jjk.globalsecuritypc.site/c/715d82d3da7b12d1?click_uuid=328d45ea-5859-4eba-b843-e301c0a2c75c&bid=0.001260&s1=abs2-mcaf-pp-us&s3=nmwd&s4=macOS&s5=3fd5c41d-e180-58ab-933e-f76d4c8d85ec&s6=617806054&s7=558&s8=US&s9=Google%20Chrome&s10={s10}
52.19.101.114200 OK 3.2 kB URL HTTP/1.1 jjk.globalsecuritypc.site/c/715d82d3da7b12d1?click_uuid=328d45ea-5859-4eba-b843-e301c0a2c75c&bid=0.001260&s1=abs2-mcaf-pp-us&s3=nmwd&s4=macOS&s5=3fd5c41d-e180-58ab-933e-f76d4c8d85ec&s6=617806054&s7=558&s8=US&s9=Google%20Chrome&s10={s10}
IP 52.19.101.114:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (17661)
Hash 9ab4eff846db40169635735a3b48fc11
c537c59328c7ca1d1d903b0eb191b5b6c8015bf7
d5de87f5e0408e09a542698914a2a5bc3304fb710a2f51763426f700faf68bf2
GET /c/715d82d3da7b12d1?click_uuid=328d45ea-5859-4eba-b843-e301c0a2c75c&bid=0.001260&s1=abs2-mcaf-pp-us&s3=nmwd&s4=macOS&s5=3fd5c41d-e180-58ab-933e-f76d4c8d85ec&s6=617806054&s7=558&s8=US&s9=Google%20Chrome&s10={s10} HTTP/1.1
Host: jjk.globalsecuritypc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: unique_id=637ea59600051f34; Path=/; Expires=Sun, 22 Jan 2023 22:58:30 GMT
unique_id2=637ea5960005296b; Path=/; Expires=Tue, 21 Feb 2023 22:58:30 GMT
impression=; Path=/; Expires=Wed, 23 Nov 2022 22:58:30 GMT
637ea5960005296b_sl=[210094]; Path=/; Expires=Wed, 07 Dec 2022 22:58:30 GMT
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1456357aecbd23f21ad98da57e0127eb
7074815b39fa8da9013883971d665e4c1b0797ea
f3eba265ee64870b2f822f1511b36c747d763c382557789cdad8be1d3b52d1f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4516
Expires: Thu, 24 Nov 2022 00:13:46 GMT
Date: Wed, 23 Nov 2022 22:58:30 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 770d09773b5f304acf141fd66a4862b4
5ddc46ab75de26c858a9a6f6d1beaaec9bb181f5
c7bcc6928fa1c0bb225ce8a2f6badd6cb1bd6ea002fb808ed34e8dafbd7b3b26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3567
Cache-Control: max-age=131533
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:30 GMT
Etag: "637df674-1d7"
Expires: Fri, 25 Nov 2022 11:30:43 GMT
Last-Modified: Wed, 23 Nov 2022 10:31:16 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 23 Nov 2022 22:17:12 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2478
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a6c553d89cb6fd1de4787fee2a0e0dc
b974e022ea8675c0a09f58864cc99df05b5b1241
a62ecedcb0953814f982237818a3d902fdca501f82b675629d28b5d476e0fbfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A62ECEDCB0953814F982237818A3D902FDCA501F82B675629D28B5D476E0FBFA"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9211
Expires: Thu, 24 Nov 2022 01:32:01 GMT
Date: Wed, 23 Nov 2022 22:58:30 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 34TwvFMGkBeo6CO65qDMOI9rXaoNi9cAdClP90V1z9yhvk+az3svkn1e/4Wf7KphiZaLgnDtRqg=
x-amz-request-id: 80JRKJMJNETN9TS9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 23 Nov 2022 22:40:10 GMT
age: 1100
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 23 Nov 2022 22:58:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdn-adef.akamaized.net/landings/210094/1665074482/css/translate.css?1665074482
23.36.76.194200 OK 3.9 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/css/translate.css?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
Hash f7116ac9c34bce9ddb1cb0ca45e71a5e
4b923e60630ee4ac54f00b4bc916ddbdf5da9115
9e63cc29a086f1c981c3387494dc31e2f2cb9c2fa83df6f28f8b6f47000bcd60
GET /landings/210094/1665074482/css/translate.css?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: OQv8jxSZTGUJW5raXFpu73HiMX7DFPnBn/l4KNv46Q3PBs0UcgxCPzfCaf6Dolnv0MtIpD0e3gg=
x-amz-request-id: G19JBHQH5E2B72KG
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "c09d0e8abc947698e6d20bf75e1d8238"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 3855
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/js/js.cockie.min.js?1665074482
23.36.76.194200 OK 912 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/js/js.cockie.min.js?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
Hash 96533a0859f3dfc61d7471beec7b8642
7b4f1497692f2ea0d3d1eaa44db54b22345486b8
994b8097c16e97d8b28ab498f2f4290ebd8ca0353e23e7ddd2a6edd8b648bd46
GET /landings/210094/1665074482/js/js.cockie.min.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: BdEj4SJmKQEIFzoI7F/Tp+yQ4NWogaw2cGBG0WjmezIwnKmJ18R4GgYrJcSNH6XeyQHVaTPnrWw=
x-amz-request-id: A12Y6EMCGZJGSP6F
Last-Modified: Thu, 06 Oct 2022 16:41:26 GMT
ETag: "c9e9a54501fc6f6e8918b2c0f2a53981"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 912
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/js/main.js?1665074482
23.36.76.194200 OK 750 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/js/main.js?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1668)
Hash eed2658cf6c3c5a5c872bee7a416935c
12087545088a1898342e7066e689973c8cadb231
33d6747f19a889ba16007999396e73bb3b195f7a0d2040e6e0971e4be7db1d19
GET /landings/210094/1665074482/js/main.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: FpDFBkNFSlDxr02oSpf9H/iCHHxgADUjRVJpuTi2N5Y4RI0yTtp89TmEHh2hpmW7yzO1MeVrg0E=
x-amz-request-id: 01S87RZH8G4F888Y
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "faeed909095b5eed12a9132579eea70e"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 750
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/js/translate.js?1665074482
23.36.76.194200 OK 544 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/js/translate.js?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
Hash 015967e055e606d62302b33ca898240c
97a3a854502409b10635b092500bfc5b244642e4
5bc3f308bb3236dbb04b2ac5d01905f9081d24827d4cd26c33ec5f716acd8427
GET /landings/210094/1665074482/js/translate.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: HyXB5wrRKspDgb7HewytILh7MQtido3Ebgr2xij4VVuWLh2p3Zeh3wKw+hP7BIrpIjU3OA8UcJI=
x-amz-request-id: 8EQS4KJNWH4P9XCW
Last-Modified: Thu, 06 Oct 2022 16:41:26 GMT
ETag: "fcd546809170dd574eb37b989529f69a"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 544
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/js/interactive.js?1665074482
23.36.76.194200 OK 4.9 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/js/interactive.js?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (23751), with no line terminators
Hash 8618da9f60ac759c7c91f99749f1c6a5
7746a0f302eaa3badc9a517c07daeee3921bc770
e743983276c32fe6cc5e1a0ec45fe1da88375849aca1664365ce32fe9621fdd1
GET /landings/210094/1665074482/js/interactive.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: +K6L/LjLgkG9nrdZi4cTIEIBesfjVem9fxb5DY6hKDxszKHVzJuEkNYA3z/2J/+iIvcquB7XMUU=
x-amz-request-id: 01S0PJFG0GPZJKEG
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "bb8e11305fb8c3574c2ea1ae2a7da66b"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 4891
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/js/jquery.min.js?1665074482
23.36.76.194200 OK 30 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/js/jquery.min.js?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65451)
Hash a6b22944e852281bd6098509b0bea251
ae0671465ee9bc7354942a48a87d0e0397799bf4
042d48a6103607bdc54170ab6e118859980c1bdf47ca857cfed44af87593827a
GET /landings/210094/1665074482/js/jquery.min.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: LSv0ocHORMy3WsY/QpmDg5ZrOViHVaU7QXQEHZGeCSikST7WO1QzWDeu+8EcoAQU0hp+pc4M0xY=
x-amz-request-id: 2MB3HAY9B7MQJVM0
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "a09e13ee94d51c524b7e2a728c7d4039"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 30351
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/js/GTM-N4GRR3S.js?1665074482
23.36.76.194200 OK 407 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/js/GTM-N4GRR3S.js?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type exported SGML document, ASCII text, with CRLF line terminators
Hash fc9a8507ee55f09c46bfdce61a8a2cc2
9d83880e0819dc336f38bdef6c6a086a10e33f02
c8ba9fc3b2f8faabdd618fa2da77a135b9e1a0bd6e62e74cb91a500caae1ec5a
GET /landings/210094/1665074482/js/GTM-N4GRR3S.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: u5TNcWtXkTFmWhSeydM4TdnzUDuOpCu6VYwA4fYMoNMA+8SExSOu0zk6CGWnR/trZsNgGEFSYfw=
x-amz-request-id: F2468FQSR2Y82F33
Last-Modified: Thu, 06 Oct 2022 16:41:26 GMT
ETag: "fc9a8507ee55f09c46bfdce61a8a2cc2"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Content-Length: 407
Date: Wed, 23 Nov 2022 22:58:30 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/js/second_back_multi.js?1665074482
23.36.76.194200 OK 790 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/js/second_back_multi.js?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type HTML document, ASCII text
Hash 5c1190b869b7ce7e7e61bb06daeef517
034dd9bab87cbe052f2ce293ce35b1bec7fe1b53
b7f6f310dab1572e7d9ed3e46a5e1fa1c87228d70b3979cbe541cddba876195a
GET /landings/210094/1665074482/js/second_back_multi.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: a6msK8P3XfSS2VHGULt2nz7PGMB9Kf0ZnkaeT09JcC7kqjV7pTAQMPoY7kiSufI0DPo6sDumYPI=
x-amz-request-id: 10GH5ZXG4RZMAPTA
Last-Modified: Thu, 06 Oct 2022 16:41:26 GMT
ETag: "b2e5bcd8e92cf97cd2a0ea4f76194bfe"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 790
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/js/site-protect.js?1665074482
23.36.76.194200 OK 771 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/js/site-protect.js?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
Hash 374496cfad56243dce97281141912979
2684f16d4ce2676cb5d23e2f8bf5be3b6abba436
8bfb2943d98ad06afe4dcbbdc2dab6f451eda54e1ad6b5ceacc12eefe767c0d9
GET /landings/210094/1665074482/js/site-protect.js?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: DDpGErthCVuqRzTsTcwhfakYS9jTnnzYRD6mv6nTvgUG6IAngOoaKUC1LeHlA2ggjI2jirEBIUc=
x-amz-request-id: 3ZV00E4RZPFEG5YH
Last-Modified: Thu, 06 Oct 2022 16:41:26 GMT
ETag: "c47f7c71171eca259d1bf8b6bd018587"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 771
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/css/style.css?1665074482
23.36.76.194200 OK 2.0 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/css/style.css?1665074482
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type ASCII text, with CRLF line terminators
Hash cbebfbfa9821de84707e1af1e6a76d4b
564362b542854a20f890353ee49b35992ee75e61
4339353bf696a2d4e8df354289884d144b5bd938ff34f7644dc7033f2292fb08
GET /landings/210094/1665074482/css/style.css?1665074482 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: KaSHS9WcM4FwNWo/xH9aq91ayTAILkJshSVuZr5qlK3weLdiGLVzYQXiolTKboD1Bpob6it3d48=
x-amz-request-id: NG3S7V3KW3M78Z7K
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "ffa5421a0b7b7e9bdd28c477095cbd2d"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 23 Nov 2022 22:58:30 GMT
Content-Length: 1959
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 23 Nov 2022 22:08:53 GMT
cache-control: public,max-age=3600
age: 2977
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fb4ee3082622f9f3340432290d63437e
852ca64934462e133e34043fca561aca215e6255
d4c2f665873baede94309128e276df6fdf7f0e1ec15699e75cd6bae2c24d556a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-N4GRR3S
142.250.74.168200 OK 48 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-N4GRR3S
IP 142.250.74.168:0
File type ASCII text, with very long lines (2472)
Hash 6b644677d97392e52f3c5c37fa43e939
60d667518605c14f1b90c9d15abade9614bb7d14
51b4ec9dae2367580d3bdb25d63579262994060ffc58f695b3f8127a5935ca02
GET /gtm.js?id=GTM-N4GRR3S HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 22:58:31 GMT
expires: Wed, 23 Nov 2022 22:58:31 GMT
cache-control: private, max-age=900
last-modified: Wed, 23 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 48377
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fb4ee3082622f9f3340432290d63437e
852ca64934462e133e34043fca561aca215e6255
d4c2f665873baede94309128e276df6fdf7f0e1ec15699e75cd6bae2c24d556a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.43.253.52101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.253.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0IK6ktPmE391SczHUUjkmg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: f0O62JqzeAIY+16qR2ZYYyNn67k=
cdn.stfilecamp.com/stormtrk.js?1665074482
205.185.216.42200 OK 6.5 kB URL HTTP/2 cdn.stfilecamp.com/stormtrk.js?1665074482
IP 205.185.216.42:0
Hash 469e121bb4c4fe159bbca2b4f5a88267
f0c66f226de28b324e4f1ecb766597938f984c60
4706b6d6c3e39cf2915a772595f2cc124e96d0919538b56aa817113e6482c416
Analyzer Verdict Alert fortinet Phishing
GET /stormtrk.js?1665074482 HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 22:58:31 GMT
cache-control: max-age=3600
content-length: 6502
content-type: text/javascript
last-modified: Tue, 07 Sep 2021 08:59:42 GMT
accept-ranges: bytes
x-rgw-object-type: Normal
etag: "469e121bb4c4fe159bbca2b4f5a88267"
x-amz-request-id: tx00000000000006a72de29-00637ea597-213dd0f0-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
x-hw: 1669244310.dop003.sk1.t,1669244310.cds258.sk1.hn,1669244311.cds201.sk1.pr
X-Firefox-Spdy: h2
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_gray2.png
23.36.76.194200 OK 349 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_gray2.png
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type PNG image data, 13 x 13, 8-bit/color RGB, non-interlaced\012- data
Hash 7454c652e0733d92de6c920c2d646ae0
34a5bd8c7401f95e346895b0e5ccffbf0e9ad638
44f752b0bd2e48052d538bc6aca5379f3630ca64da945f794690ddf47e8eaef7
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/ico_gray2.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: sjWU78x9fW90wYWwBU5KmzwvObjWlFg1zoZyyyOJAz0EUtPFCdQyKDJHGv+kX687noJuH0HKh4A=
x-amz-request-id: HG28HS22WY8X0QPZ
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "7454c652e0733d92de6c920c2d646ae0"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 349
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/corner.gif
23.36.76.194200 OK 102 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/corner.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 24 x 9\012- data
Hash ef14d57c065fdbd3c66d017a729ca91f
2e7b72d674361a9c2b41767ccfbed2486e6695dd
6fcbfcda8a36536a0f9b0bc8c4a6ca451d9bafd4a879d56697e48e209691ba36
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/corner.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: FPGxrOAcS/379Axn4kbNrnfT5boZQ74Gc+W/4nBPl+Qe80cHTMUq2636ObUEd6f9XwIwerOtJVg=
x-amz-request-id: HG2CQ0APRQ9HN8E9
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "ef14d57c065fdbd3c66d017a729ca91f"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 102
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl1.gif
23.36.76.194200 OK 511 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl1.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 80 x 65\012- data
Hash af3aca2036675c5979fb535c5d190f15
70c4f17ef1a2afe0477c84c5d209fbe31760b657
aa88fa9731a6021cd8c0f80ef76476fd055a9cf0bff3ad9fbefbedbd255e26fa
GET /landings/210094/1665074482/images/ico_bl1.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: pO+fWpJBCoBT2H+r3STt3YyUh3VWl0xyCKfhwa6PQp/5wIWx2bt5fBeY5BL8tzgmeYx/VT9H0f0=
x-amz-request-id: V276BSYMECDVDG2C
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "af3aca2036675c5979fb535c5d190f15"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 511
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl2.gif
23.36.76.194200 OK 1.5 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl2.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 65 x 80\012- data
Hash af52e51f42fd0c55bc3cf2c8ece71492
016f83da68ff461a5c6aebcc2a45668317b2f24c
e91f304cf7409723968740e6363dda01b50acb8e94b5ca05b4a4617666ff095c
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/ico_bl2.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: X172F/rDy9NtAVi86n9t0UYE+EfyOLSorrnK0/LkSuzXTupVAM3C7NindDZ6BkJxF3CY2fcFdYQ=
x-amz-request-id: HG2D4P0F6F4PVB17
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "af52e51f42fd0c55bc3cf2c8ece71492"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 1547
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray2.gif
23.36.76.194200 OK 377 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray2.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 16 x 16\012- data
Hash c10bdec858cb0cf9e6cc5865d5925746
697c095ed5509e5a5af0c5ebf2380662aeffc531
b65b47a79e32335d9ca35ff59c6975d2b5808f84da0db88d11ce777b33e72ad9
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/ico_tray2.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 0rT+kj/6W4izASCBW1TFt+y+m0Qv6+ef6jup+38SbYAhZoGIUzklyauQnlx1p6T1yHqqSSnoXI8=
x-amz-request-id: 5EACCVBJ1JC6D0C4
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "c10bdec858cb0cf9e6cc5865d5925746"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 377
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray1.gif
23.36.76.194200 OK 69 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray1.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 16 x 16\012- data
Hash 3ae573d079dcd1d2da4086f2c0c72c45
e7c9dabec81379373476ed23168dcecb9b8c56aa
9cce08ab28e94790cf78c87e37f8690acbc6c535e4b43ae7b38506b94538e107
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/ico_tray1.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Y69rZi0GPmBkoLqkcKGLxETlf/XFx3FPgj4LXhsAxVry/xXjtGDrnhfh+32OCDIKxoZF+iGUnOs=
x-amz-request-id: R9ECTGZFG56M373P
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "3ae573d079dcd1d2da4086f2c0c72c45"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 69
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl3.gif
23.36.76.194200 OK 949 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl3.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 78 x 68\012- data
Hash da9d153375da51a616a7663f1504e3a5
bd81fe60fe017bfe79be8c1afed88b659ff166d9
9bb88049c3d3f3c172d97246fa148bb725e727847c37e28c3be156be240a0c04
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/ico_bl3.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: F7q6i/K7RtVbTjVJ6YGiDvpl1asCD+Lnn1r8HSyf7e9yxpmeok6IacYPGiOvdx9z4wov21Rv7Tk=
x-amz-request-id: HG24X7MB24AYC02G
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "da9d153375da51a616a7663f1504e3a5"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 949
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl4.png
23.36.76.194200 OK 662 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_bl4.png
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type PNG image data, 78 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash 7a11ddabe8ccece588c8aef50f5d12dc
e36cd99c427e79f156e99bd8078c14be23aec42a
15d874692f178f9bf819b8c13274b71ca400b0f37bfda1433834a959d0413dfa
GET /landings/210094/1665074482/images/ico_bl4.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: cxe+y8lUHIkDTPvem7LKMtPlqagnFi2EInsOypU7K0wTgSe3TwJmowe9B24wqW906aWT6Thj0GQ=
x-amz-request-id: 3VJX0VSWF4HZ398J
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "7a11ddabe8ccece588c8aef50f5d12dc"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 662
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray3.gif
23.36.76.194200 OK 234 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_tray3.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 16 x 16\012- data
Hash 9ce99ec458daf212f9812a90f3fadd13
9e3041bc91b79a17b52e0fbb6c2d0e2f905d98a1
b0d335401c9fd5fac9991ec92edaf7865ff3a491ebe390120936c69796c3b753
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/ico_tray3.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: NIf3CWpiOl4IpxbUjGOpmlw/OrOeFWlzrWax/OrYZEzglRoLLvIpUrbX4udKxvMnXlBbeETPEw0=
x-amz-request-id: JZQCJ0W2ASTQ0V9D
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "9ce99ec458daf212f9812a90f3fadd13"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 234
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/logo-white.png
23.36.76.194200 OK 2.0 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/logo-white.png
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type PNG image data, 415 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash 3c9430ab1ed0536d46dd917813f11c4d
cc4057a93be6f92d7068a8b6d3bcd56f90f4e182
c9170db9afee7b62db6dccbc35fe3111ec22caa8bc378b9804713035692cb986
GET /landings/210094/1665074482/images/logo-white.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 51ohBK1y861xlT2f2v9l+zDsnf6w+IxYn/l8AGqf1pVWINC9eh/mpbZTG9tAMlJtG1gXYpQBapI=
x-amz-request-id: NSXD4N25S2CCWDA9
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "3c9430ab1ed0536d46dd917813f11c4d"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 2013
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/logo.png
23.36.76.194200 OK 5.0 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/logo.png
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type PNG image data, 157 x 43, 8-bit/color RGBA, non-interlaced\012- data
Hash 0f00a5ca8441973c8bdb7adad8d10742
575564b9a087ddfb14f5b2544c33e85565089d59
f3c9f517b92df590f6baf628ed1e0bf794872d1c85ecfd163a3a242412e92a5c
GET /landings/210094/1665074482/images/logo.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Ez5SgwpnxiKWoHDW/6fX/EywC1cz3I5tZAN3JpQqllrt77rwVRV2cbRki8JMK5aa1W9NbFeefrI=
x-amz-request-id: HG214Q4PC7W4FEVC
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "0f00a5ca8441973c8bdb7adad8d10742"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4994
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/nrt_logo.png
23.36.76.194200 OK 1.7 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/nrt_logo.png
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type PNG image data, 65 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash 552a64cb68788eda1e39803a214e6089
bfdff83a307360453e686bc006e33baa3b7ac6e5
76efdff7f7d19e2b7c161d769c023890a9304a98ac76c26a30d3b8a7dceeaed5
GET /landings/210094/1665074482/images/nrt_logo.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: iGZoXibmJy9D6j8ERctD+z7dULYpV66rmrAM9UYz3eQE8y/n3kaoM8pFTurUbCOgaoEtlBf8ECU=
x-amz-request-id: 5SZNFM8DHX7R6C9M
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "552a64cb68788eda1e39803a214e6089"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1658
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/cross.gif
23.36.76.194200 OK 211 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/cross.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 29 x 29\012- data
Hash 45b0c8a1e52d91e8cf84eaf75ebca9a9
0e358b8571f9062dedfacd0c31d54179270153cd
4e635bdab7a300d0ccb5aac26b4610a07ee1b33643578c1a4308e677d7eb595d
GET /landings/210094/1665074482/images/cross.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: SxnV7UUeW2FgMLi881LC3GOr+UJKUhqeVRm+UlN4J/KN3ZrIkP3WkvZUcnfvQa2ROqoy54dtTjA=
x-amz-request-id: 5EA6K98F779ZY8HG
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "45b0c8a1e52d91e8cf84eaf75ebca9a9"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 211
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/win_min.png
23.36.76.194200 OK 128 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/win_min.png
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash 0bb86caf792dd7d24731c18cd37bb68e
dda1e433a0eaf785b2aa2c6214d5e48cb82a3a25
2ac27821ba64d645f36e2ad197492d30c11b10a032cc474554679555f4604622
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/win_min.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: tmYHHj2LB2OD94ehf5dsHx3YSdIpIbMhjGXBtIJZ82FEUIASO5BDEHml0hET/5PbKM35X4sCc5I=
x-amz-request-id: 44XDCWQK1QTPADR0
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "0bb86caf792dd7d24731c18cd37bb68e"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 128
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/mcafee-total-protection.jpg
23.36.76.194200 OK 244 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/mcafee-total-protection.jpg
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2806x1200, components 3\012- data
Size 244 kB (243629 bytes)
Hash dd4acb73b402577e9296a3d02f01ae23
390fc162fcacda7f0b3d918c3f144021767e237f
ae61661052377eb572cbeeca552616f086fc47f15df4ba36092a20ba8146df69
GET /landings/210094/1665074482/images/mcafee-total-protection.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: gAbU9TCFZQwncqgUbfjK/wsFklR0GsM9JpDwqB9uE+jKSXd9TjtlxTWJBkj0lWYdEn6e59SqbXA=
x-amz-request-id: HG27E1KSHB3AG2TY
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "dd4acb73b402577e9296a3d02f01ae23"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 243629
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/win_cls.png
23.36.76.194200 OK 293 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/win_cls.png
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash 9eb68d2ce05c151bda542a7a6356e22c
baeeefe4a7ac657c10a5f081841015de1bcf90dd
2d2b7040bc32b397c3c60d800de9aa7d86404f1874862eba61bdaa21f1523eb7
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/win_cls.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: kXr7BQBnHoQPPKb4B6j6NxsKnaBIDfNR6h+6BFvkdQk/MYxaptq2y2+olDhSQnKLZABdKb4tCH8=
x-amz-request-id: HG269CWFBZDRKH55
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "9eb68d2ce05c151bda542a7a6356e22c"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 293
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/pc_green.gif
23.36.76.194200 OK 723 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/pc_green.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 120 x 97\012- data
Hash ea44081971aed96fbfa38fa187b6df4a
a3ec8cd4c76f517584faef83f96e32683265bdb1
e0f52d9433540bafa2f05fc3c04839b4990c2ce5ef718975a8d4eef9866f06be
GET /landings/210094/1665074482/images/pc_green.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: yX/OGClO8RX6GHOnsS0EH+TNqk2XTGIlBp1GX/7K5LjPgFhXPgppykRcFIHn3+aKJL6aQPn4ko4=
x-amz-request-id: 5EA646EPVDSF74QP
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "ea44081971aed96fbfa38fa187b6df4a"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 723
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_gray1.png
23.36.76.194200 OK 364 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ico_gray1.png
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash e144c3378090087c8ce129a30cb6cb4e
59da5466551de941d0215e45c54aa2ceaf436be1
b13a03e0db893734298cbe203bf264407636ffe5dab0a141f83c492d0034dd6a
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET /landings/210094/1665074482/images/ico_gray1.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: kdIINfQcDqdpUVsE3WFIOhv7Prh6SoMP4MKZHnKRPI81DM+Wm1optoGWewi+j+H/SYUcNmDt2gY=
x-amz-request-id: EVGRFGWXB2P9Z28W
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "e144c3378090087c8ce129a30cb6cb4e"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 364
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/210094/1665074482/images/ring.gif
23.36.76.194200 OK 315 B URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/ring.gif
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 30 x 29\012- data
Hash c3b64d6515c79193f47b3f6780840578
0edb138e48313bbea641208092d9072cee89652e
275e633fe30013ed09ab33d46f668be82c19c93ed3c66485a5bef53d74eeaa89
GET /landings/210094/1665074482/images/ring.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: +i9iykDz2gTmfikl62UNQX1mjWgb7wn6p+T4KrGuHWxpgSU+tL4Qxr+O8KhmLiZjUbLtbENZDWE=
x-amz-request-id: 5HKTQB3HFT3ZAMZ6
Last-Modified: Thu, 06 Oct 2022 16:41:25 GMT
ETag: "c3b64d6515c79193f47b3f6780840578"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 315
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 2522b79b33ac6a817b0b23b4318a765c
cd8263aa08c67837a875c8735b5903409fa85d17
12ae9e93713f85ffc55f09f608aaa543a7b440627eb79ba7945743e7e3d9ef97
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:31 GMT
Etag: "637cb9e4-118"
Server: ECS (amb/6BBC)
Content-Length: 278
cdn-adef.akamaized.net/landings/210094/1665074482/images/favicon.ico?t=20221123225830
23.36.76.194200 OK 1.2 kB URL HTTP/1.1 cdn-adef.akamaized.net/landings/210094/1665074482/images/favicon.ico?t=20221123225830
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash ff7441c3264d89023f376e5319dad793
1f0be835d947eb2de35d945ea5b9b92578a8cbd7
93130759a18703dcad5862bc2fd2973edf9ab7e48ba2c0b4cd4fcfaf832df223
GET /landings/210094/1665074482/images/favicon.ico?t=20221123225830 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: EcRJY/I6i2ov0oASvnYp6gT6YnB8Osrimg9bkiCBdHT8xF9c4eVVwrov94BVCv4Y0dkj+irnMKQ=
x-amz-request-id: HF2F7NX30QQ29VXZ
Last-Modified: Thu, 06 Oct 2022 16:41:24 GMT
ETag: "ff7441c3264d89023f376e5319dad793"
Accept-Ranges: bytes
Content-Type: image/x-icon
Server: AmazonS3
Content-Length: 1150
Date: Wed, 23 Nov 2022 22:58:31 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 23 Nov 2022 22:41:08 GMT
expires: Thu, 24 Nov 2022 00:41:08 GMT
cache-control: public, max-age=7200
age: 1043
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j98&a=1047062857&t=pageview&_s=1&dl=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&ul=en-us&de=UTF-8&dt=McAfee%20Security&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=1454788080&gjid=1157052097&cid=1715923993.1669244312&tid=UA-178924098-3&_gid=1524073499.1669244312&_r=1>m=2wgb90N4GRR3S&z=75511123
142.250.74.174200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1047062857&t=pageview&_s=1&dl=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&ul=en-us&de=UTF-8&dt=McAfee%20Security&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=1454788080&gjid=1157052097&cid=1715923993.1669244312&tid=UA-178924098-3&_gid=1524073499.1669244312&_r=1>m=2wgb90N4GRR3S&z=75511123
IP 142.250.74.174:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j98&a=1047062857&t=pageview&_s=1&dl=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&ul=en-us&de=UTF-8&dt=McAfee%20Security&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=1454788080&gjid=1157052097&cid=1715923993.1669244312&tid=UA-178924098-3&_gid=1524073499.1669244312&_r=1>m=2wgb90N4GRR3S&z=75511123 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: http://jjk.globalsecuritypc.site
date: Wed, 23 Nov 2022 22:58:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 2edca3d5a439ca57e6ff736e6dccb24f
49839c925f406c0bd908d00aea276d9f66620f8a
dcb4aef86e4b5a7f0f3d898696696aafbbadb82bbce92eb9b146c2258ebc78eb
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 22:58:31 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 27 Nov 2022 19:46:00 GMT
ETag: "49839c925f406c0bd908d00aea276d9f66620f8a"
Last-Modified: Wed, 23 Nov 2022 19:46:01 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 403
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ed8294dd881bfa-OSL
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 8069f5e67c25fc0b7388ba5d4decd8c9
64a85ba44c80ea206f4382f573c3d61e4f607ccf
7587cd04333ddf1cff15ae219cb8fca0618786a9fe4cee989975f4d50889e72a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 065495ec7a963a205abd9c8dbc75cb5d
ea416d0df4f6706150bda5da2077174f5cdd986b
1b2a2afee887651b23a849f14ace89b330329f6bf61c331545a3f6d12037aee5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
translate.googleapis.com/translate_static/css/translateelement.css
142.250.74.42200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 142.250.74.42:0
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 22:52:05 GMT
expires: Wed, 23 Nov 2022 23:52:05 GMT
cache-control: public, max-age=3600
age: 386
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
87.250.251.119200 OK 73 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 87.250.251.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (587)
Hash 1d79426653c3b55939eaec59a2ce8ef5
c6db0314df7a4e5c08047f6306e0b79a1ad3bab2
2729cfe8b2f5142cf99734cbb4e1a3c6cd35868d279cd796db49ef62742ef993
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73267
date: Wed, 23 Nov 2022 22:58:31 GMT
access-control-allow-origin: *
etag: "637b3777-11e33"
expires: Wed, 23 Nov 2022 23:58:31 GMT
last-modified: Mon, 21 Nov 2022 11:31:51 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
142.250.74.46200 OK 27 kB URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 142.250.74.46:0
Hash a22075f4d14641e32332950aa815b531
d6b1dee3da9ab746c8476732204e0fb2d3b289bc
f0ac6961603b4fedba83e89249c2000a71caed2022871c1a668780158b78ab78
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 23 Nov 2022 22:58:31 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+539; expires=Fri, 22-Nov-2024 22:58:31 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stormtrk.com/api/1.0/ping/pong?location=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D
172.67.69.203200 OK 412 B URL HTTP/2 stormtrk.com/api/1.0/ping/pong?location=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D
IP 172.67.69.203:0
File type JSON data\012- , ASCII text, with very long lines (456)
Hash edc4cc3c8155cc06d7d07a5950a19bdc
861a48ce47ef8b0a8a05bfa634e9e46c3e6abd76
bc181f597cc859799d394a39e278edc728e4beabcf6bbc0f536f89defd38f66d
GET /api/1.0/ping/pong?location=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D HTTP/1.1
Host: stormtrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 22:58:32 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8RNKLttDcLQoTswdnmDdIyGtJ%2FRCiKlzX6%2BC48tF9ChKl%2Bjkwzjsz2asCbQ1RKpfcWNVVHTSdf4wL7YdXX8yGsVBvst%2F5xbEjryQzEHZRmjOAvCsGL%2BLZf5raf6ZQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ed82941f0d0b55-OSL
content-encoding: br
X-Firefox-Spdy: h2
mc.yandex.ru/watch/84852946?wmode=7&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1364%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A509356164740%3Ahid%3A440766624%3Az%3A0%3Ai%3A20221123225831%3Aet%3A1669244312%3Ac%3A1%3Arn%3A350582251%3Arqn%3A1%3Au%3A1669244312171001557%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A60%2C35%2C52%2C2%2C-4%2C0%2C%2C1186%2C3%2C%2C%2C%2C1352%3Ans%3A1669244310044%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669244312%3At%3AMcAfee%20Security&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
87.250.251.119302 Found 407 B URL HTTP/2 mc.yandex.ru/watch/84852946?wmode=7&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1364%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A509356164740%3Ahid%3A440766624%3Az%3A0%3Ai%3A20221123225831%3Aet%3A1669244312%3Ac%3A1%3Arn%3A350582251%3Arqn%3A1%3Au%3A1669244312171001557%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A60%2C35%2C52%2C2%2C-4%2C0%2C%2C1186%2C3%2C%2C%2C%2C1352%3Ans%3A1669244310044%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669244312%3At%3AMcAfee%20Security&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
IP 87.250.251.119:0
File type JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Hash 066aefbe982bccce4269aae211343e4f
8206e3257146498c7848a917918ce00f99ec5cee
b0e8b82c6e47ef359f702d517a772c467efdda30de819ba44dde44c2fa28522d
GET /watch/84852946?wmode=7&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1364%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A509356164740%3Ahid%3A440766624%3Az%3A0%3Ai%3A20221123225831%3Aet%3A1669244312%3Ac%3A1%3Arn%3A350582251%3Arqn%3A1%3Au%3A1669244312171001557%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A60%2C35%2C52%2C2%2C-4%2C0%2C%2C1186%2C3%2C%2C%2C%2C1352%3Ans%3A1669244310044%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669244312%3At%3AMcAfee%20Security&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/84852946/1?wmode=7&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1364%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A509356164740%3Ahid%3A440766624%3Az%3A0%3Ai%3A20221123225831%3Aet%3A1669244312%3Ac%3A1%3Arn%3A350582251%3Arqn%3A1%3Au%3A1669244312171001557%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A60%2C35%2C52%2C2%2C-4%2C0%2C%2C1186%2C3%2C%2C%2C%2C1352%3Ans%3A1669244310044%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669244312%3At%3AMcAfee%20Security&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Wed, 23 Nov 2022 22:58:32 GMT
access-control-allow-origin: http://jjk.globalsecuritypc.site
set-cookie: yandexuid=2437279811669244312; Expires=Thu, 23-Nov-2023 22:58:32 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=2437279811669244312; Expires=Thu, 23-Nov-2023 22:58:32 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1928345121669244312; Path=/; SameSite=None; Secure
i=8Vve1b3DwoAxjQ+/wNuw/MP1Q1eHShF+Wntu79eJ7xnKjsS0JjCMJVr6Q1Ep+O+UybkFPims4mnJppR1yl6IzgImt4Q=; Expires=Sat, 20-Nov-2032 22:58:12 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1700780312.yc.1669244312#1700780312.yrts.1669244312#1700780312.yrtsi.1669244312; Expires=Thu, 23-Nov-2023 22:58:32 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 23-Nov-2022 22:58:32 GMT
last-modified: Wed, 23-Nov-2022 22:58:32 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/images/branding/product/1x/translate_24dp.png
142.250.74.163200 OK 846 B URL HTTP/2 www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP 142.250.74.163:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 21:04:42 GMT
expires: Thu, 23 Nov 2023 21:04:42 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 6830
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/images/branding/product/2x/translate_24dp.png
142.250.74.163200 OK 1.8 kB URL HTTP/2 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP 142.250.74.163:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 22:31:54 GMT
expires: Thu, 23 Nov 2023 22:31:54 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 1598
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.stfilecamp.com/fp.min.js
205.185.216.42200 OK 32 kB URL HTTP/2 cdn.stfilecamp.com/fp.min.js
IP 205.185.216.42:0
File type Unicode text, UTF-8 text, with very long lines (31370)
Hash 198f2f5b0a649f41fe890c59d37319aa
f24629687612889bb59f610df3879afcd766fb80
d2bc2cb800679f495a7731c105b2e2047965800515f98008867ab33edc940912
Analyzer Verdict Alert fortinet Phishing
GET /fp.min.js HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 22:58:32 GMT
cache-control: max-age=474
content-length: 31705
content-type: text/javascript
last-modified: Mon, 13 Jun 2022 11:23:14 GMT
accept-ranges: bytes
x-rgw-object-type: Normal
etag: "198f2f5b0a649f41fe890c59d37319aa"
x-amz-request-id: tx00000000000006a6752ed-00637e9962-213dd56e-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
x-hw: 1669244312.dop003.sk1.t,1669244312.cds258.sk1.hn,1669244312.cds237.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 22:58:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8529
Expires: Thu, 24 Nov 2022 01:20:41 GMT
Date: Wed, 23 Nov 2022 22:58:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8529
Expires: Thu, 24 Nov 2022 01:20:41 GMT
Date: Wed, 23 Nov 2022 22:58:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8529
Expires: Thu, 24 Nov 2022 01:20:41 GMT
Date: Wed, 23 Nov 2022 22:58:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F697d6334-d8f8-4a7f-9401-63ad6bab8f38.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F697d6334-d8f8-4a7f-9401-63ad6bab8f38.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a939ef79a2ad8614e7d3362de0cfbd8
51e1751527dff72955ba62b2d9a2b92199dca31a
564e58dc2e0b2ea0fd67faa30cbf622c9271c1d1f26ae14eacb24c20b1473786
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F697d6334-d8f8-4a7f-9401-63ad6bab8f38.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3805
x-amzn-requestid: 629cde59-1260-40ff-923e-a1d91c6b7a5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvynGq5IAMFgoA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9343-162460086ad3b77c4bccd4f2;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: P2ppp0JJ91WlYtnebk5DmqJ7oSc1ZVMlIHWBu657Xsr-AxKjusqN1g==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:50:57 GMT
age: 4055
etag: "51e1751527dff72955ba62b2d9a2b92199dca31a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08efdc1b-e7ef-4a2f-b199-9a633b00cef5.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08efdc1b-e7ef-4a2f-b199-9a633b00cef5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 28381329eca6c426a8b05fcdef4aafcc
a1fbb6da386cf2eef8b76a65438cf9c6bd741f7a
4fc8414d39bbaacb1e6575924bd0bbb9373d78b177022f7d3c6457829abffd06
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08efdc1b-e7ef-4a2f-b199-9a633b00cef5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8748
x-amzn-requestid: 864da50a-44bb-4d20-b499-08c2a140871e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtENmoAMFqKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-2705cc956f2c2aa5535533b0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xT0IorkRpXysoYMnugcrV40YaAxoRPjLmkPcv1ElteP_-rNZ1c6fog==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:48:57 GMT
age: 4175
etag: "a1fbb6da386cf2eef8b76a65438cf9c6bd741f7a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06c6e720bc9900b38e88cd72f739603e
22884cbc78622d6f78c1c3397c9b440946144a99
8675d08e6d8ae5bdedbc7c7ce647f8c6e72cc457917b4ed1856c50b11c2fe88b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7589
x-amzn-requestid: 533d7650-cb21-4090-a50a-e205adad316d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brr5zH4qoAMF79Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63748d0b-017f7bf4390eb124097af648;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 07:11:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZtjzvMh_vqVaOqm8xPfZ2EWGGl0X7Iv8GK40Z32EbKM4wk6tGPnlYA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:27:21 GMT
age: 1871
etag: "22884cbc78622d6f78c1c3397c9b440946144a99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a16068e-5377-48a5-aaf5-19e46c86681d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a16068e-5377-48a5-aaf5-19e46c86681d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e091109c8f54cf23b221d8d0a35d6914
a67bdea6358146f7de38d6be37e9f69a8edd5f22
362dc1665e27a4307a7ce832019a6e5e3d8edb0d18db084e4dc9dd026ea68df4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a16068e-5377-48a5-aaf5-19e46c86681d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11447
x-amzn-requestid: fb600f6e-d936-4255-b79f-528d9cb8e729
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYTEqyIAMFalg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-2bc3102e268ccdff7f960289;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mKjDkTbptvN8DvzCnw88-xjLOC6wi-72-rLF9Hp7yzCEBDVmJoHgIA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 07:26:09 GMT
age: 55943
etag: "a67bdea6358146f7de38d6be37e9f69a8edd5f22"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YJuHCuUgkLuFFiQUlrPWgv9grHznufMTU08hi4ZMpQTBmou6BGWrhQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:52 GMT
age: 4240
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dea5eab-be63-42c8-bad6-cf6b625f2084.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dea5eab-be63-42c8-bad6-cf6b625f2084.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c3297aead753caaa06187c966d295823
d1ae75ccf04fa5f66f9ee88ac46014dd0d6f7008
8d7e1670c95439219e8a4af3c306b4ce50a6d8efeb00fc10709bf5981a00c753
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dea5eab-be63-42c8-bad6-cf6b625f2084.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7632
x-amzn-requestid: ce38bd20-c727-4c33-a339-a9f5eebd8b36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsFr9IAMFWbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-5aab88d66bbda34b06fa9c12;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0kj1HVlBauqyBnerS11-Id1e_P2fBM7wpDs2bpc9pjR0UNiB8rlwHw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:45:09 GMT
etag: "d1ae75ccf04fa5f66f9ee88ac46014dd0d6f7008"
content-type: image/jpeg
age: 4403
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn-adef.akamaized.net/
23.36.76.194302 Moved Temporarily 0 B IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET / HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://cdn-adef.akamaized.net/404
Date: Wed, 23 Nov 2022 22:58:33 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/404
23.36.76.194404 Not Found 134 B URL HTTP/1.1 cdn-adef.akamaized.net/404
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9c7c01b7650d428a3540bd1d22390a2f
1de74307526c98f84fe5ef2f7dce7ae7c1f77dd0
08c97b6bb3dda74ce86e43cfe75fe216618aa8d1f1e04fa9fc5ef57d3b1a69e1
GET /404 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jjk.globalsecuritypc.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 134
Date: Wed, 23 Nov 2022 22:58:33 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=715006399&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244315%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225834%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244315&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=715006399&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244315%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225834%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244315&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/84852946?wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=715006399&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244315%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225834%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244315&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 24758
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 23 Nov 2022 22:58:34 GMT
access-control-allow-origin: http://jjk.globalsecuritypc.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 23-Nov-2022 22:58:34 GMT
last-modified: Wed, 23-Nov-2022 22:58:34 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=192603330&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669244315%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225834%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244315&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=192603330&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669244315%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225834%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244315&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/84852946?wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=192603330&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669244315%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225834%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244315&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 23 Nov 2022 22:58:35 GMT
access-control-allow-origin: http://jjk.globalsecuritypc.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 23-Nov-2022 22:58:35 GMT
last-modified: Wed, 23-Nov-2022 22:58:35 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=2&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=885640883&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244316%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225836%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244316&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=2&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=885640883&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244316%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225836%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244316&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/84852946?wmode=0&wv-part=2&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=885640883&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244316%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225836%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244316&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 369
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 23 Nov 2022 22:58:36 GMT
access-control-allow-origin: http://jjk.globalsecuritypc.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 23-Nov-2022 22:58:36 GMT
last-modified: Wed, 23-Nov-2022 22:58:36 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
cdn-adef.akamaized.net/
23.36.76.194302 Moved Temporarily 0 B IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Scam - Fake AntiVirus
GET / HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://cdn-adef.akamaized.net/404
Date: Wed, 23 Nov 2022 22:58:36 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/404
23.36.76.194404 Not Found 134 B URL HTTP/1.1 cdn-adef.akamaized.net/404
IP 23.36.76.194:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9c7c01b7650d428a3540bd1d22390a2f
1de74307526c98f84fe5ef2f7dce7ae7c1f77dd0
08c97b6bb3dda74ce86e43cfe75fe216618aa8d1f1e04fa9fc5ef57d3b1a69e1
GET /404 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jjk.globalsecuritypc.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 134
Date: Wed, 23 Nov 2022 22:58:36 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=3&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=621451709&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244318%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225838%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244318&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=3&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=621451709&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244318%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225838%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244318&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/84852946?wmode=0&wv-part=3&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=621451709&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244318%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225838%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244318&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 601
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 23 Nov 2022 22:58:38 GMT
access-control-allow-origin: http://jjk.globalsecuritypc.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 23-Nov-2022 22:58:38 GMT
last-modified: Wed, 23-Nov-2022 22:58:38 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/84852946?wv-check=5771&wv-type=0&wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=777477393&browser-info=gdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/84852946?wv-check=5771&wv-type=0&wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=777477393&browser-info=gdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/84852946?wv-check=5771&wv-type=0&wmode=0&wv-part=1&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=777477393&browser-info=gdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 23 Nov 2022 22:58:39 GMT
access-control-allow-origin: http://jjk.globalsecuritypc.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 23-Nov-2022 22:58:39 GMT
last-modified: Wed, 23-Nov-2022 22:58:39 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=2&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=881574328&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=2&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=881574328&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/84852946?wmode=0&wv-part=2&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=881574328&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 23 Nov 2022 22:58:39 GMT
access-control-allow-origin: http://jjk.globalsecuritypc.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 23-Nov-2022 22:58:39 GMT
last-modified: Wed, 23-Nov-2022 22:58:39 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=4&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=851147885&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/84852946?wmode=0&wv-part=4&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=851147885&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/84852946?wmode=0&wv-part=4&wv-hit=440766624&page-url=http%3A%2F%2Fjjk.globalsecuritypc.site%2Fc%2F715d82d3da7b12d1%3Fclick_uuid%3D328d45ea-5859-4eba-b843-e301c0a2c75c%26bid%3D0.001260%26s1%3Dabs2-mcaf-pp-us%26s3%3Dnmwd%26s4%3DmacOS%26s5%3D3fd5c41d-e180-58ab-933e-f76d4c8d85ec%26s6%3D617806054%26s7%3D558%26s8%3DUS%26s9%3DGoogle%2520Chrome%26s10%3D%7Bs10%7D&rn=851147885&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1669244319%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221123225839%3Au%3A1669244312171001557%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Awe%3A1%3Ast%3A1669244319&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 423
Origin: http://jjk.globalsecuritypc.site
Connection: keep-alive
Referer: http://jjk.globalsecuritypc.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 23 Nov 2022 22:58:39 GMT
access-control-allow-origin: http://jjk.globalsecuritypc.site
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 23-Nov-2022 22:58:39 GMT
last-modified: Wed, 23-Nov-2022 22:58:39 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2