130044057da7eb742258fe6 Content-Length: 294 Origin: https://git.test.blog.blog.test.demo.bexbet.cc Connection: keep-alive Referer: https://git.test.blog.blog.test.demo.bexbet.cc/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK x-amzn-RequestId: d38db1dc-fd79-bfa6-8fd6-6fa9899d1ff7 Access-Control-Allow-Origin: * Content-Encoding: gzip x-amz-id-2: E3jP2h75m6D82t5HtlOfUS6FsmDQZ5dlfG7Me+bCW09gqJCwGNDCS/m4oSCadcg1KPB+Ddmxjwgf/rOH5cnWvOIiALzx7nuc Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date Content-Type: application/x-amz-json-1.1 Content-Length: 247 Date: Tue, 07 Feb 2023 05:05:56 GMT`

	git.test.blog.blog.test.demo.bexbet.cc/login_up.php	185.178.208.142	200 OK	0 B
URL HTTP/2 git.test.blog.blog.test.demo.bexbet.cc/login_up.php IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type Size 0 B (0 bytes) Hash HTTP Headers GET /login_up.php HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: __ddg1_=CKkAG99GmzHCSmgDq8W5 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 TE: trailers HTTP/2 200 OK server: ddos-guard content-security-policy: upgrade-insecure-requests; date: Tue, 07 Feb 2023 05:05:55 GMT content-type: text/html; charset=utf-8 vary: Accept-Encoding expires: Fri, 28 May 1999 00:00:00 GMT last-modified: Tue, 07 Feb 2023 05:05:55 GMT cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 pragma: no-cache p3p: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block content-encoding: br X-Firefox-Spdy: h2

	git.test.blog.blog.test.demo.bexbet.cc/images/favicon.svg?1667466638	185.178.208.142	200 OK	0 B
URL HTTP/2 git.test.blog.blog.test.demo.bexbet.cc/images/favicon.svg?1667466638 IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type Size 0 B (0 bytes) Hash HTTP Headers `GET /images/favicon.svg?1667466638 HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://git.test.blog.blog.test.demo.bexbet.cc/login_up.php Cookie: __ddg1_=CKkAG99GmzHCSmgDq8W5 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: ddos-guard content-security-policy: upgrade-insecure-requests; date: Tue, 07 Feb 2023 05:05:56 GMT content-type: image/svg+xml last-modified: Thu, 03 Nov 2022 09:10:38 GMT etag: W/"6363858e-27a" accept-ranges: bytes content-encoding: br vary: Accept-Encoding age: 0 ddg-cache-status: MISS,MISS X-Firefox-Spdy: h2`

	git.test.blog.blog.test.demo.bexbet.cc/cp/javascript/main.js?1667462262	185.178.208.142	200 OK	0 B
URL HTTP/2 git.test.blog.blog.test.demo.bexbet.cc/cp/javascript/main.js?1667462262 IP 185.178.208.142:0 ASN #57724 Ddos-guard Ltd File type Size 0 B (0 bytes) Hash HTTP Headers `GET /cp/javascript/main.js?1667462262 HTTP/1.1 Host: git.test.blog.blog.test.demo.bexbet.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://git.test.blog.blog.test.demo.bexbet.cc/login_up.php Cookie: __ddg1_=CKkAG99GmzHCSmgDq8W5 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK server: ddos-guard content-security-policy: upgrade-insecure-requests; date: Tue, 07 Feb 2023 04:44:53 GMT content-type: application/javascript vary: Accept-Encoding last-modified: Thu, 03 Nov 2022 07:57:42 GMT etag: W/"63637476-911f2" content-encoding: gzip age: 1262 content-length: 122118 ddg-cache-status: HIT,HIT X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML